106.12.159.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.12.159.252	attackbots	k+ssh-bruteforce	2020-08-07 05:43:15
106.12.159.252	attackspam	Jul 25 06:34:58 NPSTNNYC01T sshd[4099]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.159.252 Jul 25 06:35:01 NPSTNNYC01T sshd[4099]: Failed password for invalid user quc from 106.12.159.252 port 34050 ssh2 Jul 25 06:40:18 NPSTNNYC01T sshd[4650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.159.252 ...	2020-07-25 18:44:34
106.12.159.174	attack	Spam detected 2020.07.17 05:55:47 blocked until 2020.09.04 22:57:47	2020-07-17 15:09:22
106.12.159.148	attack	SSH Invalid Login	2020-06-28 07:19:12
106.12.159.148	attackbots	$f2bV_matches	2020-06-26 17:21:01
106.12.159.7	attackbotsspam	2020-06-04T17:19:38.238886+02:00 sshd[11801]: Failed password for root from 106.12.159.7 port 60202 ssh2	2020-06-05 04:17:33
106.12.159.7	attackspam	2020-06-03T11:42:39.896451abusebot-4.cloudsearch.cf sshd[1070]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.159.7 user=root 2020-06-03T11:42:42.376492abusebot-4.cloudsearch.cf sshd[1070]: Failed password for root from 106.12.159.7 port 53140 ssh2 2020-06-03T11:45:21.337685abusebot-4.cloudsearch.cf sshd[1227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.159.7 user=root 2020-06-03T11:45:23.391151abusebot-4.cloudsearch.cf sshd[1227]: Failed password for root from 106.12.159.7 port 60190 ssh2 2020-06-03T11:47:45.818943abusebot-4.cloudsearch.cf sshd[1402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.159.7 user=root 2020-06-03T11:47:47.972974abusebot-4.cloudsearch.cf sshd[1402]: Failed password for root from 106.12.159.7 port 38986 ssh2 2020-06-03T11:50:10.906540abusebot-4.cloudsearch.cf sshd[1541]: pam_unix(sshd:auth): authentication fai ...	2020-06-04 01:45:38
106.12.159.7	attack	sshd	2020-05-13 08:08:13
106.12.159.5	attackbots	Mar 19 18:29:33 sshd\[3858\]: User root from 106.12.159.5 not allowed because not listed in AllowUsersMar 19 18:29:35 sshd\[3858\]: Failed password for invalid user root from 106.12.159.5 port 40732 ssh2 ...	2020-03-20 04:02:52
106.12.159.235	attackbotsspam	Feb 27 10:29:36 php1 sshd\[20501\]: Invalid user user from 106.12.159.235 Feb 27 10:29:36 php1 sshd\[20501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.159.235 Feb 27 10:29:38 php1 sshd\[20501\]: Failed password for invalid user user from 106.12.159.235 port 33084 ssh2 Feb 27 10:36:24 php1 sshd\[21186\]: Invalid user admin from 106.12.159.235 Feb 27 10:36:24 php1 sshd\[21186\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.159.235	2020-02-28 06:36:24
106.12.159.235	attackspambots	SSH invalid-user multiple login attempts	2020-02-24 19:04:48
106.12.159.207	attackbotsspam	Unauthorized connection attempt detected from IP address 106.12.159.207 to port 2220 [J]	2020-02-03 10:07:27
106.12.159.207	attack	Unauthorized connection attempt detected from IP address 106.12.159.207 to port 2220 [J]	2020-01-24 05:03:08
106.12.159.235	attack	T: f2b ssh aggressive 3x	2020-01-16 22:56:49
106.12.159.235	attack	SSH Brute-Force reported by Fail2Ban	2020-01-11 15:53:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.12.159.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64589
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.12.159.52.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100700 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 13:32:18 CST 2022
;; MSG SIZE  rcvd: 106

HOST信息:

Host 52.159.12.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.159.12.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
173.62.241.196	attackbotsspam	Invalid user admin from 173.62.241.196 port 43778	2019-10-25 17:59:40
132.232.101.100	attackbots	Oct 25 08:20:32 mail sshd[9190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.101.100 Oct 25 08:20:34 mail sshd[9190]: Failed password for invalid user 123321 from 132.232.101.100 port 48146 ssh2 Oct 25 08:25:35 mail sshd[10928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.101.100	2019-10-25 18:16:45
46.209.20.25	attackspam	Oct 23 03:16:33 pl3server sshd[28948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.209.20.25 user=r.r Oct 23 03:16:35 pl3server sshd[28948]: Failed password for r.r from 46.209.20.25 port 33620 ssh2 Oct 23 03:16:35 pl3server sshd[28948]: Received disconnect from 46.209.20.25: 11: Bye Bye [preauth] Oct 23 03:29:08 pl3server sshd[16912]: Invalid user tsbot from 46.209.20.25 Oct 23 03:29:08 pl3server sshd[16912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.209.20.25 Oct 23 03:29:10 pl3server sshd[16912]: Failed password for invalid user tsbot from 46.209.20.25 port 57496 ssh2 Oct 23 03:29:10 pl3server sshd[16912]: Received disconnect from 46.209.20.25: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=46.209.20.25	2019-10-25 18:15:34
123.183.217.82	attackbotsspam	" "	2019-10-25 17:46:56
119.236.181.176	attackspambots	Unauthorised access (Oct 25) SRC=119.236.181.176 LEN=44 TTL=48 ID=18652 TCP DPT=8080 WINDOW=59979 SYN Unauthorised access (Oct 25) SRC=119.236.181.176 LEN=44 TTL=48 ID=13196 TCP DPT=8080 WINDOW=59979 SYN	2019-10-25 18:20:43
64.140.159.115	attackbots	wp bruteforce	2019-10-25 17:58:00
45.125.65.54	attack	\[2019-10-25 06:11:47\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-25T06:11:47.503-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="001054101148323235034",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.54/54437",ACLName="no_extension_match" \[2019-10-25 06:12:34\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-25T06:12:34.849-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01053901148413828003",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.54/63936",ACLName="no_extension_match" \[2019-10-25 06:13:49\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-25T06:13:49.450-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="001054201148323235034",SessionID="0x7fdf2c160cc8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.54/49610",A	2019-10-25 18:24:44
177.128.70.240	attackbots	2019-10-25T09:26:14.612854abusebot-5.cloudsearch.cf sshd\[1450\]: Invalid user yuvraj from 177.128.70.240 port 41916	2019-10-25 17:49:44
222.170.63.27	attack	Oct 24 21:09:03 home sshd[12217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.170.63.27 user=root Oct 24 21:09:05 home sshd[12217]: Failed password for root from 222.170.63.27 port 58236 ssh2 Oct 24 21:35:43 home sshd[12407]: Invalid user com from 222.170.63.27 port 63911 Oct 24 21:35:43 home sshd[12407]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.170.63.27 Oct 24 21:35:43 home sshd[12407]: Invalid user com from 222.170.63.27 port 63911 Oct 24 21:35:45 home sshd[12407]: Failed password for invalid user com from 222.170.63.27 port 63911 ssh2 Oct 24 21:41:13 home sshd[12440]: Invalid user 0 from 222.170.63.27 port 13958 Oct 24 21:41:13 home sshd[12440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.170.63.27 Oct 24 21:41:13 home sshd[12440]: Invalid user 0 from 222.170.63.27 port 13958 Oct 24 21:41:15 home sshd[12440]: Failed password for invalid user 0** from 222.1	2019-10-25 18:20:26
159.203.201.4	attackspam	10/25/2019-05:49:10.098537 159.203.201.4 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-25 17:52:04
186.139.21.29	attackspam	Oct 25 05:18:42 cps sshd[20920]: Invalid user georgete from 186.139.21.29 Oct 25 05:18:42 cps sshd[20920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.139.21.29 Oct 25 05:18:45 cps sshd[20920]: Failed password for invalid user georgete from 186.139.21.29 port 43418 ssh2 Oct 25 05:26:28 cps sshd[22364]: Invalid user samir from 186.139.21.29 Oct 25 05:26:28 cps sshd[22364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.139.21.29 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=186.139.21.29	2019-10-25 18:09:43
104.236.214.8	attackspambots	2019-10-25T09:38:42.355630hub.schaetter.us sshd\[22374\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.214.8 user=root 2019-10-25T09:38:44.091225hub.schaetter.us sshd\[22374\]: Failed password for root from 104.236.214.8 port 60102 ssh2 2019-10-25T09:44:30.140789hub.schaetter.us sshd\[22414\]: Invalid user debian from 104.236.214.8 port 51219 2019-10-25T09:44:30.156962hub.schaetter.us sshd\[22414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.214.8 2019-10-25T09:44:32.334138hub.schaetter.us sshd\[22414\]: Failed password for invalid user debian from 104.236.214.8 port 51219 ssh2 ...	2019-10-25 18:04:46
181.30.26.40	attackspam	Oct 25 06:31:25 odroid64 sshd\[8732\]: Invalid user tester from 181.30.26.40 Oct 25 06:31:25 odroid64 sshd\[8732\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.30.26.40 ...	2019-10-25 17:50:38
80.82.64.73	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2019-10-25 18:24:06
36.89.157.197	attackbotsspam	Oct 25 12:47:55 server sshd\[5977\]: User root from 36.89.157.197 not allowed because listed in DenyUsers Oct 25 12:47:55 server sshd\[5977\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.157.197 user=root Oct 25 12:47:57 server sshd\[5977\]: Failed password for invalid user root from 36.89.157.197 port 39866 ssh2 Oct 25 12:52:29 server sshd\[30323\]: Invalid user esther from 36.89.157.197 port 50108 Oct 25 12:52:29 server sshd\[30323\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.157.197	2019-10-25 18:04:18

最近上报的IP列表

182.16.184.60	117.174.10.99	112.249.176.241	43.158.206.167
5.42.199.165	43.248.97.142	71.6.233.72	71.6.233.172
71.6.233.86	134.122.42.108	115.49.33.177	43.198.13.38
154.31.228.36	14.43.141.153	177.124.21.200	193.233.137.88
125.33.254.230	1.241.249.187	103.130.115.215	141.98.163.140

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表