112.104.138.221

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.104.138.140	attack	Honeypot attack, port: 5555, PTR: 112-104-138-140.adsl.dynamic.seed.net.tw.	2020-06-11 03:22:25
112.104.138.223	attackspam	23/tcp [2019-09-30]1pkt	2019-10-01 03:53:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.104.138.221
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28898
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.104.138.221.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 06:40:34 CST 2022
;; MSG SIZE  rcvd: 108

Host info

221.138.104.112.in-addr.arpa domain name pointer 112-104-138-221.adsl.dynamic.seed.net.tw.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
221.138.104.112.in-addr.arpa	name = 112-104-138-221.adsl.dynamic.seed.net.tw.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.79.130.138	attack	2222/tcp [2019-06-21]1pkt	2019-06-21 14:26:30
37.49.225.178	attackbots	Fri 21 00:02:37 389/udp	2019-06-21 14:14:58
185.114.234.3	attackspambots	Jun 21 05:42:15 risk sshd[29870]: Did not receive identification string from 185.114.234.3 Jun 21 05:47:12 risk sshd[29956]: reveeclipse mapping checking getaddrinfo for dynamic-host-185-114-234-3.macsolution.hostname [185.114.234.3] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 21 05:47:12 risk sshd[29956]: Invalid user FadeCommunhostnamey from 185.114.234.3 Jun 21 05:47:12 risk sshd[29956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.114.234.3 Jun 21 05:47:14 risk sshd[29956]: Failed password for invalid user FadeCommunhostnamey from 185.114.234.3 port 47166 ssh2 Jun 21 05:48:14 risk sshd[29970]: reveeclipse mapping checking getaddrinfo for dynamic-host-185-114-234-3.macsolution.hostname [185.114.234.3] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 21 05:48:14 risk sshd[29970]: Invalid user HDP from 185.114.234.3 Jun 21 05:48:14 risk sshd[29970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhos........ -------------------------------	2019-06-21 14:46:35
107.170.240.84	attackbotsspam	" "	2019-06-21 14:09:08
117.96.223.133	attack	23/tcp [2019-06-21]1pkt	2019-06-21 14:06:04
123.127.107.70	attackbots	2019-06-21T06:43:31.579280test01.cajus.name sshd\[5705\]: Invalid user nong from 123.127.107.70 port 33083 2019-06-21T06:43:31.610541test01.cajus.name sshd\[5705\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.127.107.70 2019-06-21T06:43:33.821707test01.cajus.name sshd\[5705\]: Failed password for invalid user nong from 123.127.107.70 port 33083 ssh2	2019-06-21 14:07:17
122.55.63.101	attack	445/tcp [2019-06-21]1pkt	2019-06-21 14:05:34
42.227.109.6	attack	5500/tcp [2019-06-21]1pkt	2019-06-21 14:40:13
66.96.204.235	attackspam	22/tcp [2019-06-21]1pkt	2019-06-21 14:15:25
206.201.6.252	attackspam	445/tcp [2019-06-21]1pkt	2019-06-21 14:11:57
139.210.106.219	attackspam	2323/tcp [2019-06-21]1pkt	2019-06-21 14:42:54
159.203.30.2	attackbots	159.203.30.2 - - \[21/Jun/2019:06:43:20 +0200\] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 159.203.30.2 - - \[21/Jun/2019:06:43:22 +0200\] "POST /wp-login.php HTTP/1.1" 200 1524 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 159.203.30.2 - - \[21/Jun/2019:06:43:22 +0200\] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 159.203.30.2 - - \[21/Jun/2019:06:43:23 +0200\] "POST /wp-login.php HTTP/1.1" 200 1507 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 159.203.30.2 - - \[21/Jun/2019:06:43:24 +0200\] "GET /wp-login.php HTTP/1.1" 200 1129 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 159.203.30.2 - - \[21/Jun/2019:06:43:25 +0200\] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/	2019-06-21 14:10:33
197.44.12.58	attackspam	445/tcp [2019-06-21]1pkt	2019-06-21 14:47:33
187.198.220.200	attack	445/tcp [2019-06-21]1pkt	2019-06-21 14:37:20
159.203.13.4	attackbots	$f2bV_matches	2019-06-21 14:23:31

Recently Reported IPs

94.226.56.197	31.192.146.61	68.183.43.141	49.83.56.115
183.2.185.146	180.217.242.120	51.15.2.174	188.94.33.30
116.54.76.225	34.229.190.212	85.240.37.68	198.54.114.43
187.28.22.62	172.70.246.35	95.105.38.39	170.231.129.128
45.84.185.190	221.6.120.26	177.53.70.145	192.241.213.175