106.245.167.138

Basic Info

City: Seoul

Region: Seoul

Country: South Korea

Internet Service Provider: LG Dacom Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-28 03:49:59

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.245.167.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51622
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.245.167.138.		IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122701 1800 900 604800 86400

;; Query time: 126 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 28 03:49:56 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 138.167.245.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.167.245.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.241.203.45	attackbotsspam	Unauthorized connection attempt detected from IP address 218.241.203.45 to port 1433	2019-12-31 00:22:28
104.177.180.24	attackspam	Dec 29 07:31:14 shadeyouvpn sshd[1713]: Invalid user working from 104.177.180.24 Dec 29 07:31:14 shadeyouvpn sshd[1713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104-177-180-24.lightspeed.tukrga.sbcglobal.net Dec 29 07:31:16 shadeyouvpn sshd[1713]: Failed password for invalid user working from 104.177.180.24 port 39304 ssh2 Dec 29 07:31:16 shadeyouvpn sshd[1713]: Received disconnect from 104.177.180.24: 11: Bye Bye [preauth] Dec 29 08:44:49 shadeyouvpn sshd[25725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104-177-180-24.lightspeed.tukrga.sbcglobal.net user=r.r Dec 29 08:44:51 shadeyouvpn sshd[25725]: Failed password for r.r from 104.177.180.24 port 41456 ssh2 Dec 29 08:44:51 shadeyouvpn sshd[25725]: Received disconnect from 104.177.180.24: 11: Bye Bye [preauth] Dec 30 10:31:09 shadeyouvpn sshd[6897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh r........ -------------------------------	2019-12-31 00:19:46
183.80.15.220	attack	Unauthorized connection attempt detected from IP address 183.80.15.220 to port 23	2019-12-31 00:26:27
146.185.142.200	attackbots	xmlrpc attack	2019-12-30 23:59:49
24.246.3.165	attack	Dec 30 15:44:57 ns382633 sshd\[29742\]: Invalid user pi from 24.246.3.165 port 58644 Dec 30 15:44:57 ns382633 sshd\[29741\]: Invalid user pi from 24.246.3.165 port 58642 Dec 30 15:44:57 ns382633 sshd\[29742\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.246.3.165 Dec 30 15:44:57 ns382633 sshd\[29741\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=24.246.3.165 Dec 30 15:44:59 ns382633 sshd\[29742\]: Failed password for invalid user pi from 24.246.3.165 port 58644 ssh2	2019-12-31 00:16:34
222.186.175.140	attackspambots	Dec 30 17:00:21 nextcloud sshd\[14914\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Dec 30 17:00:23 nextcloud sshd\[14914\]: Failed password for root from 222.186.175.140 port 4400 ssh2 Dec 30 17:00:43 nextcloud sshd\[15389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root ...	2019-12-31 00:02:13
113.163.165.16	attackspam	1577717107 - 12/30/2019 15:45:07 Host: 113.163.165.16/113.163.165.16 Port: 445 TCP Blocked	2019-12-31 00:06:43
192.34.62.227	attack	--- report --- Dec 30 12:29:54 -0300 sshd: Connection from 192.34.62.227 port 34481	2019-12-30 23:55:51
211.159.149.84	attack	Unauthorized connection attempt detected from IP address 211.159.149.84 to port 1433	2019-12-31 00:22:43
41.86.10.20	attackbotsspam	Dec 30 15:59:04 datentool sshd[3119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.86.10.20 user=r.r Dec 30 15:59:06 datentool sshd[3119]: Failed password for r.r from 41.86.10.20 port 45221 ssh2 Dec 30 16:16:31 datentool sshd[3218]: Invalid user dm from 41.86.10.20 Dec 30 16:16:31 datentool sshd[3218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.86.10.20 Dec 30 16:16:33 datentool sshd[3218]: Failed password for invalid user dm from 41.86.10.20 port 37482 ssh2 Dec 30 16:19:26 datentool sshd[3242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.86.10.20 user=r.r Dec 30 16:19:28 datentool sshd[3242]: Failed password for r.r from 41.86.10.20 port 49414 ssh2 Dec 30 16:22:14 datentool sshd[3289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.86.10.20 user=r.r Dec 30 16:22:16 datentool sshd[32........ -------------------------------	2019-12-30 23:54:17
149.129.39.34	attack	Dec 30 16:08:21 legacy sshd[2662]: Failed password for root from 149.129.39.34 port 60318 ssh2 Dec 30 16:09:30 legacy sshd[2695]: Failed password for root from 149.129.39.34 port 41630 ssh2 ...	2019-12-31 00:16:57
137.186.69.8	attackbots	Automatic report - Banned IP Access	2019-12-30 23:50:51
183.193.234.138	attack	Unauthorised access (Dec 30) SRC=183.193.234.138 LEN=40 TOS=0x04 TTL=50 ID=17352 TCP DPT=8080 WINDOW=13903 SYN Unauthorised access (Dec 30) SRC=183.193.234.138 LEN=40 TOS=0x04 TTL=50 ID=21630 TCP DPT=8080 WINDOW=13903 SYN	2019-12-30 23:45:01
139.224.245.36	attack	Unauthorized connection attempt detected from IP address 139.224.245.36 to port 6380	2019-12-31 00:30:30
178.48.248.5	attackbots	Dec 30 05:34:19 web9 sshd\[26775\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.48.248.5 user=root Dec 30 05:34:21 web9 sshd\[26775\]: Failed password for root from 178.48.248.5 port 49952 ssh2 Dec 30 05:38:27 web9 sshd\[27303\]: Invalid user 123 from 178.48.248.5 Dec 30 05:38:27 web9 sshd\[27303\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.48.248.5 Dec 30 05:38:29 web9 sshd\[27303\]: Failed password for invalid user 123 from 178.48.248.5 port 39498 ssh2	2019-12-31 00:04:48

Recently Reported IPs

60.115.19.148	114.33.80.51	83.70.180.174	139.193.175.79
78.178.26.107	76.80.83.226	69.141.44.16	176.211.212.51
46.7.167.217	90.150.122.148	219.133.171.77	184.153.87.31
212.33.108.149	114.26.69.216	54.175.250.207	92.6.6.201
176.35.94.88	207.15.78.117	118.168.209.104	35.15.57.108