106.252.169.48

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): LG Dacom Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user qhsupport from 106.252.169.48 port 47193	2019-11-14 07:38:27
attackspam	$f2bV_matches_ltvn	2019-11-12 04:09:24
attack	Nov 1 22:36:35 areeb-Workstation sshd[15018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Nov 1 22:36:38 areeb-Workstation sshd[15018]: Failed password for invalid user zabbix from 106.252.169.48 port 41209 ssh2 ...	2019-11-02 01:19:09
attackspam	Oct 29 18:50:32 tuxlinux sshd[37794]: Invalid user zimbra from 106.252.169.48 port 36946 Oct 29 18:50:32 tuxlinux sshd[37794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 29 18:50:32 tuxlinux sshd[37794]: Invalid user zimbra from 106.252.169.48 port 36946 Oct 29 18:50:32 tuxlinux sshd[37794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 29 18:50:32 tuxlinux sshd[37794]: Invalid user zimbra from 106.252.169.48 port 36946 Oct 29 18:50:32 tuxlinux sshd[37794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 29 18:50:33 tuxlinux sshd[37794]: Failed password for invalid user zimbra from 106.252.169.48 port 36946 ssh2 ...	2019-10-30 02:24:12
attackbotsspam	Oct 27 19:12:21 cvbnet sshd[31774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 27 19:12:23 cvbnet sshd[31774]: Failed password for invalid user test from 106.252.169.48 port 42692 ssh2 ...	2019-10-28 02:33:05
attackspam	Oct 21 13:15:01 keyhelp sshd[827]: Invalid user smtpuser from 106.252.169.48 Oct 21 13:15:01 keyhelp sshd[827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 21 13:15:03 keyhelp sshd[827]: Failed password for invalid user smtpuser from 106.252.169.48 port 49316 ssh2 Oct 21 13:15:03 keyhelp sshd[827]: Received disconnect from 106.252.169.48 port 49316:11: Normal Shutdown, Thank you for playing [preauth] Oct 21 13:15:03 keyhelp sshd[827]: Disconnected from 106.252.169.48 port 49316 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.252.169.48	2019-10-27 04:46:36
attackspambots	Invalid user admin from 106.252.169.48 port 37851	2019-10-25 02:54:39

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.252.169.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51985
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.252.169.48.			IN	A

;; AUTHORITY SECTION:
.			439	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102401 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 25 02:54:36 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 48.169.252.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.169.252.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
94.102.51.7	attack	Jun 12 19:20:22 pop3-login: Info: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=94.102.51.7, lip=192.168.100.101, session=\<6kWqSuan8gBeZjMH\>\ Jun 12 19:34:53 pop3-login: Info: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=94.102.51.7, lip=192.168.100.101, session=\\ Jun 12 19:35:00 pop3-login: Info: Aborted login $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=94.102.51.7, lip=192.168.100.101, session=\\ Jun 12 19:56:41 pop3-login: Info: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=94.102.51.7, lip=192.168.100.101, session=\\ Jun 12 20:01:05 pop3-login: Info: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=94.102.51.7, lip=192.168.100.101, session=\\ Jun 12 20:07:58 pop3-login: Info: A	2020-06-13 02:43:44
159.89.121.79	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5a1db7264905ab64 \| WAF_Rule_ID: 2e3ead4eb71148f0b1a3556e8da29348 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CA \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: wevg.org \| User-Agent: Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0 \| CF_DC: YYZ. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-06-13 02:42:41
63.81.93.175	attack	postfix (unknown user, SPF fail or relay access denied)	2020-06-13 02:44:01
84.33.109.107	attackspambots	Jun 12 19:46:25 root sshd[16076]: Failed password for invalid user pi from 84.33.109.107 port 57614 ssh2 ...	2020-06-13 03:07:01
106.12.56.41	attackspambots	2020-06-12T18:47:14+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-06-13 02:39:55
195.77.119.8	attackbots	Automatic report - Banned IP Access	2020-06-13 02:35:14
201.187.103.18	attack	(From rempe.gracie@gmail.com) Hi, Sorry to bother you but Would you like to reach brand-new clients? We are personally inviting you to join one of the leading markets for influencers and affiliate networks on the web, Fiverr Pro. This network finds freelancers and influencers who will help you improve your website's design, ranking and promote your company to make it viral. Freelancers of Fiverr Pro can: Improve your website design, make viral videos for you, promote your website and business all around the internet and potentially bring in more clients. It's the most safe, easiest and most reliable way to increase your sales! What do you think? Find out more: http://www.alecpow.com/fiverr-pro	2020-06-13 03:02:31
70.48.144.197	attack	'Fail2Ban'	2020-06-13 02:46:00
45.67.233.90	attack	From devolver@temsaudetemtudo.live Fri Jun 12 13:46:21 2020 Received: from temsamx3.temsaudetemtudo.live ([45.67.233.90]:39530)	2020-06-13 03:07:30
167.99.75.240	attackspambots	2020-06-12T19:06:11.306253centos sshd[1038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.75.240 2020-06-12T19:06:11.298613centos sshd[1038]: Invalid user wenli from 167.99.75.240 port 35178 2020-06-12T19:06:13.318832centos sshd[1038]: Failed password for invalid user wenli from 167.99.75.240 port 35178 ssh2 ...	2020-06-13 02:52:06
222.186.175.23	attack	12.06.2020 19:01:51 SSH access blocked by firewall	2020-06-13 03:04:15
185.212.195.122	attack	Jun 12 20:26:50 vps687878 sshd\[22894\]: Failed password for root from 185.212.195.122 port 50460 ssh2 Jun 12 20:30:08 vps687878 sshd\[23169\]: Invalid user admin from 185.212.195.122 port 43062 Jun 12 20:30:08 vps687878 sshd\[23169\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.212.195.122 Jun 12 20:30:09 vps687878 sshd\[23169\]: Failed password for invalid user admin from 185.212.195.122 port 43062 ssh2 Jun 12 20:33:28 vps687878 sshd\[23659\]: Invalid user of from 185.212.195.122 port 35626 Jun 12 20:33:28 vps687878 sshd\[23659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.212.195.122 ...	2020-06-13 02:36:33
165.22.215.192	attackspam	Unauthorized connection attempt detected from IP address 165.22.215.192 to port 8222	2020-06-13 02:53:11
95.169.15.90	attackbotsspam	Jun 12 21:49:35 lukav-desktop sshd\[27832\]: Invalid user yvonne from 95.169.15.90 Jun 12 21:49:35 lukav-desktop sshd\[27832\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.169.15.90 Jun 12 21:49:37 lukav-desktop sshd\[27832\]: Failed password for invalid user yvonne from 95.169.15.90 port 37964 ssh2 Jun 12 21:52:40 lukav-desktop sshd\[27854\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.169.15.90 user=root Jun 12 21:52:42 lukav-desktop sshd\[27854\]: Failed password for root from 95.169.15.90 port 48942 ssh2	2020-06-13 03:01:35
138.68.21.125	attackspambots	Jun 12 20:37:59 piServer sshd[21252]: Failed password for root from 138.68.21.125 port 56042 ssh2 Jun 12 20:42:04 piServer sshd[21707]: Failed password for root from 138.68.21.125 port 57158 ssh2 ...	2020-06-13 03:03:10

最近上报的IP列表

189.191.166.200	109.9.32.228	177.117.48.227	158.79.199.119
117.192.74.219	175.52.66.22	149.154.252.173	189.180.64.3
45.224.192.169	3.169.152.245	66.139.210.246	142.24.13.48
5.40.22.7	117.86.0.20	75.66.186.19	130.71.111.167
90.47.44.166	162.209.199.197	158.143.43.239	160.121.230.56