140.237.12.107

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Fujian Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-31 04:34:16

Comments on same subnet:

IP	Type	Details	Datetime
140.237.12.64	attackbotsspam	Unauthorized connection attempt detected from IP address 140.237.12.64 to port 5555 [J]	2020-01-21 00:48:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.237.12.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61387
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;140.237.12.107.			IN	A

;; AUTHORITY SECTION:
.			2093	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083001 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 31 04:34:10 CST 2019
;; MSG SIZE  rcvd: 118

Host info

107.12.237.140.in-addr.arpa domain name pointer 107.12.237.140.broad.pt.dynamic.163data.com.cn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
107.12.237.140.in-addr.arpa	name = 107.12.237.140.broad.pt.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.64.28.77	attackbotsspam	Sep 12 06:42:31 yabzik sshd[16254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.28.77 Sep 12 06:42:34 yabzik sshd[16254]: Failed password for invalid user sftpuser from 212.64.28.77 port 45150 ssh2 Sep 12 06:47:18 yabzik sshd[18079]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.28.77	2019-09-12 22:46:12
42.104.97.242	attackspambots	Sep 11 20:24:18 web9 sshd\[19157\]: Invalid user ts from 42.104.97.242 Sep 11 20:24:18 web9 sshd\[19157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.104.97.242 Sep 11 20:24:20 web9 sshd\[19157\]: Failed password for invalid user ts from 42.104.97.242 port 48528 ssh2 Sep 11 20:29:41 web9 sshd\[20245\]: Invalid user test1 from 42.104.97.242 Sep 11 20:29:41 web9 sshd\[20245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.104.97.242	2019-09-12 22:50:41
111.26.161.8	attack	CN China - Hits: 11	2019-09-12 22:46:33
141.98.9.42	attackspambots		2019-09-13 00:14:54
110.143.83.82	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-12 13:57:15,245 INFO [amun_request_handler] PortScan Detected on Port: 445 (110.143.83.82)	2019-09-12 22:55:47
68.183.217.198	attackbots	DATE:2019-09-12 16:52:27, IP:68.183.217.198, PORT:3306 - MySQL/MariaDB brute force auth on a honeypot server (epe-dc)	2019-09-13 00:17:38
180.168.36.86	attack	Sep 12 17:45:56 core sshd[4656]: Invalid user postgres from 180.168.36.86 port 2629 Sep 12 17:45:58 core sshd[4656]: Failed password for invalid user postgres from 180.168.36.86 port 2629 ssh2 ...	2019-09-12 23:52:33
183.131.82.99	attack	Sep 12 17:32:58 dev0-dcfr-rnet sshd[13731]: Failed password for root from 183.131.82.99 port 11147 ssh2 Sep 12 17:33:02 dev0-dcfr-rnet sshd[13731]: Failed password for root from 183.131.82.99 port 11147 ssh2 Sep 12 17:33:09 dev0-dcfr-rnet sshd[13731]: Failed password for root from 183.131.82.99 port 11147 ssh2	2019-09-12 23:51:19
219.137.226.52	attackspam	Sep 12 05:19:58 hiderm sshd\[13067\]: Invalid user ubuntu from 219.137.226.52 Sep 12 05:19:58 hiderm sshd\[13067\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.137.226.52 Sep 12 05:19:59 hiderm sshd\[13067\]: Failed password for invalid user ubuntu from 219.137.226.52 port 38590 ssh2 Sep 12 05:25:18 hiderm sshd\[13532\]: Invalid user hadoop from 219.137.226.52 Sep 12 05:25:18 hiderm sshd\[13532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.137.226.52	2019-09-13 00:13:48
42.5.75.69	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-09-12 23:41:05
94.191.59.106	attackspam	Sep 12 16:25:34 vps sshd[12494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.59.106 Sep 12 16:25:36 vps sshd[12494]: Failed password for invalid user steam from 94.191.59.106 port 33792 ssh2 Sep 12 16:52:44 vps sshd[13686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.59.106 ...	2019-09-12 23:44:43
89.248.172.85	attackbotsspam	09/12/2019-12:05:12.039657 89.248.172.85 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 100	2019-09-13 00:07:59
209.235.67.49	attackspambots	Sep 12 16:47:15 SilenceServices sshd[23700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.235.67.49 Sep 12 16:47:17 SilenceServices sshd[23700]: Failed password for invalid user baptiste from 209.235.67.49 port 40910 ssh2 Sep 12 16:53:02 SilenceServices sshd[25841]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.235.67.49	2019-09-12 23:13:11
106.13.34.190	attackbotsspam	Sep 12 18:38:22 yabzik sshd[20213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.34.190 Sep 12 18:38:24 yabzik sshd[20213]: Failed password for invalid user password from 106.13.34.190 port 50000 ssh2 Sep 12 18:44:16 yabzik sshd[22244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.34.190	2019-09-12 23:54:19
51.83.74.158	attackbotsspam	Sep 12 11:20:17 vps200512 sshd\[8565\]: Invalid user tom from 51.83.74.158 Sep 12 11:20:17 vps200512 sshd\[8565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.74.158 Sep 12 11:20:19 vps200512 sshd\[8565\]: Failed password for invalid user tom from 51.83.74.158 port 44861 ssh2 Sep 12 11:25:44 vps200512 sshd\[8673\]: Invalid user deploy from 51.83.74.158 Sep 12 11:25:44 vps200512 sshd\[8673\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.74.158	2019-09-12 23:33:45

Recently Reported IPs

172.135.242.170	163.225.136.208	205.247.126.213	231.59.143.213
250.213.161.14	217.245.189.207	250.145.5.62	50.129.38.1
60.8.145.50	20.247.226.65	58.33.32.181	5.72.116.248
109.128.157.97	21.53.84.45	204.171.251.79	98.239.202.38
219.68.125.47	105.231.156.115	89.38.149.112	3.1.201.89