106.104.161.185

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.104.161.157	attack	Honeypot attack, port: 81, PTR: 106-104-161-157.adsl.static.seed.net.tw.	2020-07-06 00:55:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.104.161.185
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20566
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.104.161.185.		IN	A

;; AUTHORITY SECTION:
.			482	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 04:30:58 CST 2022
;; MSG SIZE  rcvd: 108

Host info

185.161.104.106.in-addr.arpa domain name pointer 106-104-161-185.adsl.static.seed.net.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
185.161.104.106.in-addr.arpa	name = 106-104-161-185.adsl.static.seed.net.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.207.7.130	attackspam	Oct 10 11:38:17 ns381471 sshd[15152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.7.130 Oct 10 11:38:19 ns381471 sshd[15152]: Failed password for invalid user Boca@321 from 123.207.7.130 port 59800 ssh2 Oct 10 11:42:44 ns381471 sshd[15460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.7.130	2019-10-10 17:50:52
34.219.141.74	attack	Bad bot/spoofed identity	2019-10-10 17:55:39
185.176.27.254	attack	10/10/2019-05:34:00.213052 185.176.27.254 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-10 17:52:49
149.56.89.123	attackbotsspam	Oct 10 05:11:06 apollo sshd\[17170\]: Failed password for root from 149.56.89.123 port 56623 ssh2Oct 10 05:36:57 apollo sshd\[17280\]: Failed password for root from 149.56.89.123 port 36229 ssh2Oct 10 05:46:37 apollo sshd\[17323\]: Failed password for root from 149.56.89.123 port 56381 ssh2 ...	2019-10-10 17:48:10
111.231.100.167	attackbots	Oct 10 09:51:16 apollo sshd\[18514\]: Failed password for root from 111.231.100.167 port 9899 ssh2Oct 10 10:01:28 apollo sshd\[18547\]: Failed password for root from 111.231.100.167 port 16344 ssh2Oct 10 10:05:31 apollo sshd\[18557\]: Failed password for root from 111.231.100.167 port 51150 ssh2 ...	2019-10-10 17:58:18
93.46.117.2	attackspambots	2019-10-10T08:34:44.300239abusebot-6.cloudsearch.cf sshd\[12673\]: Invalid user minecraft from 93.46.117.2 port 56692	2019-10-10 18:11:03
106.52.234.176	attackspam	Oct 9 19:15:17 DNS-2 sshd[30786]: User r.r from 106.52.234.176 not allowed because not listed in AllowUsers Oct 9 19:15:17 DNS-2 sshd[30786]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.234.176 user=r.r Oct 9 19:15:19 DNS-2 sshd[30786]: Failed password for invalid user r.r from 106.52.234.176 port 54776 ssh2 Oct 9 19:15:21 DNS-2 sshd[30786]: Received disconnect from 106.52.234.176 port 54776:11: Bye Bye [preauth] Oct 9 19:15:21 DNS-2 sshd[30786]: Disconnected from 106.52.234.176 port 54776 [preauth] Oct 9 19:40:47 DNS-2 sshd[31857]: User r.r from 106.52.234.176 not allowed because not listed in AllowUsers Oct 9 19:40:47 DNS-2 sshd[31857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.234.176 user=r.r Oct 9 19:40:49 DNS-2 sshd[31857]: Failed password for invalid user r.r from 106.52.234.176 port 36940 ssh2 Oct 9 19:40:49 DNS-2 sshd[31857]: Received disconnect fr........ -------------------------------	2019-10-10 18:11:53
145.239.87.109	attackbotsspam	Oct 9 18:17:17 auw2 sshd\[17981\]: Invalid user Jelszo_!@\# from 145.239.87.109 Oct 9 18:17:17 auw2 sshd\[17981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.ip-145-239-87.eu Oct 9 18:17:18 auw2 sshd\[17981\]: Failed password for invalid user Jelszo_!@\# from 145.239.87.109 port 50416 ssh2 Oct 9 18:21:33 auw2 sshd\[18358\]: Invalid user 123Zara from 145.239.87.109 Oct 9 18:21:33 auw2 sshd\[18358\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.ip-145-239-87.eu	2019-10-10 17:39:25
222.186.173.215	attack	$f2bV_matches	2019-10-10 17:48:51
43.226.35.245	attack	Automatic report - Web App Attack	2019-10-10 17:56:23
117.62.22.178	attackspambots	Oct 9 09:19:56 woof sshd[2597]: reveeclipse mapping checking getaddrinfo for 178.22.62.117.broad.tz.js.dynamic.163data.com.cn [117.62.22.178] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 9 09:19:56 woof sshd[2597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.62.22.178 user=r.r Oct 9 09:19:58 woof sshd[2597]: Failed password for r.r from 117.62.22.178 port 54028 ssh2 Oct 9 09:19:58 woof sshd[2597]: Received disconnect from 117.62.22.178: 11: Bye Bye [preauth] Oct 9 09:35:22 woof sshd[4336]: reveeclipse mapping checking getaddrinfo for 178.22.62.117.broad.tz.js.dynamic.163data.com.cn [117.62.22.178] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 9 09:35:22 woof sshd[4336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.62.22.178 user=r.r Oct 9 09:35:24 woof sshd[4336]: Failed password for r.r from 117.62.22.178 port 48337 ssh2 Oct 9 09:35:24 woof sshd[4336]: Received disconnect from........ -------------------------------	2019-10-10 18:06:35
58.150.46.6	attack	Oct 10 08:50:12 sso sshd[22782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.150.46.6 Oct 10 08:50:14 sso sshd[22782]: Failed password for invalid user Spain@2017 from 58.150.46.6 port 43068 ssh2 ...	2019-10-10 18:11:32
201.22.33.4	attack	Lines containing failures of 201.22.33.4 Oct 9 20:02:45 * sshd[123031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.22.33.4 user=r.r Oct 9 20:02:47 * sshd[123031]: Failed password for r.r from 201.22.33.4 port 16365 ssh2 Oct 9 20:02:48 * sshd[123031]: Received disconnect from 201.22.33.4 port 16365:11: Bye Bye [preauth] Oct 9 20:02:48 * sshd[123031]: Disconnected from authenticating user r.r 201.22.33.4 port 16365 [preauth] Oct 9 20:22:27 * sshd[124047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.22.33.4 user=r.r Oct 9 20:22:28 * sshd[124047]: Failed password for r.r from 201.22.33.4 port 50403 ssh2 Oct 9 20:22:28 * sshd[124047]: Received disconnect from 201.22.33.4 port 50403:11: Bye Bye [preauth] Oct 9 20:22:28 * sshd[124047]: Disconnected from authenticating user r.r 201.22.33.4 port 50403 [preauth] Oct 9 20:31:24 *** sshd[124723]: pam_unix(sshd:........ ------------------------------	2019-10-10 18:18:59
142.93.248.5	attack	Oct 10 07:52:18 vpn01 sshd[1843]: Failed password for root from 142.93.248.5 port 38196 ssh2 ...	2019-10-10 18:17:28
77.232.128.87	attackspambots	Oct 10 05:59:10 meumeu sshd[27686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.128.87 Oct 10 05:59:12 meumeu sshd[27686]: Failed password for invalid user Example2017 from 77.232.128.87 port 36896 ssh2 Oct 10 06:03:17 meumeu sshd[28800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.128.87 ...	2019-10-10 17:44:08

Recently Reported IPs

156.199.23.94	64.71.123.48	156.218.111.21	193.163.125.188
171.101.231.192	54.213.27.201	154.12.97.67	42.227.249.151
37.230.130.87	93.33.178.132	45.90.196.183	183.89.124.39
193.118.53.134	89.113.140.228	176.79.177.126	162.142.125.133
42.200.106.32	94.145.207.97	186.251.160.215	93.126.6.137