城市(city): Guangzhou
省份(region): Guangdong
国家(country): China
运营商(isp): unknown
主机名(hostname): unknown
机构(organization): unknown
使用类型(Usage Type): unknown
| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 106.52.181.236 | attackspam | Invalid user installer from 106.52.181.236 port 31735 |
2020-09-29 04:15:49 |
| 106.52.181.236 | attackspambots | Tried sshing with brute force. |
2020-09-28 20:29:47 |
| 106.52.181.236 | attackspambots | Tried sshing with brute force. |
2020-09-28 12:36:02 |
| 106.52.181.236 | attack | $f2bV_matches |
2020-09-14 16:39:35 |
| 106.52.188.43 | attackspambots | Aug 26 01:17:29 pkdns2 sshd\[46720\]: Failed password for root from 106.52.188.43 port 38510 ssh2Aug 26 01:19:09 pkdns2 sshd\[46799\]: Invalid user xg from 106.52.188.43Aug 26 01:19:11 pkdns2 sshd\[46799\]: Failed password for invalid user xg from 106.52.188.43 port 57814 ssh2Aug 26 01:21:01 pkdns2 sshd\[46888\]: Invalid user kakuta from 106.52.188.43Aug 26 01:21:04 pkdns2 sshd\[46888\]: Failed password for invalid user kakuta from 106.52.188.43 port 48886 ssh2Aug 26 01:22:44 pkdns2 sshd\[46980\]: Invalid user frp from 106.52.188.43 ... |
2020-08-26 06:29:17 |
| 106.52.181.236 | attackbotsspam | Aug 23 11:36:38 ns382633 sshd\[5038\]: Invalid user web from 106.52.181.236 port 50806 Aug 23 11:36:38 ns382633 sshd\[5038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.181.236 Aug 23 11:36:40 ns382633 sshd\[5038\]: Failed password for invalid user web from 106.52.181.236 port 50806 ssh2 Aug 23 11:42:08 ns382633 sshd\[6045\]: Invalid user tutor from 106.52.181.236 port 45131 Aug 23 11:42:08 ns382633 sshd\[6045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.181.236 |
2020-08-23 18:32:31 |
| 106.52.188.43 | attackspambots | 2020-08-20T14:06:53+0200 Failed SSH Authentication/Brute Force Attack.(Server 2) |
2020-08-20 21:48:26 |
| 106.52.181.236 | attackbotsspam | Invalid user toor from 106.52.181.236 port 53174 |
2020-08-17 02:48:49 |
| 106.52.188.43 | attackbotsspam | Aug 13 11:21:26 webhost01 sshd[31428]: Failed password for root from 106.52.188.43 port 54144 ssh2 ... |
2020-08-13 19:19:18 |
| 106.52.188.43 | attackspam | Jul 30 14:58:52 mout sshd[8078]: Invalid user daniel from 106.52.188.43 port 40828 |
2020-07-31 00:50:36 |
| 106.52.187.48 | attackspambots | Jul 22 18:55:34 lanister sshd[19884]: Invalid user cssserver from 106.52.187.48 Jul 22 18:55:34 lanister sshd[19884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.187.48 Jul 22 18:55:34 lanister sshd[19884]: Invalid user cssserver from 106.52.187.48 Jul 22 18:55:36 lanister sshd[19884]: Failed password for invalid user cssserver from 106.52.187.48 port 35012 ssh2 |
2020-07-23 07:00:53 |
| 106.52.188.43 | attackbots | SSH Brute-Forcing (server2) |
2020-07-23 03:59:52 |
| 106.52.181.236 | attackbotsspam | Invalid user elasticsearch from 106.52.181.236 port 28725 |
2020-07-21 05:58:55 |
| 106.52.188.43 | attack | Jul 13 01:02:47 gw1 sshd[7144]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.188.43 Jul 13 01:02:49 gw1 sshd[7144]: Failed password for invalid user postgres from 106.52.188.43 port 59964 ssh2 ... |
2020-07-13 04:41:44 |
| 106.52.187.48 | attackspambots | Jul 9 16:22:08 web1 sshd[1541]: Invalid user fhc from 106.52.187.48 port 56620 Jul 9 16:22:08 web1 sshd[1541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.187.48 Jul 9 16:22:08 web1 sshd[1541]: Invalid user fhc from 106.52.187.48 port 56620 Jul 9 16:22:10 web1 sshd[1541]: Failed password for invalid user fhc from 106.52.187.48 port 56620 ssh2 Jul 9 16:28:35 web1 sshd[3125]: Invalid user weblogic from 106.52.187.48 port 53602 Jul 9 16:28:35 web1 sshd[3125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.187.48 Jul 9 16:28:35 web1 sshd[3125]: Invalid user weblogic from 106.52.187.48 port 53602 Jul 9 16:28:37 web1 sshd[3125]: Failed password for invalid user weblogic from 106.52.187.48 port 53602 ssh2 Jul 9 16:30:18 web1 sshd[3627]: Invalid user tanem from 106.52.187.48 port 40882 ... |
2020-07-09 15:16:26 |
% [whois.apnic.net]
% Whois data copyright terms http://www.apnic.net/db/dbcopyright.html
% Information related to '106.52.0.0 - 106.54.255.255'
% Abuse contact for '106.52.0.0 - 106.54.255.255' is 'abuse@tencent.com'
inetnum: 106.52.0.0 - 106.54.255.255
netname: TencentCloud
descr: Tencent cloud computing (Beijing) Co., Ltd.
descr: Floor 6, Yinke Building,38 Haidian St,
descr: Haidian District Beijing
country: CN
admin-c: JT1125-AP
tech-c: JX1747-AP
abuse-c: AC1601-AP
status: ALLOCATED PORTABLE
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-TencentCloud-CN
last-modified: 2022-01-17T08:58:21Z
source: APNIC
irt: IRT-TencentCloud-CN
address: 9F, FIYTA Building, Gaoxinnanyi Road, Southern
address: District of Hi-tech Park, Shenzhen
e-mail: tencent_noc@tencent.com
admin-c: JT1125-AP
tech-c: JX1747-AP
abuse-mailbox: abuse@tencent.com
remarks: abuse@tencent.com was validated on 2025-10-29
remarks: tencent_noc@tencent.com was validated on 2025-10-29
auth: # Filtered
mnt-by: MAINT-CNNIC-AP
last-modified: 2025-11-18T00:34:40Z
source: APNIC
role: ABUSE CNNICCN
country: ZZ
address: Beijing, China
phone: +000000000
e-mail: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
nic-hdl: AC1601-AP
remarks: Generated from irt object IRT-CNNIC-CN
remarks: ipas@cnnic.cn is invalid
abuse-mailbox: ipas@cnnic.cn
mnt-by: APNIC-ABUSE
last-modified: 2025-09-19T17:20:32Z
source: APNIC
person: James Tian
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-84952
e-mail: johnsonqu@tencent.com
nic-hdl: JT1125-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2024-03-19T08:21:31Z
source: APNIC
person: Jimmy Xiao
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-80224
e-mail: klayliang@tencent.com
nic-hdl: JX1747-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2021-09-17T00:38:09Z
source: APNIC
% Information related to '106.52.0.0/14AS45090'
route: 106.52.0.0/14
descr: Shenzhen Tencent Computer Systems Company Limited
country: CN
origin: AS45090
notify: jimmyxiao@tencent.com
mnt-by: MAINT-CNNIC-AP
last-modified: 2019-04-18T03:50:02Z
source: APNIC
% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4); <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.18.60
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6135
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;106.52.18.60. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026021600 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 16 15:31:06 CST 2026
;; MSG SIZE rcvd: 105Host 60.18.52.106.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 60.18.52.106.in-addr.arpa: NXDOMAIN| IP | 类型 | 评论内容 | 时间 |
|---|---|---|---|
| 35.185.104.160 | attackbots | May 12 14:09:06 lock-38 sshd[2288617]: Failed password for invalid user conan from 35.185.104.160 port 44358 ssh2 May 12 14:09:06 lock-38 sshd[2288617]: Disconnected from invalid user conan 35.185.104.160 port 44358 [preauth] May 12 14:19:43 lock-38 sshd[2293661]: Invalid user sam from 35.185.104.160 port 53510 May 12 14:19:43 lock-38 sshd[2293661]: Invalid user sam from 35.185.104.160 port 53510 May 12 14:19:43 lock-38 sshd[2293661]: Failed password for invalid user sam from 35.185.104.160 port 53510 ssh2 ... |
2020-05-12 21:20:51 |
| 118.193.34.233 | attackbots | May 12 02:04:07 web1 sshd\[26746\]: Invalid user prueba from 118.193.34.233 May 12 02:04:07 web1 sshd\[26746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.34.233 May 12 02:04:09 web1 sshd\[26746\]: Failed password for invalid user prueba from 118.193.34.233 port 49516 ssh2 May 12 02:10:37 web1 sshd\[27429\]: Invalid user ec2-user from 118.193.34.233 May 12 02:10:37 web1 sshd\[27429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.193.34.233 |
2020-05-12 20:45:14 |
| 103.220.205.198 | attack | $f2bV_matches |
2020-05-12 21:10:08 |
| 192.12.240.40 | attackbotsspam | firewall-block, port(s): 80/tcp |
2020-05-12 21:08:47 |
| 103.226.185.24 | attackspam | $f2bV_matches |
2020-05-12 20:46:11 |
| 162.158.187.154 | attack | $f2bV_matches |
2020-05-12 21:22:36 |
| 144.217.34.148 | attackbots | Metasploit VxWorks WDB Agent Scanner Detection |
2020-05-12 21:17:55 |
| 162.158.187.152 | attack | $f2bV_matches |
2020-05-12 21:24:46 |
| 159.203.112.185 | attackspam | May 12 05:10:04 pixelmemory sshd[403192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.112.185 May 12 05:10:04 pixelmemory sshd[403192]: Invalid user ubuntu from 159.203.112.185 port 47946 May 12 05:10:06 pixelmemory sshd[403192]: Failed password for invalid user ubuntu from 159.203.112.185 port 47946 ssh2 May 12 05:13:19 pixelmemory sshd[403810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.112.185 user=root May 12 05:13:22 pixelmemory sshd[403810]: Failed password for root from 159.203.112.185 port 55736 ssh2 ... |
2020-05-12 21:12:33 |
| 128.201.198.26 | attackbotsspam | firewall-block, port(s): 445/tcp |
2020-05-12 21:19:55 |
| 103.224.251.102 | attackspam | $f2bV_matches |
2020-05-12 20:56:38 |
| 103.219.205.149 | attackbots | $f2bV_matches |
2020-05-12 21:15:11 |
| 181.213.45.17 | attack | DATE:2020-05-12 14:10:24, IP:181.213.45.17, PORT:ssh SSH brute force auth (docker-dc) |
2020-05-12 21:19:36 |
| 103.219.112.63 | attackbots | $f2bV_matches |
2020-05-12 21:17:40 |
| 220.133.219.145 | attack | Honeypot attack, port: 81, PTR: 220-133-219-145.HINET-IP.hinet.net. |
2020-05-12 21:10:47 |