95.48.54.106 - IPInfo

Basic Info

City: Zblewo

Region: Pomerania

Country: Poland

Internet Service Provider: Orange Polska Spolka Akcyjna

Hostname: unknown

Organization: Orange Polska Spolka Akcyjna

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	May 23 16:16:59 cdc sshd[8829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 May 23 16:17:01 cdc sshd[8829]: Failed password for invalid user lqq from 95.48.54.106 port 33436 ssh2	2020-05-23 23:37:37
attack	$f2bV_matches	2020-05-12 20:27:43
attack	2020-05-06T17:09:20.7811291495-001 sshd[51238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=iwc106.internetdsl.tpnet.pl 2020-05-06T17:09:20.7731091495-001 sshd[51238]: Invalid user patrick from 95.48.54.106 port 36348 2020-05-06T17:09:22.3148011495-001 sshd[51238]: Failed password for invalid user patrick from 95.48.54.106 port 36348 ssh2 2020-05-06T17:13:34.8282141495-001 sshd[51405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=iwc106.internetdsl.tpnet.pl user=root 2020-05-06T17:13:36.8984031495-001 sshd[51405]: Failed password for root from 95.48.54.106 port 47302 ssh2 2020-05-06T17:17:44.0835541495-001 sshd[51553]: Invalid user db2inst from 95.48.54.106 port 58238 ...	2020-05-07 05:45:18
attackspambots	$f2bV_matches	2020-05-05 16:45:44
attackbotsspam	SSH Brute-Force reported by Fail2Ban	2020-05-04 21:14:34
attack	$f2bV_matches	2020-05-04 04:04:24
attackbotsspam	Apr 26 17:38:13 XXX sshd[52790]: Invalid user agnes from 95.48.54.106 port 55462	2020-04-27 02:33:25
attackbotsspam	Apr 23 20:11:06 wbs sshd\[3440\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=iwc106.internetdsl.tpnet.pl user=root Apr 23 20:11:09 wbs sshd\[3440\]: Failed password for root from 95.48.54.106 port 47052 ssh2 Apr 23 20:15:20 wbs sshd\[3920\]: Invalid user fm from 95.48.54.106 Apr 23 20:15:20 wbs sshd\[3920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=iwc106.internetdsl.tpnet.pl Apr 23 20:15:22 wbs sshd\[3920\]: Failed password for invalid user fm from 95.48.54.106 port 60102 ssh2	2020-04-24 14:35:10
attack	k+ssh-bruteforce	2020-04-22 18:54:58
attackbots	SSH Login Bruteforce	2020-04-12 22:42:12
attackspam	Apr 11 05:55:33 cloud sshd[8921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 Apr 11 05:55:35 cloud sshd[8921]: Failed password for invalid user historymo from 95.48.54.106 port 33076 ssh2	2020-04-11 12:48:22
attackbots	(sshd) Failed SSH login from 95.48.54.106 (PL/Poland/iwc106.internetdsl.tpnet.pl): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 7 05:38:59 amsweb01 sshd[25306]: Invalid user ubuntu from 95.48.54.106 port 40300 Apr 7 05:39:00 amsweb01 sshd[25306]: Failed password for invalid user ubuntu from 95.48.54.106 port 40300 ssh2 Apr 7 05:46:59 amsweb01 sshd[26277]: Invalid user tomcat from 95.48.54.106 port 44074 Apr 7 05:47:01 amsweb01 sshd[26277]: Failed password for invalid user tomcat from 95.48.54.106 port 44074 ssh2 Apr 7 05:50:56 amsweb01 sshd[26826]: Invalid user team from 95.48.54.106 port 54548	2020-04-07 15:59:51
attackbotsspam	$f2bV_matches	2020-03-31 23:01:11
attackspambots	Triggered by Fail2Ban at Ares web server	2020-03-31 03:30:47
attack	SSH Authentication Attempts Exceeded	2020-03-24 20:19:02
attackspam	Mar 24 04:24:02 ny01 sshd[5956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 Mar 24 04:24:04 ny01 sshd[5956]: Failed password for invalid user ay from 95.48.54.106 port 53820 ssh2 Mar 24 04:28:04 ny01 sshd[8091]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106	2020-03-24 16:30:33
attackspambots	3x Failed Password	2020-03-24 13:55:50
attackbotsspam	Feb 26 01:23:11 gw1 sshd[3974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 Feb 26 01:23:13 gw1 sshd[3974]: Failed password for invalid user robertparker from 95.48.54.106 port 39384 ssh2 ...	2020-02-26 06:30:37
attackbots	Feb 17 15:10:53 localhost sshd\[24363\]: Invalid user bull from 95.48.54.106 port 49730 Feb 17 15:10:53 localhost sshd\[24363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 Feb 17 15:10:55 localhost sshd\[24363\]: Failed password for invalid user bull from 95.48.54.106 port 49730 ssh2	2020-02-18 00:20:40
attack	Feb 11 14:38:11 v22018076590370373 sshd[6805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 ...	2020-02-12 06:27:58
attackbotsspam	Feb 6 07:36:41 firewall sshd[10338]: Invalid user sds from 95.48.54.106 Feb 6 07:36:43 firewall sshd[10338]: Failed password for invalid user sds from 95.48.54.106 port 57824 ssh2 Feb 6 07:39:41 firewall sshd[10486]: Invalid user nin from 95.48.54.106 ...	2020-02-06 19:36:23
attack	Feb 4 08:48:07 silence02 sshd[23184]: Failed password for root from 95.48.54.106 port 59336 ssh2 Feb 4 08:51:13 silence02 sshd[23451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 Feb 4 08:51:16 silence02 sshd[23451]: Failed password for invalid user kevin from 95.48.54.106 port 60850 ssh2	2020-02-04 15:55:45
attack	Jan 18 16:51:29 163-172-32-151 sshd[8103]: Invalid user tingting from 95.48.54.106 port 56442 ...	2020-01-19 04:03:27
attack	Unauthorized connection attempt detected from IP address 95.48.54.106 to port 2220 [J]	2020-01-17 04:58:32
attackspambots	Nov 27 20:33:22 odroid64 sshd\[19795\]: User root from 95.48.54.106 not allowed because not listed in AllowUsers Nov 27 20:33:22 odroid64 sshd\[19795\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 user=root ...	2020-01-16 05:12:00
attackbotsspam	Jan 15 08:13:09 sso sshd[4632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.48.54.106 Jan 15 08:13:10 sso sshd[4632]: Failed password for invalid user 2. from 95.48.54.106 port 41276 ssh2 ...	2020-01-15 16:02:43
attackspambots	Unauthorized connection attempt detected from IP address 95.48.54.106 to port 2220 [J]	2020-01-06 15:19:19
attack	$f2bV_matches	2019-12-29 16:14:55
attackspambots	Invalid user bind from 95.48.54.106 port 36804	2019-12-29 04:28:07
attackbots	--- report --- Dec 24 05:30:03 sshd: Connection from 95.48.54.106 port 39758 Dec 24 05:30:04 sshd: Invalid user zymkiewicz from 95.48.54.106 Dec 24 05:30:06 sshd: Failed password for invalid user zymkiewicz from 95.48.54.106 port 39758 ssh2 Dec 24 05:30:06 sshd: Received disconnect from 95.48.54.106: 11: Bye Bye [preauth]	2019-12-24 20:36:05

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 95.48.54.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42962
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;95.48.54.106.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019040301 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu Apr 04 09:09:13 +08 2019
;; MSG SIZE  rcvd: 116

Host info

106.54.48.95.in-addr.arpa domain name pointer iwc106.internetdsl.tpnet.pl.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
106.54.48.95.in-addr.arpa	name = iwc106.internetdsl.tpnet.pl.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.249.41.124	attackbotsspam	SMB Server BruteForce Attack	2020-02-25 21:04:36
104.37.47.7	bots	this URL continuously attempts to SEND me a TROJAN 20 times in the last few HOURS !	2020-02-25 20:37:06
14.233.183.205	attackbotsspam	Automatic report - Port Scan Attack	2020-02-25 20:25:06
192.241.235.87	attack	SNMP Scan	2020-02-25 20:38:30
104.18.69.106	attackbots	#BLOCKED Misbehaving Domain (Bad Bots Host) ##TrustME	2020-02-25 20:43:16
85.9.140.4	attackspam	Email rejected due to spam filtering	2020-02-25 20:32:02
122.51.217.125	attackbots	Feb 25 12:36:13 hcbbdb sshd\[15640\]: Invalid user redmine from 122.51.217.125 Feb 25 12:36:13 hcbbdb sshd\[15640\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.217.125 Feb 25 12:36:15 hcbbdb sshd\[15640\]: Failed password for invalid user redmine from 122.51.217.125 port 19797 ssh2 Feb 25 12:43:20 hcbbdb sshd\[16396\]: Invalid user taeyoung from 122.51.217.125 Feb 25 12:43:20 hcbbdb sshd\[16396\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.217.125	2020-02-25 20:58:52
101.108.73.149	attackbotsspam	1582615256 - 02/25/2020 08:20:56 Host: 101.108.73.149/101.108.73.149 Port: 445 TCP Blocked	2020-02-25 20:30:35
200.45.147.129	attack	Feb 25 05:07:15 askasleikir sshd[42267]: Failed password for invalid user sammy from 200.45.147.129 port 5767 ssh2	2020-02-25 20:46:32
60.246.96.128	attack	port scan and connect, tcp 23 (telnet)	2020-02-25 20:48:38
101.108.202.108	attackbots	1582615231 - 02/25/2020 08:20:31 Host: 101.108.202.108/101.108.202.108 Port: 445 TCP Blocked	2020-02-25 20:42:53
45.133.99.2	attackbots	Feb 25 13:46:43 srv01 postfix/smtpd\[19473\]: warning: unknown\[45.133.99.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 25 13:47:03 srv01 postfix/smtpd\[19473\]: warning: unknown\[45.133.99.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 25 14:01:05 srv01 postfix/smtpd\[6581\]: warning: unknown\[45.133.99.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 25 14:01:26 srv01 postfix/smtpd\[19473\]: warning: unknown\[45.133.99.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 25 14:03:50 srv01 postfix/smtpd\[19473\]: warning: unknown\[45.133.99.2\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-02-25 21:03:56
49.232.171.28	attackbotsspam	Feb 25 08:20:29 MK-Soft-VM4 sshd[27894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.171.28 Feb 25 08:20:31 MK-Soft-VM4 sshd[27894]: Failed password for invalid user xhchen from 49.232.171.28 port 48942 ssh2 ...	2020-02-25 20:44:02
76.120.7.86	attackspam	Feb 25 07:20:06 *** sshd[19354]: User root from 76.120.7.86 not allowed because not listed in AllowUsers	2020-02-25 21:01:25
79.127.99.95	attackbots	firewall-block, port(s): 81/tcp	2020-02-25 20:27:31

Recently Reported IPs

41.249.191.85	40.112.182.220	114.25.155.201	118.70.185.176
42.177.57.215	203.173.94.65	209.99.169.22	123.31.47.40
52.42.102.234	13.233.166.219	111.65.33.236	105.4.7.235
212.156.86.226	122.114.158.230	120.29.70.99	96.64.135.138
162.243.149.141	179.185.67.221	88.247.93.87	181.40.120.146