106.122.168.138

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.122.168.228	attack	Jan 5 19:26:21 mercury wordpress(www.learnargentinianspanish.com)[27252]: XML-RPC authentication failure for josh from 106.122.168.228 ...	2020-03-03 22:22:41
106.122.168.178	attackbotsspam	Unauthorized connection attempt detected from IP address 106.122.168.178 to port 6656 [T]	2020-01-30 15:45:30
106.122.168.229	attack	Unauthorized connection attempt detected from IP address 106.122.168.229 to port 6656 [T]	2020-01-30 07:02:17
106.122.168.24	attackbotsspam	Unauthorized connection attempt detected from IP address 106.122.168.24 to port 6656 [T]	2020-01-27 06:01:07
106.122.168.228	attack	106.122.168.228 - - [05/Jan/2020:21:47:55 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" 106.122.168.228 - - [05/Jan/2020:21:48:01 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" ...	2020-01-06 08:42:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.122.168.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63406
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.122.168.138.		IN	A

;; AUTHORITY SECTION:
.			368	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 21:21:45 CST 2022
;; MSG SIZE  rcvd: 108

Host info

138.168.122.106.in-addr.arpa domain name pointer 138.168.122.106.broad.xm.fj.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.168.122.106.in-addr.arpa	name = 138.168.122.106.broad.xm.fj.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.83.17.231	attack	Fail2Ban Ban Triggered	2019-12-16 08:01:17
138.68.242.43	attackbotsspam	$f2bV_matches	2019-12-16 07:51:49
106.54.185.31	attack	Dec 15 23:36:33 ns382633 sshd\[23269\]: Invalid user collings from 106.54.185.31 port 57836 Dec 15 23:36:33 ns382633 sshd\[23269\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.185.31 Dec 15 23:36:35 ns382633 sshd\[23269\]: Failed password for invalid user collings from 106.54.185.31 port 57836 ssh2 Dec 15 23:48:35 ns382633 sshd\[25270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.185.31 user=root Dec 15 23:48:37 ns382633 sshd\[25270\]: Failed password for root from 106.54.185.31 port 40590 ssh2	2019-12-16 08:28:01
125.253.116.134	attack	WordPress login Brute force / Web App Attack on client site.	2019-12-16 08:25:54
106.12.178.246	attackspambots	2019-12-16T00:04:59.951873shield sshd\[4043\]: Invalid user vcsa from 106.12.178.246 port 58936 2019-12-16T00:04:59.956061shield sshd\[4043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.246 2019-12-16T00:05:01.872276shield sshd\[4043\]: Failed password for invalid user vcsa from 106.12.178.246 port 58936 ssh2 2019-12-16T00:11:26.248177shield sshd\[4900\]: Invalid user ftpusr from 106.12.178.246 port 56608 2019-12-16T00:11:26.252421shield sshd\[4900\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.246	2019-12-16 08:25:10
129.204.94.81	attackspambots	Dec 16 01:36:08 server sshd\[2718\]: Invalid user admin from 129.204.94.81 Dec 16 01:36:08 server sshd\[2718\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 Dec 16 01:36:10 server sshd\[2718\]: Failed password for invalid user admin from 129.204.94.81 port 43032 ssh2 Dec 16 01:48:50 server sshd\[6238\]: Invalid user meyn from 129.204.94.81 Dec 16 01:48:50 server sshd\[6238\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.94.81 ...	2019-12-16 08:15:39
114.219.56.124	attack	2019-12-15T23:38:14.250416abusebot-6.cloudsearch.cf sshd\[25224\]: Invalid user ftpuser from 114.219.56.124 port 49340 2019-12-15T23:38:14.255743abusebot-6.cloudsearch.cf sshd\[25224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.219.56.124 2019-12-15T23:38:16.498733abusebot-6.cloudsearch.cf sshd\[25224\]: Failed password for invalid user ftpuser from 114.219.56.124 port 49340 ssh2 2019-12-15T23:45:06.344488abusebot-6.cloudsearch.cf sshd\[25360\]: Invalid user doomi from 114.219.56.124 port 48620	2019-12-16 08:13:37
176.57.79.145	attackbots	Dec 15 23:48:45 debian-2gb-nbg1-2 kernel: \[102913.352565\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=176.57.79.145 DST=195.201.40.59 LEN=40 TOS=0x18 PREC=0x00 TTL=245 ID=41197 DF PROTO=TCP SPT=41825 DPT=23 WINDOW=14600 RES=0x00 SYN URGP=0	2019-12-16 08:21:47
119.29.10.25	attack	Dec 15 23:58:57 ns3042688 sshd\[4566\]: Invalid user antonius from 119.29.10.25 Dec 15 23:58:57 ns3042688 sshd\[4566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 Dec 15 23:58:59 ns3042688 sshd\[4566\]: Failed password for invalid user antonius from 119.29.10.25 port 36162 ssh2 Dec 16 00:03:51 ns3042688 sshd\[6667\]: Invalid user lunius from 119.29.10.25 Dec 16 00:03:51 ns3042688 sshd\[6667\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.10.25 ...	2019-12-16 08:32:04
49.88.112.113	attackspam	Dec 15 18:51:20 plusreed sshd[15581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Dec 15 18:51:22 plusreed sshd[15581]: Failed password for root from 49.88.112.113 port 52075 ssh2 ...	2019-12-16 07:59:50
213.128.67.212	attackbots	Dec 15 09:06:29 XXX sshd[59176]: Invalid user gituser from 213.128.67.212 port 48288	2019-12-16 08:30:13
193.56.28.244	attackspam	Dec 15 17:48:46 web1 postfix/smtpd[1292]: warning: unknown[193.56.28.244]: SASL LOGIN authentication failed: authentication failure Dec 15 17:48:47 web1 postfix/smtpd[1292]: warning: unknown[193.56.28.244]: SASL LOGIN authentication failed: authentication failure Dec 15 17:48:50 web1 postfix/smtpd[1292]: warning: unknown[193.56.28.244]: SASL LOGIN authentication failed: authentication failure Dec 15 17:48:51 web1 postfix/smtpd[1292]: warning: unknown[193.56.28.244]: SASL LOGIN authentication failed: authentication failure Dec 15 17:48:53 web1 postfix/smtpd[1292]: warning: unknown[193.56.28.244]: SASL LOGIN authentication failed: authentication failure ...	2019-12-16 08:09:51
40.92.69.11	attackspambots	Dec 16 01:49:04 debian-2gb-vpn-nbg1-1 kernel: [828515.395043] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.69.11 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=52069 DF PROTO=TCP SPT=58246 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0	2019-12-16 08:02:29
58.87.67.226	attack	SSH-BruteForce	2019-12-16 08:31:17
128.134.178.1	attackspam	SSH Brute-Force reported by Fail2Ban	2019-12-16 08:14:53

Recently Reported IPs

106.122.168.158	106.122.168.149	106.122.168.136	106.122.168.143
106.122.168.15	106.122.168.141	101.236.19.226	106.122.168.162
106.122.168.167	106.122.168.164	106.122.168.17	106.122.168.169
106.122.168.176	106.122.168.172	106.122.168.180	106.122.168.170
106.122.168.174	106.122.168.182	101.236.19.232	106.122.168.185