106.75.113.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Shanghai UCloud Information Technology Company Limited

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	firewall-block, port(s): 5060/udp	2020-01-11 04:37:32

相同子网IP讨论:

IP	类型	评论内容	时间
106.75.113.0	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-11 04:38:30
106.75.113.53	attackspam	unauthorized connection attempt	2020-01-11 04:35:59
106.75.113.55	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-11 04:35:18
106.75.113.53	attack	firewall-block, port(s): 5060/udp	2020-01-06 23:50:49
106.75.113.55	attack	firewall-block, port(s): 5060/udp	2019-12-28 14:17:07
106.75.113.55	attackspambots	Dec 25 00:27:17 debian-2gb-nbg1-2 kernel: \[882775.053807\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=106.75.113.55 DST=195.201.40.59 LEN=436 TOS=0x00 PREC=0x00 TTL=45 ID=0 DF PROTO=UDP SPT=5113 DPT=5060 LEN=416	2019-12-25 08:18:02
106.75.113.55	attackspambots	SIPVicious Scanner Detection	2019-12-22 06:04:54
106.75.113.53	attackbotsspam	firewall-block, port(s): 5060/udp	2019-12-14 02:22:07

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.75.113.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19523
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.75.113.52.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121200 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 14:20:23 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 52.113.75.106.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 52.113.75.106.in-addr.arpa.: No answer

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
177.184.70.8	attackbots	$f2bV_matches	2019-08-25 04:40:02
84.17.47.136	attack	0,47-01/01 [bc01/m05] concatform PostRequest-Spammer scoring: berlin	2019-08-25 04:29:13
60.191.206.110	attackspam	Aug 24 15:06:23 xeon cyrus/imap[45584]: badlogin: [60.191.206.110] plain [SASL(-13): authentication failure: Password verification failed]	2019-08-25 04:34:16
206.189.156.198	attackspambots	Aug 24 22:38:09 plex sshd[17613]: Invalid user venta from 206.189.156.198 port 32910	2019-08-25 04:39:07
142.93.241.93	attack	Invalid user bogdan from 142.93.241.93 port 36302	2019-08-25 04:30:06
139.170.149.161	attackspambots	Aug 24 15:47:24 localhost sshd\[19725\]: Invalid user Jewel from 139.170.149.161 port 44796 Aug 24 15:47:24 localhost sshd\[19725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.170.149.161 Aug 24 15:47:26 localhost sshd\[19725\]: Failed password for invalid user Jewel from 139.170.149.161 port 44796 ssh2	2019-08-25 04:50:07
148.70.224.153	attack	Reported by AbuseIPDB proxy server.	2019-08-25 05:01:32
103.109.52.39	attackbots	Aug 24 01:39:20 php2 sshd\[18128\]: Invalid user black from 103.109.52.39 Aug 24 01:39:20 php2 sshd\[18128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.109.52.39 Aug 24 01:39:22 php2 sshd\[18128\]: Failed password for invalid user black from 103.109.52.39 port 44994 ssh2 Aug 24 01:44:18 php2 sshd\[18896\]: Invalid user od from 103.109.52.39 Aug 24 01:44:18 php2 sshd\[18896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.109.52.39	2019-08-25 04:45:09
52.167.5.138	attack	Aug 24 01:30:14 lcdev sshd\[29476\]: Invalid user sync001 from 52.167.5.138 Aug 24 01:30:14 lcdev sshd\[29476\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.167.5.138 Aug 24 01:30:16 lcdev sshd\[29476\]: Failed password for invalid user sync001 from 52.167.5.138 port 53426 ssh2 Aug 24 01:35:33 lcdev sshd\[29974\]: Invalid user afp from 52.167.5.138 Aug 24 01:35:33 lcdev sshd\[29974\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.167.5.138	2019-08-25 05:00:01
67.205.157.86	attack	Invalid user minecraft from 67.205.157.86 port 33482	2019-08-25 04:53:33
37.252.79.192	attack	Honeypot attack, port: 23, PTR: host-192.79.252.37.ucom.am.	2019-08-25 05:02:29
54.240.10.34	attack	[ER hit] Tried to deliver spam. Already well known.	2019-08-25 05:01:56
51.38.36.213	attackbotsspam	firewall-block, port(s): 8000/tcp	2019-08-25 04:47:01
95.213.177.122	attackspambots	Splunk® : port scan detected: Aug 24 15:20:03 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=95.213.177.122 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=3254 PROTO=TCP SPT=54403 DPT=1080 WINDOW=1024 RES=0x00 SYN URGP=0	2019-08-25 04:49:46
180.167.54.190	attackbots	Invalid user alfresco from 180.167.54.190 port 47589	2019-08-25 05:00:49

最近上报的IP列表

156.232.154.63	137.53.103.95	27.76.141.109	113.53.52.44
141.161.114.41	60.7.80.10	169.254.145.105	173.36.169.153
142.30.61.189	142.148.218.80	1.23.185.14	153.86.167.103
0.19.16.113	237.182.36.37	158.219.181.65	60.22.103.162
87.185.239.98	156.152.2.117	46.243.89.152	192.161.166.134