106.53.220.103

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Oct 2 20:50:25 sshd\[13409\]: User root from 106.53.220.103 not allowed because not listed in AllowUsersOct 2 20:50:27 sshd\[13409\]: Failed password for invalid user root from 106.53.220.103 port 34690 ssh2 ...	2020-10-03 04:28:52
attack	Oct 2 20:50:25 sshd\[13409\]: User root from 106.53.220.103 not allowed because not listed in AllowUsersOct 2 20:50:27 sshd\[13409\]: Failed password for invalid user root from 106.53.220.103 port 34690 ssh2 ...	2020-10-03 03:16:15
attackbotsspam	Oct 2 06:59:54 gitlab sshd[2550140]: Invalid user renata from 106.53.220.103 port 58570 Oct 2 06:59:54 gitlab sshd[2550140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 Oct 2 06:59:54 gitlab sshd[2550140]: Invalid user renata from 106.53.220.103 port 58570 Oct 2 06:59:56 gitlab sshd[2550140]: Failed password for invalid user renata from 106.53.220.103 port 58570 ssh2 Oct 2 07:01:39 gitlab sshd[2550406]: Invalid user admin from 106.53.220.103 port 47708 ...	2020-10-02 23:49:42
attackspambots	Oct 2 06:59:54 gitlab sshd[2550140]: Invalid user renata from 106.53.220.103 port 58570 Oct 2 06:59:54 gitlab sshd[2550140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 Oct 2 06:59:54 gitlab sshd[2550140]: Invalid user renata from 106.53.220.103 port 58570 Oct 2 06:59:56 gitlab sshd[2550140]: Failed password for invalid user renata from 106.53.220.103 port 58570 ssh2 Oct 2 07:01:39 gitlab sshd[2550406]: Invalid user admin from 106.53.220.103 port 47708 ...	2020-10-02 20:20:46
attackspambots	Oct 2 06:59:54 gitlab sshd[2550140]: Invalid user renata from 106.53.220.103 port 58570 Oct 2 06:59:54 gitlab sshd[2550140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 Oct 2 06:59:54 gitlab sshd[2550140]: Invalid user renata from 106.53.220.103 port 58570 Oct 2 06:59:56 gitlab sshd[2550140]: Failed password for invalid user renata from 106.53.220.103 port 58570 ssh2 Oct 2 07:01:39 gitlab sshd[2550406]: Invalid user admin from 106.53.220.103 port 47708 ...	2020-10-02 16:53:25
attackbotsspam	Oct 2 00:16:30 dignus sshd[8408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 Oct 2 00:16:32 dignus sshd[8408]: Failed password for invalid user user3 from 106.53.220.103 port 45420 ssh2 Oct 2 00:19:48 dignus sshd[8801]: Invalid user ftpuser from 106.53.220.103 port 40432 Oct 2 00:19:48 dignus sshd[8801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 Oct 2 00:19:50 dignus sshd[8801]: Failed password for invalid user ftpuser from 106.53.220.103 port 40432 ssh2 ...	2020-10-02 13:14:09
attackbotsspam	Sep 20 20:14:42 inter-technics sshd[5450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 user=root Sep 20 20:14:44 inter-technics sshd[5450]: Failed password for root from 106.53.220.103 port 38160 ssh2 Sep 20 20:16:43 inter-technics sshd[5565]: Invalid user arts from 106.53.220.103 port 38760 Sep 20 20:16:43 inter-technics sshd[5565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 Sep 20 20:16:43 inter-technics sshd[5565]: Invalid user arts from 106.53.220.103 port 38760 Sep 20 20:16:45 inter-technics sshd[5565]: Failed password for invalid user arts from 106.53.220.103 port 38760 ssh2 ...	2020-09-21 03:08:29
attackspambots	Invalid user admin from 106.53.220.103 port 53230	2020-09-20 19:12:35
attack	Brute-force attempt banned	2020-09-09 19:53:04
attack	Sep 9 06:33:33 root sshd[16381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 ...	2020-09-09 13:51:23
attackbots	Sep 8 23:56:20 jane sshd[32123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 Sep 8 23:56:22 jane sshd[32123]: Failed password for invalid user skafreak from 106.53.220.103 port 58936 ssh2 ...	2020-09-09 06:02:44
attackspambots	Aug 22 18:25:20 124388 sshd[5059]: Failed password for root from 106.53.220.103 port 51418 ssh2 Aug 22 18:28:50 124388 sshd[5196]: Invalid user romeo from 106.53.220.103 port 36062 Aug 22 18:28:50 124388 sshd[5196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.103 Aug 22 18:28:50 124388 sshd[5196]: Invalid user romeo from 106.53.220.103 port 36062 Aug 22 18:28:52 124388 sshd[5196]: Failed password for invalid user romeo from 106.53.220.103 port 36062 ssh2	2020-08-23 04:00:05
attackbotsspam	$f2bV_matches	2020-08-20 15:12:05
attackspambots	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-18 23:21:32
attackbots	2020-08-16T19:28:57.637613billing sshd[32648]: Invalid user timmy from 106.53.220.103 port 36652 2020-08-16T19:28:59.416940billing sshd[32648]: Failed password for invalid user timmy from 106.53.220.103 port 36652 ssh2 2020-08-16T19:33:30.522325billing sshd[9816]: Invalid user es from 106.53.220.103 port 33294 ...	2020-08-16 22:53:20
attackspam	2020-07-11T11:50:05+0200 Failed SSH Authentication/Brute Force Attack. (Server 4)	2020-07-11 18:18:41
attackspam	2020-07-09T12:31:32.204451upcloud.m0sh1x2.com sshd[28005]: Invalid user ynzhang from 106.53.220.103 port 48170	2020-07-10 03:50:38
attack	TCP (SYN) 106.53.220.103:56465 -> port 29395, len 44	2020-06-25 15:15:25

Comments on same subnet:

IP	Type	Details	Datetime
106.53.220.55	attackbots	Invalid user root2 from 106.53.220.55 port 54046	2020-08-31 19:39:31
106.53.220.198	attackspambots	" "	2020-08-28 04:59:10
106.53.220.55	attackspambots	Tried to find non-existing directory/file on the server	2020-08-22 16:02:36
106.53.220.55	attackspambots	Aug 20 13:29:14 propaganda sshd[15132]: Connection from 106.53.220.55 port 34770 on 10.0.0.161 port 22 rdomain "" Aug 20 13:29:15 propaganda sshd[15132]: Connection closed by 106.53.220.55 port 34770 [preauth]	2020-08-21 04:50:50
106.53.220.55	attack	SSHD unauthorised connection attempt (b)	2020-08-15 18:17:03
106.53.220.175	attackspam	SSH brute-force attempt	2020-08-12 05:51:35
106.53.220.175	attackbotsspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-11 00:35:39
106.53.220.55	attackbots	Aug 9 08:58:13 serwer sshd\[26495\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.55 user=root Aug 9 08:58:15 serwer sshd\[26495\]: Failed password for root from 106.53.220.55 port 39604 ssh2 Aug 9 09:04:13 serwer sshd\[27221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.55 user=root ...	2020-08-09 17:43:30
106.53.220.175	attack	Aug 8 09:31:51 ip-172-31-61-156 sshd[7680]: Failed password for root from 106.53.220.175 port 39902 ssh2 Aug 8 09:35:45 ip-172-31-61-156 sshd[7857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.175 user=root Aug 8 09:35:47 ip-172-31-61-156 sshd[7857]: Failed password for root from 106.53.220.175 port 34446 ssh2 Aug 8 09:39:38 ip-172-31-61-156 sshd[8217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.175 user=root Aug 8 09:39:40 ip-172-31-61-156 sshd[8217]: Failed password for root from 106.53.220.175 port 57224 ssh2 ...	2020-08-08 17:54:51
106.53.220.175	attackbotsspam	Jul 27 07:29:44 vps647732 sshd[32207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.175 Jul 27 07:29:46 vps647732 sshd[32207]: Failed password for invalid user mike from 106.53.220.175 port 43776 ssh2 ...	2020-07-27 14:20:32
106.53.220.175	attackbots	Invalid user kodi from 106.53.220.175 port 52732	2020-07-26 16:50:19
106.53.220.55	attack	2020-07-19T16:49:51.806208v22018076590370373 sshd[12580]: Invalid user john from 106.53.220.55 port 42198 2020-07-19T16:49:51.811456v22018076590370373 sshd[12580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.55 2020-07-19T16:49:51.806208v22018076590370373 sshd[12580]: Invalid user john from 106.53.220.55 port 42198 2020-07-19T16:49:53.482709v22018076590370373 sshd[12580]: Failed password for invalid user john from 106.53.220.55 port 42198 ssh2 2020-07-19T16:54:27.525093v22018076590370373 sshd[30857]: Invalid user crh from 106.53.220.55 port 33652 ...	2020-07-19 23:30:12
106.53.220.55	attackspambots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-15 22:45:08
106.53.220.55	attackspambots	2020-07-14T10:52:44.580485SusPend.routelink.net.id sshd[77691]: Invalid user kafka from 106.53.220.55 port 47836 2020-07-14T10:52:46.541929SusPend.routelink.net.id sshd[77691]: Failed password for invalid user kafka from 106.53.220.55 port 47836 ssh2 2020-07-14T10:55:35.851535SusPend.routelink.net.id sshd[78025]: Invalid user anju from 106.53.220.55 port 40492 ...	2020-07-14 12:43:36
106.53.220.55	attack	Jul 11 12:01:38 ws26vmsma01 sshd[5208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.220.55 Jul 11 12:01:40 ws26vmsma01 sshd[5208]: Failed password for invalid user gwendolyn from 106.53.220.55 port 34114 ssh2 ...	2020-07-11 20:42:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.53.220.103
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4585
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.53.220.103.			IN	A

;; AUTHORITY SECTION:
.			237	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062500 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 25 15:15:18 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 103.220.53.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 103.220.53.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.64.126.39	attackspam	Aug 6 08:21:13 lcl-usvr-01 sshd[1293]: Invalid user pi from 82.64.126.39 Aug 6 08:21:14 lcl-usvr-01 sshd[1297]: Invalid user pi from 82.64.126.39 Aug 6 08:21:14 lcl-usvr-01 sshd[1293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.126.39 Aug 6 08:21:13 lcl-usvr-01 sshd[1293]: Invalid user pi from 82.64.126.39 Aug 6 08:21:16 lcl-usvr-01 sshd[1293]: Failed password for invalid user pi from 82.64.126.39 port 49772 ssh2 Aug 6 08:21:14 lcl-usvr-01 sshd[1297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.126.39 Aug 6 08:21:14 lcl-usvr-01 sshd[1297]: Invalid user pi from 82.64.126.39 Aug 6 08:21:16 lcl-usvr-01 sshd[1297]: Failed password for invalid user pi from 82.64.126.39 port 49780 ssh2	2019-08-06 19:14:22
14.198.6.164	attack	Aug 6 03:21:10 ArkNodeAT sshd\[3180\]: Invalid user git from 14.198.6.164 Aug 6 03:21:10 ArkNodeAT sshd\[3180\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.198.6.164 Aug 6 03:21:12 ArkNodeAT sshd\[3180\]: Failed password for invalid user git from 14.198.6.164 port 45336 ssh2	2019-08-06 19:17:27
45.95.33.169	attackbotsspam	Postfix RBL failed	2019-08-06 20:06:55
46.3.96.67	attackbots	" "	2019-08-06 19:37:22
111.6.78.158	attackspam	Aug 6 13:59:59 ovpn sshd\[4782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.6.78.158 user=root Aug 6 14:00:02 ovpn sshd\[4782\]: Failed password for root from 111.6.78.158 port 14333 ssh2 Aug 6 14:00:03 ovpn sshd\[4782\]: Failed password for root from 111.6.78.158 port 14333 ssh2 Aug 6 14:00:05 ovpn sshd\[4782\]: Failed password for root from 111.6.78.158 port 14333 ssh2 Aug 6 14:00:07 ovpn sshd\[4825\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.6.78.158 user=root	2019-08-06 20:10:20
184.66.248.150	attackspambots	Aug 6 08:46:34 xeon sshd[34161]: Failed password for invalid user ellen from 184.66.248.150 port 46386 ssh2	2019-08-06 19:11:47
41.137.137.92	attackbotsspam	Automatic report - Banned IP Access	2019-08-06 19:34:18
113.176.107.23	attackspam	Automatic report - Port Scan Attack	2019-08-06 19:53:04
77.83.173.96	attackbots	08/06/2019-08:07:44.250784 77.83.173.96 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-06 20:07:48
182.254.137.202	attackbots	19/8/6@07:26:32: FAIL: Alarm-Intrusion address from=182.254.137.202 ...	2019-08-06 19:28:57
148.70.210.77	attackspambots	Automatic report - Banned IP Access	2019-08-06 19:57:20
85.50.116.141	attackbotsspam	Aug 6 13:04:32 vps647732 sshd[16009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.50.116.141 Aug 6 13:04:34 vps647732 sshd[16009]: Failed password for invalid user lupoae from 85.50.116.141 port 59166 ssh2 ...	2019-08-06 19:18:23
23.129.64.187	attackspam	Aug 6 13:25:45 h2177944 sshd\[12522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.187 user=root Aug 6 13:25:47 h2177944 sshd\[12522\]: Failed password for root from 23.129.64.187 port 62502 ssh2 Aug 6 13:25:51 h2177944 sshd\[12524\]: Invalid user admin from 23.129.64.187 port 22592 Aug 6 13:25:51 h2177944 sshd\[12524\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.187 ...	2019-08-06 19:48:21
106.12.10.119	attackbotsspam	Aug 6 10:10:10 sshgateway sshd\[1930\]: Invalid user harvard from 106.12.10.119 Aug 6 10:10:10 sshgateway sshd\[1930\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.10.119 Aug 6 10:10:12 sshgateway sshd\[1930\]: Failed password for invalid user harvard from 106.12.10.119 port 56240 ssh2	2019-08-06 19:16:57
81.22.45.148	attackbots	Aug 6 12:46:21 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.148 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=8604 PROTO=TCP SPT=52666 DPT=9585 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-08-06 19:09:53

Recently Reported IPs

227.130.247.82	161.8.211.173	154.22.143.94	48.1.111.61
46.43.17.125	229.208.20.142	167.172.152.212	106.117.1.133
212.112.100.115	185.212.170.188	161.35.120.218	182.180.54.126
119.94.4.194	13.70.20.99	103.76.191.4	121.121.237.129
95.217.108.83	134.122.23.187	208.47.86.249	106.55.167.157