85.107.126.214

基本信息:

城市(city): Mersin

省份(region): Mersin

国家(country): Turkey

运营商(isp): Turk Telekomunikasyon Anonim Sirketi

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt from IP address 85.107.126.214 on Port 445(SMB)	2020-06-14 08:51:10

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.107.126.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1335
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.107.126.214.			IN	A

;; AUTHORITY SECTION:
.			240	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061301 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 14 08:51:07 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

214.126.107.85.in-addr.arpa domain name pointer 85.107.126.214.dynamic.ttnet.com.tr.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
214.126.107.85.in-addr.arpa	name = 85.107.126.214.dynamic.ttnet.com.tr.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
177.54.250.210	attackbots	Aug 7 13:57:32 mail.srvfarm.net postfix/smtpd[3376328]: warning: unknown[177.54.250.210]: SASL PLAIN authentication failed: Aug 7 13:57:32 mail.srvfarm.net postfix/smtpd[3376328]: lost connection after AUTH from unknown[177.54.250.210] Aug 7 14:03:29 mail.srvfarm.net postfix/smtps/smtpd[3379235]: warning: unknown[177.54.250.210]: SASL PLAIN authentication failed: Aug 7 14:03:30 mail.srvfarm.net postfix/smtps/smtpd[3379235]: lost connection after AUTH from unknown[177.54.250.210] Aug 7 14:06:00 mail.srvfarm.net postfix/smtpd[3392845]: warning: unknown[177.54.250.210]: SASL PLAIN authentication failed:	2020-08-07 22:41:24
189.141.248.32	attack	Automatic report - Port Scan Attack	2020-08-07 22:20:21
212.83.152.177	attack	Aug 7 03:54:31 web9 sshd\[10715\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.83.152.177 user=root Aug 7 03:54:34 web9 sshd\[10715\]: Failed password for root from 212.83.152.177 port 37010 ssh2 Aug 7 03:58:39 web9 sshd\[11308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.83.152.177 user=root Aug 7 03:58:41 web9 sshd\[11308\]: Failed password for root from 212.83.152.177 port 47498 ssh2 Aug 7 04:02:28 web9 sshd\[11850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.83.152.177 user=root	2020-08-07 22:07:39
92.81.222.217	attack	k+ssh-bruteforce	2020-08-07 22:40:25
211.159.217.106	attackspambots	Aug 7 15:13:01 PorscheCustomer sshd[27261]: Failed password for root from 211.159.217.106 port 56734 ssh2 Aug 7 15:16:42 PorscheCustomer sshd[27340]: Failed password for root from 211.159.217.106 port 37322 ssh2 ...	2020-08-07 22:28:42
111.229.196.144	attackbotsspam	Aug 7 17:30:53 hosting sshd[19153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.196.144 user=root Aug 7 17:30:55 hosting sshd[19153]: Failed password for root from 111.229.196.144 port 33732 ssh2 ...	2020-08-07 22:35:41
177.159.99.89	attackbots	Dovecot Invalid User Login Attempt.	2020-08-07 22:25:34
222.112.255.124	attackbotsspam	Aug 7 11:24:53 firewall sshd[5724]: Failed password for root from 222.112.255.124 port 33097 ssh2 Aug 7 11:27:41 firewall sshd[5815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.112.255.124 user=root Aug 7 11:27:42 firewall sshd[5815]: Failed password for root from 222.112.255.124 port 14072 ssh2 ...	2020-08-07 22:29:37
121.122.81.195	attackbotsspam	Aug 6 12:54:41 scivo sshd[2914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.122.81.195 user=r.r Aug 6 12:54:43 scivo sshd[2914]: Failed password for r.r from 121.122.81.195 port 27290 ssh2 Aug 6 12:54:43 scivo sshd[2914]: Received disconnect from 121.122.81.195: 11: Bye Bye [preauth] Aug 6 12:59:17 scivo sshd[3171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.122.81.195 user=r.r Aug 6 12:59:19 scivo sshd[3171]: Failed password for r.r from 121.122.81.195 port 21425 ssh2 Aug 6 12:59:19 scivo sshd[3171]: Received disconnect from 121.122.81.195: 11: Bye Bye [preauth] Aug 6 13:03:54 scivo sshd[3398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.122.81.195 user=r.r Aug 6 13:03:57 scivo sshd[3398]: Failed password for r.r from 121.122.81.195 port 54912 ssh2 Aug 6 13:03:57 scivo sshd[3398]: Received disconnect from 121.122......... -------------------------------	2020-08-07 22:37:18
157.245.231.62	attackspambots	Aug 7 10:00:08 ny01 sshd[28732]: Failed password for root from 157.245.231.62 port 53262 ssh2 Aug 7 10:04:17 ny01 sshd[29200]: Failed password for root from 157.245.231.62 port 37106 ssh2	2020-08-07 22:34:39
124.156.244.4	attackspambots	[Fri Aug 07 04:33:56 2020] - DDoS Attack From IP: 124.156.244.4 Port: 48220	2020-08-07 22:08:54
94.25.181.154	attack	Brute force attempt	2020-08-07 22:18:37
167.99.13.195	attackspam	167.99.13.195 - - [07/Aug/2020:16:16:09 +0200] "GET /wp-login.php HTTP/1.1" 200 5738 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.13.195 - - [07/Aug/2020:16:16:10 +0200] "POST /wp-login.php HTTP/1.1" 200 5989 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.13.195 - - [07/Aug/2020:16:16:11 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-07 22:37:53
59.126.75.110	attackbots	Port Scan detected! ...	2020-08-07 22:19:50
83.229.149.191	attackspambots	Aug 7 15:55:42 mertcangokgoz-v4-main kernel: [421877.944072] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:5a:6b:04:d2:74:7f:6e:37:e3:08:00 SRC=83.229.149.191 DST=94.130.96.165 LEN=60 TOS=0x00 PREC=0x00 TTL=51 ID=29786 DF PROTO=TCP SPT=40572 DPT=22 WINDOW=14600 RES=0x00 SYN URGP=0	2020-08-07 22:24:10

最近上报的IP列表

190.201.38.175	16.55.84.127	159.114.224.67	134.75.12.98
140.81.124.47	253.74.40.173	136.132.222.3	240.156.74.98
79.171.22.157	198.239.172.2	84.51.74.122	64.179.1.164
122.232.198.12	86.92.220.52	124.72.73.34	119.54.83.17
195.14.105.26	18.191.220.193	134.122.50.199	34.246.186.85