58.214.11.123 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Wuxi Jiangsu Tianyi Network Infomation Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	TCP (SYN) 58.214.11.123:42582 -> port 673, len 44	2020-10-12 04:08:06
attack	TCP (SYN) 58.214.11.123:42582 -> port 673, len 44	2020-10-11 20:06:42
attack	ET CINS Active Threat Intelligence Poor Reputation IP group 42 - port: 673 proto: tcp cat: Misc Attackbytes: 60	2020-10-11 12:05:50
attackbotsspam	ET CINS Active Threat Intelligence Poor Reputation IP group 42 - port: 673 proto: tcp cat: Misc Attackbytes: 60	2020-10-11 05:30:31
attackspambots	firewall-block, port(s): 24551/tcp	2020-10-07 00:38:31
attackspambots	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-06 16:29:16
attackspambots	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-10-04 03:10:22
attackspam	Port scan: Attack repeated for 24 hours	2020-10-03 19:02:42

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 58.214.11.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19808
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;58.214.11.123.			IN	A

;; AUTHORITY SECTION:
.			249	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100300 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 03 19:02:37 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 123.11.214.58.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 123.11.214.58.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.45.254.159	attackbotsspam	2 SSH login attempts.	2020-09-16 12:27:32
129.152.141.71	attack	Sep 16 03:05:47 master sshd[27448]: Failed password for root from 129.152.141.71 port 60762 ssh2	2020-09-16 12:14:11
144.22.108.33	attackspam	Sep 15 23:38:51 vps647732 sshd[30878]: Failed password for root from 144.22.108.33 port 45486 ssh2 ...	2020-09-16 12:34:48
119.45.29.192	attackbotsspam	Sep 15 18:12:50 hpm sshd\[16290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.29.192 user=root Sep 15 18:12:52 hpm sshd\[16290\]: Failed password for root from 119.45.29.192 port 51204 ssh2 Sep 15 18:17:16 hpm sshd\[16684\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.29.192 user=root Sep 15 18:17:19 hpm sshd\[16684\]: Failed password for root from 119.45.29.192 port 39180 ssh2 Sep 15 18:21:33 hpm sshd\[17101\]: Invalid user web from 119.45.29.192	2020-09-16 12:21:57
91.121.162.198	attackbots	Sep 16 01:40:39 vps-51d81928 sshd[96518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.162.198 Sep 16 01:40:39 vps-51d81928 sshd[96518]: Invalid user web from 91.121.162.198 port 41234 Sep 16 01:40:41 vps-51d81928 sshd[96518]: Failed password for invalid user web from 91.121.162.198 port 41234 ssh2 Sep 16 01:44:16 vps-51d81928 sshd[96625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.162.198 user=root Sep 16 01:44:19 vps-51d81928 sshd[96625]: Failed password for root from 91.121.162.198 port 53410 ssh2 ...	2020-09-16 12:06:50
186.91.6.151	attack	Sep 15 19:21:50 fhem-rasp sshd[17130]: Invalid user teamspeak3 from 186.91.6.151 port 57292 ...	2020-09-16 12:31:54
103.244.121.251	attackspambots	Unauthorized connection attempt from IP address 103.244.121.251 on Port 445(SMB)	2020-09-16 12:12:13
190.156.231.245	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-09-16 12:15:37
47.245.1.36	attackspambots	2020-09-16T10:57:44.357287hostname sshd[116107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.245.1.36 user=root 2020-09-16T10:57:46.602232hostname sshd[116107]: Failed password for root from 47.245.1.36 port 40140 ssh2 ...	2020-09-16 12:40:21
113.23.5.104	attackbotsspam	Unauthorized connection attempt from IP address 113.23.5.104 on Port 445(SMB)	2020-09-16 12:41:27
45.129.33.46	attack	ET DROP Dshield Block Listed Source group 1 - port: 15433 proto: tcp cat: Misc Attackbytes: 60	2020-09-16 12:14:57
85.37.40.186	attackspambots	Unauthorized connection attempt from IP address 85.37.40.186 on Port 445(SMB)	2020-09-16 12:11:53
111.229.226.212	attackbotsspam	SSH Brute-Force attacks	2020-09-16 12:28:05
218.78.46.81	attackbotsspam	Sep 16 05:44:51 haigwepa sshd[8373]: Failed password for root from 218.78.46.81 port 50560 ssh2 ...	2020-09-16 12:07:19
142.93.247.238	attackspam	IP blocked	2020-09-16 12:43:46

Recently Reported IPs

172.28.206.11	183.89.79.48	165.22.59.107	116.24.67.158
36.74.42.247	78.161.82.194	90.154.91.97	212.181.43.204
180.76.157.174	231.116.232.62	61.172.23.188	17.22.70.240
136.165.32.41	242.120.104.70	101.80.0.67	240.77.175.124
107.16.114.197	206.189.60.33	88.38.1.255	45.99.91.75