106.52.146.234

Basic Info

City: Guangzhou

Region: Guangdong

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.52.146.124	attack	SSH bruteforce	2020-06-06 20:06:48
106.52.146.124	attackspam	Jun 2 06:21:40 tuxlinux sshd[24461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.146.124 user=root Jun 2 06:21:42 tuxlinux sshd[24461]: Failed password for root from 106.52.146.124 port 45362 ssh2 Jun 2 06:21:40 tuxlinux sshd[24461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.146.124 user=root Jun 2 06:21:42 tuxlinux sshd[24461]: Failed password for root from 106.52.146.124 port 45362 ssh2 Jun 2 06:37:51 tuxlinux sshd[27827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.146.124 user=root ...	2020-06-02 14:48:34

Type

Details

Datetime

106.52.146.124

attack

SSH bruteforce

2020-06-06 20:06:48

106.52.146.124

attackspam

Jun  2 06:21:40 tuxlinux sshd[24461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.146.124  user=root
Jun  2 06:21:42 tuxlinux sshd[24461]: Failed password for root from 106.52.146.124 port 45362 ssh2
Jun  2 06:21:40 tuxlinux sshd[24461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.146.124  user=root
Jun  2 06:21:42 tuxlinux sshd[24461]: Failed password for root from 106.52.146.124 port 45362 ssh2
Jun  2 06:37:51 tuxlinux sshd[27827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.146.124  user=root
...

2020-06-02 14:48:34

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '106.52.0.0 - 106.54.255.255'

% Abuse contact for '106.52.0.0 - 106.54.255.255' is 'tencent_noc@tencent.com'

inetnum:        106.52.0.0 - 106.54.255.255
netname:        TencentCloud
descr:          Tencent cloud computing (Beijing) Co., Ltd.
descr:          Floor 6, Yinke Building,38 Haidian St,
descr:          Haidian District Beijing
country:        CN
admin-c:        JT1125-AP
tech-c:         JX1747-AP
abuse-c:        AC1601-AP
status:         ALLOCATED PORTABLE
mnt-by:         MAINT-CNNIC-AP
mnt-lower:      MAINT-CNNIC-AP
mnt-routes:     MAINT-CNNIC-AP
mnt-irt:        IRT-TencentCloud-CN
last-modified:  2022-01-17T08:58:21Z
source:         APNIC

irt:            IRT-TencentCloud-CN
address:        9F, FIYTA Building, Gaoxinnanyi Road, Southern
address:        District of Hi-tech Park, Shenzhen
e-mail:         tencent_noc@tencent.com
abuse-mailbox:  tencent_noc@tencent.com
admin-c:        JT1125-AP
tech-c:         JX1747-AP
auth:           # Filtered
remarks:        tencent_noc@tencent.com was validated on 2025-03-07
mnt-by:         MAINT-CNNIC-AP
last-modified:  2025-03-07T07:43:08Z
source:         APNIC

role:           ABUSE CNNICCN
country:        ZZ
address:        Beijing, China
phone:          +000000000
e-mail:         ipas@cnnic.cn
admin-c:        IP50-AP
tech-c:         IP50-AP
nic-hdl:        AC1601-AP
remarks:        Generated from irt object IRT-CNNIC-CN
abuse-mailbox:  ipas@cnnic.cn
mnt-by:         APNIC-ABUSE
last-modified:  2024-07-30T11:55:46Z
source:         APNIC

person:         James Tian
address:        9F, FIYTA Building, Gaoxinnanyi Road,Southern
address:        District of Hi-tech Park, Shenzhen
country:        CN
phone:          +86-755-86013388-84952
e-mail:         johnsonqu@tencent.com
nic-hdl:        JT1125-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2024-03-19T08:21:31Z
source:         APNIC

person:         Jimmy Xiao
address:        9F, FIYTA Building, Gaoxinnanyi Road,Southern
address:        District of Hi-tech Park, Shenzhen
country:        CN
phone:          +86-755-86013388-80224
e-mail:         klayliang@tencent.com
nic-hdl:        JX1747-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2021-09-17T00:38:09Z
source:         APNIC

% Information related to '106.52.0.0/14AS45090'

route:          106.52.0.0/14
descr:          Shenzhen Tencent Computer Systems Company Limited
country:        CN
origin:         AS45090
notify:         jimmyxiao@tencent.com
mnt-by:         MAINT-CNNIC-AP
last-modified:  2019-04-18T03:50:02Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.146.234
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35642
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.52.146.234.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025082400 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 25 01:00:08 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 234.146.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 234.146.52.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
142.93.107.175	attackbotsspam	SSH Brute-Force attacks	2020-07-19 21:23:26
198.46.209.148	attackbotsspam	Jul 19 14:58:58 debian-2gb-nbg1-2 kernel: \[17422083.297054\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.46.209.148 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=42617 DPT=8088 WINDOW=65535 RES=0x00 SYN URGP=0	2020-07-19 21:28:16
182.16.110.190	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-19T10:33:17Z and 2020-07-19T10:43:26Z	2020-07-19 21:16:40
185.39.10.18	attackbotsspam	Fail2Ban Ban Triggered	2020-07-19 21:49:21
49.235.109.205	attack	(sshd) Failed SSH login from 49.235.109.205 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 19 13:47:35 s1 sshd[22466]: Invalid user gert from 49.235.109.205 port 35468 Jul 19 13:47:37 s1 sshd[22466]: Failed password for invalid user gert from 49.235.109.205 port 35468 ssh2 Jul 19 14:02:27 s1 sshd[22883]: Invalid user ia from 49.235.109.205 port 57686 Jul 19 14:02:29 s1 sshd[22883]: Failed password for invalid user ia from 49.235.109.205 port 57686 ssh2 Jul 19 14:07:20 s1 sshd[23013]: Invalid user oiu from 49.235.109.205 port 49002	2020-07-19 21:41:39
218.92.0.158	attackbots	[MK-VM2] SSH login failed	2020-07-19 21:27:47
123.206.255.17	attackbotsspam	Jul 19 10:58:22 ns381471 sshd[4190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.255.17 Jul 19 10:58:23 ns381471 sshd[4190]: Failed password for invalid user ftpuser from 123.206.255.17 port 59632 ssh2	2020-07-19 21:46:32
137.74.132.171	attackspam	(sshd) Failed SSH login from 137.74.132.171 (FR/France/ip171.ip-137-74-132.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 19 15:03:26 s1 sshd[25106]: Invalid user crew from 137.74.132.171 port 51452 Jul 19 15:03:28 s1 sshd[25106]: Failed password for invalid user crew from 137.74.132.171 port 51452 ssh2 Jul 19 15:10:39 s1 sshd[25853]: Invalid user postgres from 137.74.132.171 port 51530 Jul 19 15:10:41 s1 sshd[25853]: Failed password for invalid user postgres from 137.74.132.171 port 51530 ssh2 Jul 19 15:14:41 s1 sshd[25985]: Invalid user git from 137.74.132.171 port 37392	2020-07-19 21:18:29
14.29.64.91	attack	Jul 19 07:51:10 ip-172-31-62-245 sshd\[7326\]: Invalid user wajid from 14.29.64.91\ Jul 19 07:51:12 ip-172-31-62-245 sshd\[7326\]: Failed password for invalid user wajid from 14.29.64.91 port 58236 ssh2\ Jul 19 07:55:23 ip-172-31-62-245 sshd\[7374\]: Invalid user sean from 14.29.64.91\ Jul 19 07:55:25 ip-172-31-62-245 sshd\[7374\]: Failed password for invalid user sean from 14.29.64.91 port 42942 ssh2\ Jul 19 07:59:00 ip-172-31-62-245 sshd\[7418\]: Invalid user biology from 14.29.64.91\	2020-07-19 21:56:31
54.38.240.23	attack	Jul 19 12:41:03 vlre-nyc-1 sshd\[24064\]: Invalid user postgres from 54.38.240.23 Jul 19 12:41:03 vlre-nyc-1 sshd\[24064\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.240.23 Jul 19 12:41:05 vlre-nyc-1 sshd\[24064\]: Failed password for invalid user postgres from 54.38.240.23 port 58330 ssh2 Jul 19 12:45:40 vlre-nyc-1 sshd\[24234\]: Invalid user dhwani from 54.38.240.23 Jul 19 12:45:40 vlre-nyc-1 sshd\[24234\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.240.23 ...	2020-07-19 21:47:25
124.239.168.74	attackbotsspam	2020-07-19T03:29:01.874666devel sshd[23978]: Invalid user benny from 124.239.168.74 port 53842 2020-07-19T03:29:03.762015devel sshd[23978]: Failed password for invalid user benny from 124.239.168.74 port 53842 ssh2 2020-07-19T03:49:26.572855devel sshd[25322]: Invalid user pal from 124.239.168.74 port 57448	2020-07-19 21:29:17
193.228.91.11	attackbots	(sshd) Failed SSH login from 193.228.91.11 (GB/United Kingdom/-): 10 in the last 3600 secs	2020-07-19 21:30:25
77.95.103.42	attack	Unauthorized connection attempt detected from IP address 77.95.103.42 to port 3389 [T]	2020-07-19 21:37:49
129.211.36.4	attackbotsspam	Bruteforce detected by fail2ban	2020-07-19 21:17:03
106.54.236.220	attackspam	$f2bV_matches	2020-07-19 21:25:35

Recently Reported IPs

42.194.226.88	129.204.31.216	81.71.94.236	42.194.192.36
81.70.0.33	112.9.108.17	113.215.188.62	213.136.76.19
14.153.217.203	114.119.167.190	61.129.155.195	193.44.239.130
20.83.173.252	54.83.179.41	18.205.243.147	167.99.69.81
30.180.36.155	73.33.110.40	166.207.237.77	151.219.63.224