106.1.245.160 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan (Province of China)

Internet Service Provider: Kbro Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port probing on unauthorized port 9530	2020-02-18 02:22:43

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.1.245.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35281
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.1.245.160.			IN	A

;; AUTHORITY SECTION:
.			457	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021701 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 18 02:22:37 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 160.245.1.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 160.245.1.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
27.7.86.228	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-18 07:24:40
191.234.189.215	attackbots	Sep 18 01:02:07 server sshd[61449]: Failed password for root from 191.234.189.215 port 38786 ssh2 Sep 18 01:17:55 server sshd[689]: Failed password for root from 191.234.189.215 port 48570 ssh2 Sep 18 01:21:08 server sshd[1671]: Failed password for root from 191.234.189.215 port 41198 ssh2	2020-09-18 07:31:44
38.81.163.42	attackspambots	Bad bot requested remote resources	2020-09-18 07:21:11
106.54.141.196	attackspam	Sep 17 18:36:06 ip-172-31-42-142 sshd\[14466\]: Invalid user jemmons from 106.54.141.196\ Sep 17 18:36:07 ip-172-31-42-142 sshd\[14466\]: Failed password for invalid user jemmons from 106.54.141.196 port 56096 ssh2\ Sep 17 18:40:10 ip-172-31-42-142 sshd\[14567\]: Invalid user admin from 106.54.141.196\ Sep 17 18:40:12 ip-172-31-42-142 sshd\[14567\]: Failed password for invalid user admin from 106.54.141.196 port 38264 ssh2\ Sep 17 18:43:59 ip-172-31-42-142 sshd\[14585\]: Failed password for root from 106.54.141.196 port 48610 ssh2\	2020-09-18 07:30:55
156.54.164.97	attack	2020-09-17T23:02:40.107933abusebot-5.cloudsearch.cf sshd[29955]: Invalid user tec from 156.54.164.97 port 44001 2020-09-17T23:02:40.115360abusebot-5.cloudsearch.cf sshd[29955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.54.164.97 2020-09-17T23:02:40.107933abusebot-5.cloudsearch.cf sshd[29955]: Invalid user tec from 156.54.164.97 port 44001 2020-09-17T23:02:41.673622abusebot-5.cloudsearch.cf sshd[29955]: Failed password for invalid user tec from 156.54.164.97 port 44001 ssh2 2020-09-17T23:08:27.108296abusebot-5.cloudsearch.cf sshd[30026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.54.164.97 user=root 2020-09-17T23:08:28.968137abusebot-5.cloudsearch.cf sshd[30026]: Failed password for root from 156.54.164.97 port 60738 ssh2 2020-09-17T23:12:11.528966abusebot-5.cloudsearch.cf sshd[30157]: Invalid user ckobia from 156.54.164.97 port 38049 ...	2020-09-18 07:17:26
114.69.249.194	attackspambots	Sep 18 01:31:06 PorscheCustomer sshd[14875]: Failed password for root from 114.69.249.194 port 33840 ssh2 Sep 18 01:34:24 PorscheCustomer sshd[14968]: Failed password for root from 114.69.249.194 port 53808 ssh2 ...	2020-09-18 07:43:39
174.138.13.133	attackbots	Sep 17 20:53:39 abendstille sshd\[30359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.13.133 user=root Sep 17 20:53:41 abendstille sshd\[30359\]: Failed password for root from 174.138.13.133 port 41342 ssh2 Sep 17 20:57:22 abendstille sshd\[1706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.13.133 user=root Sep 17 20:57:24 abendstille sshd\[1706\]: Failed password for root from 174.138.13.133 port 52630 ssh2 Sep 17 21:01:07 abendstille sshd\[5479\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.13.133 user=root ...	2020-09-18 07:37:48
104.152.52.22	attackbotsspam	Multiport scan 35 ports : 443(x2) 445(x4) 520(x2) 847(x2) 993(x2) 994(x2) 997(x2) 1503(x2) 1589(x2) 1701(x2) 1720(x2) 1812(x2) 1813(x2) 2083(x2) 2086(x2) 2222(x2) 2223(x2) 2427(x2) 3456(x2) 4243(x2) 5228(x2) 5242(x2) 5722(x2) 5985(x2) 5986(x2) 7306(x2) 7687(x2) 7946(x2) 8000(x2) 8080(x2) 8116(x2) 8998(x2) 9090(x2) 9200(x2) 23399(x2)	2020-09-18 07:21:54
140.238.41.3	attack	Sep 17 23:29:43 xeon sshd[34133]: Failed password for root from 140.238.41.3 port 14644 ssh2	2020-09-18 07:51:33
201.31.167.50	attackbots	Sep 18 01:26:11 mout sshd[30436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.31.167.50 user=root Sep 18 01:26:13 mout sshd[30436]: Failed password for root from 201.31.167.50 port 45377 ssh2	2020-09-18 07:27:49
118.238.236.25	attackbotsspam	Sep1719:36:05server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[web]Sep1719:42:08server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[ftp]Sep1719:42:12server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[ftp]Sep1719:42:16server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[ftp]Sep1719:42:21server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[ftp]Sep1719:42:26server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[ftp]Sep1719:42:32server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[ftp]Sep1719:42:37server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[ftp]Sep1719:42:44server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[ftp]Sep1719:42:47server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[ftp]Sep1719:42:53server2pure-ftpd:\(\?@118.238.236.25\)[WARNING]Authenticationfailedforuser[ftp]Sep1719:42:5	2020-09-18 07:42:56
95.190.206.194	attackbots	prod11 ...	2020-09-18 07:15:28
95.141.31.112	attackspam	[Thu Sep 17 12:10:36 2020 GMT] "Credit Center" [RDNS_NONE,HTML_IMAGE_ONLY_32], Subject: Need help with your Credit?	2020-09-18 07:50:40
5.188.206.194	attack	Sep 18 01:10:06 galaxy event: galaxy/lswi: smtp: janita.gall@wi.uni-potsdam.de [5.188.206.194] authentication failure using internet password Sep 18 01:10:15 galaxy event: galaxy/lswi: smtp: janita.gall [5.188.206.194] authentication failure using internet password Sep 18 01:12:04 galaxy event: galaxy/lswi: smtp: anne.baumgrass@wi.uni-potsdam.de [5.188.206.194] authentication failure using internet password Sep 18 01:12:05 galaxy event: galaxy/lswi: smtp: janita.gall@wi.uni-potsdam.de [5.188.206.194] authentication failure using internet password Sep 18 01:12:11 galaxy event: galaxy/lswi: smtp: anne.baumgrass [5.188.206.194] authentication failure using internet password ...	2020-09-18 07:35:43
47.30.213.184	attack	1600361838 - 09/17/2020 18:57:18 Host: 47.30.213.184/47.30.213.184 Port: 445 TCP Blocked	2020-09-18 07:42:10

Recently Reported IPs

114.33.72.159	116.108.211.53	37.114.183.179	213.254.140.37
190.37.94.229	79.10.74.233	14.162.211.116	213.254.140.137
45.14.150.51	125.230.218.132	213.254.138.66	52.116.48.197
185.146.1.142	192.241.225.141	159.203.66.129	79.9.2.111
213.254.138.251	122.116.75.124	56.189.32.198	232.180.197.18