JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.52.52.196

106.52.52.196 was found in our database!

This IP was reported 130 times. Confidence of Abuse is 82%: ?

82%

ISP	Tencent cloud computing (Beijing) Co., Ltd.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS45090
Domain Name	tencentcloud.com
Country	🇨🇳 China
City	Guangzhou, Guangdong

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.52.52.196

Whois 106.52.52.196

IP Abuse Reports for 106.52.52.196:

This IP address has been reported a total of 130 times from 29 distinct sources. 106.52.52.196 was first reported on April 23rd 2026, and the most recent report was 10 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 gbzret4d	2026-05-05 13:34:41 (4 weeks ago)	Honeypot [uk-production01]: SSH handshake/banner (17 bytes of payload); 55996 [1] TCP	SSH
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-05 05:25:04 (4 weeks ago)	Honeypot hit: SSH handshake/banner (17 bytes of payload); 6665 [1] TCP	Brute-Force SSH
🇹🇭 Sawasdee	2026-05-05 04:30:05 (4 weeks ago)	Port Scan ...	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-04 15:07:13 (4 weeks ago)	Honeypot hit: SSH handshake/banner (17 bytes of payload); 1148 [1] TCP	Brute-Force SSH
Anonymous	2026-05-03 19:35:36 (1 month ago)	Blocked by UFW (TCP on 52736) Source port: 53872 TTL: 241 Packet length: 40 TOS: 0x14 This report ( ... show more Blocked by UFW (TCP on 52736) Source port: 53872 TTL: 241 Packet length: 40 TOS: 0x14 This report (for 106.52.52.196) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-03 16:38:56 (1 month ago)	Honeypot hit: SSH handshake/banner (17 bytes of payload); 34581 [1] TCP	Brute-Force SSH
🇬🇧 gbzret4d	2026-05-03 12:33:38 (1 month ago)	Honeypot [uk-production01]: SSH handshake/banner (17 bytes of payload); 14972 [1] TCP	SSH
🇬🇧 gbzret4d	2026-05-03 06:27:38 (1 month ago)	Honeypot [uk-production01]: SSH handshake/banner (17 bytes of payload); 52181 [1] TCP	SSH
🇨🇳 pengpeng	2026-05-01 21:16:25 (1 month ago)	monitor: on VM-0-7-ubuntu \| port: 61199 \| ttl: 248 script: github.com/sefinek/UFW-AbuseIPDB-Reporte ... show more monitor: on VM-0-7-ubuntu \| port: 61199 \| ttl: 248 script: github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan
🇲🇳 Public CSIRT/CC of Mongolia	2026-05-01 20:35:34 (1 month ago)	Honeypot hit: SSH handshake/banner (17 bytes of payload); 2645 [1] TCP	Brute-Force SSH
🇬🇧 gbzret4d	2026-05-01 04:16:36 (1 month ago)	Honeypot [uk-production01]: SSH handshake/banner (17 bytes of payload); 8085 [1] TCP	SSH
🇨🇭 YF	2026-04-30 23:55:29 (1 month ago)	Pays blacklisté (CN) — refresh	Brute-Force Web App Attack
🇺🇸 drewf.ink	2026-04-30 02:44:30 (1 month ago)	[02:44] Attempted SSH login on port 2222 with credentials root:qazwsxedc123	Brute-Force SSH
🇺🇸 drewf.ink	2026-04-30 02:03:50 (1 month ago)	[02:03] Attempted SSH login on port 2222 with credentials root:qazwsx123	Brute-Force SSH
🇳🇴 Hotwire	2026-04-30 01:24:06 (1 month ago)	Apr 30 03:00:46 h3buntu sshd[3681747]: Failed password for root from 106.52.52.196 port 51980 ssh2 A ... show more Apr 30 03:00:46 h3buntu sshd[3681747]: Failed password for root from 106.52.52.196 port 51980 ssh2 Apr 30 03:24:03 h3buntu sshd[3688244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.52.196 user=root Apr 30 03:24:05 h3buntu sshd[3688244]: Failed password for root from 106.52.52.196 port 35710 ssh2 ... show less	Brute-Force SSH Hacking

Showing 61 to 75 of 130 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇳🇱 45.148.10.147

🇺🇸 64.62.156.177

🇳🇱 52.233.193.61

🇸🇬 47.236.24.102

🇺🇸 35.252.231.231

🇨🇳 221.228.10.226

🇺🇸 162.216.149.200

🇫🇮 147.185.133.236

🇫🇮 147.185.133.118

🇨🇦 147.182.157.132

🇨🇳 125.66.234.159

🇮🇳 124.253.65.205

🇨🇳 111.160.133.62

🇷🇴 80.94.92.165

🇺🇸 65.49.1.66

🇺🇸 20.163.15.238

🇬🇧 13.41.178.94

🇺🇸 2a03:2880:f800:3e::

🇨🇳 183.17.225.43

🇧🇪 34.14.82.66