106.52.234.102

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.52.234.17	attackspam	Failed password for invalid user jania from 106.52.234.17 port 37390 ssh2	2020-07-09 21:54:57
106.52.234.17	attackbotsspam	Invalid user oleg from 106.52.234.17 port 44940	2020-07-05 18:51:33
106.52.234.17	attackbots	2020-06-24 14:00:19 server sshd[47796]: Failed password for invalid user teamspeak from 106.52.234.17 port 42432 ssh2	2020-06-27 02:52:09
106.52.234.191	attack	2020-06-11T17:50:56.246068morrigan.ad5gb.com sshd[20049]: Invalid user dante from 106.52.234.191 port 46543 2020-06-11T17:50:58.073107morrigan.ad5gb.com sshd[20049]: Failed password for invalid user dante from 106.52.234.191 port 46543 ssh2 2020-06-11T17:50:59.434098morrigan.ad5gb.com sshd[20049]: Disconnected from invalid user dante 106.52.234.191 port 46543 [preauth]	2020-06-12 06:58:04
106.52.234.25	attackbotsspam	Jun 11 11:22:12 dhoomketu sshd[650445]: Failed password for invalid user scamper from 106.52.234.25 port 43668 ssh2 Jun 11 11:23:35 dhoomketu sshd[650494]: Invalid user Administrator from 106.52.234.25 port 59132 Jun 11 11:23:35 dhoomketu sshd[650494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.234.25 Jun 11 11:23:35 dhoomketu sshd[650494]: Invalid user Administrator from 106.52.234.25 port 59132 Jun 11 11:23:37 dhoomketu sshd[650494]: Failed password for invalid user Administrator from 106.52.234.25 port 59132 ssh2 ...	2020-06-11 14:00:07
106.52.234.25	attack	$f2bV_matches	2020-05-30 21:54:33
106.52.234.25	attackspambots	May 28 10:33:47 firewall sshd[7237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.234.25 user=root May 28 10:33:50 firewall sshd[7237]: Failed password for root from 106.52.234.25 port 38494 ssh2 May 28 10:34:51 firewall sshd[7283]: Invalid user sonos from 106.52.234.25 ...	2020-05-29 02:12:31
106.52.234.25	attackspam	(sshd) Failed SSH login from 106.52.234.25 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 27 17:43:37 srv sshd[7986]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.234.25 user=root May 27 17:43:39 srv sshd[7986]: Failed password for root from 106.52.234.25 port 36902 ssh2 May 27 18:07:53 srv sshd[8606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.234.25 user=root May 27 18:07:55 srv sshd[8606]: Failed password for root from 106.52.234.25 port 58642 ssh2 May 27 18:11:44 srv sshd[8663]: Invalid user postgres from 106.52.234.25 port 39756	2020-05-28 02:10:33
106.52.234.25	attackbotsspam	(sshd) Failed SSH login from 106.52.234.25 (CN/China/-): 5 in the last 3600 secs	2020-05-27 18:17:33
106.52.234.191	attackspambots	May 27 08:37:23 pornomens sshd\[31310\]: Invalid user monica from 106.52.234.191 port 36802 May 27 08:37:23 pornomens sshd\[31310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.234.191 May 27 08:37:26 pornomens sshd\[31310\]: Failed password for invalid user monica from 106.52.234.191 port 36802 ssh2 ...	2020-05-27 14:46:51
106.52.234.25	attackspambots	May 26 10:29:41 hosting sshd[24374]: Invalid user merje from 106.52.234.25 port 55416 ...	2020-05-26 21:05:58
106.52.234.191	attack	May 25 05:48:40 cdc sshd[27499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.234.191 user=root May 25 05:48:42 cdc sshd[27499]: Failed password for invalid user root from 106.52.234.191 port 60293 ssh2	2020-05-25 18:31:09
106.52.234.191	attackbotsspam	Apr 28 10:02:35 ns382633 sshd\[22872\]: Invalid user leonard from 106.52.234.191 port 51788 Apr 28 10:02:35 ns382633 sshd\[22872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.234.191 Apr 28 10:02:37 ns382633 sshd\[22872\]: Failed password for invalid user leonard from 106.52.234.191 port 51788 ssh2 Apr 28 11:00:30 ns382633 sshd\[2095\]: Invalid user user from 106.52.234.191 port 42389 Apr 28 11:00:30 ns382633 sshd\[2095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.234.191	2020-04-28 17:21:28
106.52.234.191	attackspam	frenzy	2020-04-24 16:42:23
106.52.234.191	attackspam	Brute-force attempt banned	2020-04-16 14:32:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.234.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56305
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.52.234.102.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022031501 1800 900 604800 86400

;; Query time: 132 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 16 02:16:55 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 102.234.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 102.234.52.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.197.97.157	attack	138.197.97.157 - - [30/Sep/2020:06:53:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2861 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.97.157 - - [30/Sep/2020:06:53:32 +0100] "POST /wp-login.php HTTP/1.1" 200 2857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.97.157 - - [30/Sep/2020:06:53:36 +0100] "POST /wp-login.php HTTP/1.1" 200 2857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 14:07:42
94.128.80.10	attackbots	Auto Fail2Ban report, multiple SSH login attempts.	2020-09-30 14:27:44
35.236.59.177	attackspambots	Automatic report - XMLRPC Attack	2020-09-30 14:27:21
121.87.237.12	attackspambots	Sep 30 06:33:14 eventyay sshd[13324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.87.237.12 Sep 30 06:33:14 eventyay sshd[13325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.87.237.12 Sep 30 06:33:16 eventyay sshd[13324]: Failed password for invalid user pi from 121.87.237.12 port 46184 ssh2 Sep 30 06:33:16 eventyay sshd[13325]: Failed password for invalid user pi from 121.87.237.12 port 46190 ssh2 ...	2020-09-30 13:55:07
157.245.243.14	attack	157.245.243.14 - - [29/Sep/2020:21:38:44 +0100] "POST /wp-login.php HTTP/1.1" 200 2386 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [29/Sep/2020:21:38:45 +0100] "POST /wp-login.php HTTP/1.1" 200 2336 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.243.14 - - [29/Sep/2020:21:38:46 +0100] "POST /wp-login.php HTTP/1.1" 200 2387 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 14:24:58
192.241.239.247	attackbotsspam	Hit honeypot r.	2020-09-30 14:26:23
80.89.73.194	attackspam	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-30 14:15:56
3.19.72.50	attack	RDP Brute-Force (Grieskirchen RZ2)	2020-09-30 14:29:52
185.215.52.10	attackbotsspam	20/9/29@16:39:32: FAIL: Alarm-Intrusion address from=185.215.52.10 ...	2020-09-30 13:56:50
106.12.140.168	attackspam	Ssh brute force	2020-09-30 14:05:07
86.98.50.227	attackspambots	Icarus honeypot on github	2020-09-30 14:10:24
42.229.183.35	attack	1601411967 - 09/29/2020 22:39:27 Host: 42.229.183.35/42.229.183.35 Port: 23 TCP Blocked	2020-09-30 14:01:45
88.119.29.163	attack	Invalid user nagios from 88.119.29.163 port 48568	2020-09-30 14:25:24
188.153.208.82	attackbotsspam	Sep 30 01:39:57 NPSTNNYC01T sshd[15820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.153.208.82 Sep 30 01:39:58 NPSTNNYC01T sshd[15820]: Failed password for invalid user temp1 from 188.153.208.82 port 51132 ssh2 Sep 30 01:44:01 NPSTNNYC01T sshd[16252]: Failed password for root from 188.153.208.82 port 59642 ssh2 ...	2020-09-30 14:28:38
206.172.23.99	attackspam	Invalid user oscar from 206.172.23.99 port 51822	2020-09-30 14:04:35

Recently Reported IPs

106.52.195.86	160.170.154.218	106.52.38.39	106.52.66.116
106.52.67.233	106.52.84.22	106.52.85.225	106.52.92.66
106.53.100.206	106.53.103.25	106.53.109.148	106.53.109.21
106.53.111.113	141.99.71.17	106.53.115.196	106.53.136.12
106.53.141.21	106.53.145.77	106.53.146.121	106.53.22.132