106.252.169.48

Basic Info

City: unknown

Region: unknown

Country: South Korea

Internet Service Provider: LG Dacom Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Invalid user qhsupport from 106.252.169.48 port 47193	2019-11-14 07:38:27
attackspam	$f2bV_matches_ltvn	2019-11-12 04:09:24
attack	Nov 1 22:36:35 areeb-Workstation sshd[15018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Nov 1 22:36:38 areeb-Workstation sshd[15018]: Failed password for invalid user zabbix from 106.252.169.48 port 41209 ssh2 ...	2019-11-02 01:19:09
attackspam	Oct 29 18:50:32 tuxlinux sshd[37794]: Invalid user zimbra from 106.252.169.48 port 36946 Oct 29 18:50:32 tuxlinux sshd[37794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 29 18:50:32 tuxlinux sshd[37794]: Invalid user zimbra from 106.252.169.48 port 36946 Oct 29 18:50:32 tuxlinux sshd[37794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 29 18:50:32 tuxlinux sshd[37794]: Invalid user zimbra from 106.252.169.48 port 36946 Oct 29 18:50:32 tuxlinux sshd[37794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 29 18:50:33 tuxlinux sshd[37794]: Failed password for invalid user zimbra from 106.252.169.48 port 36946 ssh2 ...	2019-10-30 02:24:12
attackbotsspam	Oct 27 19:12:21 cvbnet sshd[31774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 27 19:12:23 cvbnet sshd[31774]: Failed password for invalid user test from 106.252.169.48 port 42692 ssh2 ...	2019-10-28 02:33:05
attackspam	Oct 21 13:15:01 keyhelp sshd[827]: Invalid user smtpuser from 106.252.169.48 Oct 21 13:15:01 keyhelp sshd[827]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.252.169.48 Oct 21 13:15:03 keyhelp sshd[827]: Failed password for invalid user smtpuser from 106.252.169.48 port 49316 ssh2 Oct 21 13:15:03 keyhelp sshd[827]: Received disconnect from 106.252.169.48 port 49316:11: Normal Shutdown, Thank you for playing [preauth] Oct 21 13:15:03 keyhelp sshd[827]: Disconnected from 106.252.169.48 port 49316 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.252.169.48	2019-10-27 04:46:36
attackspambots	Invalid user admin from 106.252.169.48 port 37851	2019-10-25 02:54:39

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.252.169.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51985
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.252.169.48.			IN	A

;; AUTHORITY SECTION:
.			439	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102401 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 25 02:54:36 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 48.169.252.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 48.169.252.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.75.206.166	attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-09-15 05:41:55
2.82.117.114	attackspam	RDP Bruteforce	2019-09-15 05:43:50
45.55.188.133	attack	Sep 14 23:42:06 mail sshd\[31539\]: Invalid user vcsa from 45.55.188.133 port 51399 Sep 14 23:42:06 mail sshd\[31539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.188.133 Sep 14 23:42:08 mail sshd\[31539\]: Failed password for invalid user vcsa from 45.55.188.133 port 51399 ssh2 Sep 14 23:46:36 mail sshd\[31955\]: Invalid user alex from 45.55.188.133 port 44478 Sep 14 23:46:36 mail sshd\[31955\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.188.133	2019-09-15 05:51:01
50.79.59.97	attack	Sep 14 13:14:57 dallas01 sshd[9255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.79.59.97 Sep 14 13:15:00 dallas01 sshd[9255]: Failed password for invalid user vsftpd from 50.79.59.97 port 40385 ssh2 Sep 14 13:18:51 dallas01 sshd[9895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.79.59.97	2019-09-15 05:42:09
52.53.245.164	attackspambots	Sep 14 23:48:59 vps691689 sshd[19276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.53.245.164 Sep 14 23:49:02 vps691689 sshd[19276]: Failed password for invalid user system from 52.53.245.164 port 16514 ssh2 ...	2019-09-15 06:05:56
209.97.161.22	attackspambots	Sep 14 21:43:46 hcbbdb sshd\[19500\]: Invalid user doug from 209.97.161.22 Sep 14 21:43:46 hcbbdb sshd\[19500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.161.22 Sep 14 21:43:48 hcbbdb sshd\[19500\]: Failed password for invalid user doug from 209.97.161.22 port 46148 ssh2 Sep 14 21:48:13 hcbbdb sshd\[19978\]: Invalid user teacher from 209.97.161.22 Sep 14 21:48:13 hcbbdb sshd\[19978\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.161.22	2019-09-15 05:58:47
51.254.220.20	attack	Sep 14 21:19:56 nextcloud sshd\[7272\]: Invalid user User from 51.254.220.20 Sep 14 21:19:56 nextcloud sshd\[7272\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.220.20 Sep 14 21:19:58 nextcloud sshd\[7272\]: Failed password for invalid user User from 51.254.220.20 port 48858 ssh2 ...	2019-09-15 05:56:31
51.75.17.228	attackbots	Sep 14 21:43:22 mail sshd\[16665\]: Failed password for invalid user vhost from 51.75.17.228 port 58908 ssh2 Sep 14 21:47:04 mail sshd\[17085\]: Invalid user li from 51.75.17.228 port 54121 Sep 14 21:47:04 mail sshd\[17085\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.17.228 Sep 14 21:47:07 mail sshd\[17085\]: Failed password for invalid user li from 51.75.17.228 port 54121 ssh2 Sep 14 21:50:57 mail sshd\[17609\]: Invalid user sgt from 51.75.17.228 port 48956 Sep 14 21:50:57 mail sshd\[17609\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.17.228	2019-09-15 05:50:05
137.74.166.77	attack	Sep 14 11:37:45 hcbb sshd\[28745\]: Invalid user ts1 from 137.74.166.77 Sep 14 11:37:45 hcbb sshd\[28745\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.ip-137-74-166.eu Sep 14 11:37:47 hcbb sshd\[28745\]: Failed password for invalid user ts1 from 137.74.166.77 port 50286 ssh2 Sep 14 11:42:40 hcbb sshd\[29239\]: Invalid user test from 137.74.166.77 Sep 14 11:42:40 hcbb sshd\[29239\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.ip-137-74-166.eu	2019-09-15 05:47:38
211.152.47.90	attack	Sep 14 22:19:01 pornomens sshd\[22324\]: Invalid user shea from 211.152.47.90 port 39264 Sep 14 22:19:01 pornomens sshd\[22324\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.152.47.90 Sep 14 22:19:03 pornomens sshd\[22324\]: Failed password for invalid user shea from 211.152.47.90 port 39264 ssh2 ...	2019-09-15 06:11:49
159.89.194.149	attack	Sep 14 23:29:25 dedicated sshd[8794]: Invalid user lt from 159.89.194.149 port 33876	2019-09-15 05:53:02
202.97.147.183	attack	IMAP brute force ...	2019-09-15 06:02:51
176.14.28.200	attackbots	port scan and connect, tcp 1433 (ms-sql-s)	2019-09-15 05:57:22
190.4.187.143	attack	Automatic report - Port Scan Attack	2019-09-15 05:59:07
78.186.117.104	attackspam	Automatic report - Port Scan Attack	2019-09-15 06:09:09

Recently Reported IPs

189.191.166.200	109.9.32.228	177.117.48.227	158.79.199.119
117.192.74.219	175.52.66.22	149.154.252.173	189.180.64.3
45.224.192.169	3.169.152.245	66.139.210.246	142.24.13.48
5.40.22.7	117.86.0.20	75.66.186.19	130.71.111.167
90.47.44.166	162.209.199.197	158.143.43.239	160.121.230.56