114.38.52.90 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Republic of China (ROC)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
114.38.52.152	attackspam	[portscan] tcp/23 [TELNET] *(RWIN=34840)(06210921)	2020-06-21 17:48:39
114.38.52.71	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:24:59,292 INFO [amun_request_handler] PortScan Detected on Port: 445 (114.38.52.71)	2019-08-07 23:37:27

类型

评论内容

时间

114.38.52.152

attackspam

[portscan] tcp/23 [TELNET]
*(RWIN=34840)(06210921)

2020-06-21 17:48:39

114.38.52.71

attackbots

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-07 05:24:59,292 INFO [amun_request_handler] PortScan Detected on Port: 445 (114.38.52.71)

2019-08-07 23:37:27

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 114.38.52.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59458
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;114.38.52.90.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 06:26:32 CST 2022
;; MSG SIZE  rcvd: 105

HOST信息:

90.52.38.114.in-addr.arpa domain name pointer 114-38-52-90.dynamic-ip.hinet.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
90.52.38.114.in-addr.arpa	name = 114-38-52-90.dynamic-ip.hinet.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
198.108.67.56	attack	Dec 19 07:29:52 debian-2gb-nbg1-2 kernel: \[389761.350225\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.108.67.56 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=37 ID=10714 PROTO=TCP SPT=40370 DPT=8822 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-19 14:53:16
163.172.204.185	attackbotsspam	Dec 18 20:51:42 tdfoods sshd\[13324\]: Invalid user test from 163.172.204.185 Dec 18 20:51:42 tdfoods sshd\[13324\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.204.185 Dec 18 20:51:44 tdfoods sshd\[13324\]: Failed password for invalid user test from 163.172.204.185 port 60186 ssh2 Dec 18 20:59:00 tdfoods sshd\[14177\]: Invalid user jacky from 163.172.204.185 Dec 18 20:59:00 tdfoods sshd\[14177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.204.185	2019-12-19 15:00:20
185.156.73.66	attackbots	Port-scan: detected 321 distinct ports within a 24-hour window.	2019-12-19 14:13:58
77.247.28.151	attackspambots	"SERVER-WEBAPP Shenzhen TVT Digital Technology API OS command injection attempt"	2019-12-19 14:46:42
117.103.84.102	attackspambots	[munged]::443 117.103.84.102 - - [19/Dec/2019:07:29:47 +0100] "POST /[munged]: HTTP/1.1" 200 6810 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.103.84.102 - - [19/Dec/2019:07:29:47 +0100] "POST /[munged]: HTTP/1.1" 200 6794 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.103.84.102 - - [19/Dec/2019:07:29:49 +0100] "POST /[munged]: HTTP/1.1" 200 6794 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.103.84.102 - - [19/Dec/2019:07:29:50 +0100] "POST /[munged]: HTTP/1.1" 200 6810 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.103.84.102 - - [19/Dec/2019:07:29:51 +0100] "POST /[munged]: HTTP/1.1" 200 6810 "http://[munged]:/[munged]:" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" [munged]::443 117.103.84.102 - - [19/Dec/2019:07:	2019-12-19 14:51:45
201.16.197.149	attack	Dec 19 01:22:32 linuxvps sshd\[14216\]: Invalid user 1qaz@wsx from 201.16.197.149 Dec 19 01:22:32 linuxvps sshd\[14216\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.197.149 Dec 19 01:22:34 linuxvps sshd\[14216\]: Failed password for invalid user 1qaz@wsx from 201.16.197.149 port 37520 ssh2 Dec 19 01:29:56 linuxvps sshd\[19191\]: Invalid user h4x0r1ng from 201.16.197.149 Dec 19 01:29:56 linuxvps sshd\[19191\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.197.149	2019-12-19 14:50:24
50.239.143.100	attack	2019-12-19T05:47:30.056803 sshd[28376]: Invalid user kulik from 50.239.143.100 port 50806 2019-12-19T05:47:30.071006 sshd[28376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100 2019-12-19T05:47:30.056803 sshd[28376]: Invalid user kulik from 50.239.143.100 port 50806 2019-12-19T05:47:32.043933 sshd[28376]: Failed password for invalid user kulik from 50.239.143.100 port 50806 ssh2 2019-12-19T05:54:37.409108 sshd[28510]: Invalid user nc from 50.239.143.100 port 55762 ...	2019-12-19 14:28:50
111.231.89.162	attack	Invalid user sittampal from 111.231.89.162 port 50314	2019-12-19 14:17:44
178.88.115.126	attackbots	Invalid user aa from 178.88.115.126 port 39176	2019-12-19 14:24:17
106.13.112.117	attackbotsspam	Dec 19 06:23:10 localhost sshd\[19626\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.112.117 user=mysql Dec 19 06:23:12 localhost sshd\[19626\]: Failed password for mysql from 106.13.112.117 port 35446 ssh2 Dec 19 06:29:51 localhost sshd\[19864\]: Invalid user shown from 106.13.112.117 port 33424 Dec 19 06:29:51 localhost sshd\[19864\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.112.117 Dec 19 06:29:53 localhost sshd\[19864\]: Failed password for invalid user shown from 106.13.112.117 port 33424 ssh2 ...	2019-12-19 14:53:03
41.190.232.4	attackbotsspam	SpamReport	2019-12-19 14:44:34
27.78.14.83	attackspam	SSH Brute-Force reported by Fail2Ban	2019-12-19 15:00:39
115.159.147.239	attack	Dec 19 07:21:55 OPSO sshd\[10420\]: Invalid user heino from 115.159.147.239 port 52521 Dec 19 07:21:55 OPSO sshd\[10420\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.147.239 Dec 19 07:21:57 OPSO sshd\[10420\]: Failed password for invalid user heino from 115.159.147.239 port 52521 ssh2 Dec 19 07:29:47 OPSO sshd\[11560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.147.239 user=root Dec 19 07:29:49 OPSO sshd\[11560\]: Failed password for root from 115.159.147.239 port 42218 ssh2	2019-12-19 14:55:37
171.84.6.86	attackbots	Dec 19 07:16:44 vtv3 sshd[4705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.84.6.86 Dec 19 07:16:46 vtv3 sshd[4705]: Failed password for invalid user cups from 171.84.6.86 port 60074 ssh2 Dec 19 07:23:37 vtv3 sshd[7727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.84.6.86 Dec 19 07:35:32 vtv3 sshd[13895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.84.6.86 Dec 19 07:35:34 vtv3 sshd[13895]: Failed password for invalid user rpc from 171.84.6.86 port 48878 ssh2 Dec 19 07:41:36 vtv3 sshd[16593]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.84.6.86 Dec 19 07:53:44 vtv3 sshd[22062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.84.6.86 Dec 19 07:53:46 vtv3 sshd[22062]: Failed password for invalid user ment508 from 171.84.6.86 port 36076 ssh2 Dec 19 08:00:03 vtv3 sshd[24928]: F	2019-12-19 14:54:37
41.159.18.20	attack	2019-12-19T07:44:10.812064scmdmz1 sshd[17001]: Invalid user mjfreire from 41.159.18.20 port 53537 2019-12-19T07:44:10.814845scmdmz1 sshd[17001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.159.18.20 2019-12-19T07:44:10.812064scmdmz1 sshd[17001]: Invalid user mjfreire from 41.159.18.20 port 53537 2019-12-19T07:44:12.762018scmdmz1 sshd[17001]: Failed password for invalid user mjfreire from 41.159.18.20 port 53537 ssh2 2019-12-19T07:52:36.080743scmdmz1 sshd[17819]: Invalid user drissel from 41.159.18.20 port 60506 ...	2019-12-19 14:53:46

最近上报的IP列表

41.82.102.1	31.40.254.233	68.183.13.85	162.158.225.84
178.156.127.8	103.216.187.49	183.6.55.120	119.93.213.84
93.177.118.114	114.105.48.207	165.16.39.44	210.66.40.3
182.121.154.206	201.156.39.66	186.251.15.194	120.85.119.101
183.220.146.159	123.232.227.143	103.112.0.186	115.99.254.117