106.252.169.48

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): South Korea

运营商(isp): LG Dacom Corporation

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user qhsupport from 106.252.169.48 port 47193	2019-11-14 07:38:27
attackspam	$f2bV_matches_ltvn	2019-11-12 04:09:24
attack	Nov 1 22:36:35 areeb-Workstation sshd[15018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Nov 1 22:36:38 areeb-Workstation sshd[15018]: Failed password for invalid user zabbix from 106.252.169.48 port 41209 ssh2 ...	2019-11-02 01:19:09
attackspam	Oct 29 18:50:32 tuxlinux sshd[37794]: Invalid user zimbra from 106.252.169.48 port 36946 Oct 29 18:50:32 tuxlinux sshd[37794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 29 18:50:32 tuxlinux sshd[37794]: Invalid user zimbra from 106.252.169.48 port 36946 Oct 29 18:50:32 tuxlinux sshd[37794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 29 18:50:32 tuxlinux sshd[37794]: Invalid user zimbra from 106.252.169.48 port 36946 Oct 29 18:50:32 tuxlinux sshd[37794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 29 18:50:33 tuxlinux sshd[37794]: Failed password for invalid user zimbra from 106.252.169.48 port 36946 ssh2 ...	2019-10-30 02:24:12
attackbotsspam	Oct 27 19:12:21 cvbnet sshd[31774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 27 19:12:23 cvbnet sshd[31774]: Failed password for invalid user test from 106.252.169.48 port 42692 ssh2 ...	2019-10-28 02:33:05
attackspam	Oct 21 13:15:01 keyhelp sshd[827]: Invalid user smtpuser from 106.252.169.48 Oct 21 13:15:01 keyhelp sshd[827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 21 13:15:03 keyhelp sshd[827]: Failed password for invalid user smtpuser from 106.252.169.48 port 49316 ssh2 Oct 21 13:15:03 keyhelp sshd[827]: Received disconnect from 106.252.169.48 port 49316:11: Normal Shutdown, Thank you for playing [preauth] Oct 21 13:15:03 keyhelp sshd[827]: Disconnected from 106.252.169.48 port 49316 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.252.169.48	2019-10-27 04:46:36
attackspambots	Invalid user admin from 106.252.169.48 port 37851	2019-10-25 02:54:39

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.252.169.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51985
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.252.169.48.			IN	A

;; AUTHORITY SECTION:
.			439	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102401 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 25 02:54:36 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 48.169.252.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.169.252.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
66.70.130.151	attackspambots	2020-08-06T00:40:12.8669741495-001 sshd[10553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip151.ip-66-70-130.net user=root 2020-08-06T00:40:15.1245051495-001 sshd[10553]: Failed password for root from 66.70.130.151 port 33164 ssh2 2020-08-06T00:51:41.1132041495-001 sshd[11225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip151.ip-66-70-130.net user=root 2020-08-06T00:51:42.9604061495-001 sshd[11225]: Failed password for root from 66.70.130.151 port 45554 ssh2 2020-08-06T01:03:22.0627871495-001 sshd[11963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip151.ip-66-70-130.net user=root 2020-08-06T01:03:24.1438321495-001 sshd[11963]: Failed password for root from 66.70.130.151 port 57924 ssh2 ...	2020-08-06 14:24:21
222.186.30.112	attack	Unauthorized connection attempt detected from IP address 222.186.30.112 to port 22	2020-08-06 14:34:44
191.255.89.168	attackspam	Automatic report - Port Scan Attack	2020-08-06 14:42:37
218.92.0.172	attackbots	Aug 6 05:52:41 hcbbdb sshd\[3566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.172 user=root Aug 6 05:52:43 hcbbdb sshd\[3566\]: Failed password for root from 218.92.0.172 port 56226 ssh2 Aug 6 05:52:46 hcbbdb sshd\[3566\]: Failed password for root from 218.92.0.172 port 56226 ssh2 Aug 6 05:52:50 hcbbdb sshd\[3566\]: Failed password for root from 218.92.0.172 port 56226 ssh2 Aug 6 05:52:52 hcbbdb sshd\[3566\]: Failed password for root from 218.92.0.172 port 56226 ssh2	2020-08-06 13:57:47
218.14.80.46	attackspam	[H1.VM7] Blocked by UFW	2020-08-06 14:22:17
59.124.6.166	attackbotsspam	Aug 6 05:52:00 rush sshd[22971]: Failed password for root from 59.124.6.166 port 53067 ssh2 Aug 6 05:54:48 rush sshd[23029]: Failed password for root from 59.124.6.166 port 45442 ssh2 ...	2020-08-06 14:11:59
5.135.94.191	attackbots	2020-08-06T07:15:02.470736ns386461 sshd\[4682\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip191.ip-5-135-94.eu user=root 2020-08-06T07:15:04.606560ns386461 sshd\[4682\]: Failed password for root from 5.135.94.191 port 33142 ssh2 2020-08-06T07:28:03.950776ns386461 sshd\[16569\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip191.ip-5-135-94.eu user=root 2020-08-06T07:28:05.972628ns386461 sshd\[16569\]: Failed password for root from 5.135.94.191 port 35128 ssh2 2020-08-06T07:34:08.257144ns386461 sshd\[22122\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip191.ip-5-135-94.eu user=root ...	2020-08-06 14:18:02
106.53.94.190	attack	Aug 6 07:24:23 sshd\[26811\]: User root from 106.53.94.190 not allowed because not listed in AllowUsersAug 6 07:24:25 sshd\[26811\]: Failed password for invalid user root from 106.53.94.190 port 60152 ssh2 ...	2020-08-06 14:20:48
49.233.77.12	attack	$f2bV_matches	2020-08-06 14:27:30
106.53.127.49	attack	Aug 5 19:17:55 hanapaa sshd\[24761\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.127.49 user=root Aug 5 19:17:57 hanapaa sshd\[24761\]: Failed password for root from 106.53.127.49 port 43392 ssh2 Aug 5 19:21:09 hanapaa sshd\[24960\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.127.49 user=root Aug 5 19:21:11 hanapaa sshd\[24960\]: Failed password for root from 106.53.127.49 port 49484 ssh2 Aug 5 19:24:27 hanapaa sshd\[25143\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.127.49 user=root	2020-08-06 14:08:52
52.205.190.221	attack	Host Scan	2020-08-06 14:28:35
176.123.8.174	attackbots	Unauthorized connection attempt detected from IP address 176.123.8.174 to port 8088	2020-08-06 14:01:04
110.39.186.254	attackspam	Multiple SSH login attempts.	2020-08-06 14:34:09
222.186.175.217	attackbots	Aug 6 08:09:45 vm0 sshd[32200]: Failed password for root from 222.186.175.217 port 7350 ssh2 Aug 6 08:09:58 vm0 sshd[32200]: error: maximum authentication attempts exceeded for root from 222.186.175.217 port 7350 ssh2 [preauth] ...	2020-08-06 14:29:02
109.244.99.33	attack	Aug 3 08:56:33 cumulus sshd[3229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.99.33 user=r.r Aug 3 08:56:35 cumulus sshd[3229]: Failed password for r.r from 109.244.99.33 port 49152 ssh2 Aug 3 08:56:35 cumulus sshd[3229]: Received disconnect from 109.244.99.33 port 49152:11: Bye Bye [preauth] Aug 3 08:56:35 cumulus sshd[3229]: Disconnected from 109.244.99.33 port 49152 [preauth] Aug 3 08:59:05 cumulus sshd[3466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.99.33 user=r.r Aug 3 08:59:06 cumulus sshd[3466]: Failed password for r.r from 109.244.99.33 port 45922 ssh2 Aug 3 08:59:06 cumulus sshd[3466]: Received disconnect from 109.244.99.33 port 45922:11: Bye Bye [preauth] Aug 3 08:59:06 cumulus sshd[3466]: Disconnected from 109.244.99.33 port 45922 [preauth] Aug 3 09:01:25 cumulus sshd[3754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 t........ -------------------------------	2020-08-06 14:03:55

最近上报的IP列表

189.191.166.200	109.9.32.228	177.117.48.227	158.79.199.119
117.192.74.219	175.52.66.22	149.154.252.173	189.180.64.3
45.224.192.169	3.169.152.245	66.139.210.246	142.24.13.48
5.40.22.7	117.86.0.20	75.66.186.19	130.71.111.167
90.47.44.166	162.209.199.197	158.143.43.239	160.121.230.56