212.129.246.52

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Oct 12 21:28:26 hosting sshd[923]: Invalid user fedosei from 212.129.246.52 port 40628 ...	2020-10-13 03:14:49
attackspam	Oct 12 08:28:52 inter-technics sshd[29883]: Invalid user newaylife from 212.129.246.52 port 38288 Oct 12 08:28:52 inter-technics sshd[29883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.246.52 Oct 12 08:28:52 inter-technics sshd[29883]: Invalid user newaylife from 212.129.246.52 port 38288 Oct 12 08:28:54 inter-technics sshd[29883]: Failed password for invalid user newaylife from 212.129.246.52 port 38288 ssh2 Oct 12 08:32:47 inter-technics sshd[30151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.246.52 user=root Oct 12 08:32:49 inter-technics sshd[30151]: Failed password for root from 212.129.246.52 port 50412 ssh2 ...	2020-10-12 18:42:26
attack	ssh intrusion attempt	2020-09-21 22:50:38
attack	ssh intrusion attempt	2020-09-21 14:35:47
attack	(sshd) Failed SSH login from 212.129.246.52 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 20 12:46:13 server5 sshd[945]: Invalid user userftp from 212.129.246.52 Sep 20 12:46:13 server5 sshd[945]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.246.52 Sep 20 12:46:16 server5 sshd[945]: Failed password for invalid user userftp from 212.129.246.52 port 42770 ssh2 Sep 20 13:01:39 server5 sshd[7832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.246.52 user=root Sep 20 13:01:42 server5 sshd[7832]: Failed password for root from 212.129.246.52 port 43450 ssh2	2020-09-21 06:24:59
attack	2020-08-06T22:31:23.843264+02:00 sshd[22303]: Failed password for root from 212.129.246.52 port 53838 ssh2	2020-08-07 05:38:46
attackspam	Jul 18 15:21:13 mout sshd[23932]: Connection closed by 212.129.246.52 port 37286 [preauth]	2020-07-18 21:43:22
attack	Invalid user admin from 212.129.246.52 port 40232	2020-07-18 06:03:07
attackspam	Jul 8 07:57:12 ns382633 sshd\[27328\]: Invalid user kanmura from 212.129.246.52 port 57206 Jul 8 07:57:12 ns382633 sshd\[27328\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.246.52 Jul 8 07:57:14 ns382633 sshd\[27328\]: Failed password for invalid user kanmura from 212.129.246.52 port 57206 ssh2 Jul 8 08:14:38 ns382633 sshd\[30419\]: Invalid user test7 from 212.129.246.52 port 57724 Jul 8 08:14:38 ns382633 sshd\[30419\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.246.52	2020-07-08 16:11:24
attackspambots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-05T06:44:41Z and 2020-07-05T06:49:41Z	2020-07-05 20:14:48

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.129.246.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22293
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.129.246.52.			IN	A

;; AUTHORITY SECTION:
.			383	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070201 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jul 03 03:31:25 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 52.246.129.212.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 52.246.129.212.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.182.232.38	attackbotsspam	May 20 16:23:30 lukav-desktop sshd\[30098\]: Invalid user zxu from 61.182.232.38 May 20 16:23:30 lukav-desktop sshd\[30098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.182.232.38 May 20 16:23:32 lukav-desktop sshd\[30098\]: Failed password for invalid user zxu from 61.182.232.38 port 41590 ssh2 May 20 16:28:41 lukav-desktop sshd\[30164\]: Invalid user tow from 61.182.232.38 May 20 16:28:41 lukav-desktop sshd\[30164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.182.232.38	2020-05-20 22:51:46
50.100.113.207	attackspam	$f2bV_matches	2020-05-20 23:14:16
220.191.249.136	attack	386. On May 17 2020 experienced a Brute Force SSH login attempt -> 1263 unique times by 220.191.249.136.	2020-05-20 22:43:35
157.51.154.148	attackspambots	1589960726 - 05/20/2020 09:45:26 Host: 157.51.154.148/157.51.154.148 Port: 445 TCP Blocked	2020-05-20 23:06:22
14.166.144.94	attack	port scan and connect, tcp 22 (ssh)	2020-05-20 22:41:16
218.92.0.184	attack	May 20 14:20:01 localhost sshd[28625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.184 user=root May 20 14:20:02 localhost sshd[28625]: Failed password for root from 218.92.0.184 port 33974 ssh2 May 20 14:20:07 localhost sshd[28625]: Failed password for root from 218.92.0.184 port 33974 ssh2 May 20 14:20:01 localhost sshd[28625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.184 user=root May 20 14:20:02 localhost sshd[28625]: Failed password for root from 218.92.0.184 port 33974 ssh2 May 20 14:20:07 localhost sshd[28625]: Failed password for root from 218.92.0.184 port 33974 ssh2 May 20 14:20:01 localhost sshd[28625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.184 user=root May 20 14:20:02 localhost sshd[28625]: Failed password for root from 218.92.0.184 port 33974 ssh2 May 20 14:20:07 localhost sshd[28625]: Failed password fo ...	2020-05-20 22:29:33
218.92.0.173	attackspam	1589983563 - 05/20/2020 16:06:03 Host: 218.92.0.173/218.92.0.173 Port: 22 TCP Blocked	2020-05-20 22:49:03
218.92.0.168	attackspambots	May 20 16:42:41 abendstille sshd\[19014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root May 20 16:42:42 abendstille sshd\[19009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root May 20 16:42:43 abendstille sshd\[19014\]: Failed password for root from 218.92.0.168 port 32135 ssh2 May 20 16:42:44 abendstille sshd\[19009\]: Failed password for root from 218.92.0.168 port 52109 ssh2 May 20 16:42:47 abendstille sshd\[19009\]: Failed password for root from 218.92.0.168 port 52109 ssh2 May 20 16:42:47 abendstille sshd\[19014\]: Failed password for root from 218.92.0.168 port 32135 ssh2 ...	2020-05-20 22:53:09
92.47.155.195	attackbotsspam	Unauthorized connection attempt from IP address 92.47.155.195 on Port 445(SMB)	2020-05-20 23:13:47
221.195.189.144	attackspam	389. On May 17 2020 experienced a Brute Force SSH login attempt -> 2 unique times by 221.195.189.144.	2020-05-20 22:41:31
37.49.226.64	attackspam	SSHD unauthorised connection attempt (b)	2020-05-20 23:09:37
200.236.96.89	attackbots	Automatic report - Port Scan Attack	2020-05-20 22:58:02
118.68.202.61	attack	Unauthorized connection attempt from IP address 118.68.202.61 on Port 445(SMB)	2020-05-20 22:40:53
112.186.79.4	attackbots	$f2bV_matches	2020-05-20 22:31:19
185.220.100.251	attackspambots	Automatic report - SSH Brute-Force Attack	2020-05-20 22:54:02

Recently Reported IPs

176.9.54.176	201.219.10.210	45.148.121.78	35.212.237.188
47.92.109.48	37.107.204.148	124.123.170.38	255.30.88.9
184.109.241.7	43.251.65.240	94.21.178.36	99.187.159.244
131.30.171.31	23.85.92.92	130.176.221.113	177.124.15.216
111.67.193.51	124.60.51.38	179.168.38.52	183.89.8.122