106.52.132.19 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Aug 20 15:40:05 hcbbdb sshd\[22093\]: Invalid user vds123 from 106.52.132.19 Aug 20 15:40:05 hcbbdb sshd\[22093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.19 Aug 20 15:40:07 hcbbdb sshd\[22093\]: Failed password for invalid user vds123 from 106.52.132.19 port 36020 ssh2 Aug 20 15:43:24 hcbbdb sshd\[22465\]: Invalid user 123 from 106.52.132.19 Aug 20 15:43:24 hcbbdb sshd\[22465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.19	2019-08-20 23:48:27

类型

评论内容

时间

attackbots

Aug 20 15:40:05 hcbbdb sshd\[22093\]: Invalid user vds123 from 106.52.132.19
Aug 20 15:40:05 hcbbdb sshd\[22093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.19
Aug 20 15:40:07 hcbbdb sshd\[22093\]: Failed password for invalid user vds123 from 106.52.132.19 port 36020 ssh2
Aug 20 15:43:24 hcbbdb sshd\[22465\]: Invalid user 123 from 106.52.132.19
Aug 20 15:43:24 hcbbdb sshd\[22465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.19

2019-08-20 23:48:27

相同子网IP讨论:

IP	类型	评论内容	时间
106.52.132.186	attackspambots	Aug 29 06:37:30 server sshd[24533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.186 Aug 29 06:37:32 server sshd[24533]: Failed password for invalid user testftp from 106.52.132.186 port 45372 ssh2 Aug 29 06:48:00 server sshd[25295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.186 Aug 29 06:48:02 server sshd[25295]: Failed password for invalid user admin from 106.52.132.186 port 53424 ssh2	2020-08-29 19:28:39
106.52.132.186	attackspam	$f2bV_matches	2020-08-04 12:28:45
106.52.132.186	attackbotsspam	fail2ban/Jun 28 12:02:30 h1962932 sshd[15986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.186 user=ftp Jun 28 12:02:32 h1962932 sshd[15986]: Failed password for ftp from 106.52.132.186 port 51066 ssh2 Jun 28 12:11:31 h1962932 sshd[5738]: Invalid user abs from 106.52.132.186 port 58016 Jun 28 12:11:31 h1962932 sshd[5738]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.186 Jun 28 12:11:31 h1962932 sshd[5738]: Invalid user abs from 106.52.132.186 port 58016 Jun 28 12:11:33 h1962932 sshd[5738]: Failed password for invalid user abs from 106.52.132.186 port 58016 ssh2	2020-06-28 19:54:49
106.52.132.186	attackspambots	SSH invalid-user multiple login attempts	2020-06-18 18:05:57
106.52.132.186	attack	web-1 [ssh] SSH Attack	2020-06-17 17:19:53
106.52.132.186	attack	Jun 12 15:18:54 PorscheCustomer sshd[17251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.186 Jun 12 15:18:56 PorscheCustomer sshd[17251]: Failed password for invalid user matilda from 106.52.132.186 port 47666 ssh2 Jun 12 15:19:53 PorscheCustomer sshd[17256]: Failed password for mail from 106.52.132.186 port 57006 ssh2 ...	2020-06-12 22:08:07
106.52.132.186	attackbotsspam	Jun 11 07:14:57 santamaria sshd\[28683\]: Invalid user hengrui from 106.52.132.186 Jun 11 07:14:57 santamaria sshd\[28683\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.186 Jun 11 07:14:59 santamaria sshd\[28683\]: Failed password for invalid user hengrui from 106.52.132.186 port 60170 ssh2 ...	2020-06-11 15:40:12
106.52.132.186	attackbots	2020-06-06T23:47:07.190829rocketchat.forhosting.nl sshd[30416]: Failed password for root from 106.52.132.186 port 43440 ssh2 2020-06-06T23:49:19.190590rocketchat.forhosting.nl sshd[30434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.186 user=root 2020-06-06T23:49:21.734740rocketchat.forhosting.nl sshd[30434]: Failed password for root from 106.52.132.186 port 40196 ssh2 ...	2020-06-07 08:08:31
106.52.132.186	attackspambots	SSH Brute Force	2020-06-06 07:44:37
106.52.132.186	attackspam	(sshd) Failed SSH login from 106.52.132.186 (CN/China/-): 5 in the last 3600 secs	2020-05-29 02:12:46
106.52.132.186	attack	May 12 05:44:52 ws24vmsma01 sshd[76414]: Failed password for root from 106.52.132.186 port 49000 ssh2 ...	2020-05-12 17:14:51
106.52.132.186	attackspambots	2020-04-26T11:11:26.021428vps751288.ovh.net sshd\[29924\]: Invalid user yoko from 106.52.132.186 port 55190 2020-04-26T11:11:26.030466vps751288.ovh.net sshd\[29924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.186 2020-04-26T11:11:28.101098vps751288.ovh.net sshd\[29924\]: Failed password for invalid user yoko from 106.52.132.186 port 55190 ssh2 2020-04-26T11:16:51.737768vps751288.ovh.net sshd\[29964\]: Invalid user admin from 106.52.132.186 port 50154 2020-04-26T11:16:51.747568vps751288.ovh.net sshd\[29964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.132.186	2020-04-26 18:34:16
106.52.132.44	attack	firewall-block_invalid_GET_Request	2019-09-28 09:09:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.132.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60058
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.52.132.19.			IN	A

;; AUTHORITY SECTION:
.			1759	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082000 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 20 23:48:11 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 19.132.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 19.132.52.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
188.166.172.189	attack	Fail2Ban	2020-06-11 19:02:28
49.233.90.8	attack	Jun 11 12:04:27 nas sshd[18581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.90.8 Jun 11 12:04:29 nas sshd[18581]: Failed password for invalid user teamspeak from 49.233.90.8 port 40174 ssh2 Jun 11 12:05:47 nas sshd[18607]: Failed password for root from 49.233.90.8 port 51196 ssh2 ...	2020-06-11 19:13:26
113.21.115.221	attackspam	(imapd) Failed IMAP login from 113.21.115.221 (NC/New Caledonia/host-113-21-115-221.canl.nc): 1 in the last 3600 secs	2020-06-11 19:16:17
167.172.163.162	attack	$f2bV_matches	2020-06-11 19:26:13
104.248.209.204	attack	$f2bV_matches	2020-06-11 19:16:38
58.87.90.156	attack	Jun 10 23:47:05 ny01 sshd[6728]: Failed password for root from 58.87.90.156 port 47258 ssh2 Jun 10 23:49:38 ny01 sshd[7032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.90.156 Jun 10 23:49:40 ny01 sshd[7032]: Failed password for invalid user ubnt from 58.87.90.156 port 48756 ssh2	2020-06-11 19:00:26
159.203.168.167	attackbots	2020-06-11T10:56:54.320211abusebot-3.cloudsearch.cf sshd[8840]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.168.167 user=root 2020-06-11T10:56:56.349319abusebot-3.cloudsearch.cf sshd[8840]: Failed password for root from 159.203.168.167 port 48620 ssh2 2020-06-11T11:01:31.789422abusebot-3.cloudsearch.cf sshd[9133]: Invalid user admin from 159.203.168.167 port 49850 2020-06-11T11:01:31.796377abusebot-3.cloudsearch.cf sshd[9133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.168.167 2020-06-11T11:01:31.789422abusebot-3.cloudsearch.cf sshd[9133]: Invalid user admin from 159.203.168.167 port 49850 2020-06-11T11:01:34.518005abusebot-3.cloudsearch.cf sshd[9133]: Failed password for invalid user admin from 159.203.168.167 port 49850 ssh2 2020-06-11T11:05:49.219157abusebot-3.cloudsearch.cf sshd[9442]: Invalid user ts3user from 159.203.168.167 port 51090 ...	2020-06-11 19:08:26
41.63.0.133	attackspam	Jun 11 11:13:36 buvik sshd[14719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.63.0.133 Jun 11 11:13:38 buvik sshd[14719]: Failed password for invalid user jinyu from 41.63.0.133 port 58312 ssh2 Jun 11 11:18:09 buvik sshd[15338]: Invalid user documentes from 41.63.0.133 ...	2020-06-11 18:47:10
122.51.130.21	attack	web-1 [ssh_2] SSH Attack	2020-06-11 19:23:22
177.74.238.218	attackbots	2020-06-11T12:25:06.094576amanda2.illicoweb.com sshd\[44571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.74.238.218 user=root 2020-06-11T12:25:07.852965amanda2.illicoweb.com sshd\[44571\]: Failed password for root from 177.74.238.218 port 58367 ssh2 2020-06-11T12:32:08.342594amanda2.illicoweb.com sshd\[45106\]: Invalid user stairs from 177.74.238.218 port 43093 2020-06-11T12:32:08.344932amanda2.illicoweb.com sshd\[45106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.74.238.218 2020-06-11T12:32:09.701976amanda2.illicoweb.com sshd\[45106\]: Failed password for invalid user stairs from 177.74.238.218 port 43093 ssh2 ...	2020-06-11 19:18:49
72.11.157.71	attack	0,65-02/29 [bc01/m28] PostRequest-Spammer scoring: Durban01	2020-06-11 18:56:28
193.228.108.122	attackspambots	Jun 11 09:14:52 haigwepa sshd[14543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.228.108.122 Jun 11 09:14:54 haigwepa sshd[14543]: Failed password for invalid user junyu from 193.228.108.122 port 56050 ssh2 ...	2020-06-11 18:56:09
118.25.159.166	attackspam	Jun 11 14:21:27 dhoomketu sshd[653584]: Failed password for root from 118.25.159.166 port 38332 ssh2 Jun 11 14:23:57 dhoomketu sshd[653624]: Invalid user bagman from 118.25.159.166 port 38946 Jun 11 14:23:57 dhoomketu sshd[653624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.159.166 Jun 11 14:23:57 dhoomketu sshd[653624]: Invalid user bagman from 118.25.159.166 port 38946 Jun 11 14:23:59 dhoomketu sshd[653624]: Failed password for invalid user bagman from 118.25.159.166 port 38946 ssh2 ...	2020-06-11 19:23:34
110.49.71.241	attack	Jun 11 11:23:41 vpn01 sshd[6124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.241 Jun 11 11:23:43 vpn01 sshd[6124]: Failed password for invalid user admin from 110.49.71.241 port 47424 ssh2 ...	2020-06-11 18:48:36
89.248.168.2	attackspam	Jun 11 12:49:49 ns3042688 courier-pop3d: LOGIN FAILED, user=biuro@tienda-dewalt.eu, ip=\[::ffff:89.248.168.2\] ...	2020-06-11 18:58:48

最近上报的IP列表

63.117.134.107	126.192.168.70	104.148.70.38	89.246.206.88
167.252.22.177	51.189.68.226	66.101.231.60	31.39.35.200
202.87.144.236	136.60.247.175	183.145.202.160	124.158.76.148
69.94.137.89	13.17.159.209	59.27.218.168	177.17.61.80
170.22.33.203	178.2.122.52	194.3.238.152	32.145.54.16