JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 106.246.233.154

106.246.233.154 was found in our database!

This IP was reported 46 times. Confidence of Abuse is 72%: ?

72%

ISP	LG Uplus
Usage Type	Commercial
ASN	AS3786
Domain Name	lguplus.com
Country	🇰🇷 Korea (the Republic of)
City	Gwangju, Gyeonggi-do

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 106.246.233.154

Whois 106.246.233.154

IP Abuse Reports for 106.246.233.154:

This IP address has been reported a total of 46 times from 30 distinct sources. 106.246.233.154 was first reported on March 3rd 2026, and the most recent report was 3 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇷🇺 weke	2026-06-12 15:09:13 (3 hours ago)	ip=106.246.233.154 \| user=csgoserver \| pass=csgo \| event=cowrie.login.failed \| source=ssh honeypot M ... show more ip=106.246.233.154 \| user=csgoserver \| pass=csgo \| event=cowrie.login.failed \| source=ssh honeypot MSK \| time=2026-06-12T15:09:13.065172Z show less	Brute-Force SSH
🇨🇦 ImMarvolo	2026-06-12 15:02:33 (3 hours ago)	Unauthorized connection attempt detected neo-ca-bhs-01, SSH Brute-Force	Brute-Force SSH
🇺🇸 drewf.ink	2026-06-12 14:25:20 (4 hours ago)	[14:25] Attempted SSH login on port 2222 with credentials deployer:deployer!	Brute-Force SSH
🇩🇪 H. Hampel	2026-06-12 14:13:56 (4 hours ago)	2026-06-12T16:13:56.563991nc1 sshd[3233731]: Invalid user dimas from 106.246.233.154 port 44550 ...	Brute-Force SSH
🇩🇪 licen777	2026-06-12 13:13:40 (5 hours ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-12T13:01:30Z and 2026-06-1 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-12T13:01:30Z and 2026-06-12T13:13:40Z show less	Brute-Force SSH
🇹🇷 Threat.live	2026-06-12 13:10:02 (5 hours ago)	Suspicious Connection Attempts	Brute-Force
🇨🇭 ScanThe.Net	2026-06-12 12:59:54 (5 hours ago)	ID: 4085078722 \| PORT: 30801 \| https://106-246-233-154.scanthe.net	Port Scan
🇩🇪 Mafyan	2026-06-01 11:37:52 (1 week ago)	2026-06-01T13:37:49.133050235664.hosted-by-kvmka.com sshd[1456848]: pam_unix(sshd:auth): authenticat ... show more 2026-06-01T13:37:49.133050235664.hosted-by-kvmka.com sshd[1456848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.246.233.154 2026-06-01T13:37:51.206166235664.hosted-by-kvmka.com sshd[1456848]: Failed password for invalid user newuser from 106.246.233.154 port 53633 ssh2 ... show less	Brute-Force SSH
🇩🇪 licen777	2026-06-01 10:43:09 (1 week ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-01T10:38:18Z and 2026-06-0 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-01T10:38:18Z and 2026-06-01T10:43:09Z show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-21 09:47:09 (3 weeks ago)	106.246.233.154 (KR/South Korea/-), 5 distributed sshd attacks on account [root] in the last 3600 se ... show more 106.246.233.154 (KR/South Korea/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 21 04:47:03 13860 sshd[5912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.246.233.154 user=root May 21 04:46:02 13860 sshd[5834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.157.68.14 user=root May 21 04:46:04 13860 sshd[5834]: Failed password for root from 69.157.68.14 port 44316 ssh2 May 21 04:46:04 13860 sshd[5836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.172.184 user=root May 21 04:46:06 13860 sshd[5836]: Failed password for root from 200.105.172.184 port 37012 ssh2 IP Addresses Blocked: show less	Brute-Force SSH
🇰🇷 hanb.jp	2026-05-13 07:56:19 (4 weeks ago)	May 12 09:02:57 v4bgp sshd[1238440]: Failed password for invalid user postgres from 106.246.233.154 ... show more May 12 09:02:57 v4bgp sshd[1238440]: Failed password for invalid user postgres from 106.246.233.154 port 36360 ssh2 May 13 07:56:17 v4bgp sshd[1279263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.246.233.154 user=root May 13 07:56:19 v4bgp sshd[1279263]: Failed password for root from 106.246.233.154 port 53520 ssh2 ... show less	Brute-Force SSH
🇨🇳 ThreatBook.io	2026-05-12 22:45:27 (4 weeks ago)	ThreatBook Intelligence: C2 more details on http://threatbook.io/ip/106.246.233.154	SSH
🇩🇪 fynndows.de	2026-05-12 09:37:09 (1 month ago)	2026-05-12T09:36:44.694009+00:00 fynn-epyc3 sshd-session[972366]: Failed password for root from 106. ... show more 2026-05-12T09:36:44.694009+00:00 fynn-epyc3 sshd-session[972366]: Failed password for root from 106.246.233.154 port 41096 ssh2 2026-05-12T09:37:09.021816+00:00 fynn-epyc3 sshd-session[972371]: Invalid user vpn from 106.246.233.154 port 44213 ... show less	Brute-Force SSH
🇺🇸 Deltron3030	2026-05-12 09:30:22 (1 month ago)	SSH brute-force attempt from 106.246.233.154 blocked by Houston-Ryzen-Dartnode.	Brute-Force SSH
🇺🇸 bigscoots.com	2026-05-12 09:20:35 (1 month ago)	106.246.233.154 (KR/South Korea/-), 5 distributed sshd attacks on account [root] in the last 3600 se ... show more 106.246.233.154 (KR/South Korea/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: May 12 04:20:24 14397 sshd[18815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.145.237.236 user=root May 12 04:09:46 14397 sshd[17961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.246.233.154 user=root May 12 04:10:56 14397 sshd[18054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.79.191.89 user=root May 12 04:10:58 14397 sshd[18054]: Failed password for root from 210.79.191.89 port 55222 ssh2 May 12 04:09:48 14397 sshd[17961]: Failed password for root from 106.246.233.154 port 44404 ssh2 IP Addresses Blocked: 118.145.237.236 (CN/China/-) show less	Brute-Force SSH

Showing 1 to 15 of 46 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 27.24.49.177

🇨🇳 124.117.195.235

🇹🇼 111.253.129.15

🇩🇪 68.183.75.109

🇩🇿 41.101.247.190

🇺🇸 20.169.83.157

🇧🇷 205.210.31.141

🇬🇧 195.206.182.200

🇺🇸 162.216.149.17

🇱🇰 124.43.10.224

🇨🇳 113.31.115.157

🇺🇸 69.63.215.127

🇧🇷 45.164.251.67

🇫🇮 38.7.145.186

🇩🇪 207.154.230.149

🇮🇩 182.160.54.167

🇳🇱 176.65.148.205

🇨🇦 158.69.194.208

🇮🇳 152.52.199.18

🇺🇸 20.65.195.105