106.52.114.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
106.52.114.166	attackspambots	$f2bV_matches	2020-04-22 15:10:43
106.52.114.166	attackspambots	Invalid user craft from 106.52.114.166 port 48610	2020-04-18 06:00:56
106.52.114.166	attackspambots	Apr 3 10:52:13 itv-usvr-02 sshd[23973]: Invalid user ss from 106.52.114.166 port 41446 Apr 3 10:52:13 itv-usvr-02 sshd[23973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.114.166 Apr 3 10:52:13 itv-usvr-02 sshd[23973]: Invalid user ss from 106.52.114.166 port 41446 Apr 3 10:52:16 itv-usvr-02 sshd[23973]: Failed password for invalid user ss from 106.52.114.166 port 41446 ssh2 Apr 3 10:56:14 itv-usvr-02 sshd[24088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.114.166 user=root Apr 3 10:56:16 itv-usvr-02 sshd[24088]: Failed password for root from 106.52.114.166 port 60898 ssh2	2020-04-03 12:50:01
106.52.114.166	attackspam	2020-04-02T07:25:45.113125randservbullet-proofcloud-66.localdomain sshd[32040]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.114.166 user=root 2020-04-02T07:25:46.841673randservbullet-proofcloud-66.localdomain sshd[32040]: Failed password for root from 106.52.114.166 port 49512 ssh2 2020-04-02T07:43:06.618327randservbullet-proofcloud-66.localdomain sshd[32168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.114.166 user=root 2020-04-02T07:43:08.928337randservbullet-proofcloud-66.localdomain sshd[32168]: Failed password for root from 106.52.114.166 port 49932 ssh2 ...	2020-04-02 18:05:54
106.52.114.166	attack	2020-03-27T10:36:05.071390linuxbox-skyline sshd[22245]: Invalid user dorie from 106.52.114.166 port 34672 ...	2020-03-28 01:32:08
106.52.114.166	attack	Unauthorized SSH login attempts	2020-03-19 19:30:37
106.52.114.162	attackspambots	Automatic report - SSH Brute-Force Attack	2020-03-08 22:33:16
106.52.114.166	attack	$f2bV_matches	2020-02-20 14:31:12
106.52.114.162	attackbotsspam	Feb 17 02:31:15 localhost sshd\[13340\]: Invalid user easier from 106.52.114.162 Feb 17 02:31:15 localhost sshd\[13340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.114.162 Feb 17 02:31:18 localhost sshd\[13340\]: Failed password for invalid user easier from 106.52.114.162 port 52526 ssh2 Feb 17 02:31:42 localhost sshd\[13366\]: Invalid user tomcat5 from 106.52.114.162 Feb 17 02:31:42 localhost sshd\[13366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.114.162 ...	2020-02-17 10:26:25

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.114.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33731
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.52.114.12.			IN	A

;; AUTHORITY SECTION:
.			567	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061401 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 15 01:34:08 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 12.114.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 12.114.52.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
41.139.173.55	attackspam	failed_logins	2020-06-03 18:42:15
106.75.9.141	attack	Jun 2 23:40:25 NPSTNNYC01T sshd[32177]: Failed password for root from 106.75.9.141 port 47254 ssh2 Jun 2 23:44:48 NPSTNNYC01T sshd[32478]: Failed password for root from 106.75.9.141 port 35318 ssh2 ...	2020-06-03 18:30:05
52.186.121.199	attackspam	Website hacking attempt: Wordpress service [xmlrpc.php]	2020-06-03 18:08:56
171.103.57.50	attackspam	Dovecot Invalid User Login Attempt.	2020-06-03 18:16:56
79.121.123.160	attack	[MK-VM4] Blocked by UFW	2020-06-03 18:10:46
213.92.204.4	attackbotsspam	Jun 2 22:49:10 mailman postfix/smtpd[3565]: warning: unknown[213.92.204.4]: SASL PLAIN authentication failed: authentication failure	2020-06-03 18:31:24
120.244.91.42	attackspambots	(ftpd) Failed FTP login from 120.244.91.42 (CN/China/-): 10 in the last 3600 secs	2020-06-03 18:14:29
162.243.138.144	attackspambots	06/03/2020-06:02:27.033543 162.243.138.144 Protocol: 17 GPL SQL ping attempt	2020-06-03 18:32:45
51.91.96.96	attackbotsspam	(sshd) Failed SSH login from 51.91.96.96 (FR/France/96.ip-51-91-96.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 3 09:37:04 amsweb01 sshd[2097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.96.96 user=root Jun 3 09:37:06 amsweb01 sshd[2097]: Failed password for root from 51.91.96.96 port 38864 ssh2 Jun 3 09:53:05 amsweb01 sshd[4592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.96.96 user=root Jun 3 09:53:07 amsweb01 sshd[4592]: Failed password for root from 51.91.96.96 port 40530 ssh2 Jun 3 09:56:30 amsweb01 sshd[5027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.96.96 user=root	2020-06-03 18:05:34
103.47.81.35	attack	Jun 3 00:47:42 propaganda sshd[12879]: Connection from 103.47.81.35 port 23078 on 10.0.0.160 port 22 rdomain "" Jun 3 00:47:42 propaganda sshd[12879]: Connection closed by 103.47.81.35 port 23078 [preauth]	2020-06-03 18:33:13
123.20.157.93	attackspambots	2020-06-0305:44:091jgKJz-0000vA-L1\<=info@whatsup2013.chH=$localhost$[123.20.117.29]:55430P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3035id=aa3d8bd8d3f8d2da4643f559becae0fc5a2d45@whatsup2013.chT="topatrickcorbin737"forpatrickcorbin737@gmail.comangeito_96_tlv@hotmail.comsjdboy@gmail.com2020-06-0305:49:031jgKOk-0001HQ-GG\<=info@whatsup2013.chH=$localhost$[117.194.166.28]:51174P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3019id=a205b3e0ebc0eae27e7bcd6186f2d8c477819e@whatsup2013.chT="tobehtisata"forbehtisata@gmail.combudass69@gmail.compatrickg63@kprschools.ca2020-06-0305:45:521jgKLg-00015P-5m\<=info@whatsup2013.chH=$localhost$[220.164.2.87]:37479P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3002id=aa893f6c674c666ef2f741ed0a7e544839fb2b@whatsup2013.chT="towadsonp"forwadsonp@gmail.commehorny69@gmail.comvkphysique@hotmail.com2020-06-0305:44:411jgKKW-00010l-AX\<=info@w	2020-06-03 18:34:35
79.3.6.207	attackbots	2020-06-02 UTC: (25x) - root(25x)	2020-06-03 18:20:10
198.71.238.19	attack	Automatic report - XMLRPC Attack	2020-06-03 18:33:50
200.54.242.46	attack	Triggered by Fail2Ban at Ares web server	2020-06-03 18:12:40
177.10.242.123	attack	(smtpauth) Failed SMTP AUTH login from 177.10.242.123 (BR/Brazil/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-06-03 08:19:46 plain authenticator failed for ([177.10.242.123]) [177.10.242.123]: 535 Incorrect authentication data (set_id=engineer@rm-co.com)	2020-06-03 18:13:47

最近上报的IP列表

192.118.147.115	109.200.250.236	2a01:4f8:190:4449::2	111.229.90.123
198.18.53.53	189.163.165.174	125.238.152.64	246.40.169.22
49.234.227.137	124.104.11.174	192.35.168.64	51.91.129.207
178.134.125.196	118.173.255.180	63.59.0.90	79.127.127.186
180.164.63.94	59.219.188.128	7.133.38.8	94.25.170.66