106.104.34.120

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: New Century Infocomm Tech. Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Sep 21 21:09:28 roki-contabo sshd\[24047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.104.34.120 user=root Sep 21 21:09:30 roki-contabo sshd\[24047\]: Failed password for root from 106.104.34.120 port 44148 ssh2 Sep 22 19:00:43 roki-contabo sshd\[20458\]: Invalid user admin from 106.104.34.120 Sep 22 19:00:43 roki-contabo sshd\[20458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.104.34.120 Sep 22 19:00:45 roki-contabo sshd\[20458\]: Failed password for invalid user admin from 106.104.34.120 port 44057 ssh2 ...	2020-09-24 02:46:04
attackbotsspam	Sep 21 21:09:28 roki-contabo sshd\[24047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.104.34.120 user=root Sep 21 21:09:30 roki-contabo sshd\[24047\]: Failed password for root from 106.104.34.120 port 44148 ssh2 Sep 22 19:00:43 roki-contabo sshd\[20458\]: Invalid user admin from 106.104.34.120 Sep 22 19:00:43 roki-contabo sshd\[20458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.104.34.120 Sep 22 19:00:45 roki-contabo sshd\[20458\]: Failed password for invalid user admin from 106.104.34.120 port 44057 ssh2 ...	2020-09-23 18:57:08

Type

Details

Datetime

attack

Sep 21 21:09:28 roki-contabo sshd\[24047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.104.34.120  user=root
Sep 21 21:09:30 roki-contabo sshd\[24047\]: Failed password for root from 106.104.34.120 port 44148 ssh2
Sep 22 19:00:43 roki-contabo sshd\[20458\]: Invalid user admin from 106.104.34.120
Sep 22 19:00:43 roki-contabo sshd\[20458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.104.34.120
Sep 22 19:00:45 roki-contabo sshd\[20458\]: Failed password for invalid user admin from 106.104.34.120 port 44057 ssh2
...

2020-09-24 02:46:04

attackbotsspam

Sep 21 21:09:28 roki-contabo sshd\[24047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.104.34.120  user=root
Sep 21 21:09:30 roki-contabo sshd\[24047\]: Failed password for root from 106.104.34.120 port 44148 ssh2
Sep 22 19:00:43 roki-contabo sshd\[20458\]: Invalid user admin from 106.104.34.120
Sep 22 19:00:43 roki-contabo sshd\[20458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.104.34.120
Sep 22 19:00:45 roki-contabo sshd\[20458\]: Failed password for invalid user admin from 106.104.34.120 port 44057 ssh2
...

2020-09-23 18:57:08

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.104.34.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.104.34.120.			IN	A

;; AUTHORITY SECTION:
.			562	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092300 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 23 18:57:05 CST 2020
;; MSG SIZE  rcvd: 118

Host info

120.34.104.106.in-addr.arpa domain name pointer 106-104-34-120.adsl.static.seed.net.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
120.34.104.106.in-addr.arpa	name = 106-104-34-120.adsl.static.seed.net.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.68.56.192	attack	20/8/17@08:01:00: FAIL: Alarm-Network address from=178.68.56.192 ...	2020-08-18 03:19:14
27.66.203.216	attack	Unauthorized connection attempt from IP address 27.66.203.216 on Port 445(SMB)	2020-08-18 03:21:19
41.60.178.36	attack	Email rejected due to spam filtering	2020-08-18 03:06:02
201.242.234.71	attack	Unauthorized connection attempt from IP address 201.242.234.71 on Port 445(SMB)	2020-08-18 03:11:56
159.203.35.141	attack	Aug 17 21:31:26 OPSO sshd\[19072\]: Invalid user guang from 159.203.35.141 port 58186 Aug 17 21:31:26 OPSO sshd\[19072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.35.141 Aug 17 21:31:28 OPSO sshd\[19072\]: Failed password for invalid user guang from 159.203.35.141 port 58186 ssh2 Aug 17 21:36:55 OPSO sshd\[20744\]: Invalid user dominique from 159.203.35.141 port 37898 Aug 17 21:36:55 OPSO sshd\[20744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.35.141	2020-08-18 03:39:33
178.124.214.51	attack	Unauthorized connection attempt from IP address 178.124.214.51 on Port 445(SMB)	2020-08-18 03:09:03
45.141.84.124	attackspam	Unauthorized connection attempt detected from IP address 45.141.84.124 to port 3386 [T]	2020-08-18 03:27:50
187.237.91.218	attackbotsspam	Aug 17 19:26:53 h2427292 sshd\[7342\]: Invalid user auditor from 187.237.91.218 Aug 17 19:26:53 h2427292 sshd\[7342\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.237.91.218 Aug 17 19:26:55 h2427292 sshd\[7342\]: Failed password for invalid user auditor from 187.237.91.218 port 42914 ssh2 ...	2020-08-18 03:12:26
140.143.210.92	attackbotsspam	Aug 17 14:00:43 jane sshd[2361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.210.92 Aug 17 14:00:44 jane sshd[2361]: Failed password for invalid user soporte from 140.143.210.92 port 43394 ssh2 ...	2020-08-18 03:36:00
80.51.169.53	attack	failed_logins	2020-08-18 03:07:57
106.55.161.202	attackbots	2020-08-17T15:11:48.704270abusebot-2.cloudsearch.cf sshd[15886]: Invalid user temp from 106.55.161.202 port 57204 2020-08-17T15:11:48.713227abusebot-2.cloudsearch.cf sshd[15886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.161.202 2020-08-17T15:11:48.704270abusebot-2.cloudsearch.cf sshd[15886]: Invalid user temp from 106.55.161.202 port 57204 2020-08-17T15:11:50.758828abusebot-2.cloudsearch.cf sshd[15886]: Failed password for invalid user temp from 106.55.161.202 port 57204 ssh2 2020-08-17T15:15:25.333565abusebot-2.cloudsearch.cf sshd[15949]: Invalid user ba from 106.55.161.202 port 34170 2020-08-17T15:15:25.339546abusebot-2.cloudsearch.cf sshd[15949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.161.202 2020-08-17T15:15:25.333565abusebot-2.cloudsearch.cf sshd[15949]: Invalid user ba from 106.55.161.202 port 34170 2020-08-17T15:15:27.841825abusebot-2.cloudsearch.cf sshd[15949]: Failed p ...	2020-08-18 03:28:51
198.98.49.181	attack	Aug 17 21:17:47 ubuntu-2gb-nbg1-dc3-1 sshd[2102681]: Invalid user centos from 198.98.49.181 port 52994 Aug 17 21:17:47 ubuntu-2gb-nbg1-dc3-1 sshd[2102685]: Invalid user postgres from 198.98.49.181 port 52992 Aug 17 21:17:47 ubuntu-2gb-nbg1-dc3-1 sshd[2102682]: Invalid user test from 198.98.49.181 port 52996 ...	2020-08-18 03:22:57
117.4.173.250	attack	Icarus honeypot on github	2020-08-18 03:21:59
145.130.57.58	attackspam	port scan and connect, tcp 443 (https)	2020-08-18 03:24:10
122.51.240.250	attack	$f2bV_matches	2020-08-18 03:19:29

Recently Reported IPs

14.240.248.215	203.77.43.79	68.225.1.8	59.20.154.52
171.120.12.248	179.70.139.103	119.28.93.152	49.233.88.229
187.247.158.247	185.39.10.89	219.92.22.76	37.49.225.159
177.152.124.24	104.183.7.244	106.53.103.194	65.247.146.106
182.57.241.6	179.179.106.64	198.249.222.241	77.243.24.155