106.52.93.52 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2020-03-27T09:03:58.821378shield sshd\[5530\]: Invalid user ohb from 106.52.93.52 port 34134 2020-03-27T09:03:58.831572shield sshd\[5530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.52 2020-03-27T09:04:01.279517shield sshd\[5530\]: Failed password for invalid user ohb from 106.52.93.52 port 34134 ssh2 2020-03-27T09:05:48.202511shield sshd\[5840\]: Invalid user suse from 106.52.93.52 port 55212 2020-03-27T09:05:48.212170shield sshd\[5840\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.52	2020-03-27 19:19:04

类型

评论内容

时间

attack

2020-03-27T09:03:58.821378shield sshd\[5530\]: Invalid user ohb from 106.52.93.52 port 34134
2020-03-27T09:03:58.831572shield sshd\[5530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.52
2020-03-27T09:04:01.279517shield sshd\[5530\]: Failed password for invalid user ohb from 106.52.93.52 port 34134 ssh2
2020-03-27T09:05:48.202511shield sshd\[5840\]: Invalid user suse from 106.52.93.52 port 55212
2020-03-27T09:05:48.212170shield sshd\[5840\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.52

2020-03-27 19:19:04

相同子网IP讨论:

IP	类型	评论内容	时间
106.52.93.202	attackspam	Aug 13 10:17:11 dev0-dcde-rnet sshd[27845]: Failed password for root from 106.52.93.202 port 57546 ssh2 Aug 13 10:23:05 dev0-dcde-rnet sshd[27861]: Failed password for root from 106.52.93.202 port 36306 ssh2	2020-08-13 18:20:21
106.52.93.202	attackspambots	Aug 10 14:06:05 host sshd[8439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.202 user=r.r Aug 10 14:06:08 host sshd[8439]: Failed password for r.r from 106.52.93.202 port 42958 ssh2 Aug 10 14:06:08 host sshd[8439]: Received disconnect from 106.52.93.202: 11: Bye Bye [preauth] Aug 10 14:23:49 host sshd[997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.202 user=r.r Aug 10 14:23:51 host sshd[997]: Failed password for r.r from 106.52.93.202 port 46568 ssh2 Aug 10 14:23:51 host sshd[997]: Received disconnect from 106.52.93.202: 11: Bye Bye [preauth] Aug 10 14:27:02 host sshd[10310]: Connection closed by 106.52.93.202 [preauth] Aug 10 14:30:02 host sshd[20199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.202 user=r.r Aug 10 14:30:04 host sshd[20199]: Failed password for r.r from 106.52.93.202 port 48242 ssh2 Aug 1........ -------------------------------	2020-08-12 00:27:50
106.52.93.202	attackspam	Jul 30 15:23:25 root sshd[29471]: Invalid user zf from 106.52.93.202 ...	2020-07-30 20:44:46
106.52.93.202	attackbotsspam	SSH bruteforce	2020-07-20 17:36:01
106.52.93.51	attack	Jun 27 05:46:28 h2779839 sshd[14575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 user=root Jun 27 05:46:30 h2779839 sshd[14575]: Failed password for root from 106.52.93.51 port 60654 ssh2 Jun 27 05:49:37 h2779839 sshd[20549]: Invalid user wsp from 106.52.93.51 port 38492 Jun 27 05:49:37 h2779839 sshd[20549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 Jun 27 05:49:37 h2779839 sshd[20549]: Invalid user wsp from 106.52.93.51 port 38492 Jun 27 05:49:38 h2779839 sshd[20549]: Failed password for invalid user wsp from 106.52.93.51 port 38492 ssh2 Jun 27 05:52:33 h2779839 sshd[22270]: Invalid user mwang from 106.52.93.51 port 44566 Jun 27 05:52:33 h2779839 sshd[22270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 Jun 27 05:52:33 h2779839 sshd[22270]: Invalid user mwang from 106.52.93.51 port 44566 Jun 27 05:52:36 h2779839 s ...	2020-06-27 16:17:30
106.52.93.51	attackspambots	$f2bV_matches	2020-06-16 04:11:26
106.52.93.51	attack	$f2bV_matches	2020-06-13 15:03:25
106.52.93.51	attackspam	5x Failed Password	2020-05-20 18:11:03
106.52.93.51	attack	Ssh brute force	2020-05-13 08:06:03
106.52.93.51	attack	Apr 22 13:54:56 rotator sshd\[8255\]: Failed password for root from 106.52.93.51 port 54008 ssh2Apr 22 13:57:55 rotator sshd\[9041\]: Invalid user teste from 106.52.93.51Apr 22 13:57:57 rotator sshd\[9041\]: Failed password for invalid user teste from 106.52.93.51 port 59840 ssh2Apr 22 14:01:04 rotator sshd\[9867\]: Invalid user ml from 106.52.93.51Apr 22 14:01:06 rotator sshd\[9867\]: Failed password for invalid user ml from 106.52.93.51 port 37438 ssh2Apr 22 14:04:18 rotator sshd\[9919\]: Failed password for root from 106.52.93.51 port 43282 ssh2 ...	2020-04-22 21:07:05
106.52.93.51	attack	Apr 11 05:52:55 host5 sshd[14156]: Invalid user avanthi from 106.52.93.51 port 36974 ...	2020-04-11 15:05:36
106.52.93.51	attackbots	Mar 27 08:33:53 serwer sshd\[20807\]: Invalid user pvg from 106.52.93.51 port 56888 Mar 27 08:33:53 serwer sshd\[20807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 Mar 27 08:33:55 serwer sshd\[20807\]: Failed password for invalid user pvg from 106.52.93.51 port 56888 ssh2 ...	2020-03-27 16:52:37
106.52.93.51	attackbots	Brute-force attempt banned	2020-03-21 09:56:38
106.52.93.51	attack	2020-03-18T04:53:27.123359v22018076590370373 sshd[31785]: Invalid user vmail from 106.52.93.51 port 43226 2020-03-18T04:53:27.129093v22018076590370373 sshd[31785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 2020-03-18T04:53:27.123359v22018076590370373 sshd[31785]: Invalid user vmail from 106.52.93.51 port 43226 2020-03-18T04:53:28.927962v22018076590370373 sshd[31785]: Failed password for invalid user vmail from 106.52.93.51 port 43226 ssh2 2020-03-18T04:55:30.299309v22018076590370373 sshd[11488]: Invalid user a1 from 106.52.93.51 port 38274 ...	2020-03-18 12:02:06
106.52.93.51	attackspam	Mar 10 10:22:08 sd-53420 sshd\[19539\]: Invalid user tomcat from 106.52.93.51 Mar 10 10:22:08 sd-53420 sshd\[19539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 Mar 10 10:22:10 sd-53420 sshd\[19539\]: Failed password for invalid user tomcat from 106.52.93.51 port 39166 ssh2 Mar 10 10:27:38 sd-53420 sshd\[20079\]: Invalid user sonarUser from 106.52.93.51 Mar 10 10:27:38 sd-53420 sshd\[20079\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 ...	2020-03-10 18:27:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.93.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25925
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.52.93.52.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032700 1800 900 604800 86400

;; Query time: 49 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 27 19:19:00 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 52.93.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.93.52.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
139.59.56.121	attackbotsspam	Jan 16 08:16:14 meumeu sshd[20022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.56.121 Jan 16 08:16:17 meumeu sshd[20022]: Failed password for invalid user webmaster from 139.59.56.121 port 47418 ssh2 Jan 16 08:21:50 meumeu sshd[20951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.56.121 ...	2020-01-16 15:31:48
106.12.58.4	attack	Jan 16 00:13:27 ny01 sshd[8715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.58.4 Jan 16 00:13:29 ny01 sshd[8715]: Failed password for invalid user fabrizio from 106.12.58.4 port 59144 ssh2 Jan 16 00:14:26 ny01 sshd[8803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.58.4	2020-01-16 15:23:17
112.196.169.16	attack	20/1/15@23:51:04: FAIL: Alarm-Network address from=112.196.169.16 ...	2020-01-16 15:48:34
114.225.78.89	attack	Port scan on 1 port(s): 21	2020-01-16 15:08:44
222.72.137.110	attack	Unauthorized connection attempt detected from IP address 222.72.137.110 to port 2220 [J]	2020-01-16 15:18:09
104.148.3.3	attackbotsspam	01/15/2020-23:51:19.016127 104.148.3.3 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-01-16 15:41:53
173.249.9.59	attackbotsspam	Jan 16 07:52:08 MK-Soft-Root2 sshd[23808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.249.9.59 Jan 16 07:52:09 MK-Soft-Root2 sshd[23808]: Failed password for invalid user pul from 173.249.9.59 port 45190 ssh2 ...	2020-01-16 15:22:41
196.47.67.180	attackbots	Unauthorized connection attempt detected from IP address 196.47.67.180 to port 2220 [J]	2020-01-16 15:46:59
176.59.96.254	attackspambots	eva.alena@gmail.com Возьмите Ваш презент 49152 р - http://zavatybemo.tk/649152_F6XJiyT pyat	2020-01-16 15:08:17
222.186.175.151	attackbots	Jan 16 08:33:31 srv206 sshd[10394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.151 user=root Jan 16 08:33:33 srv206 sshd[10394]: Failed password for root from 222.186.175.151 port 43622 ssh2 ...	2020-01-16 15:34:19
79.137.73.253	attack	Unauthorized connection attempt detected from IP address 79.137.73.253 to port 2220 [J]	2020-01-16 15:43:25
218.92.0.208	attack	Jan 16 05:45:37 Ubuntu-1404-trusty-64-minimal sshd\[2630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.208 user=root Jan 16 05:45:39 Ubuntu-1404-trusty-64-minimal sshd\[2630\]: Failed password for root from 218.92.0.208 port 56262 ssh2 Jan 16 05:45:44 Ubuntu-1404-trusty-64-minimal sshd\[2630\]: Failed password for root from 218.92.0.208 port 56262 ssh2 Jan 16 05:51:37 Ubuntu-1404-trusty-64-minimal sshd\[5518\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.208 user=root Jan 16 05:51:39 Ubuntu-1404-trusty-64-minimal sshd\[5518\]: Failed password for root from 218.92.0.208 port 11162 ssh2	2020-01-16 15:30:24
220.135.192.123	attackspambots	Automatic report - XMLRPC Attack	2020-01-16 15:49:40
36.37.220.129	attackspam	Brute force attempt	2020-01-16 15:35:58
87.248.0.82	attack	Unauthorized connection attempt detected from IP address 87.248.0.82 to port 22 [J]	2020-01-16 15:33:08

最近上报的IP列表

95.46.67.197	83.97.20.76	114.119.166.181	112.17.173.49
58.187.9.166	188.212.173.2	185.171.88.47	58.48.227.63
118.131.184.243	123.21.134.202	45.95.168.205	103.86.158.46
62.169.208.100	25.11.230.159	41.234.102.141	202.51.74.23
178.128.172.165	51.15.129.164	35.154.45.251	49.66.199.253