116.52.1.214 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.52.175.150	attackbots	port scan and connect, tcp 1433 (ms-sql-s)	2020-10-05 03:18:26
116.52.175.150	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2020-10-04 19:04:20
116.52.1.211	attack	SSH Invalid Login	2020-09-29 06:11:32
116.52.1.211	attackspambots	(sshd) Failed SSH login from 116.52.1.211 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 28 13:58:12 server2 sshd[13054]: Invalid user ca from 116.52.1.211 port 6680 Sep 28 13:58:14 server2 sshd[13054]: Failed password for invalid user ca from 116.52.1.211 port 6680 ssh2 Sep 28 14:08:42 server2 sshd[14880]: Invalid user test1 from 116.52.1.211 port 5410 Sep 28 14:08:44 server2 sshd[14880]: Failed password for invalid user test1 from 116.52.1.211 port 5410 ssh2 Sep 28 14:14:03 server2 sshd[15959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.1.211 user=root	2020-09-28 22:36:34
116.52.1.211	attack	$f2bV_matches	2020-09-22 19:40:15
116.52.164.10	attackspambots	$f2bV_matches	2020-08-04 23:06:13
116.52.164.10	attack	Aug 4 03:47:32 vlre-nyc-1 sshd\[11373\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 user=root Aug 4 03:47:34 vlre-nyc-1 sshd\[11373\]: Failed password for root from 116.52.164.10 port 45945 ssh2 Aug 4 03:51:45 vlre-nyc-1 sshd\[11431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 user=root Aug 4 03:51:47 vlre-nyc-1 sshd\[11431\]: Failed password for root from 116.52.164.10 port 20583 ssh2 Aug 4 03:55:53 vlre-nyc-1 sshd\[11501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 user=root ...	2020-08-04 14:28:43
116.52.164.10	attackspambots	Jul 7 17:28:58 dhoomketu sshd[1349756]: Failed password for invalid user bernd from 116.52.164.10 port 18056 ssh2 Jul 7 17:30:50 dhoomketu sshd[1349812]: Invalid user test from 116.52.164.10 port 30564 Jul 7 17:30:50 dhoomketu sshd[1349812]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 Jul 7 17:30:50 dhoomketu sshd[1349812]: Invalid user test from 116.52.164.10 port 30564 Jul 7 17:30:51 dhoomketu sshd[1349812]: Failed password for invalid user test from 116.52.164.10 port 30564 ssh2 ...	2020-07-07 22:56:06
116.52.138.125	attackspambots	DATE:2020-07-07 14:03:08, IP:116.52.138.125, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-07-07 20:10:12
116.52.164.10	attack	Jun 30 12:14:22 vlre-nyc-1 sshd\[18449\]: Invalid user cmy from 116.52.164.10 Jun 30 12:14:22 vlre-nyc-1 sshd\[18449\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 Jun 30 12:14:24 vlre-nyc-1 sshd\[18449\]: Failed password for invalid user cmy from 116.52.164.10 port 54845 ssh2 Jun 30 12:17:53 vlre-nyc-1 sshd\[18545\]: Invalid user asteriskpbx from 116.52.164.10 Jun 30 12:17:53 vlre-nyc-1 sshd\[18545\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 ...	2020-07-01 04:05:49
116.52.164.10	attackbotsspam	Jun 22 21:02:14 server sshd[24182]: Failed password for root from 116.52.164.10 port 25228 ssh2 Jun 22 21:02:43 server sshd[24746]: Failed password for invalid user zgh from 116.52.164.10 port 28567 ssh2 Jun 22 21:03:13 server sshd[25220]: Failed password for root from 116.52.164.10 port 31908 ssh2	2020-06-23 03:59:51
116.52.164.10	attack	Jun 21 15:48:22 [host] sshd[30125]: Invalid user a Jun 21 15:48:22 [host] sshd[30125]: pam_unix(sshd: Jun 21 15:48:25 [host] sshd[30125]: Failed passwor	2020-06-21 21:51:57
116.52.115.227	attackbotsspam	06/18/2020-01:00:18.743929 116.52.115.227 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-06-18 17:18:07
116.52.164.10	attackbots	2020-06-07T06:23:59.854137galaxy.wi.uni-potsdam.de sshd[31161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 user=root 2020-06-07T06:24:01.580956galaxy.wi.uni-potsdam.de sshd[31161]: Failed password for root from 116.52.164.10 port 34783 ssh2 2020-06-07T06:24:49.720801galaxy.wi.uni-potsdam.de sshd[31278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 user=root 2020-06-07T06:24:51.649397galaxy.wi.uni-potsdam.de sshd[31278]: Failed password for root from 116.52.164.10 port 39530 ssh2 2020-06-07T06:25:38.412783galaxy.wi.uni-potsdam.de sshd[31369]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.52.164.10 user=root 2020-06-07T06:25:40.065781galaxy.wi.uni-potsdam.de sshd[31369]: Failed password for root from 116.52.164.10 port 44271 ssh2 2020-06-07T06:26:29.393098galaxy.wi.uni-potsdam.de sshd[31447]: pam_unix(sshd:auth): authenticati ...	2020-06-07 15:00:03
116.52.164.10	attack	Invalid user ts3 from 116.52.164.10 port 27672	2020-05-30 13:47:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.52.1.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37004
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.52.1.214.			IN	A

;; AUTHORITY SECTION:
.			177	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 11:12:00 CST 2022
;; MSG SIZE  rcvd: 105

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 116.52.1.214.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.59.18.205	attackbots	Sep 11 17:52:01 lcdev sshd\[23685\]: Invalid user minecraft from 139.59.18.205 Sep 11 17:52:01 lcdev sshd\[23685\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.18.205 Sep 11 17:52:03 lcdev sshd\[23685\]: Failed password for invalid user minecraft from 139.59.18.205 port 60990 ssh2 Sep 11 17:59:02 lcdev sshd\[24294\]: Invalid user testuser from 139.59.18.205 Sep 11 17:59:02 lcdev sshd\[24294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.18.205	2019-09-12 12:02:56
49.88.112.115	attack	Sep 11 17:53:43 web1 sshd\[26342\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Sep 11 17:53:45 web1 sshd\[26342\]: Failed password for root from 49.88.112.115 port 62105 ssh2 Sep 11 17:57:27 web1 sshd\[26686\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root Sep 11 17:57:30 web1 sshd\[26686\]: Failed password for root from 49.88.112.115 port 64673 ssh2 Sep 11 17:59:03 web1 sshd\[26814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115 user=root	2019-09-12 12:01:26
14.177.236.59	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-11 17:00:54,620 INFO [amun_request_handler] PortScan Detected on Port: 445 (14.177.236.59)	2019-09-12 11:38:11
150.249.192.154	attackspambots	Repeated brute force against a port	2019-09-12 12:05:35
123.7.178.136	attackbots	Sep 12 04:00:43 MK-Soft-VM7 sshd\[1906\]: Invalid user mysql from 123.7.178.136 port 33409 Sep 12 04:00:43 MK-Soft-VM7 sshd\[1906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.7.178.136 Sep 12 04:00:45 MK-Soft-VM7 sshd\[1906\]: Failed password for invalid user mysql from 123.7.178.136 port 33409 ssh2 ...	2019-09-12 12:02:37
106.12.56.218	attack	Sep 11 22:58:56 TORMINT sshd\[20978\]: Invalid user 111 from 106.12.56.218 Sep 11 22:58:56 TORMINT sshd\[20978\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.218 Sep 11 22:58:58 TORMINT sshd\[20978\]: Failed password for invalid user 111 from 106.12.56.218 port 41160 ssh2 ...	2019-09-12 11:58:34
77.247.108.204	attackspam	09/12/2019-00:03:00.940730 77.247.108.204 Protocol: 17 ET SCAN Sipvicious User-Agent Detected (friendly-scanner)	2019-09-12 12:05:10
202.120.38.28	attackbots	Sep 11 17:51:36 php1 sshd\[21779\]: Invalid user qwe123 from 202.120.38.28 Sep 11 17:51:36 php1 sshd\[21779\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.120.38.28 Sep 11 17:51:38 php1 sshd\[21779\]: Failed password for invalid user qwe123 from 202.120.38.28 port 25378 ssh2 Sep 11 17:59:07 php1 sshd\[22629\]: Invalid user 1 from 202.120.38.28 Sep 11 17:59:07 php1 sshd\[22629\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.120.38.28	2019-09-12 11:59:52
103.245.181.2	attackbots	Sep 12 05:59:45 vps01 sshd[20041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.245.181.2 Sep 12 05:59:47 vps01 sshd[20041]: Failed password for invalid user uftp from 103.245.181.2 port 50184 ssh2	2019-09-12 12:17:23
213.32.16.127	attackbots	Sep 11 23:45:00 eventyay sshd[13964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.16.127 Sep 11 23:45:02 eventyay sshd[13964]: Failed password for invalid user ubuntu from 213.32.16.127 port 37526 ssh2 Sep 11 23:51:46 eventyay sshd[14175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.16.127 ...	2019-09-12 11:46:25
58.82.189.25	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-11 17:01:28,412 INFO [amun_request_handler] PortScan Detected on Port: 445 (58.82.189.25)	2019-09-12 11:30:53
14.140.207.62	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-11 18:26:32,489 INFO [shellcode_manager] (14.140.207.62) no match, writing hexdump (074b55d68eb58cf4c5c02f4504ef4935 :1851518) - SMB (Unknown)	2019-09-12 11:31:51
108.235.160.215	attack	Sep 12 03:17:43 game-panel sshd[10314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.235.160.215 Sep 12 03:17:46 game-panel sshd[10314]: Failed password for invalid user 1234 from 108.235.160.215 port 50668 ssh2 Sep 12 03:23:15 game-panel sshd[10496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.235.160.215	2019-09-12 11:46:55
178.62.252.89	attack	Sep 12 05:52:55 eventyay sshd[24990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.252.89 Sep 12 05:52:57 eventyay sshd[24990]: Failed password for invalid user dts from 178.62.252.89 port 41662 ssh2 Sep 12 05:58:42 eventyay sshd[25170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.252.89 ...	2019-09-12 12:00:22
91.106.97.88	attackbotsspam	Sep 11 16:54:49 ny01 sshd[18482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.97.88 Sep 11 16:54:51 ny01 sshd[18482]: Failed password for invalid user kafka from 91.106.97.88 port 49704 ssh2 Sep 11 17:01:59 ny01 sshd[20238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.106.97.88	2019-09-12 11:55:59

Recently Reported IPs

164.163.2.9	103.93.176.99	113.134.221.50	200.52.149.120
95.71.78.112	59.17.184.226	111.18.61.23	123.154.198.84
101.108.158.82	187.167.178.179	49.86.137.244	77.222.99.16
60.11.120.137	45.10.165.141	167.172.226.163	120.89.74.233
181.49.85.10	45.83.67.39	200.77.198.64	191.240.115.30