106.2.214.54 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Priority of Fashion (Beijing)Information Technology Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Brute forcing RDP port 3389	2019-08-10 08:54:10

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.2.214.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22927
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.2.214.54.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080902 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 10 08:53:55 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 54.214.2.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.214.2.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.61.37.88	attackbotsspam	SSH Login Bruteforce	2020-08-19 14:09:05
87.246.7.142	attackspambots	Aug 19 05:52:17 galaxy event: galaxy/lswi: smtp: sales@process-analyzer.de [87.246.7.142] authentication failure using internet password Aug 19 05:52:29 galaxy event: galaxy/lswi: smtp: sales@process-analyzer.de [87.246.7.142] authentication failure using internet password Aug 19 05:52:43 galaxy event: galaxy/lswi: smtp: sales@process-analyzer.de [87.246.7.142] authentication failure using internet password Aug 19 05:52:56 galaxy event: galaxy/lswi: smtp: sales@process-analyzer.de [87.246.7.142] authentication failure using internet password Aug 19 05:53:10 galaxy event: galaxy/lswi: smtp: sales@process-analyzer.de [87.246.7.142] authentication failure using internet password ...	2020-08-19 14:46:35
106.12.20.195	attackspam	$f2bV_matches	2020-08-19 14:13:05
49.231.238.162	attackbots	$f2bV_matches	2020-08-19 14:22:50
123.207.92.254	attackspam	Invalid user chat from 123.207.92.254 port 39280	2020-08-19 14:43:45
190.151.37.19	attackbots	Aug 19 07:03:42 mout sshd[20068]: Invalid user ym from 190.151.37.19 port 49262	2020-08-19 14:27:26
198.199.122.153	attack	/adminer-4.6.0.php	2020-08-19 14:26:53
61.177.172.102	attack	Aug 19 07:04:45 rocket sshd[13263]: Failed password for root from 61.177.172.102 port 20914 ssh2 Aug 19 07:04:48 rocket sshd[13263]: Failed password for root from 61.177.172.102 port 20914 ssh2 Aug 19 07:04:51 rocket sshd[13263]: Failed password for root from 61.177.172.102 port 20914 ssh2 Aug 19 07:05:00 rocket sshd[13283]: Failed password for root from 61.177.172.102 port 13088 ssh2 Aug 19 07:05:10 rocket sshd[13283]: Failed password for root from 61.177.172.102 port 13088 ssh2 Aug 19 07:05:10 rocket sshd[13283]: Failed password for root from 61.177.172.102 port 13088 ssh2 Aug 19 07:05:10 rocket sshd[13480]: Failed password for root from 61.177.172.102 port 13406 ssh2 Aug 19 07:05:20 rocket sshd[13511]: Failed password for root from 61.177.172.102 port 40331 ssh2 ...	2020-08-19 14:09:34
106.12.15.239	attack	srv02 Mass scanning activity detected Target: 19450 ..	2020-08-19 14:20:58
182.161.66.219	attack	20 attempts against mh-misbehave-ban on river	2020-08-19 14:45:21
118.27.9.23	attackbots	Aug 19 05:53:57 sshgateway sshd\[7618\]: Invalid user teacher from 118.27.9.23 Aug 19 05:53:57 sshgateway sshd\[7618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=v118-27-9-23.6lby.static.cnode.io Aug 19 05:53:59 sshgateway sshd\[7618\]: Failed password for invalid user teacher from 118.27.9.23 port 51634 ssh2	2020-08-19 14:21:35
58.216.12.251	attackspam	404 NOT FOUND	2020-08-19 14:28:42
110.49.70.245	attackspambots	Tried sshing with brute force.	2020-08-19 14:03:18
210.212.29.215	attackbots	Aug 19 08:05:12 server sshd[23549]: Failed password for invalid user wifi from 210.212.29.215 port 43484 ssh2 Aug 19 08:09:38 server sshd[25438]: Failed password for invalid user web from 210.212.29.215 port 59904 ssh2 Aug 19 08:14:07 server sshd[27392]: Failed password for invalid user cx from 210.212.29.215 port 48092 ssh2	2020-08-19 14:15:23
125.214.50.55	attackbotsspam	20/8/18@23:53:32: FAIL: Alarm-Network address from=125.214.50.55 20/8/18@23:53:32: FAIL: Alarm-Network address from=125.214.50.55 ...	2020-08-19 14:37:35

Recently Reported IPs

95.179.208.234	162.78.109.3	125.164.82.98	67.41.226.64
80.95.93.125	97.196.131.24	119.99.203.73	21.46.180.134
199.33.124.242	203.135.54.198	201.95.161.175	186.251.141.98
178.239.249.233	136.32.111.47	119.3.89.47	85.98.56.112
79.116.16.255	49.232.37.191	36.37.135.103	31.14.142.109