106.52.179.242

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.52.179.227	attack	Invalid user gold from 106.52.179.227 port 47038	2020-10-10 02:36:41
106.52.179.227	attackspambots	106.52.179.227 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 9 05:49:39 server4 sshd[30043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.144.207 user=root Oct 9 05:48:18 server4 sshd[29020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.79.71.194 user=root Oct 9 05:48:20 server4 sshd[29020]: Failed password for root from 189.79.71.194 port 43721 ssh2 Oct 9 05:43:11 server4 sshd[26183]: Failed password for root from 65.191.76.227 port 43780 ssh2 Oct 9 05:44:58 server4 sshd[27151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.179.227 user=root Oct 9 05:44:59 server4 sshd[27151]: Failed password for root from 106.52.179.227 port 48082 ssh2 IP Addresses Blocked: 188.166.144.207 (GB/United Kingdom/-) 189.79.71.194 (BR/Brazil/-) 65.191.76.227 (US/United States/-)	2020-10-09 18:21:41
106.52.179.227	attack	web-1 [ssh_2] SSH Attack	2020-08-22 18:37:07
106.52.179.227	attackspam	Aug 17 14:02:47 mellenthin sshd[9415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.179.227 Aug 17 14:02:49 mellenthin sshd[9415]: Failed password for invalid user postgres from 106.52.179.227 port 59360 ssh2	2020-08-18 01:05:47
106.52.179.227	attackbotsspam	Fail2Ban	2020-08-16 06:38:43
106.52.179.227	attack	Aug 10 14:04:18 vm0 sshd[8938]: Failed password for root from 106.52.179.227 port 47156 ssh2 ...	2020-08-10 22:49:25
106.52.179.55	attackspambots	Jun 28 15:11:03 vps sshd[114715]: Failed password for invalid user eric from 106.52.179.55 port 39358 ssh2 Jun 28 15:15:05 vps sshd[135679]: Invalid user vmuser from 106.52.179.55 port 55356 Jun 28 15:15:05 vps sshd[135679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.179.55 Jun 28 15:15:07 vps sshd[135679]: Failed password for invalid user vmuser from 106.52.179.55 port 55356 ssh2 Jun 28 15:19:09 vps sshd[153452]: Invalid user sysbackup from 106.52.179.55 port 43122 ...	2020-06-28 21:32:00
106.52.179.55	attackbots	Jun 22 07:08:41 rocket sshd[24722]: Failed password for root from 106.52.179.55 port 37762 ssh2 Jun 22 07:11:38 rocket sshd[25155]: Failed password for root from 106.52.179.55 port 43310 ssh2 ...	2020-06-22 16:17:40
106.52.179.55	attackspam	no	2020-06-07 23:22:19
106.52.179.55	attackspambots	Invalid user hadas from 106.52.179.55 port 42754	2020-05-31 06:22:38
106.52.179.55	attackbots	May 29 14:12:21 h2779839 sshd[31486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.179.55 user=root May 29 14:12:23 h2779839 sshd[31486]: Failed password for root from 106.52.179.55 port 53678 ssh2 May 29 14:14:56 h2779839 sshd[31569]: Invalid user brummund from 106.52.179.55 port 54786 May 29 14:14:56 h2779839 sshd[31569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.179.55 May 29 14:14:56 h2779839 sshd[31569]: Invalid user brummund from 106.52.179.55 port 54786 May 29 14:14:58 h2779839 sshd[31569]: Failed password for invalid user brummund from 106.52.179.55 port 54786 ssh2 May 29 14:17:35 h2779839 sshd[31661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.179.55 user=root May 29 14:17:37 h2779839 sshd[31661]: Failed password for root from 106.52.179.55 port 56122 ssh2 May 29 14:20:15 h2779839 sshd[31765]: pam_unix(sshd:auth): authenti ...	2020-05-30 03:00:56
106.52.179.55	attackspambots	DATE:2020-05-27 01:41:38, IP:106.52.179.55, PORT:ssh SSH brute force auth (docker-dc)	2020-05-27 08:05:47
106.52.179.55	attack	2020-05-19T23:41:01.704315dmca.cloudsearch.cf sshd[29796]: Invalid user kvh from 106.52.179.55 port 55740 2020-05-19T23:41:01.709826dmca.cloudsearch.cf sshd[29796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.179.55 2020-05-19T23:41:01.704315dmca.cloudsearch.cf sshd[29796]: Invalid user kvh from 106.52.179.55 port 55740 2020-05-19T23:41:03.449935dmca.cloudsearch.cf sshd[29796]: Failed password for invalid user kvh from 106.52.179.55 port 55740 ssh2 2020-05-19T23:46:35.946117dmca.cloudsearch.cf sshd[30293]: Invalid user ixy from 106.52.179.55 port 59108 2020-05-19T23:46:35.952050dmca.cloudsearch.cf sshd[30293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.179.55 2020-05-19T23:46:35.946117dmca.cloudsearch.cf sshd[30293]: Invalid user ixy from 106.52.179.55 port 59108 2020-05-19T23:46:38.545147dmca.cloudsearch.cf sshd[30293]: Failed password for invalid user ixy from 106.52.179.55 port 591 ...	2020-05-20 15:26:56
106.52.179.55	attack	May 15 16:23:53 ArkNodeAT sshd\[1067\]: Invalid user nagios from 106.52.179.55 May 15 16:23:53 ArkNodeAT sshd\[1067\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.179.55 May 15 16:23:55 ArkNodeAT sshd\[1067\]: Failed password for invalid user nagios from 106.52.179.55 port 38800 ssh2	2020-05-16 02:50:54
106.52.179.47	attack	k+ssh-bruteforce	2020-05-10 22:15:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.179.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1963
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.52.179.242.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022800 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 16:27:56 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 242.179.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.179.52.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.191.119.176	attackspam	Aug 30 19:53:56 debian sshd\[14112\]: Invalid user max from 94.191.119.176 port 52409 Aug 30 19:53:56 debian sshd\[14112\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.119.176 ...	2019-08-31 03:01:29
189.207.246.57	attackbotsspam	Aug 30 06:22:39 auw2 sshd\[3981\]: Invalid user squirrelmail from 189.207.246.57 Aug 30 06:22:39 auw2 sshd\[3981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.207.246.57 Aug 30 06:22:40 auw2 sshd\[3981\]: Failed password for invalid user squirrelmail from 189.207.246.57 port 60863 ssh2 Aug 30 06:27:37 auw2 sshd\[5156\]: Invalid user sercon from 189.207.246.57 Aug 30 06:27:37 auw2 sshd\[5156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.207.246.57	2019-08-31 02:37:41
52.165.237.229	attack	Aug 30 16:52:31 www sshd[12352]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.165.237.229 user=r.r Aug 30 16:52:32 www sshd[12352]: Failed password for r.r from 52.165.237.229 port 51896 ssh2 Aug 30 16:52:32 www sshd[12352]: Received disconnect from 52.165.237.229: 11: Bye Bye [preauth] Aug 30 16:52:33 www sshd[12354]: Invalid user admin from 52.165.237.229 Aug 30 16:52:33 www sshd[12354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.165.237.229 Aug 30 16:52:36 www sshd[12354]: Failed password for invalid user admin from 52.165.237.229 port 54608 ssh2 Aug 30 16:52:36 www sshd[12354]: Received disconnect from 52.165.237.229: 11: Bye Bye [preauth] Aug 30 16:52:37 www sshd[12356]: Invalid user admin from 52.165.237.229 Aug 30 16:52:37 www sshd[12356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.165.237.229 Aug 30 16:52:39 www sshd[12........ -------------------------------	2019-08-31 02:53:39
175.140.138.193	attackbots	$f2bV_matches	2019-08-31 02:50:42
82.165.64.156	attackspambots	$f2bV_matches_ltvn	2019-08-31 03:06:44
103.81.251.167	attack	BURG,WP GET /wp-login.php	2019-08-31 03:10:06
121.27.204.195	attack	Unauthorised access (Aug 30) SRC=121.27.204.195 LEN=40 TTL=49 ID=36921 TCP DPT=8080 WINDOW=50070 SYN Unauthorised access (Aug 30) SRC=121.27.204.195 LEN=40 TTL=49 ID=52210 TCP DPT=8080 WINDOW=31794 SYN Unauthorised access (Aug 29) SRC=121.27.204.195 LEN=40 TTL=49 ID=16406 TCP DPT=8080 WINDOW=5324 SYN Unauthorised access (Aug 29) SRC=121.27.204.195 LEN=40 TTL=49 ID=40890 TCP DPT=8080 WINDOW=16965 SYN Unauthorised access (Aug 29) SRC=121.27.204.195 LEN=40 TTL=49 ID=62462 TCP DPT=8080 WINDOW=44876 SYN Unauthorised access (Aug 28) SRC=121.27.204.195 LEN=40 TTL=49 ID=27826 TCP DPT=8080 WINDOW=55963 SYN Unauthorised access (Aug 28) SRC=121.27.204.195 LEN=40 TTL=49 ID=42115 TCP DPT=8080 WINDOW=710 SYN	2019-08-31 02:57:21
112.85.42.89	attackspam	Aug 30 12:53:48 aat-srv002 sshd[20985]: Failed password for root from 112.85.42.89 port 42795 ssh2 Aug 30 13:11:26 aat-srv002 sshd[21363]: Failed password for root from 112.85.42.89 port 34181 ssh2 Aug 30 13:12:01 aat-srv002 sshd[21368]: Failed password for root from 112.85.42.89 port 37822 ssh2 ...	2019-08-31 02:29:18
77.42.78.185	attackspambots	Telnet Server BruteForce Attack	2019-08-31 03:12:14
39.82.202.111	attackspam	$f2bV_matches_ltvn	2019-08-31 03:02:39
192.99.68.89	attack	Aug 30 21:54:25 yabzik sshd[21790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.68.89 Aug 30 21:54:27 yabzik sshd[21790]: Failed password for invalid user ken from 192.99.68.89 port 38082 ssh2 Aug 30 21:58:38 yabzik sshd[23517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.68.89	2019-08-31 03:07:32
203.210.86.38	attack	Aug 30 18:27:45 lnxweb62 sshd[14300]: Failed password for root from 203.210.86.38 port 54567 ssh2 Aug 30 18:27:45 lnxweb62 sshd[14300]: Failed password for root from 203.210.86.38 port 54567 ssh2	2019-08-31 02:33:35
121.157.229.23	attackspambots	Aug 30 20:37:20 icinga sshd[30888]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.157.229.23 Aug 30 20:37:21 icinga sshd[30888]: Failed password for invalid user zabbix from 121.157.229.23 port 34776 ssh2 ...	2019-08-31 02:47:16
49.68.130.65	attackbotsspam	Aug 30 16:26:23 system,error,critical: login failure for user admin from 49.68.130.65 via telnet Aug 30 16:26:25 system,error,critical: login failure for user default from 49.68.130.65 via telnet Aug 30 16:26:27 system,error,critical: login failure for user service from 49.68.130.65 via telnet Aug 30 16:26:45 system,error,critical: login failure for user root from 49.68.130.65 via telnet Aug 30 16:26:47 system,error,critical: login failure for user root from 49.68.130.65 via telnet Aug 30 16:26:49 system,error,critical: login failure for user admin from 49.68.130.65 via telnet Aug 30 16:27:03 system,error,critical: login failure for user admin from 49.68.130.65 via telnet Aug 30 16:27:05 system,error,critical: login failure for user root from 49.68.130.65 via telnet Aug 30 16:27:07 system,error,critical: login failure for user root from 49.68.130.65 via telnet Aug 30 16:27:18 system,error,critical: login failure for user root from 49.68.130.65 via telnet	2019-08-31 02:52:43
107.170.249.81	attackbots	Aug 30 17:03:25 localhost sshd\[42000\]: Invalid user mp3 from 107.170.249.81 port 56313 Aug 30 17:03:25 localhost sshd\[42000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.249.81 Aug 30 17:03:27 localhost sshd\[42000\]: Failed password for invalid user mp3 from 107.170.249.81 port 56313 ssh2 Aug 30 17:07:24 localhost sshd\[42140\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.249.81 user=root Aug 30 17:07:26 localhost sshd\[42140\]: Failed password for root from 107.170.249.81 port 51885 ssh2 ...	2019-08-31 02:53:22

Recently Reported IPs

106.52.175.250	106.52.18.143	106.52.181.184	106.52.182.109
106.52.184.70	106.52.185.57	106.52.182.208	106.52.188.59
106.52.186.68	106.52.187.79	106.52.19.235	106.52.194.108
106.52.195.203	106.52.198.185	106.52.192.134	106.52.20.200
106.52.200.135	106.52.199.64	106.52.202.14	106.52.196.123