106.52.2.249 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.52.217.57	attackspambots	Oct 12 21:00:57 root sshd[30188]: Invalid user wang from 106.52.217.57 ...	2020-10-13 04:05:40
106.52.249.134	attack	2020-10-12T17:54:30+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-10-13 02:18:11
106.52.242.21	attack	Invalid user pcap from 106.52.242.21 port 53984	2020-10-12 21:40:00
106.52.217.57	attackbots	Oct 12 13:34:38 dhoomketu sshd[3796388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.217.57 Oct 12 13:34:38 dhoomketu sshd[3796388]: Invalid user almacen from 106.52.217.57 port 48066 Oct 12 13:34:40 dhoomketu sshd[3796388]: Failed password for invalid user almacen from 106.52.217.57 port 48066 ssh2 Oct 12 13:37:26 dhoomketu sshd[3796444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.217.57 user=root Oct 12 13:37:28 dhoomketu sshd[3796444]: Failed password for root from 106.52.217.57 port 49992 ssh2 ...	2020-10-12 19:42:31
106.52.249.134	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-12 17:44:02
106.52.242.21	attackbots	Invalid user pcap from 106.52.242.21 port 53984	2020-10-12 13:11:10
106.52.29.132	attack	Oct 9 17:40:26 vm0 sshd[22968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.29.132 Oct 9 17:40:28 vm0 sshd[22968]: Failed password for invalid user test from 106.52.29.132 port 56140 ssh2 ...	2020-10-10 07:27:25
106.52.231.137	attack	ET SCAN NMAP -sS window 1024	2020-10-10 03:01:11
106.52.29.132	attackspambots	Oct 9 17:40:26 vm0 sshd[22968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.29.132 Oct 9 17:40:28 vm0 sshd[22968]: Failed password for invalid user test from 106.52.29.132 port 56140 ssh2 ...	2020-10-09 23:47:52
106.52.231.137	attack	5555/tcp 4244/tcp 4243/tcp... [2020-10-09]6pkt,6pt.(tcp)	2020-10-09 18:49:22
106.52.29.132	attackspam	Too many connections or unauthorized access detected from Arctic banned ip	2020-10-09 15:34:46
106.52.205.211	attack	[ssh] SSH attack	2020-10-07 05:19:30
106.52.205.211	attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-10-06 21:28:56
106.52.205.211	attack	Oct 6 04:31:35 staging sshd[226107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.205.211 user=root Oct 6 04:31:37 staging sshd[226107]: Failed password for root from 106.52.205.211 port 34610 ssh2 Oct 6 04:36:18 staging sshd[226187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.205.211 user=root Oct 6 04:36:19 staging sshd[226187]: Failed password for root from 106.52.205.211 port 54108 ssh2 ...	2020-10-06 13:10:42
106.52.20.167	attack	Oct 4 13:19:52 mx sshd[24861]: Failed password for root from 106.52.20.167 port 54788 ssh2	2020-10-05 03:44:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.52.2.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3470
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.52.2.249.			IN	A

;; AUTHORITY SECTION:
.			221	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 20 19:52:52 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 249.2.52.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.2.52.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.186.128	attackspambots	Feb 8 06:41:04 legacy sshd[14932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.186.128 Feb 8 06:41:06 legacy sshd[14932]: Failed password for invalid user cru from 167.71.186.128 port 55108 ssh2 Feb 8 06:44:26 legacy sshd[15073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.186.128 ...	2020-02-08 16:30:57
81.22.45.182	attack	Feb 8 10:02:23 mail kernel: [562000.917378] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=81.22.45.182 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=56258 PROTO=TCP SPT=42357 DPT=16115 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2020-02-08 17:07:08
41.242.82.9	attack	Unauthorized connection attempt from IP address 41.242.82.9 on Port 445(SMB)	2020-02-08 16:25:52
35.245.95.132	attackspam	Feb 8 06:57:08 MK-Soft-VM8 sshd[5038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.245.95.132 Feb 8 06:57:09 MK-Soft-VM8 sshd[5038]: Failed password for invalid user vbe from 35.245.95.132 port 52184 ssh2 ...	2020-02-08 16:27:37
113.163.182.46	attack	Automatic report - Port Scan Attack	2020-02-08 16:52:34
94.181.80.3	attackbots	Feb 8 06:00:08 debian-2gb-nbg1-2 kernel: \[3397248.864123\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.181.80.3 DST=195.201.40.59 LEN=60 TOS=0x10 PREC=0x60 TTL=118 ID=6960 DF PROTO=TCP SPT=19700 DPT=22 WINDOW=8192 RES=0x00 SYN URGP=0	2020-02-08 16:54:10
187.162.254.163	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-08 16:17:44
116.96.119.133	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 08-02-2020 04:55:10.	2020-02-08 16:26:47
46.181.114.240	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-08 16:23:13
188.254.0.160	attack	Feb 8 08:47:29 web8 sshd\[22810\]: Invalid user kel from 188.254.0.160 Feb 8 08:47:29 web8 sshd\[22810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.160 Feb 8 08:47:32 web8 sshd\[22810\]: Failed password for invalid user kel from 188.254.0.160 port 45604 ssh2 Feb 8 08:50:48 web8 sshd\[24585\]: Invalid user scy from 188.254.0.160 Feb 8 08:50:48 web8 sshd\[24585\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.160	2020-02-08 17:01:22
49.128.174.248	attackbots	Unauthorised access (Feb 8) SRC=49.128.174.248 LEN=40 TTL=246 ID=58595 TCP DPT=1433 WINDOW=1024 SYN	2020-02-08 16:19:18
180.96.14.25	attackbots	Web application attack detected by fail2ban	2020-02-08 16:51:46
138.197.176.130	attack	$f2bV_matches	2020-02-08 17:02:28
36.67.196.51	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-08 17:03:20
125.24.254.238	attackspambots	Honeypot attack, port: 445, PTR: node-1ecu.pool-125-24.dynamic.totinternet.net.	2020-02-08 16:26:14

Recently Reported IPs

106.52.183.222	106.52.52.21	106.53.247.240	106.54.253.10
106.53.202.217	106.54.172.188	106.54.112.145	106.46.112.167
106.54.185.218	106.55.100.240	106.55.103.193	104.20.243.78
106.54.38.25	106.55.19.72	106.55.97.33	106.55.135.164
106.55.151.223	104.20.244.35	104.20.245.35	104.20.246.77