106.117.38.141

Basic Info

City: Shijiazhuang

Region: Hebei

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.117.38.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15771
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.117.38.141.			IN	A

;; AUTHORITY SECTION:
.			168	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024101602 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 17 12:12:26 CST 2024
;; MSG SIZE  rcvd: 107

Host info

Host 141.38.117.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 141.38.117.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.14.38.37	attackspambots	Oct 3 21:28:21 localhost kernel: [3890320.291479] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.38.37 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=63 ID=43052 DF PROTO=TCP SPT=54368 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 21:28:21 localhost kernel: [3890320.291496] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.38.37 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=63 ID=43052 DF PROTO=TCP SPT=54368 DPT=22 SEQ=2749593455 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:52:51 localhost kernel: [3898990.535288] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.38.37 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=54 ID=3221 DF PROTO=TCP SPT=54736 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:52:51 localhost kernel: [3898990.535341] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=190.14.38.37 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0	2019-10-04 17:04:49
42.157.130.18	attackbots	Oct 3 19:58:30 tdfoods sshd\[16708\]: Invalid user P4SSW0RD2020 from 42.157.130.18 Oct 3 19:58:30 tdfoods sshd\[16708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18 Oct 3 19:58:32 tdfoods sshd\[16708\]: Failed password for invalid user P4SSW0RD2020 from 42.157.130.18 port 55364 ssh2 Oct 3 20:04:40 tdfoods sshd\[17204\]: Invalid user P4sswort1@1 from 42.157.130.18 Oct 3 20:04:40 tdfoods sshd\[17204\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.157.130.18	2019-10-04 16:45:41
170.81.140.12	attackbots	Sep 30 08:49:28 our-server-hostname postfix/smtpd[19537]: connect from unknown[170.81.140.12] Sep x@x Sep x@x Sep x@x Sep 30 08:49:31 our-server-hostname postfix/smtpd[19537]: lost connection after RCPT from unknown[170.81.140.12] Sep 30 08:49:31 our-server-hostname postfix/smtpd[19537]: disconnect from unknown[170.81.140.12] Sep 30 09:14:38 our-server-hostname postfix/smtpd[19445]: connect from unknown[170.81.140.12] Sep x@x Sep 30 09:14:41 our-server-hostname postfix/smtpd[19445]: lost connection after RCPT from unknown[170.81.140.12] Sep 30 09:14:41 our-server-hostname postfix/smtpd[19445]: disconnect from unknown[170.81.140.12] Sep 30 12:55:01 our-server-hostname postfix/smtpd[12836]: connect from unknown[170.81.140.12] Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep x@x Sep 30 12:55:07 our-server-hostname postfix/smtpd[12836]: lost connection after RCPT from unknown[170.81.140.12] Sep 30 12:55:07 our-server-hostname postfix/smtpd[12836]:........ -------------------------------	2019-10-04 16:57:29
185.36.81.16	attackbotsspam	Rude login attack (7 tries in 1d)	2019-10-04 16:52:51
92.222.71.125	attackbots	2019-09-30T16:11:37.457586tmaserv sshd[21349]: Invalid user tester from 92.222.71.125 port 50670 2019-09-30T16:11:37.461425tmaserv sshd[21349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.ip-92-222-71.eu 2019-09-30T16:11:39.317742tmaserv sshd[21349]: Failed password for invalid user tester from 92.222.71.125 port 50670 ssh2 2019-09-30T16:22:35.927365tmaserv sshd[22054]: Invalid user chicago from 92.222.71.125 port 46172 2019-09-30T16:22:35.930845tmaserv sshd[22054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.ip-92-222-71.eu 2019-09-30T16:22:38.117736tmaserv sshd[22054]: Failed password for invalid user chicago from 92.222.71.125 port 46172 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=92.222.71.125	2019-10-04 17:05:53
92.222.88.22	attackspambots	Invalid user wmcx from 92.222.88.22 port 33440	2019-10-04 17:32:59
94.177.224.127	attack	Oct 4 06:27:32 ms-srv sshd[36536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.224.127 user=root Oct 4 06:27:34 ms-srv sshd[36536]: Failed password for invalid user root from 94.177.224.127 port 44144 ssh2	2019-10-04 17:13:05
165.227.11.173	attackbotsspam	Nov 30 03:22:34 server6 sshd[4166]: reveeclipse mapping checking getaddrinfo for 209310.cloudwaysapps.com [165.227.11.173] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 30 03:22:35 server6 sshd[4166]: Failed password for invalid user tecnici from 165.227.11.173 port 45351 ssh2 Nov 30 03:22:35 server6 sshd[4166]: Received disconnect from 165.227.11.173: 11: Bye Bye [preauth] Nov 30 04:42:27 server6 sshd[30609]: reveeclipse mapping checking getaddrinfo for 209310.cloudwaysapps.com [165.227.11.173] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 30 04:42:29 server6 sshd[30609]: Failed password for invalid user ts3 from 165.227.11.173 port 38217 ssh2 Nov 30 04:42:29 server6 sshd[30609]: Received disconnect from 165.227.11.173: 11: Bye Bye [preauth] Nov 30 06:00:31 server6 sshd[3014]: reveeclipse mapping checking getaddrinfo for 209310.cloudwaysapps.com [165.227.11.17 .... truncated .... reauth] Dec 1 20:01:30 server6 sshd[18427]: reveeclipse mapping checking getaddrinfo for 209310.clou........ -------------------------------	2019-10-04 17:17:30
182.74.24.58	attackbotsspam	Oct 2 16:47:44 our-server-hostname postfix/smtpd[18494]: connect from unknown[182.74.24.58] Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x Oct x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=182.74.24.58	2019-10-04 16:44:32
68.183.48.172	attackbotsspam	detected by Fail2Ban	2019-10-04 17:31:42
199.195.251.84	attackbots	Oct 4 08:53:50 hcbbdb sshd\[4030\]: Invalid user 22 from 199.195.251.84 Oct 4 08:53:50 hcbbdb sshd\[4030\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ny1.nixnet.xyz Oct 4 08:53:52 hcbbdb sshd\[4030\]: Failed password for invalid user 22 from 199.195.251.84 port 46900 ssh2 Oct 4 08:53:55 hcbbdb sshd\[4045\]: Invalid user 266344 from 199.195.251.84 Oct 4 08:53:55 hcbbdb sshd\[4045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ny1.nixnet.xyz	2019-10-04 17:13:36
51.38.186.47	attackspambots	Oct 4 06:45:19 intra sshd\[24597\]: Invalid user 123Lemon from 51.38.186.47Oct 4 06:45:21 intra sshd\[24597\]: Failed password for invalid user 123Lemon from 51.38.186.47 port 42616 ssh2Oct 4 06:49:07 intra sshd\[24663\]: Invalid user Pa$$w0rd@1 from 51.38.186.47Oct 4 06:49:09 intra sshd\[24663\]: Failed password for invalid user Pa$$w0rd@1 from 51.38.186.47 port 54800 ssh2Oct 4 06:52:58 intra sshd\[24754\]: Invalid user 123Mass from 51.38.186.47Oct 4 06:53:00 intra sshd\[24754\]: Failed password for invalid user 123Mass from 51.38.186.47 port 38748 ssh2 ...	2019-10-04 16:57:46
51.255.174.215	attackspambots	SSH bruteforce (Triggered fail2ban)	2019-10-04 16:51:29
212.67.0.150	attackspam	Brute force attempt	2019-10-04 17:29:39
121.128.200.146	attackspambots	Oct 4 08:09:13 vmd17057 sshd\[18021\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.128.200.146 user=root Oct 4 08:09:15 vmd17057 sshd\[18021\]: Failed password for root from 121.128.200.146 port 34100 ssh2 Oct 4 08:17:53 vmd17057 sshd\[18624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.128.200.146 user=root ...	2019-10-04 17:00:10

Recently Reported IPs

10.16.29.10	95.88.115.2	2.10.20.172	1.20.168.249
14.155.189.210	2.56.109.13	2.56.168.30	2.56.180.103
2.56.127.183	2.56.168.3	123.124.155.183	158.181.23.249
220.132.169.68	154.200.27.0	1.31.84.199	1.31.84.239
240e:453:dd04:668f:f07c:a65:e1b7:eff6	94.131.10.41	14.155.189.24	200.111.147.225