106.52.19.159 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.52.199.130	attackspambots	Oct 11 11:13:19 ws19vmsma01 sshd[70063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.199.130 Oct 11 11:13:21 ws19vmsma01 sshd[70063]: Failed password for invalid user ogawa from 106.52.199.130 port 34970 ssh2 ...	2020-10-12 04:15:18
106.52.199.130	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-11T11:04:27Z and 2020-10-11T11:11:25Z	2020-10-11 20:15:12
106.52.199.130	attack	Oct 11 05:25:28 con01 sshd[2637843]: Failed password for invalid user amanda from 106.52.199.130 port 51350 ssh2 Oct 11 05:28:34 con01 sshd[2643017]: Invalid user apache from 106.52.199.130 port 37712 Oct 11 05:28:34 con01 sshd[2643017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.199.130 Oct 11 05:28:34 con01 sshd[2643017]: Invalid user apache from 106.52.199.130 port 37712 Oct 11 05:28:36 con01 sshd[2643017]: Failed password for invalid user apache from 106.52.199.130 port 37712 ssh2 ...	2020-10-11 12:13:50
106.52.199.130	attackbots	SSH Brute Force	2020-10-11 05:37:32
106.52.199.130	attackbotsspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-08T15:49:39Z and 2020-10-08T15:52:29Z	2020-10-09 03:11:23
106.52.199.130	attack	Oct 8 13:03:26 hidden sshd[23290]: Failed password for hidden from 106.52.199.130 port 58738 ssh2 Oct 8 13:07:10 hidden sshd[26814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.199.130 user=root Oct 8 13:07:13 hidden sshd[26814]: Failed password for hidden from 106.52.199.130 port 54366 ssh2	2020-10-08 19:15:41
106.52.199.130	attack	Sep 12 17:09:17 rush sshd[24837]: Failed password for root from 106.52.199.130 port 34780 ssh2 Sep 12 17:12:55 rush sshd[24900]: Failed password for root from 106.52.199.130 port 47112 ssh2 Sep 12 17:16:32 rush sshd[24973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.199.130 ...	2020-09-13 01:22:19
106.52.199.130	attack	(sshd) Failed SSH login from 106.52.199.130 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 11 23:40:57 optimus sshd[17785]: Invalid user user from 106.52.199.130 Sep 11 23:40:57 optimus sshd[17785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.199.130 Sep 11 23:40:59 optimus sshd[17785]: Failed password for invalid user user from 106.52.199.130 port 53524 ssh2 Sep 11 23:45:30 optimus sshd[21733]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.199.130 user=root Sep 11 23:45:32 optimus sshd[21733]: Failed password for root from 106.52.199.130 port 50158 ssh2	2020-09-12 17:21:31
106.52.196.163	attack	Sep 1 10:03:55 lukav-desktop sshd\[30683\]: Invalid user vector from 106.52.196.163 Sep 1 10:03:55 lukav-desktop sshd\[30683\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.196.163 Sep 1 10:03:57 lukav-desktop sshd\[30683\]: Failed password for invalid user vector from 106.52.196.163 port 33364 ssh2 Sep 1 10:08:55 lukav-desktop sshd\[23654\]: Invalid user svn from 106.52.196.163 Sep 1 10:08:55 lukav-desktop sshd\[23654\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.196.163	2020-09-01 18:21:37
106.52.19.71	attackbotsspam	Aug 29 16:03:33 web1 sshd\[28918\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.19.71 user=root Aug 29 16:03:36 web1 sshd\[28918\]: Failed password for root from 106.52.19.71 port 42836 ssh2 Aug 29 16:08:54 web1 sshd\[29135\]: Invalid user matie from 106.52.19.71 Aug 29 16:08:54 web1 sshd\[29135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.19.71 Aug 29 16:08:55 web1 sshd\[29135\]: Failed password for invalid user matie from 106.52.19.71 port 40899 ssh2	2020-08-30 00:16:04
106.52.197.21	attackbotsspam	Aug 17 22:28:39 ns381471 sshd[10354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.197.21 Aug 17 22:28:40 ns381471 sshd[10354]: Failed password for invalid user ans from 106.52.197.21 port 43822 ssh2	2020-08-18 04:45:15
106.52.197.21	attackspam	Aug 13 12:22:00 abendstille sshd\[12257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.197.21 user=root Aug 13 12:22:02 abendstille sshd\[12257\]: Failed password for root from 106.52.197.21 port 40272 ssh2 Aug 13 12:24:58 abendstille sshd\[15246\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.197.21 user=root Aug 13 12:25:00 abendstille sshd\[15246\]: Failed password for root from 106.52.197.21 port 43380 ssh2 Aug 13 12:28:01 abendstille sshd\[18109\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.197.21 user=root ...	2020-08-13 18:42:08
106.52.196.163	attackbots	Brute-force attempt banned	2020-08-09 15:47:58
106.52.197.21	attackbots	Aug 6 16:53:48 journals sshd\[33714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.197.21 user=root Aug 6 16:53:50 journals sshd\[33714\]: Failed password for root from 106.52.197.21 port 42342 ssh2 Aug 6 16:57:28 journals sshd\[34107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.197.21 user=root Aug 6 16:57:30 journals sshd\[34107\]: Failed password for root from 106.52.197.21 port 49508 ssh2 Aug 6 17:01:02 journals sshd\[34521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.197.21 user=root ...	2020-08-07 02:50:08
106.52.193.19	attackbots	Aug 1 09:22:33 rancher-0 sshd[702425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.193.19 user=root Aug 1 09:22:35 rancher-0 sshd[702425]: Failed password for root from 106.52.193.19 port 51938 ssh2 ...	2020-08-01 16:16:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.19.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3680
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.52.19.159.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012101 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 03:51:35 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 159.19.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 159.19.52.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.211.189.181	attack	Dec 13 19:57:57 plusreed sshd[14149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.189.181 user=root Dec 13 19:57:59 plusreed sshd[14149]: Failed password for root from 80.211.189.181 port 60016 ssh2 ...	2019-12-14 09:06:39
92.63.194.26	attackbots	Invalid user admin from 92.63.194.26 port 54552	2019-12-14 08:54:13
218.92.0.170	attackbotsspam	Dec 14 00:48:44 zeus sshd[1968]: Failed password for root from 218.92.0.170 port 1354 ssh2 Dec 14 00:48:47 zeus sshd[1968]: Failed password for root from 218.92.0.170 port 1354 ssh2 Dec 14 00:48:52 zeus sshd[1968]: Failed password for root from 218.92.0.170 port 1354 ssh2 Dec 14 00:48:57 zeus sshd[1968]: Failed password for root from 218.92.0.170 port 1354 ssh2 Dec 14 00:49:01 zeus sshd[1968]: Failed password for root from 218.92.0.170 port 1354 ssh2	2019-12-14 08:53:24
54.38.183.181	attackspam	Dec 14 02:35:28 sauna sshd[52125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.183.181 Dec 14 02:35:30 sauna sshd[52125]: Failed password for invalid user vcsa from 54.38.183.181 port 33610 ssh2 ...	2019-12-14 08:39:09
200.194.45.50	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-14 08:42:51
5.196.186.112	attack	Dec 14 02:04:39 ArkNodeAT sshd\[1517\]: Invalid user smmsp from 5.196.186.112 Dec 14 02:04:39 ArkNodeAT sshd\[1517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.196.186.112 Dec 14 02:04:41 ArkNodeAT sshd\[1517\]: Failed password for invalid user smmsp from 5.196.186.112 port 44166 ssh2	2019-12-14 09:05:58
122.51.116.169	attackspam	SSH-BruteForce	2019-12-14 08:50:48
130.61.88.249	attack	Dec 13 14:50:33 sachi sshd\[17001\]: Invalid user brait from 130.61.88.249 Dec 13 14:50:33 sachi sshd\[17001\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.88.249 Dec 13 14:50:35 sachi sshd\[17001\]: Failed password for invalid user brait from 130.61.88.249 port 55914 ssh2 Dec 13 14:56:03 sachi sshd\[17523\]: Invalid user hldmsserver from 130.61.88.249 Dec 13 14:56:03 sachi sshd\[17523\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.88.249	2019-12-14 09:05:12
121.7.127.92	attack	Dec 13 19:55:42 plusreed sshd[13487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.7.127.92 user=root Dec 13 19:55:44 plusreed sshd[13487]: Failed password for root from 121.7.127.92 port 38562 ssh2 ...	2019-12-14 09:03:55
80.82.70.239	attackspambots	ET CINS Active Threat Intelligence Poor Reputation IP group 72 - port: 5661 proto: TCP cat: Misc Attack	2019-12-14 08:57:49
113.62.176.98	attackspam	Dec 14 01:00:34 hcbbdb sshd\[14003\]: Invalid user lmondon from 113.62.176.98 Dec 14 01:00:34 hcbbdb sshd\[14003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.62.176.98 Dec 14 01:00:36 hcbbdb sshd\[14003\]: Failed password for invalid user lmondon from 113.62.176.98 port 30752 ssh2 Dec 14 01:06:10 hcbbdb sshd\[14724\]: Invalid user admin from 113.62.176.98 Dec 14 01:06:10 hcbbdb sshd\[14724\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.62.176.98	2019-12-14 09:09:27
117.55.241.2	attack	Dec 13 19:31:45 ny01 sshd[22376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.55.241.2 Dec 13 19:31:46 ny01 sshd[22376]: Failed password for invalid user renfro from 117.55.241.2 port 35844 ssh2 Dec 13 19:39:05 ny01 sshd[23122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.55.241.2	2019-12-14 09:11:53
188.166.44.186	attack	Dec 14 01:38:27 v22018076622670303 sshd\[4074\]: Invalid user muay from 188.166.44.186 port 53532 Dec 14 01:38:27 v22018076622670303 sshd\[4074\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.44.186 Dec 14 01:38:29 v22018076622670303 sshd\[4074\]: Failed password for invalid user muay from 188.166.44.186 port 53532 ssh2 ...	2019-12-14 08:48:00
5.135.135.116	attack	Dec 14 01:48:09 markkoudstaal sshd[30345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.135.116 Dec 14 01:48:11 markkoudstaal sshd[30345]: Failed password for invalid user mysql from 5.135.135.116 port 54879 ssh2 Dec 14 01:54:57 markkoudstaal sshd[30980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.135.116	2019-12-14 08:55:17
105.225.150.153	attackbots	port scan and connect, tcp 23 (telnet)	2019-12-14 08:30:42

Recently Reported IPs

81.36.237.22	16.204.37.64	9.12.136.9	185.162.112.246
219.119.204.37	81.49.62.49	34.219.182.241	213.44.207.227
234.0.229.55	29.35.171.175	255.104.29.67	29.117.21.185
40.199.145.48	180.11.193.39	26.225.201.37	171.51.134.84
95.8.155.168	109.15.194.120	130.51.251.75	79.126.162.99