61.14.211.48 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (Republic of)

运营商(isp): EhostICT

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Port Scan ...	2020-10-14 08:43:23
attackspambots	IP 61.14.211.48 attacked honeypot on port: 1433 at 6/14/2020 10:23:50 PM	2020-06-15 09:00:58

相同子网IP讨论:

IP	类型	评论内容	时间
61.14.211.214	attack	10/09/2019-13:38:42.995005 61.14.211.214 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2019-10-09 21:59:09

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.14.211.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38207
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;61.14.211.48.			IN	A

;; AUTHORITY SECTION:
.			486	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061401 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 15 09:00:49 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 48.211.14.61.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 48.211.14.61.in-addr.arpa.: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
181.143.222.58	attack	email spam	2020-01-10 19:16:20
124.156.50.111	attackspam	SIP/5060 Probe, BF, Hack -	2020-01-10 19:14:48
221.235.184.78	attackbots	Jan 10 11:28:26 debian-2gb-nbg1-2 kernel: \[911416.485988\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=221.235.184.78 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=52368 PROTO=TCP SPT=48771 DPT=2281 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-10 18:47:28
120.25.167.56	attackspambots	1433/tcp 1433/tcp 1433/tcp... [2019-12-27/2020-01-10]4pkt,1pt.(tcp)	2020-01-10 19:12:18
106.54.95.232	attack	Jan 10 08:11:02 localhost sshd\[32113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.95.232 user=root Jan 10 08:11:04 localhost sshd\[32113\]: Failed password for root from 106.54.95.232 port 37706 ssh2 Jan 10 08:14:09 localhost sshd\[32658\]: Invalid user ajp from 106.54.95.232 port 59008 Jan 10 08:14:09 localhost sshd\[32658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.95.232	2020-01-10 19:20:13
96.39.64.150	attack	23/tcp 23/tcp 23/tcp... [2019-11-21/2020-01-10]4pkt,1pt.(tcp)	2020-01-10 19:01:32
159.203.201.227	attack	firewall-block, port(s): 17758/tcp	2020-01-10 18:51:09
139.219.6.50	attackbotsspam	Unauthorized connection attempt detected from IP address 139.219.6.50 to port 10628 [T]	2020-01-10 18:45:32
201.215.126.147	attackbots	Jan 10 07:12:44 grey postfix/smtpd\[16706\]: NOQUEUE: reject: RCPT from pc-147-126-215-201.cm.vtr.net\[201.215.126.147\]: 554 5.7.1 Service unavailable\; Client host \[201.215.126.147\] blocked using dul.dnsbl.sorbs.net\; Dynamic IP Addresses See: http://www.sorbs.net/lookup.shtml\?201.215.126.147\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-10 19:18:14
142.93.97.100	attack	10443/tcp 119/tcp 5901/tcp... [2019-11-10/2020-01-09]37pkt,37pt.(tcp)	2020-01-10 18:49:37
106.13.122.102	attackspambots	Jan 10 05:42:02 legacy sshd[22820]: Failed password for root from 106.13.122.102 port 45924 ssh2 Jan 10 05:45:21 legacy sshd[22961]: Failed password for root from 106.13.122.102 port 43598 ssh2 ...	2020-01-10 19:22:04
165.227.225.195	attackbots	Jan 10 06:34:05 legacy sshd[25329]: Failed password for root from 165.227.225.195 port 57960 ssh2 Jan 10 06:39:53 legacy sshd[25619]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.225.195 Jan 10 06:39:55 legacy sshd[25619]: Failed password for invalid user nxl from 165.227.225.195 port 60896 ssh2 ...	2020-01-10 19:23:55
85.8.43.116	attack	5555/tcp 5555/tcp [2019-12-28/2020-01-10]2pkt	2020-01-10 19:07:28
222.186.30.76	attackspambots	01/10/2020-05:50:04.405873 222.186.30.76 Protocol: 6 ET SCAN Potential SSH Scan	2020-01-10 18:50:22
190.12.74.162	attackbotsspam	Automatic report - XMLRPC Attack	2020-01-10 18:53:07

最近上报的IP列表

221.138.249.201	127.138.126.51	55.9.12.70	120.212.88.195
1.156.16.2	128.177.88.11	92.159.47.249	85.213.12.62
80.149.143.125	92.60.217.12	103.78.213.226	185.152.67.107
155.94.146.168	120.39.3.141	42.97.45.72	175.164.131.120
186.185.168.203	34.196.204.197	34.75.240.70	175.24.249.183