106.52.212.117

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Oct 2 16:37:34 ns3164893 sshd[4087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 Oct 2 16:37:36 ns3164893 sshd[4087]: Failed password for invalid user redis2 from 106.52.212.117 port 46720 ssh2 ...	2020-10-03 05:20:03
attackspam	Oct 2 16:37:34 ns3164893 sshd[4087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 Oct 2 16:37:36 ns3164893 sshd[4087]: Failed password for invalid user redis2 from 106.52.212.117 port 46720 ssh2 ...	2020-10-03 00:43:57
attackbots	2020-10-02T13:56:26.405240ns386461 sshd\[6375\]: Invalid user tester from 106.52.212.117 port 54480 2020-10-02T13:56:26.410403ns386461 sshd\[6375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 2020-10-02T13:56:28.462168ns386461 sshd\[6375\]: Failed password for invalid user tester from 106.52.212.117 port 54480 ssh2 2020-10-02T14:10:26.259773ns386461 sshd\[19064\]: Invalid user fernando from 106.52.212.117 port 42252 2020-10-02T14:10:26.264514ns386461 sshd\[19064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 ...	2020-10-02 21:13:32
attack	Oct 2 09:16:36 vps208890 sshd[148875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117	2020-10-02 17:46:10
attackbots	Oct 2 06:42:02 roki sshd[13528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 user=root Oct 2 06:42:04 roki sshd[13528]: Failed password for root from 106.52.212.117 port 38154 ssh2 Oct 2 06:46:08 roki sshd[13814]: Invalid user www from 106.52.212.117 Oct 2 06:46:08 roki sshd[13814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 Oct 2 06:46:10 roki sshd[13814]: Failed password for invalid user www from 106.52.212.117 port 47932 ssh2 ...	2020-10-02 14:12:33
attack	Aug 28 04:10:17 vlre-nyc-1 sshd\[15321\]: Invalid user temp from 106.52.212.117 Aug 28 04:10:17 vlre-nyc-1 sshd\[15321\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 Aug 28 04:10:19 vlre-nyc-1 sshd\[15321\]: Failed password for invalid user temp from 106.52.212.117 port 33592 ssh2 Aug 28 04:12:39 vlre-nyc-1 sshd\[15371\]: Invalid user xk from 106.52.212.117 Aug 28 04:12:39 vlre-nyc-1 sshd\[15371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 ...	2020-08-28 14:41:32
attack	Aug 21 23:14:54 PorscheCustomer sshd[16020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 Aug 21 23:14:56 PorscheCustomer sshd[16020]: Failed password for invalid user ccf from 106.52.212.117 port 45718 ssh2 Aug 21 23:16:50 PorscheCustomer sshd[16145]: Failed password for root from 106.52.212.117 port 38294 ssh2 ...	2020-08-22 05:32:51
attackspam	[ssh] SSH attack	2020-08-02 03:08:30
attackspam	Jul 26 17:17:21 ncomp sshd[29927]: Invalid user zsl from 106.52.212.117 Jul 26 17:17:21 ncomp sshd[29927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 Jul 26 17:17:21 ncomp sshd[29927]: Invalid user zsl from 106.52.212.117 Jul 26 17:17:23 ncomp sshd[29927]: Failed password for invalid user zsl from 106.52.212.117 port 57360 ssh2	2020-07-27 01:45:22
attackspam	Jul 19 11:01:31 [host] sshd[16439]: Invalid user d Jul 19 11:01:31 [host] sshd[16439]: pam_unix(sshd: Jul 19 11:01:33 [host] sshd[16439]: Failed passwor	2020-07-19 17:14:30
attack	Jul 19 06:13:38 abendstille sshd\[20262\]: Invalid user tang from 106.52.212.117 Jul 19 06:13:38 abendstille sshd\[20262\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 Jul 19 06:13:41 abendstille sshd\[20262\]: Failed password for invalid user tang from 106.52.212.117 port 37284 ssh2 Jul 19 06:17:49 abendstille sshd\[24535\]: Invalid user computer from 106.52.212.117 Jul 19 06:17:49 abendstille sshd\[24535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 ...	2020-07-19 12:20:16
attackspam	fail2ban	2020-06-30 20:05:43
attackspambots	2020-06-28T04:13:07.289359abusebot-7.cloudsearch.cf sshd[5418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 user=root 2020-06-28T04:13:09.031216abusebot-7.cloudsearch.cf sshd[5418]: Failed password for root from 106.52.212.117 port 36288 ssh2 2020-06-28T04:17:08.325580abusebot-7.cloudsearch.cf sshd[5496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 user=root 2020-06-28T04:17:10.152468abusebot-7.cloudsearch.cf sshd[5496]: Failed password for root from 106.52.212.117 port 49234 ssh2 2020-06-28T04:21:04.318776abusebot-7.cloudsearch.cf sshd[5633]: Invalid user botmaster from 106.52.212.117 port 33954 2020-06-28T04:21:04.323096abusebot-7.cloudsearch.cf sshd[5633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 2020-06-28T04:21:04.318776abusebot-7.cloudsearch.cf sshd[5633]: Invalid user botmaster from 106.52.212.117 po ...	2020-06-28 12:52:56
attackbots	Jun 1 21:45:33 pi sshd[15989]: Failed password for root from 106.52.212.117 port 55332 ssh2	2020-06-07 04:27:19
attackspam	Jun 3 06:08:12 server1 sshd\[10593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 user=root Jun 3 06:08:14 server1 sshd\[10593\]: Failed password for root from 106.52.212.117 port 38604 ssh2 Jun 3 06:11:38 server1 sshd\[11516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 user=root Jun 3 06:11:40 server1 sshd\[11516\]: Failed password for root from 106.52.212.117 port 49026 ssh2 Jun 3 06:15:10 server1 sshd\[12465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 user=root ...	2020-06-03 20:25:37
attackspambots	Jun 1 09:05:01 firewall sshd[31388]: Failed password for root from 106.52.212.117 port 48520 ssh2 Jun 1 09:09:48 firewall sshd[31567]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.117 user=root Jun 1 09:09:50 firewall sshd[31567]: Failed password for root from 106.52.212.117 port 43096 ssh2 ...	2020-06-01 20:30:55
attack	Tried sshing with brute force.	2020-05-28 02:31:54

相同子网IP讨论:

IP	类型	评论内容	时间
106.52.212.226	attackbotsspam	May 2 06:09:54 PorscheCustomer sshd[16931]: Failed password for root from 106.52.212.226 port 52238 ssh2 May 2 06:14:42 PorscheCustomer sshd[17038]: Failed password for root from 106.52.212.226 port 48436 ssh2 May 2 06:19:29 PorscheCustomer sshd[17132]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.226 ...	2020-05-02 12:31:25
106.52.212.212	attackbotsspam	2019-08-16T09:04:10.092179abusebot-6.cloudsearch.cf sshd\[4535\]: Invalid user mask from 106.52.212.212 port 33330	2019-08-16 17:29:27
106.52.212.212	attackspambots	Aug 8 10:46:04 www sshd\[20989\]: Invalid user amstest from 106.52.212.212Aug 8 10:46:06 www sshd\[20989\]: Failed password for invalid user amstest from 106.52.212.212 port 35194 ssh2Aug 8 10:51:32 www sshd\[21151\]: Invalid user ansible from 106.52.212.212 ...	2019-08-08 20:06:37
106.52.212.212	attackbots	Jul 29 02:30:32 nextcloud sshd\[16103\]: Invalid user f00bar from 106.52.212.212 Jul 29 02:30:32 nextcloud sshd\[16103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.212.212 Jul 29 02:30:34 nextcloud sshd\[16103\]: Failed password for invalid user f00bar from 106.52.212.212 port 54350 ssh2 ...	2019-07-29 10:23:02

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.212.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8762
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.52.212.117.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052701 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu May 28 02:31:51 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 117.212.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 117.212.52.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
218.88.235.36	attack	Jun 12 21:59:14 server1 sshd\[17210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.88.235.36 user=root Jun 12 21:59:15 server1 sshd\[17210\]: Failed password for root from 218.88.235.36 port 49133 ssh2 Jun 12 22:02:29 server1 sshd\[19464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.88.235.36 user=root Jun 12 22:02:31 server1 sshd\[19464\]: Failed password for root from 218.88.235.36 port 16694 ssh2 Jun 12 22:05:33 server1 sshd\[21628\]: Invalid user wen from 218.88.235.36 Jun 12 22:05:33 server1 sshd\[21628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.88.235.36 Jun 12 22:05:35 server1 sshd\[21628\]: Failed password for invalid user wen from 218.88.235.36 port 37443 ssh2 ...	2020-06-13 14:51:44
46.105.31.249	attackspam	Jun 12 18:31:12 auw2 sshd\[15683\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=249.ip-46-105-31.eu user=root Jun 12 18:31:15 auw2 sshd\[15683\]: Failed password for root from 46.105.31.249 port 49042 ssh2 Jun 12 18:32:52 auw2 sshd\[15782\]: Invalid user carine from 46.105.31.249 Jun 12 18:32:52 auw2 sshd\[15782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=249.ip-46-105-31.eu Jun 12 18:32:54 auw2 sshd\[15782\]: Failed password for invalid user carine from 46.105.31.249 port 34874 ssh2	2020-06-13 15:10:36
106.12.77.32	attackbots	Jun 13 07:19:12 prox sshd[28876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.77.32 Jun 13 07:19:15 prox sshd[28876]: Failed password for invalid user thomas from 106.12.77.32 port 60036 ssh2	2020-06-13 14:56:46
222.186.173.154	attack	Jun 13 02:18:35 NPSTNNYC01T sshd[11983]: Failed password for root from 222.186.173.154 port 29684 ssh2 Jun 13 02:18:49 NPSTNNYC01T sshd[11983]: error: maximum authentication attempts exceeded for root from 222.186.173.154 port 29684 ssh2 [preauth] Jun 13 02:18:56 NPSTNNYC01T sshd[12024]: Failed password for root from 222.186.173.154 port 38494 ssh2 ...	2020-06-13 14:38:44
120.196.120.110	attack	$f2bV_matches	2020-06-13 14:59:30
122.51.16.26	attackbots	2020-06-13T05:05:42.172397abusebot-2.cloudsearch.cf sshd[19837]: Invalid user jyc from 122.51.16.26 port 36176 2020-06-13T05:05:42.180037abusebot-2.cloudsearch.cf sshd[19837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.16.26 2020-06-13T05:05:42.172397abusebot-2.cloudsearch.cf sshd[19837]: Invalid user jyc from 122.51.16.26 port 36176 2020-06-13T05:05:43.819352abusebot-2.cloudsearch.cf sshd[19837]: Failed password for invalid user jyc from 122.51.16.26 port 36176 ssh2 2020-06-13T05:09:16.271493abusebot-2.cloudsearch.cf sshd[19935]: Invalid user ts3server from 122.51.16.26 port 44724 2020-06-13T05:09:16.278332abusebot-2.cloudsearch.cf sshd[19935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.16.26 2020-06-13T05:09:16.271493abusebot-2.cloudsearch.cf sshd[19935]: Invalid user ts3server from 122.51.16.26 port 44724 2020-06-13T05:09:17.962756abusebot-2.cloudsearch.cf sshd[19935]: Failed pass ...	2020-06-13 14:42:44
134.209.90.139	attackbots	Jun 13 08:09:01 tuxlinux sshd[56428]: Invalid user biman from 134.209.90.139 port 45736 Jun 13 08:09:01 tuxlinux sshd[56428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.90.139 Jun 13 08:09:01 tuxlinux sshd[56428]: Invalid user biman from 134.209.90.139 port 45736 Jun 13 08:09:01 tuxlinux sshd[56428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.90.139 Jun 13 08:09:01 tuxlinux sshd[56428]: Invalid user biman from 134.209.90.139 port 45736 Jun 13 08:09:01 tuxlinux sshd[56428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.90.139 Jun 13 08:09:03 tuxlinux sshd[56428]: Failed password for invalid user biman from 134.209.90.139 port 45736 ssh2 ...	2020-06-13 15:09:17
104.211.200.136	attackbots	Jun 13 07:55:13 piServer sshd[14586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.200.136 Jun 13 07:55:15 piServer sshd[14586]: Failed password for invalid user odroid from 104.211.200.136 port 44564 ssh2 Jun 13 07:59:18 piServer sshd[14888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.200.136 ...	2020-06-13 15:04:27
78.46.63.108	attack	20 attempts against mh-misbehave-ban on twig	2020-06-13 14:49:02
163.172.61.214	attack	Invalid user admin from 163.172.61.214 port 34605	2020-06-13 14:48:38
217.61.6.112	attack	Jun 13 03:18:46 vps46666688 sshd[28257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.6.112 Jun 13 03:18:47 vps46666688 sshd[28257]: Failed password for invalid user lg from 217.61.6.112 port 45034 ssh2 ...	2020-06-13 15:08:21
180.250.247.45	attack	Jun 13 06:37:42 django-0 sshd\[5158\]: Invalid user wade from 180.250.247.45Jun 13 06:37:43 django-0 sshd\[5158\]: Failed password for invalid user wade from 180.250.247.45 port 50614 ssh2Jun 13 06:42:02 django-0 sshd\[5265\]: Failed password for root from 180.250.247.45 port 50996 ssh2 ...	2020-06-13 14:52:26
59.10.55.247	attackspambots	Brute-force attempt banned	2020-06-13 15:00:39
61.160.96.90	attackbots	Jun 13 11:42:47 gw1 sshd[22430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.160.96.90 Jun 13 11:42:49 gw1 sshd[22430]: Failed password for invalid user bpo from 61.160.96.90 port 1475 ssh2 ...	2020-06-13 14:58:05
14.161.44.69	attackspam	1592021369 - 06/13/2020 06:09:29 Host: 14.161.44.69/14.161.44.69 Port: 445 TCP Blocked	2020-06-13 14:47:42

最近上报的IP列表

23.21.64.1	190.101.119.207	103.131.71.68	37.120.213.173
221.157.86.22	209.141.40.46	118.96.72.244	47.105.206.192
90.187.66.141	2.58.228.114	52.240.59.144	49.234.192.39
13.209.68.44	221.226.171.145	139.59.85.141	104.128.64.107
31.13.195.122	81.177.255.154	186.226.167.117	52.231.10.109