106.124.137.190

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangdong Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	May 6 07:21:10 server1 sshd\[32594\]: Invalid user visitante from 106.124.137.190 May 6 07:21:10 server1 sshd\[32594\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 May 6 07:21:12 server1 sshd\[32594\]: Failed password for invalid user visitante from 106.124.137.190 port 39902 ssh2 May 6 07:25:20 server1 sshd\[1296\]: Invalid user php from 106.124.137.190 May 6 07:25:20 server1 sshd\[1296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 ...	2020-05-06 21:39:37
attackbots	Apr 22 14:45:23 *** sshd[22066]: Invalid user ta from 106.124.137.190	2020-04-23 03:14:18
attackspambots	Apr 21 08:58:39 ns382633 sshd\[31425\]: Invalid user postgres from 106.124.137.190 port 44919 Apr 21 08:58:39 ns382633 sshd\[31425\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 Apr 21 08:58:40 ns382633 sshd\[31425\]: Failed password for invalid user postgres from 106.124.137.190 port 44919 ssh2 Apr 21 09:09:04 ns382633 sshd\[1344\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 user=root Apr 21 09:09:06 ns382633 sshd\[1344\]: Failed password for root from 106.124.137.190 port 34415 ssh2	2020-04-21 16:23:35
attack	SSH/22 MH Probe, BF, Hack -	2020-04-19 16:14:19
attackbots	2020-04-14T20:46:54.864650shield sshd\[1362\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 user=root 2020-04-14T20:46:56.886971shield sshd\[1362\]: Failed password for root from 106.124.137.190 port 42073 ssh2 2020-04-14T20:48:56.369721shield sshd\[1779\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 user=root 2020-04-14T20:48:58.802743shield sshd\[1779\]: Failed password for root from 106.124.137.190 port 57598 ssh2 2020-04-14T20:51:07.322500shield sshd\[2190\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 user=root	2020-04-15 04:59:04
attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-04-10 06:33:26
attackspambots	5x Failed Password	2020-04-08 18:05:38
attack	$f2bV_matches	2020-03-28 05:03:47
attack	Mar 20 20:39:17 cp sshd[26720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 Mar 20 20:39:19 cp sshd[26720]: Failed password for invalid user jenkins from 106.124.137.190 port 36672 ssh2 Mar 20 20:43:35 cp sshd[29055]: Failed password for games from 106.124.137.190 port 43125 ssh2	2020-03-21 04:13:20
attack	Mar 20 12:10:35 markkoudstaal sshd[9800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 Mar 20 12:10:37 markkoudstaal sshd[9800]: Failed password for invalid user zhouyong from 106.124.137.190 port 54325 ssh2 Mar 20 12:19:02 markkoudstaal sshd[11334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190	2020-03-20 19:20:57
attack	Mar 19 00:52:12 nextcloud sshd\[4089\]: Invalid user confluence from 106.124.137.190 Mar 19 00:52:12 nextcloud sshd\[4089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 Mar 19 00:52:14 nextcloud sshd\[4089\]: Failed password for invalid user confluence from 106.124.137.190 port 35264 ssh2	2020-03-19 08:17:50
attackbots	Feb 29 14:44:11 zeus sshd[13442]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 Feb 29 14:44:13 zeus sshd[13442]: Failed password for invalid user teamspeak3 from 106.124.137.190 port 52133 ssh2 Feb 29 14:52:54 zeus sshd[13639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.190 Feb 29 14:52:56 zeus sshd[13639]: Failed password for invalid user pub from 106.124.137.190 port 34760 ssh2	2020-02-29 23:45:05
attackspam	Unauthorized connection attempt detected from IP address 106.124.137.190 to port 2220 [J]	2020-01-31 09:31:57

Comments on same subnet:

IP	Type	Details	Datetime
106.124.137.103	attackspam	Port Scan ...	2020-10-05 20:58:31
106.124.137.103	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-05 12:48:13
106.124.137.108	attack	Aug 27 16:15:58 lnxweb62 sshd[5843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.108	2020-08-28 05:02:58
106.124.137.108	attackbotsspam	Aug 16 23:39:55 ncomp sshd[6944]: Invalid user user from 106.124.137.108 Aug 16 23:39:55 ncomp sshd[6944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.108 Aug 16 23:39:55 ncomp sshd[6944]: Invalid user user from 106.124.137.108 Aug 16 23:39:58 ncomp sshd[6944]: Failed password for invalid user user from 106.124.137.108 port 45966 ssh2	2020-08-17 06:07:43
106.124.137.103	attack	Port scan denied	2020-08-14 18:20:24
106.124.137.103	attackspam	Aug 2 00:34:04 vps1 sshd[11336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.103 user=root Aug 2 00:34:06 vps1 sshd[11336]: Failed password for invalid user root from 106.124.137.103 port 48616 ssh2 Aug 2 00:35:33 vps1 sshd[11357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.103 user=root Aug 2 00:35:35 vps1 sshd[11357]: Failed password for invalid user root from 106.124.137.103 port 55112 ssh2 Aug 2 00:38:42 vps1 sshd[11413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.103 user=root Aug 2 00:38:44 vps1 sshd[11413]: Failed password for invalid user root from 106.124.137.103 port 39897 ssh2 Aug 2 00:40:20 vps1 sshd[11498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.103 user=root ...	2020-08-02 06:43:42
106.124.137.103	attack	Jul 30 08:01:44 [host] sshd[14552]: Invalid user l Jul 30 08:01:44 [host] sshd[14552]: pam_unix(sshd: Jul 30 08:01:46 [host] sshd[14552]: Failed passwor	2020-07-30 19:57:47
106.124.137.108	attackspambots	2020-07-29T22:22:57.482577centos sshd[19493]: Invalid user zhangyong from 106.124.137.108 port 46451 2020-07-29T22:22:59.373050centos sshd[19493]: Failed password for invalid user zhangyong from 106.124.137.108 port 46451 ssh2 2020-07-29T22:28:22.326006centos sshd[19836]: Invalid user whchoe from 106.124.137.108 port 44940 ...	2020-07-30 04:59:39
106.124.137.103	attackspam	Jul 29 07:53:56 hidden sshd[10106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.103 Jul 29 07:53:58 hidden sshd[10106]: Failed password for invalid user yinyf from 106.124.137.103 port 42826 ssh2 Jul 29 08:01:00 hidden sshd[11444]: Invalid user zhangjunquan from 106.124.137.103 port 41012	2020-07-29 17:31:09
106.124.137.103	attackbotsspam	Jul 27 13:28:52 webhost01 sshd[32669]: Failed password for mysql from 106.124.137.103 port 33088 ssh2 Jul 27 13:33:26 webhost01 sshd[32715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.103 ...	2020-07-27 16:26:00
106.124.137.130	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-07-16 04:40:32
106.124.137.130	attack	Jul 14 22:09:45 home sshd[4071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.130 Jul 14 22:09:47 home sshd[4071]: Failed password for invalid user lty from 106.124.137.130 port 58123 ssh2 Jul 14 22:12:23 home sshd[4314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.137.130 ...	2020-07-15 04:17:58
106.124.137.108	attackspambots	BF attempts	2020-07-14 17:24:40
106.124.137.130	attack	BF attempts	2020-07-14 16:22:33
106.124.137.108	attackspambots	2020-07-12T17:11:02.340643morrigan.ad5gb.com sshd[1417238]: Invalid user cjp from 106.124.137.108 port 41859 2020-07-12T17:11:03.848547morrigan.ad5gb.com sshd[1417238]: Failed password for invalid user cjp from 106.124.137.108 port 41859 ssh2	2020-07-13 06:47:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.124.137.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5727
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.124.137.190.		IN	A

;; AUTHORITY SECTION:
.			138	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020013003 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 09:31:54 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 190.137.124.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 190.137.124.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.51.167.108	attack	Jul 28 05:50:07 home sshd[1421652]: Invalid user oxidized from 122.51.167.108 port 42954 Jul 28 05:50:07 home sshd[1421652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.167.108 Jul 28 05:50:07 home sshd[1421652]: Invalid user oxidized from 122.51.167.108 port 42954 Jul 28 05:50:09 home sshd[1421652]: Failed password for invalid user oxidized from 122.51.167.108 port 42954 ssh2 Jul 28 05:54:55 home sshd[1423334]: Invalid user xiede from 122.51.167.108 port 41954 ...	2020-07-28 14:48:30
101.65.162.110	attackbots	xmlrpc attack	2020-07-28 14:20:09
84.236.174.144	attackbots	Automatic report - Port Scan Attack	2020-07-28 14:18:34
89.144.47.244	attack	Port scanning [7 denied]	2020-07-28 14:27:58
180.76.53.208	attackspambots	Jul 28 00:49:11 ws12vmsma01 sshd[36212]: Invalid user liyuanlin from 180.76.53.208 Jul 28 00:49:13 ws12vmsma01 sshd[36212]: Failed password for invalid user liyuanlin from 180.76.53.208 port 40954 ssh2 Jul 28 00:53:52 ws12vmsma01 sshd[36935]: Invalid user xuyc from 180.76.53.208 ...	2020-07-28 14:16:38
5.180.220.106	attack	[2020-07-28 02:25:18] NOTICE[1248][C-00000fcc] chan_sip.c: Call from '' (5.180.220.106:58146) to extension '1111011972595725668' rejected because extension not found in context 'public'. [2020-07-28 02:25:18] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-28T02:25:18.449-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="1111011972595725668",SessionID="0x7f27200510e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/5.180.220.106/58146",ACLName="no_extension_match" [2020-07-28 02:31:39] NOTICE[1248][C-00000fce] chan_sip.c: Call from '' (5.180.220.106:49917) to extension '11111011972595725668' rejected because extension not found in context 'public'. [2020-07-28 02:31:39] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-28T02:31:39.785-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="11111011972595725668",SessionID="0x7f27200510e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",Remote ...	2020-07-28 14:35:40
79.124.62.203	attackbots	Jul 28 08:37:01 debian-2gb-nbg1-2 kernel: \[18176722.695050\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=79.124.62.203 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=23497 PROTO=TCP SPT=43208 DPT=2118 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-28 14:49:03
46.101.151.97	attackspam	Invalid user bem from 46.101.151.97 port 47855	2020-07-28 14:28:57
113.89.35.10	attack	Jul 28 05:47:32 h2022099 sshd[31776]: Invalid user bcbio from 113.89.35.10 Jul 28 05:47:32 h2022099 sshd[31776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.89.35.10 Jul 28 05:47:33 h2022099 sshd[31776]: Failed password for invalid user bcbio from 113.89.35.10 port 33656 ssh2 Jul 28 05:47:34 h2022099 sshd[31776]: Received disconnect from 113.89.35.10: 11: Bye Bye [preauth] Jul 28 05:58:13 h2022099 sshd[989]: Invalid user tianyy from 113.89.35.10 Jul 28 05:58:13 h2022099 sshd[989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.89.35.10 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.89.35.10	2020-07-28 14:33:08
34.225.109.181	attack	Jul 28 07:55:00 vps647732 sshd[11271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.225.109.181 Jul 28 07:55:02 vps647732 sshd[11271]: Failed password for invalid user ebooks from 34.225.109.181 port 58504 ssh2 ...	2020-07-28 14:13:28
5.124.212.150	attackbotsspam	(imapd) Failed IMAP login from 5.124.212.150 (IR/Iran/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jul 28 08:25:06 ir1 dovecot[3110802]: imap-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=5.124.212.150, lip=5.63.12.44, session=<932GZ3ir70sFfNSW>	2020-07-28 14:33:28
180.233.253.107	attackspambots	Unauthorized connection attempt detected from IP address 180.233.253.107 to port 23	2020-07-28 14:21:48
194.61.55.130	attack	TCP PORT 3389	2020-07-28 14:39:20
192.144.129.98	attackbots	2020-07-28T03:49:57.611434ionos.janbro.de sshd[56776]: Invalid user jianfeng2 from 192.144.129.98 port 46906 2020-07-28T03:49:59.182185ionos.janbro.de sshd[56776]: Failed password for invalid user jianfeng2 from 192.144.129.98 port 46906 ssh2 2020-07-28T03:52:37.094996ionos.janbro.de sshd[56779]: Invalid user gaoqian from 192.144.129.98 port 46878 2020-07-28T03:52:37.296875ionos.janbro.de sshd[56779]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.129.98 2020-07-28T03:52:37.094996ionos.janbro.de sshd[56779]: Invalid user gaoqian from 192.144.129.98 port 46878 2020-07-28T03:52:39.995695ionos.janbro.de sshd[56779]: Failed password for invalid user gaoqian from 192.144.129.98 port 46878 ssh2 2020-07-28T03:55:17.197188ionos.janbro.de sshd[56781]: Invalid user mozhaoquan from 192.144.129.98 port 46850 2020-07-28T03:55:17.389885ionos.janbro.de sshd[56781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost= ...	2020-07-28 14:18:18
134.236.247.106	attackspambots	Dovecot Invalid User Login Attempt.	2020-07-28 14:10:17

Recently Reported IPs

64.225.11.126	191.99.15.19	203.160.189.46	173.225.102.84
2.37.198.220	45.11.98.81	142.93.125.96	36.79.50.199
146.247.159.178	71.208.63.76	59.14.191.184	46.100.56.105
95.76.157.2	121.17.218.164	131.158.30.218	15.230.170.196
189.146.183.212	188.148.180.12	34.207.194.237	106.40.151.159