106.52.93.202 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Aug 13 10:17:11 dev0-dcde-rnet sshd[27845]: Failed password for root from 106.52.93.202 port 57546 ssh2 Aug 13 10:23:05 dev0-dcde-rnet sshd[27861]: Failed password for root from 106.52.93.202 port 36306 ssh2	2020-08-13 18:20:21
attackspambots	Aug 10 14:06:05 host sshd[8439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.202 user=r.r Aug 10 14:06:08 host sshd[8439]: Failed password for r.r from 106.52.93.202 port 42958 ssh2 Aug 10 14:06:08 host sshd[8439]: Received disconnect from 106.52.93.202: 11: Bye Bye [preauth] Aug 10 14:23:49 host sshd[997]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.202 user=r.r Aug 10 14:23:51 host sshd[997]: Failed password for r.r from 106.52.93.202 port 46568 ssh2 Aug 10 14:23:51 host sshd[997]: Received disconnect from 106.52.93.202: 11: Bye Bye [preauth] Aug 10 14:27:02 host sshd[10310]: Connection closed by 106.52.93.202 [preauth] Aug 10 14:30:02 host sshd[20199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.202 user=r.r Aug 10 14:30:04 host sshd[20199]: Failed password for r.r from 106.52.93.202 port 48242 ssh2 Aug 1........ -------------------------------	2020-08-12 00:27:50
attackspam	Jul 30 15:23:25 root sshd[29471]: Invalid user zf from 106.52.93.202 ...	2020-07-30 20:44:46
attackbotsspam	SSH bruteforce	2020-07-20 17:36:01

Comments on same subnet:

IP	Type	Details	Datetime
106.52.93.51	attack	Jun 27 05:46:28 h2779839 sshd[14575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 user=root Jun 27 05:46:30 h2779839 sshd[14575]: Failed password for root from 106.52.93.51 port 60654 ssh2 Jun 27 05:49:37 h2779839 sshd[20549]: Invalid user wsp from 106.52.93.51 port 38492 Jun 27 05:49:37 h2779839 sshd[20549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 Jun 27 05:49:37 h2779839 sshd[20549]: Invalid user wsp from 106.52.93.51 port 38492 Jun 27 05:49:38 h2779839 sshd[20549]: Failed password for invalid user wsp from 106.52.93.51 port 38492 ssh2 Jun 27 05:52:33 h2779839 sshd[22270]: Invalid user mwang from 106.52.93.51 port 44566 Jun 27 05:52:33 h2779839 sshd[22270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 Jun 27 05:52:33 h2779839 sshd[22270]: Invalid user mwang from 106.52.93.51 port 44566 Jun 27 05:52:36 h2779839 s ...	2020-06-27 16:17:30
106.52.93.51	attackspambots	$f2bV_matches	2020-06-16 04:11:26
106.52.93.51	attack	$f2bV_matches	2020-06-13 15:03:25
106.52.93.51	attackspam	5x Failed Password	2020-05-20 18:11:03
106.52.93.51	attack	Ssh brute force	2020-05-13 08:06:03
106.52.93.51	attack	Apr 22 13:54:56 rotator sshd\[8255\]: Failed password for root from 106.52.93.51 port 54008 ssh2Apr 22 13:57:55 rotator sshd\[9041\]: Invalid user teste from 106.52.93.51Apr 22 13:57:57 rotator sshd\[9041\]: Failed password for invalid user teste from 106.52.93.51 port 59840 ssh2Apr 22 14:01:04 rotator sshd\[9867\]: Invalid user ml from 106.52.93.51Apr 22 14:01:06 rotator sshd\[9867\]: Failed password for invalid user ml from 106.52.93.51 port 37438 ssh2Apr 22 14:04:18 rotator sshd\[9919\]: Failed password for root from 106.52.93.51 port 43282 ssh2 ...	2020-04-22 21:07:05
106.52.93.51	attack	Apr 11 05:52:55 host5 sshd[14156]: Invalid user avanthi from 106.52.93.51 port 36974 ...	2020-04-11 15:05:36
106.52.93.52	attack	2020-03-27T09:03:58.821378shield sshd\[5530\]: Invalid user ohb from 106.52.93.52 port 34134 2020-03-27T09:03:58.831572shield sshd\[5530\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.52 2020-03-27T09:04:01.279517shield sshd\[5530\]: Failed password for invalid user ohb from 106.52.93.52 port 34134 ssh2 2020-03-27T09:05:48.202511shield sshd\[5840\]: Invalid user suse from 106.52.93.52 port 55212 2020-03-27T09:05:48.212170shield sshd\[5840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.52	2020-03-27 19:19:04
106.52.93.51	attackbots	Mar 27 08:33:53 serwer sshd\[20807\]: Invalid user pvg from 106.52.93.51 port 56888 Mar 27 08:33:53 serwer sshd\[20807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 Mar 27 08:33:55 serwer sshd\[20807\]: Failed password for invalid user pvg from 106.52.93.51 port 56888 ssh2 ...	2020-03-27 16:52:37
106.52.93.51	attackbots	Brute-force attempt banned	2020-03-21 09:56:38
106.52.93.51	attack	2020-03-18T04:53:27.123359v22018076590370373 sshd[31785]: Invalid user vmail from 106.52.93.51 port 43226 2020-03-18T04:53:27.129093v22018076590370373 sshd[31785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 2020-03-18T04:53:27.123359v22018076590370373 sshd[31785]: Invalid user vmail from 106.52.93.51 port 43226 2020-03-18T04:53:28.927962v22018076590370373 sshd[31785]: Failed password for invalid user vmail from 106.52.93.51 port 43226 ssh2 2020-03-18T04:55:30.299309v22018076590370373 sshd[11488]: Invalid user a1 from 106.52.93.51 port 38274 ...	2020-03-18 12:02:06
106.52.93.51	attackspam	Mar 10 10:22:08 sd-53420 sshd\[19539\]: Invalid user tomcat from 106.52.93.51 Mar 10 10:22:08 sd-53420 sshd\[19539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 Mar 10 10:22:10 sd-53420 sshd\[19539\]: Failed password for invalid user tomcat from 106.52.93.51 port 39166 ssh2 Mar 10 10:27:38 sd-53420 sshd\[20079\]: Invalid user sonarUser from 106.52.93.51 Mar 10 10:27:38 sd-53420 sshd\[20079\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.51 ...	2020-03-10 18:27:22
106.52.93.188	attack	2020-02-28T15:57:47.325492linuxbox-skyline sshd[50664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.188 user=git 2020-02-28T15:57:49.522940linuxbox-skyline sshd[50664]: Failed password for git from 106.52.93.188 port 50916 ssh2 ...	2020-02-29 07:42:33
106.52.93.51	attack	$f2bV_matches	2020-02-17 13:46:16
106.52.93.188	attackspam	Feb 12 02:09:01 amit sshd\[11840\]: Invalid user http from 106.52.93.188 Feb 12 02:09:01 amit sshd\[11840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.93.188 Feb 12 02:09:04 amit sshd\[11840\]: Failed password for invalid user http from 106.52.93.188 port 52806 ssh2 ...	2020-02-12 09:09:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.93.202
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31174
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.52.93.202.			IN	A

;; AUTHORITY SECTION:
.			395	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072000 1800 900 604800 86400

;; Query time: 598 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 20 17:35:57 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 202.93.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 202.93.52.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.233.199.240	attack	2020-07-20T20:21:46.907347ionos.janbro.de sshd[22122]: Invalid user gu from 49.233.199.240 port 41280 2020-07-20T20:21:49.175417ionos.janbro.de sshd[22122]: Failed password for invalid user gu from 49.233.199.240 port 41280 ssh2 2020-07-20T20:36:11.562511ionos.janbro.de sshd[22148]: Invalid user furukawa from 49.233.199.240 port 43408 2020-07-20T20:36:12.030981ionos.janbro.de sshd[22148]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.199.240 2020-07-20T20:36:11.562511ionos.janbro.de sshd[22148]: Invalid user furukawa from 49.233.199.240 port 43408 2020-07-20T20:36:13.651936ionos.janbro.de sshd[22148]: Failed password for invalid user furukawa from 49.233.199.240 port 43408 ssh2 2020-07-20T20:43:18.493252ionos.janbro.de sshd[22176]: Invalid user brenda from 49.233.199.240 port 44478 2020-07-20T20:43:19.000132ionos.janbro.de sshd[22176]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.199.240 ...	2020-07-21 05:54:09
51.103.28.183	attack	2020-07-20T22:05:01.664305shield sshd\[25345\]: Invalid user user1 from 51.103.28.183 port 40990 2020-07-20T22:05:01.675879shield sshd\[25345\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.103.28.183 2020-07-20T22:05:04.341575shield sshd\[25345\]: Failed password for invalid user user1 from 51.103.28.183 port 40990 ssh2 2020-07-20T22:09:15.445749shield sshd\[25681\]: Invalid user wilson from 51.103.28.183 port 57340 2020-07-20T22:09:15.451766shield sshd\[25681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.103.28.183	2020-07-21 06:09:21
103.30.199.82	attackspam	Jul 20 22:43:16 debian-2gb-nbg1-2 kernel: \[17536334.155603\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=103.30.199.82 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=43306 DF PROTO=TCP SPT=62791 DPT=8080 WINDOW=14600 RES=0x00 SYN URGP=0	2020-07-21 06:04:25
69.112.180.137	attack	Jul 20 22:23:59 mx01 sshd[28353]: Invalid user admin from 69.112.180.137 Jul 20 22:24:00 mx01 sshd[28353]: Failed password for invalid user admin from 69.112.180.137 port 44135 ssh2 Jul 20 22:24:01 mx01 sshd[28353]: Received disconnect from 69.112.180.137: 11: Bye Bye [preauth] Jul 20 22:24:01 mx01 sshd[28357]: Invalid user admin from 69.112.180.137 Jul 20 22:24:04 mx01 sshd[28357]: Failed password for invalid user admin from 69.112.180.137 port 44174 ssh2 Jul 20 22:24:04 mx01 sshd[28357]: Received disconnect from 69.112.180.137: 11: Bye Bye [preauth] Jul 20 22:24:04 mx01 sshd[28393]: Invalid user admin from 69.112.180.137 Jul 20 22:24:06 mx01 sshd[28393]: Failed password for invalid user admin from 69.112.180.137 port 44199 ssh2 Jul 20 22:24:06 mx01 sshd[28393]: Received disconnect from 69.112.180.137: 11: Bye Bye [preauth] Jul 20 22:24:07 mx01 sshd[28397]: Invalid user admin from 69.112.180.137 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=69.112.180.137	2020-07-21 06:13:31
193.169.253.48	attack	Brute force attempt	2020-07-21 06:08:58
104.244.73.43	attackbotsspam	Automatic report - Banned IP Access	2020-07-21 05:49:11
51.79.145.158	attackbotsspam	Jul 20 23:22:56 h1745522 sshd[32710]: Invalid user baldo from 51.79.145.158 port 36392 Jul 20 23:22:56 h1745522 sshd[32710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.145.158 Jul 20 23:22:56 h1745522 sshd[32710]: Invalid user baldo from 51.79.145.158 port 36392 Jul 20 23:22:58 h1745522 sshd[32710]: Failed password for invalid user baldo from 51.79.145.158 port 36392 ssh2 Jul 20 23:27:25 h1745522 sshd[597]: Invalid user deploy from 51.79.145.158 port 53026 Jul 20 23:27:25 h1745522 sshd[597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.145.158 Jul 20 23:27:25 h1745522 sshd[597]: Invalid user deploy from 51.79.145.158 port 53026 Jul 20 23:27:27 h1745522 sshd[597]: Failed password for invalid user deploy from 51.79.145.158 port 53026 ssh2 Jul 20 23:31:42 h1745522 sshd[818]: Invalid user ftp-user from 51.79.145.158 port 41426 ...	2020-07-21 05:49:51
106.12.110.2	attackbotsspam	Jul 21 04:48:57 webhost01 sshd[12373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.110.2 Jul 21 04:48:59 webhost01 sshd[12373]: Failed password for invalid user accounts from 106.12.110.2 port 40602 ssh2 ...	2020-07-21 05:53:45
45.83.89.58	attackspambots	Brute forcing email accounts	2020-07-21 06:10:18
217.92.210.164	attackspambots	Jul 20 23:43:46 piServer sshd[8485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.92.210.164 Jul 20 23:43:48 piServer sshd[8485]: Failed password for invalid user time from 217.92.210.164 port 40492 ssh2 Jul 20 23:47:46 piServer sshd[8992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.92.210.164 ...	2020-07-21 05:56:44
181.60.79.253	attackbotsspam	Invalid user eka from 181.60.79.253 port 43842	2020-07-21 05:47:36
161.35.99.173	attackbotsspam	Jul 20 14:55:43 dignus sshd[26704]: Failed password for invalid user fh from 161.35.99.173 port 53392 ssh2 Jul 20 14:59:00 dignus sshd[27051]: Invalid user wzq from 161.35.99.173 port 58312 Jul 20 14:59:00 dignus sshd[27051]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.99.173 Jul 20 14:59:02 dignus sshd[27051]: Failed password for invalid user wzq from 161.35.99.173 port 58312 ssh2 Jul 20 15:02:15 dignus sshd[27441]: Invalid user oracle from 161.35.99.173 port 35008 ...	2020-07-21 06:06:14
49.235.221.172	attackspam	Jul 20 22:35:16 h2779839 sshd[30804]: Invalid user xtra from 49.235.221.172 port 43280 Jul 20 22:35:16 h2779839 sshd[30804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.221.172 Jul 20 22:35:16 h2779839 sshd[30804]: Invalid user xtra from 49.235.221.172 port 43280 Jul 20 22:35:18 h2779839 sshd[30804]: Failed password for invalid user xtra from 49.235.221.172 port 43280 ssh2 Jul 20 22:39:39 h2779839 sshd[30862]: Invalid user zabbix from 49.235.221.172 port 51430 Jul 20 22:39:39 h2779839 sshd[30862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.221.172 Jul 20 22:39:39 h2779839 sshd[30862]: Invalid user zabbix from 49.235.221.172 port 51430 Jul 20 22:39:41 h2779839 sshd[30862]: Failed password for invalid user zabbix from 49.235.221.172 port 51430 ssh2 Jul 20 22:43:40 h2779839 sshd[30904]: Invalid user vaz from 49.235.221.172 port 59564 ...	2020-07-21 05:40:27
51.91.134.227	attack	Invalid user dcp from 51.91.134.227 port 50268	2020-07-21 05:48:33
200.181.208.35	attack	Invalid user akhil from 200.181.208.35 port 54868	2020-07-21 05:58:08

Recently Reported IPs

121.238.147.149	213.194.64.60	103.131.71.153	182.160.113.67
213.159.215.68	197.0.160.196	106.54.196.15	51.15.209.81
203.83.182.171	45.58.42.139	83.25.46.56	203.195.204.122
92.254.253.122	187.151.225.96	149.0.193.41	172.81.212.130
14.189.253.130	41.144.147.247	202.80.213.39	113.186.226.234