106.52.12.21 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sep 27 02:13:02 hidden sshd[21341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 Sep 27 02:13:04 hidden sshd[21341]: Failed password for invalid user upgrade from 106.52.12.21 port 33434 ssh2 Sep 27 02:18:14 hidden sshd[22474]: Invalid user student5 from 106.52.12.21 port 59164	2020-09-28 07:50:05
attackbotsspam	Sep 27 12:17:53 server sshd[5811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 Sep 27 12:17:54 server sshd[5811]: Failed password for invalid user shubham from 106.52.12.21 port 49694 ssh2 Sep 27 12:28:24 server sshd[6253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 Sep 27 12:28:26 server sshd[6253]: Failed password for invalid user wordpress from 106.52.12.21 port 41400 ssh2	2020-09-28 00:24:12
attackspam	3x Failed Password	2020-09-27 16:25:01
attackspam	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-25 04:45:45
attackspambots	Sep 21 16:14:33 ovpn sshd\[21360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 user=root Sep 21 16:14:35 ovpn sshd\[21360\]: Failed password for root from 106.52.12.21 port 47440 ssh2 Sep 21 16:22:54 ovpn sshd\[14488\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 user=root Sep 21 16:22:55 ovpn sshd\[14488\]: Failed password for root from 106.52.12.21 port 38568 ssh2 Sep 21 16:25:14 ovpn sshd\[16084\]: Invalid user steam from 106.52.12.21 Sep 21 16:25:14 ovpn sshd\[16084\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21	2020-09-22 01:47:42
attackspam	2020-09-20T22:06:32.240014abusebot-4.cloudsearch.cf sshd[24488]: Invalid user proxyuser from 106.52.12.21 port 41216 2020-09-20T22:06:32.247044abusebot-4.cloudsearch.cf sshd[24488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 2020-09-20T22:06:32.240014abusebot-4.cloudsearch.cf sshd[24488]: Invalid user proxyuser from 106.52.12.21 port 41216 2020-09-20T22:06:34.080386abusebot-4.cloudsearch.cf sshd[24488]: Failed password for invalid user proxyuser from 106.52.12.21 port 41216 ssh2 2020-09-20T22:12:22.335684abusebot-4.cloudsearch.cf sshd[24598]: Invalid user guest3 from 106.52.12.21 port 46580 2020-09-20T22:12:22.343479abusebot-4.cloudsearch.cf sshd[24598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 2020-09-20T22:12:22.335684abusebot-4.cloudsearch.cf sshd[24598]: Invalid user guest3 from 106.52.12.21 port 46580 2020-09-20T22:12:23.895390abusebot-4.cloudsearch.cf sshd[24598]: ...	2020-09-21 17:31:25
attackspam	SSH Brute Force	2020-09-12 21:24:56
attackbotsspam	SSH brute force	2020-09-12 13:26:51
attackspam	Sep 11 18:50:31 sshgateway sshd\[26820\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 user=root Sep 11 18:50:33 sshgateway sshd\[26820\]: Failed password for root from 106.52.12.21 port 39682 ssh2 Sep 11 18:57:51 sshgateway sshd\[27879\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 user=root	2020-09-12 05:15:16
attackbots	2020-08-20T07:25:25.015944lavrinenko.info sshd[22372]: Invalid user zhangxd from 106.52.12.21 port 35692 2020-08-20T07:25:25.023413lavrinenko.info sshd[22372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 2020-08-20T07:25:25.015944lavrinenko.info sshd[22372]: Invalid user zhangxd from 106.52.12.21 port 35692 2020-08-20T07:25:27.152195lavrinenko.info sshd[22372]: Failed password for invalid user zhangxd from 106.52.12.21 port 35692 ssh2 2020-08-20T07:27:29.184867lavrinenko.info sshd[22520]: Invalid user joana from 106.52.12.21 port 57232 ...	2020-08-20 12:38:09
attack	Aug 10 04:52:12 mout sshd[5143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 user=root Aug 10 04:52:14 mout sshd[5143]: Failed password for root from 106.52.12.21 port 52518 ssh2	2020-08-10 12:31:39
attack	[ssh] SSH attack	2020-07-28 03:51:19
attackbotsspam	Jul 22 18:04:23 abendstille sshd\[28046\]: Invalid user lyt from 106.52.12.21 Jul 22 18:04:23 abendstille sshd\[28046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 Jul 22 18:04:26 abendstille sshd\[28046\]: Failed password for invalid user lyt from 106.52.12.21 port 48954 ssh2 Jul 22 18:09:12 abendstille sshd\[300\]: Invalid user saitoh from 106.52.12.21 Jul 22 18:09:12 abendstille sshd\[300\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.12.21 ...	2020-07-23 00:20:39
attack	Jul 9 01:58:23 firewall sshd[24787]: Invalid user rpc from 106.52.12.21 Jul 9 01:58:25 firewall sshd[24787]: Failed password for invalid user rpc from 106.52.12.21 port 39360 ssh2 Jul 9 02:02:40 firewall sshd[24893]: Invalid user regina from 106.52.12.21 ...	2020-07-09 15:34:02

相同子网IP讨论:

IP	类型	评论内容	时间
106.52.121.226	attackbots	$f2bV_matches	2020-08-26 03:50:47
106.52.121.148	attackspambots	Jul 12 09:22:45 DAAP sshd[4531]: Invalid user anda from 106.52.121.148 port 38736 Jul 12 09:22:45 DAAP sshd[4531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.121.148 Jul 12 09:22:45 DAAP sshd[4531]: Invalid user anda from 106.52.121.148 port 38736 Jul 12 09:22:47 DAAP sshd[4531]: Failed password for invalid user anda from 106.52.121.148 port 38736 ssh2 Jul 12 09:26:18 DAAP sshd[4548]: Invalid user trash from 106.52.121.148 port 46096 ...	2020-07-12 17:40:01
106.52.121.148	attack	Jul 10 00:50:26 firewall sshd[10475]: Invalid user clark from 106.52.121.148 Jul 10 00:50:28 firewall sshd[10475]: Failed password for invalid user clark from 106.52.121.148 port 42526 ssh2 Jul 10 00:53:18 firewall sshd[10540]: Invalid user ashley from 106.52.121.148 ...	2020-07-10 15:45:50
106.52.121.148	attackspam	Jul 1 05:39:04 ift sshd\[38271\]: Invalid user line from 106.52.121.148Jul 1 05:39:05 ift sshd\[38271\]: Failed password for invalid user line from 106.52.121.148 port 51902 ssh2Jul 1 05:42:13 ift sshd\[38680\]: Failed password for root from 106.52.121.148 port 39608 ssh2Jul 1 05:45:19 ift sshd\[39071\]: Failed password for root from 106.52.121.148 port 55546 ssh2Jul 1 05:48:21 ift sshd\[39355\]: Invalid user ftpuser from 106.52.121.148 ...	2020-07-02 08:19:57
106.52.121.148	attackspambots	$f2bV_matches	2020-07-01 04:34:45
106.52.128.111	attackbots	CN CN/China/- Hits: 11	2020-06-21 17:05:29
106.52.121.64	attack	Jan 13 23:32:53 woltan sshd[2554]: Failed password for root from 106.52.121.64 port 49912 ssh2	2020-03-19 05:20:12
106.52.121.64	attackbots	Mar 13 08:36:30 server sshd\[20114\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.121.64 user=root Mar 13 08:36:33 server sshd\[20114\]: Failed password for root from 106.52.121.64 port 36346 ssh2 Mar 13 08:52:33 server sshd\[24026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.121.64 user=root Mar 13 08:52:35 server sshd\[24026\]: Failed password for root from 106.52.121.64 port 48380 ssh2 Mar 13 08:54:36 server sshd\[24284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.121.64 user=root ...	2020-03-13 14:02:00
106.52.121.64	attack	Feb 21 18:45:25 hosting sshd[7661]: Invalid user jira1 from 106.52.121.64 port 55064 ...	2020-02-22 00:57:55
106.52.121.64	attack	Jan 21 00:21:55 amit sshd\[14297\]: Invalid user felix from 106.52.121.64 Jan 21 00:21:55 amit sshd\[14297\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.121.64 Jan 21 00:21:57 amit sshd\[14297\]: Failed password for invalid user felix from 106.52.121.64 port 36208 ssh2 ...	2020-01-21 07:39:05
106.52.121.64	attack	Jan 11 22:32:36 meumeu sshd[20789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.121.64 Jan 11 22:32:38 meumeu sshd[20789]: Failed password for invalid user symantec from 106.52.121.64 port 42400 ssh2 Jan 11 22:33:58 meumeu sshd[21035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.121.64 ...	2020-01-12 05:44:37
106.52.127.215	attackspambots	Unauthorized connection attempt detected from IP address 106.52.127.215 to port 80	2020-01-04 08:09:17
106.52.121.64	attackspam	Jan 3 03:04:14 web9 sshd\[19939\]: Invalid user loveture from 106.52.121.64 Jan 3 03:04:14 web9 sshd\[19939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.121.64 Jan 3 03:04:16 web9 sshd\[19939\]: Failed password for invalid user loveture from 106.52.121.64 port 53642 ssh2 Jan 3 03:05:24 web9 sshd\[20141\]: Invalid user wildfly from 106.52.121.64 Jan 3 03:05:24 web9 sshd\[20141\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.121.64	2020-01-03 23:29:42
106.52.121.64	attackbotsspam	Jan 1 09:00:12 dedicated sshd[31459]: Invalid user weinz from 106.52.121.64 port 60340	2020-01-01 17:13:31
106.52.121.64	attackspam	$f2bV_matches	2019-12-18 14:51:08

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.12.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.52.12.21.			IN	A

;; AUTHORITY SECTION:
.			514	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070900 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 09 15:33:56 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 21.12.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.12.52.106.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
88.213.3.230	attackspam	Invalid user qwerty from 88.213.3.230 port 53270	2019-07-28 04:43:07
91.123.188.35	attack	Invalid user test from 91.123.188.35 port 64470	2019-07-28 04:20:30
117.203.243.226	attackbotsspam	Invalid user ubnt from 117.203.243.226 port 10729	2019-07-28 04:15:41
73.229.232.218	attackbotsspam	Invalid user vika from 73.229.232.218 port 53548	2019-07-28 04:45:33
188.166.115.226	attack	Invalid user jeffrey from 188.166.115.226 port 60294	2019-07-28 04:29:17
82.149.162.78	attackspambots	Invalid user farah from 82.149.162.78 port 56128	2019-07-28 04:21:48
157.7.197.105	attackbotsspam	Jul 27 20:22:37 *** sshd[10807]: Failed password for invalid user test from 157.7.197.105 port 49778 ssh2	2019-07-28 04:11:06
139.59.92.10	attack	Invalid user qhsupport from 139.59.92.10 port 57030	2019-07-28 04:12:35
134.209.106.165	attackbots	Invalid user test2 from 134.209.106.165 port 44514	2019-07-28 04:36:41
80.191.234.73	attackspambots	:	2019-07-28 04:22:13
132.232.108.198	attackbots	Invalid user matt from 132.232.108.198 port 42129	2019-07-28 04:37:32
210.120.63.89	attackspambots	Invalid user ik from 210.120.63.89 port 33434	2019-07-28 04:27:30
121.126.161.117	attack	Invalid user atlbitbucket from 121.126.161.117 port 37780	2019-07-28 04:38:54
200.199.69.75	attackspambots	Invalid user solms from 200.199.69.75 port 61224	2019-07-28 04:28:34
162.247.74.7	attackspam	Invalid user 888888 from 162.247.74.7 port 59842	2019-07-28 04:10:08

最近上报的IP列表

125.26.112.46	185.127.126.233	1.0.145.1	217.182.194.103
14.189.138.121	20.190.47.216	113.254.173.14	211.222.104.99
40.89.188.156	14.186.217.26	115.79.220.42	191.240.39.89
116.107.28.174	180.126.50.150	210.1.105.43	39.170.228.223
103.17.100.84	52.112.237.27	112.120.164.102	102.51.169.126