106.245.167.138

Basic Info

City: Seoul

Region: Seoul

Country: South Korea

Internet Service Provider: LG Dacom Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-28 03:49:59

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.245.167.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51622
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.245.167.138.		IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122701 1800 900 604800 86400

;; Query time: 126 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 28 03:49:56 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 138.167.245.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.167.245.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.115.165.3	attackspambots	192.115.165.3 was recorded 5 times by 4 hosts attempting to connect to the following ports: 10025,8007,3826,9594,35203. Incident counter (4h, 24h, all-time): 5, 14, 22	2019-11-03 04:22:09
182.61.164.6	attack	$f2bV_matches	2019-11-03 04:05:26
217.182.193.61	attackspambots	Oct 19 07:05:10 vtv3 sshd\[27571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.193.61 user=root Oct 19 07:05:12 vtv3 sshd\[27571\]: Failed password for root from 217.182.193.61 port 49172 ssh2 Oct 19 07:08:39 vtv3 sshd\[29115\]: Invalid user orangedev from 217.182.193.61 port 41266 Oct 19 07:08:39 vtv3 sshd\[29115\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.193.61 Oct 19 07:08:41 vtv3 sshd\[29115\]: Failed password for invalid user orangedev from 217.182.193.61 port 41266 ssh2 Oct 19 07:19:23 vtv3 sshd\[1970\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.193.61 user=root Oct 19 07:19:26 vtv3 sshd\[1970\]: Failed password for root from 217.182.193.61 port 41810 ssh2 Oct 19 07:23:03 vtv3 sshd\[3881\]: Invalid user ubnt from 217.182.193.61 port 33152 Oct 19 07:23:03 vtv3 sshd\[3881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid	2019-11-03 04:01:41
119.18.192.98	attack	Nov 2 16:20:38 plusreed sshd[17185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.18.192.98 user=root Nov 2 16:20:40 plusreed sshd[17185]: Failed password for root from 119.18.192.98 port 51902 ssh2 ...	2019-11-03 04:35:21
85.118.207.171	attack	scan r	2019-11-03 04:23:50
185.175.93.101	attack	firewall-block, port(s): 5900/tcp, 5904/tcp, 5916/tcp, 5917/tcp	2019-11-03 04:30:47
222.186.175.217	attack	Nov 2 16:28:56 debian sshd\[26619\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Nov 2 16:28:58 debian sshd\[26619\]: Failed password for root from 222.186.175.217 port 33136 ssh2 Nov 2 16:29:02 debian sshd\[26619\]: Failed password for root from 222.186.175.217 port 33136 ssh2 ...	2019-11-03 04:30:05
195.154.119.48	attackspam	Invalid user permlink from 195.154.119.48 port 60898	2019-11-03 04:08:35
119.29.134.163	attackbots	Nov 2 20:17:03 localhost sshd\[19221\]: Invalid user esadmin from 119.29.134.163 port 56406 Nov 2 20:17:03 localhost sshd\[19221\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.134.163 Nov 2 20:17:05 localhost sshd\[19221\]: Failed password for invalid user esadmin from 119.29.134.163 port 56406 ssh2 Nov 2 20:21:01 localhost sshd\[19307\]: Invalid user jh675673 from 119.29.134.163 port 33834 Nov 2 20:21:01 localhost sshd\[19307\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.134.163 ...	2019-11-03 04:21:23
123.207.145.66	attackbots	Nov 2 03:11:18 wbs sshd\[9655\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 user=root Nov 2 03:11:19 wbs sshd\[9655\]: Failed password for root from 123.207.145.66 port 56898 ssh2 Nov 2 03:17:16 wbs sshd\[10171\]: Invalid user nagios from 123.207.145.66 Nov 2 03:17:16 wbs sshd\[10171\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Nov 2 03:17:18 wbs sshd\[10171\]: Failed password for invalid user nagios from 123.207.145.66 port 38654 ssh2	2019-11-03 04:19:44
188.163.109.153	attack	0,20-01/20 [bc01/m13] PostRequest-Spammer scoring: Lusaka01	2019-11-03 04:20:14
157.55.39.185	attack	WEB_SERVER 403 Forbidden	2019-11-03 03:59:29
117.50.2.47	attack	2019-11-02T20:16:50.382455shield sshd\[3581\]: Invalid user bcampion from 117.50.2.47 port 33802 2019-11-02T20:16:50.387874shield sshd\[3581\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.2.47 2019-11-02T20:16:52.119298shield sshd\[3581\]: Failed password for invalid user bcampion from 117.50.2.47 port 33802 ssh2 2019-11-02T20:20:42.434295shield sshd\[4615\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.2.47 user=root 2019-11-02T20:20:44.015131shield sshd\[4615\]: Failed password for root from 117.50.2.47 port 42430 ssh2	2019-11-03 04:32:22
222.124.16.227	attackbots	Nov 2 03:16:44 web9 sshd\[13175\]: Invalid user oracle123456 from 222.124.16.227 Nov 2 03:16:44 web9 sshd\[13175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.124.16.227 Nov 2 03:16:46 web9 sshd\[13175\]: Failed password for invalid user oracle123456 from 222.124.16.227 port 54930 ssh2 Nov 2 03:21:36 web9 sshd\[13815\]: Invalid user hn from 222.124.16.227 Nov 2 03:21:36 web9 sshd\[13815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.124.16.227	2019-11-03 04:04:46
77.81.15.182	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-11-03 04:13:05

Recently Reported IPs

60.115.19.148	114.33.80.51	83.70.180.174	139.193.175.79
78.178.26.107	76.80.83.226	69.141.44.16	176.211.212.51
46.7.167.217	90.150.122.148	219.133.171.77	184.153.87.31
212.33.108.149	114.26.69.216	54.175.250.207	92.6.6.201
176.35.94.88	207.15.78.117	118.168.209.104	35.15.57.108