214.85.124.53 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 214.85.124.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24260
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;214.85.124.53.			IN	A

;; AUTHORITY SECTION:
.			226	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023032900 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 29 18:18:46 CST 2023
;; MSG SIZE  rcvd: 106

HOST信息:

b'Host 53.124.85.214.in-addr.arpa not found: 2(SERVFAIL)
'

NSLOOKUP信息:

server can't find 214.85.124.53.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
114.67.236.85	attackspam	[Aegis] @ 2019-10-05 04:54:59 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-10-05 13:19:49
78.165.197.56	attackspam	DATE:2019-10-05 05:56:07, IP:78.165.197.56, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-10-05 12:44:05
91.212.150.51	attack	xmlrpc attack	2019-10-05 12:58:47
140.143.134.86	attack	Oct 5 00:31:29 plusreed sshd[330]: Invalid user 3edc@WSX!QAZ from 140.143.134.86 ...	2019-10-05 12:47:44
58.171.108.172	attackbotsspam	Oct 5 03:48:59 sshgateway sshd\[29190\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.171.108.172 user=root Oct 5 03:49:01 sshgateway sshd\[29190\]: Failed password for root from 58.171.108.172 port 36706 ssh2 Oct 5 03:55:42 sshgateway sshd\[29198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.171.108.172 user=root	2019-10-05 12:57:06
92.118.38.53	attackbots	Oct 5 05:55:25 mailserver postfix/smtps/smtpd[81203]: disconnect from unknown[92.118.38.53] Oct 5 06:56:02 mailserver postfix/smtps/smtpd[81503]: warning: hostname ip-38-53.ZervDNS does not resolve to address 92.118.38.53: hostname nor servname provided, or not known Oct 5 06:56:02 mailserver postfix/smtps/smtpd[81503]: connect from unknown[92.118.38.53] Oct 5 06:56:58 mailserver dovecot: auth-worker(81505): sql([hidden],92.118.38.53): unknown user Oct 5 06:57:00 mailserver postfix/smtps/smtpd[81503]: warning: unknown[92.118.38.53]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 06:57:11 mailserver postfix/smtps/smtpd[81503]: lost connection after AUTH from unknown[92.118.38.53] Oct 5 06:57:11 mailserver postfix/smtps/smtpd[81503]: disconnect from unknown[92.118.38.53] Oct 5 06:59:16 mailserver postfix/smtps/smtpd[81509]: warning: hostname ip-38-53.ZervDNS does not resolve to address 92.118.38.53: hostname nor servname provided, or not known Oct 5 06:59:16 mailserver postfix/smtps/smtpd[81509]:	2019-10-05 13:22:52
120.52.152.16	attackbotsspam	Port Scan: TCP/82	2019-10-05 13:15:36
200.201.217.104	attackspam	2019-10-05T07:43:09.258116tmaserv sshd\[8841\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=web14.baseconecta.com.br user=root 2019-10-05T07:43:11.593392tmaserv sshd\[8841\]: Failed password for root from 200.201.217.104 port 38896 ssh2 2019-10-05T07:57:17.542707tmaserv sshd\[9536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=web14.baseconecta.com.br user=root 2019-10-05T07:57:19.624204tmaserv sshd\[9536\]: Failed password for root from 200.201.217.104 port 45248 ssh2 2019-10-05T08:01:50.276142tmaserv sshd\[9812\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=web14.baseconecta.com.br user=root 2019-10-05T08:01:52.172983tmaserv sshd\[9812\]: Failed password for root from 200.201.217.104 port 58062 ssh2 ...	2019-10-05 13:06:55
42.4.255.167	attack	Unauthorised access (Oct 5) SRC=42.4.255.167 LEN=40 TTL=49 ID=45194 TCP DPT=8080 WINDOW=44534 SYN Unauthorised access (Oct 4) SRC=42.4.255.167 LEN=40 TTL=49 ID=7867 TCP DPT=8080 WINDOW=58294 SYN Unauthorised access (Oct 3) SRC=42.4.255.167 LEN=40 TTL=49 ID=29056 TCP DPT=8080 WINDOW=44534 SYN Unauthorised access (Oct 3) SRC=42.4.255.167 LEN=40 TTL=49 ID=32582 TCP DPT=8080 WINDOW=58294 SYN	2019-10-05 13:24:37
198.55.103.92	attackspam	Ein möglicherweise gefährlicher Request.Form-Wert wurde vom Client (mp$ContentZone$TxtMessage="...ng to the	2019-10-05 13:05:22
41.36.171.106	attack	Oct 5 03:55:39 *** sshd[24608]: Invalid user admin from 41.36.171.106	2019-10-05 12:57:41
119.97.44.215	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-05 13:16:42
222.186.175.202	attack	Oct 5 06:52:09 [host] sshd[7023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Oct 5 06:52:11 [host] sshd[7023]: Failed password for root from 222.186.175.202 port 47852 ssh2 Oct 5 06:52:37 [host] sshd[7031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root	2019-10-05 13:02:50
110.37.224.59	attackspam	scan z	2019-10-05 12:43:46
125.212.207.205	attackbots	Oct 5 10:46:18 lcl-usvr-01 sshd[12922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205 user=root Oct 5 10:51:07 lcl-usvr-01 sshd[14344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205 user=root Oct 5 10:55:54 lcl-usvr-01 sshd[15889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.207.205 user=root	2019-10-05 12:51:30

最近上报的IP列表

210.188.180.228	184.171.68.96	100.127.252.187	180.175.55.60
52.67.189.109	133.48.12.75	48.217.241.196	85.93.198.74
9.5.44.150	200.5.0.182	143.100.191.28	230.247.78.210
75.5.236.180	71.241.62.114	195.220.92.170	65.243.97.35
167.196.250.136	254.157.49.144	135.47.205.200	241.106.151.9