106.51.85.14 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): India

运营商(isp): Atria Convergence Technologies Pvt. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt from IP address 106.51.85.14 on Port 445(SMB)	2019-12-27 07:47:32

相同子网IP讨论:

IP	类型	评论内容	时间
106.51.85.16	attackbotsspam	Invalid user csserver from 106.51.85.16 port 50154	2020-09-24 19:59:37
106.51.85.16	attack	2020-09-23T20:13:44.671060abusebot-4.cloudsearch.cf sshd[11049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 user=root 2020-09-23T20:13:46.689160abusebot-4.cloudsearch.cf sshd[11049]: Failed password for root from 106.51.85.16 port 55914 ssh2 2020-09-23T20:16:51.017969abusebot-4.cloudsearch.cf sshd[11063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 user=root 2020-09-23T20:16:52.905413abusebot-4.cloudsearch.cf sshd[11063]: Failed password for root from 106.51.85.16 port 35986 ssh2 2020-09-23T20:17:59.935591abusebot-4.cloudsearch.cf sshd[11069]: Invalid user formation from 106.51.85.16 port 51878 2020-09-23T20:17:59.942838abusebot-4.cloudsearch.cf sshd[11069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 2020-09-23T20:17:59.935591abusebot-4.cloudsearch.cf sshd[11069]: Invalid user formation from 106.51.85.16 port 5187 ...	2020-09-24 12:01:13
106.51.85.16	attack	2020-09-23T22:41:37.137287paragon sshd[334743]: Invalid user mcserver from 106.51.85.16 port 50124 2020-09-23T22:41:37.141318paragon sshd[334743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 2020-09-23T22:41:37.137287paragon sshd[334743]: Invalid user mcserver from 106.51.85.16 port 50124 2020-09-23T22:41:39.402230paragon sshd[334743]: Failed password for invalid user mcserver from 106.51.85.16 port 50124 ssh2 2020-09-23T22:45:38.401201paragon sshd[334808]: Invalid user osm from 106.51.85.16 port 59160 ...	2020-09-24 03:29:28
106.51.85.16	attack	Repeated brute force against a port	2020-08-22 21:33:55
106.51.85.16	attack	" "	2020-08-06 22:04:29
106.51.85.16	attackbots	Jul 28 11:48:04 rocket sshd[26187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 Jul 28 11:48:06 rocket sshd[26187]: Failed password for invalid user re from 106.51.85.16 port 34240 ssh2 ...	2020-07-28 18:59:48
106.51.85.16	attackbotsspam	Jul 8 21:59:53 server sshd[9659]: Failed password for backup from 106.51.85.16 port 39752 ssh2 Jul 8 22:03:05 server sshd[10705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 Jul 8 22:03:07 server sshd[10705]: Failed password for invalid user Hugo from 106.51.85.16 port 35824 ssh2 ...	2020-07-09 04:10:57
106.51.85.16	attackspam	Jun 23 13:18:15 gestao sshd[30313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 Jun 23 13:18:16 gestao sshd[30313]: Failed password for invalid user ftptest from 106.51.85.16 port 38424 ssh2 Jun 23 13:22:09 gestao sshd[30376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 ...	2020-06-23 22:45:08
106.51.85.16	attackspam	Jun 21 11:51:54 sxvn sshd[1128378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16	2020-06-21 19:32:07
106.51.85.66	attack	$f2bV_matches	2020-06-20 12:30:19
106.51.85.16	attackbotsspam	Jun 18 15:10:04 master sshd[20787]: Failed password for invalid user dag from 106.51.85.16 port 43424 ssh2	2020-06-18 23:01:54
106.51.85.16	attackbotsspam	2020-06-18T09:18:09.821198abusebot.cloudsearch.cf sshd[13590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 user=root 2020-06-18T09:18:12.288965abusebot.cloudsearch.cf sshd[13590]: Failed password for root from 106.51.85.16 port 39872 ssh2 2020-06-18T09:21:41.477667abusebot.cloudsearch.cf sshd[13917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 user=root 2020-06-18T09:21:43.714758abusebot.cloudsearch.cf sshd[13917]: Failed password for root from 106.51.85.16 port 39828 ssh2 2020-06-18T09:25:04.942424abusebot.cloudsearch.cf sshd[14154]: Invalid user zakir from 106.51.85.16 port 39802 2020-06-18T09:25:04.949570abusebot.cloudsearch.cf sshd[14154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 2020-06-18T09:25:04.942424abusebot.cloudsearch.cf sshd[14154]: Invalid user zakir from 106.51.85.16 port 39802 2020-06-18T09:25:07. ...	2020-06-18 18:27:45
106.51.85.66	attack	Jun 12 11:27:58 Host-KLAX-C sshd[23189]: Invalid user xl from 106.51.85.66 port 29930 ...	2020-06-13 02:07:32
106.51.85.66	attackbots	Jun 11 03:51:56 rush sshd[30793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.66 Jun 11 03:51:58 rush sshd[30793]: Failed password for invalid user michele from 106.51.85.66 port 59972 ssh2 Jun 11 03:58:38 rush sshd[30997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.66 ...	2020-06-11 12:30:21
106.51.85.16	attackspambots	2020-06-09T01:20:28.205410lavrinenko.info sshd[3884]: Failed password for root from 106.51.85.16 port 53560 ssh2 2020-06-09T01:24:01.597298lavrinenko.info sshd[4021]: Invalid user asmund from 106.51.85.16 port 54990 2020-06-09T01:24:01.604961lavrinenko.info sshd[4021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.85.16 2020-06-09T01:24:01.597298lavrinenko.info sshd[4021]: Invalid user asmund from 106.51.85.16 port 54990 2020-06-09T01:24:03.404695lavrinenko.info sshd[4021]: Failed password for invalid user asmund from 106.51.85.16 port 54990 ssh2 ...	2020-06-09 06:37:01

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.51.85.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64706
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.51.85.14.			IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122601 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 27 07:47:29 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

14.85.51.106.in-addr.arpa domain name pointer broadband.actcorp.in.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.85.51.106.in-addr.arpa	name = broadband.actcorp.in.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
182.71.127.252	attackbotsspam	Oct 12 18:58:14 OPSO sshd\[7063\]: Invalid user 123Work from 182.71.127.252 port 41080 Oct 12 18:58:14 OPSO sshd\[7063\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.71.127.252 Oct 12 18:58:15 OPSO sshd\[7063\]: Failed password for invalid user 123Work from 182.71.127.252 port 41080 ssh2 Oct 12 19:03:01 OPSO sshd\[7910\]: Invalid user Rodrigo2017 from 182.71.127.252 port 32956 Oct 12 19:03:01 OPSO sshd\[7910\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.71.127.252	2019-10-13 01:20:20
59.115.158.3	attack	" "	2019-10-13 01:10:24
106.12.196.28	attack	Oct 12 18:46:12 SilenceServices sshd[21783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.28 Oct 12 18:46:13 SilenceServices sshd[21783]: Failed password for invalid user Jelszo_111 from 106.12.196.28 port 53232 ssh2 Oct 12 18:51:30 SilenceServices sshd[23182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.196.28	2019-10-13 01:19:27
159.253.32.120	attackbotsspam	www.geburtshaus-fulda.de 159.253.32.120 \[12/Oct/2019:16:14:36 +0200\] "POST /wp-login.php HTTP/1.1" 200 5786 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.geburtshaus-fulda.de 159.253.32.120 \[12/Oct/2019:16:14:37 +0200\] "POST /wp-login.php HTTP/1.1" 200 5790 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-13 00:56:10
52.52.66.127	attackspam	Automatic report - XMLRPC Attack	2019-10-13 00:32:05
106.75.31.215	attackbots	2019-10-12T14:14:07.109528abusebot-5.cloudsearch.cf sshd\[24609\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.31.215 user=root	2019-10-13 01:18:28
183.129.150.2	attackspam	Oct 12 16:08:11 MainVPS sshd[16037]: Invalid user 123 from 183.129.150.2 port 38113 Oct 12 16:08:11 MainVPS sshd[16037]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.129.150.2 Oct 12 16:08:11 MainVPS sshd[16037]: Invalid user 123 from 183.129.150.2 port 38113 Oct 12 16:08:13 MainVPS sshd[16037]: Failed password for invalid user 123 from 183.129.150.2 port 38113 ssh2 Oct 12 16:13:40 MainVPS sshd[16581]: Invalid user Pablo_123 from 183.129.150.2 port 40377 ...	2019-10-13 01:17:12
52.46.38.16	attackspambots	Automatic report generated by Wazuh	2019-10-13 01:16:38
93.119.53.51	attack	Automatic report - Port Scan Attack	2019-10-13 00:29:03
196.22.215.6	attackbotsspam	proto=tcp . spt=44180 . dpt=25 . (Found on Dark List de Oct 12) (884)	2019-10-13 01:11:08
177.11.95.66	attackbotsspam	Oct 7 07:59:00 our-server-hostname postfix/smtpd[15495]: connect from unknown[177.11.95.66] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct 7 08:04:12 our-server-hostname postfix/smtpd[15495]: servereout after RCPT from unknown[177.11.95.66] Oct 7 08:04:12 our-server-hostname postfix/smtpd[15495]: disconnect from unknown[177.11.95.66] Oct 7 08:38:54 our-server-hostname postfix/smtpd[15882]: connect from unknown[177.11.95.66] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct 7 08:39:06 our-server-hostname postfix/smtpd[15882]: lost connection after RCPT from unknown[177.11.95.66] Oct 7 08:39:06 our-server-hostname postfix/smtpd[15882]: disconnect from unknown[177.11.95.66] Oct 7 09:34:57 our-server-hostname postfix/smtpd[31196]: connect from unknown[177.11.95.66] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@........ -------------------------------	2019-10-13 01:03:34
222.186.175.154	attack	Oct 12 19:05:02 fr01 sshd[28730]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Oct 12 19:05:04 fr01 sshd[28730]: Failed password for root from 222.186.175.154 port 65338 ssh2 ...	2019-10-13 01:14:42
222.186.173.142	attack	Oct 12 12:45:23 plusreed sshd[4063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.142 user=root Oct 12 12:45:26 plusreed sshd[4063]: Failed password for root from 222.186.173.142 port 26202 ssh2 ...	2019-10-13 00:50:06
129.204.153.151	attackspam	Oct 12 10:50:01 myhostname sshd[977]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.153.151 user=r.r Oct 12 10:50:04 myhostname sshd[977]: Failed password for r.r from 129.204.153.151 port 35870 ssh2 Oct 12 10:50:04 myhostname sshd[977]: Received disconnect from 129.204.153.151 port 35870:11: Bye Bye [preauth] Oct 12 10:50:04 myhostname sshd[977]: Disconnected from 129.204.153.151 port 35870 [preauth] Oct 12 11:16:07 myhostname sshd[1081]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.153.151 user=r.r Oct 12 11:16:10 myhostname sshd[1081]: Failed password for r.r from 129.204.153.151 port 52056 ssh2 Oct 12 11:16:10 myhostname sshd[1081]: Received disconnect from 129.204.153.151 port 52056:11: Bye Bye [preauth] Oct 12 11:16:10 myhostname sshd[1081]: Disconnected from 129.204.153.151 port 52056 [preauth] Oct 12 11:21:23 myhostname sshd[1094]: pam_unix(sshd:auth): authenti........ -------------------------------	2019-10-13 01:12:58
139.59.94.225	attackbots	2019-10-12T21:14:25.602323enmeeting.mahidol.ac.th sshd\[15042\]: User root from 139.59.94.225 not allowed because not listed in AllowUsers 2019-10-12T21:14:25.728329enmeeting.mahidol.ac.th sshd\[15042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.94.225 user=root 2019-10-12T21:14:27.399252enmeeting.mahidol.ac.th sshd\[15042\]: Failed password for invalid user root from 139.59.94.225 port 34842 ssh2 ...	2019-10-13 00:49:42

最近上报的IP列表

200.98.138.195	39.106.230.232	101.89.80.102	213.85.3.250
162.253.224.8	116.31.247.40	213.171.100.24	177.205.168.46
37.142.40.164	189.222.159.81	91.181.106.70	44.5.98.135
66.83.114.134	133.212.186.74	117.245.51.113	162.190.11.113
43.76.166.174	219.84.202.20	111.181.155.178	143.158.227.19