106.107.252.142

Basic Info

City: unknown

Region: unknown

Country: Taiwan, China

Internet Service Provider: New Century Infocomm Tech. Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Honeypot attack, port: 5555, PTR: 106.107.252.142.adsl.dynamic.seed.net.tw.	2020-03-05 00:35:56

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.107.252.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28163
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.107.252.142.		IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030401 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 05 00:35:51 CST 2020
;; MSG SIZE  rcvd: 119

Host info

142.252.107.106.in-addr.arpa domain name pointer 106.107.252.142.adsl.dynamic.seed.net.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.252.107.106.in-addr.arpa	name = 106.107.252.142.adsl.dynamic.seed.net.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.46.81.38	attackspambots	Scanning and Vuln Attempts	2019-07-05 23:07:00
165.225.106.137	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 06:43:07,559 INFO [shellcode_manager] (165.225.106.137) no match, writing hexdump (ab51b4ccbf36b7b0b26b5cbecf379766 :13031) - SMB (Unknown)	2019-07-05 22:43:32
200.35.49.89	attackbotsspam	Scanning and Vuln Attempts	2019-07-05 22:44:04
51.38.48.127	attackspam	Jul 5 10:17:50 mail sshd\[20504\]: Failed password for invalid user admin from 51.38.48.127 port 35542 ssh2 Jul 5 10:34:08 mail sshd\[20707\]: Invalid user hm from 51.38.48.127 port 45784 Jul 5 10:34:08 mail sshd\[20707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.48.127 ...	2019-07-05 23:07:26
194.186.110.18	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-05 07:33:21,101 INFO [shellcode_manager] (194.186.110.18) no match, writing hexdump (b9eda5d849b82b64755e44b06c61fceb :2111205) - MS17010 (EternalBlue)	2019-07-05 22:25:10
140.143.134.86	attackspam	Jul 5 14:12:10 tux-35-217 sshd\[5686\]: Invalid user kuai from 140.143.134.86 port 47777 Jul 5 14:12:10 tux-35-217 sshd\[5686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.134.86 Jul 5 14:12:12 tux-35-217 sshd\[5686\]: Failed password for invalid user kuai from 140.143.134.86 port 47777 ssh2 Jul 5 14:15:08 tux-35-217 sshd\[5708\]: Invalid user user1 from 140.143.134.86 port 60410 Jul 5 14:15:08 tux-35-217 sshd\[5708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.134.86 ...	2019-07-05 22:22:43
188.143.50.219	attackspam	Jul 5 11:30:17 cws2.mueller-hostname.net sshd[37800]: Failed password for invalid user pi from 188.143.50.219 port 43928 ssh2 Jul 5 11:30:17 cws2.mueller-hostname.net sshd[37801]: Failed password for invalid user pi from 188.143.50.219 port 43934 ssh2 Jul 5 11:30:17 cws2.mueller-hostname.net sshd[37801]: Connection closed by 188.143.50.219 [preauth] Jul 5 11:30:17 cws2.mueller-hostname.net sshd[37800]: Connection closed by 188.143.50.219 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=188.143.50.219	2019-07-05 22:33:03
51.158.100.127	attackspambots	SSH Brute Force	2019-07-05 22:58:39
221.229.162.169	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-05 22:32:41
115.47.153.120	attack	Jul 5 07:27:20 localhost sshd[9315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.47.153.120 Jul 5 07:27:22 localhost sshd[9315]: Failed password for invalid user swg from 115.47.153.120 port 55058 ssh2 Jul 5 07:38:15 localhost sshd[9359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.47.153.120 Jul 5 07:38:17 localhost sshd[9359]: Failed password for invalid user ftpuser from 115.47.153.120 port 20384 ssh2 ...	2019-07-05 22:20:16
198.108.67.104	attack	Honeypot attack, port: 139, PTR: scratch-02.sfj.corp.censys.io.	2019-07-05 22:07:35
198.20.87.98	attackspambots	05.07.2019 09:06:09 HTTPs access blocked by firewall	2019-07-05 23:08:33
148.70.113.127	attackbots	Jul 5 04:18:44 aat-srv002 sshd[5574]: Failed password for invalid user glassfish from 148.70.113.127 port 53402 ssh2 Jul 5 04:35:47 aat-srv002 sshd[5871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.113.127 Jul 5 04:35:50 aat-srv002 sshd[5871]: Failed password for invalid user msfadmin from 148.70.113.127 port 59326 ssh2 Jul 5 04:38:36 aat-srv002 sshd[5916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.113.127 ...	2019-07-05 22:16:24
46.101.142.238	attackspam	Automatic report - Web App Attack	2019-07-05 23:05:45
192.163.224.116	attack	Jul 5 10:57:27 minden010 sshd[27756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.163.224.116 Jul 5 10:57:28 minden010 sshd[27756]: Failed password for invalid user robin from 192.163.224.116 port 53942 ssh2 Jul 5 10:59:48 minden010 sshd[28522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.163.224.116 ...	2019-07-05 22:41:55

Recently Reported IPs

182.45.193.232	219.150.204.159	54.157.73.59	141.249.120.24
179.157.81.155	217.131.117.245	220.78.35.105	183.83.145.127
72.210.252.147	27.76.146.7	81.203.54.51	145.244.173.122
119.215.35.253	190.37.213.20	189.146.207.242	222.249.232.90
225.4.86.45	43.255.115.69	220.71.26.86	192.241.205.100