106.54.83.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.54.83.45	attack	Invalid user upload from 106.54.83.45 port 51954	2020-08-25 23:17:23
106.54.83.45	attackspam	SSH Bruteforce attack	2020-08-21 12:46:26
106.54.83.45	attackbotsspam	Aug 2 23:17:29 PorscheCustomer sshd[2553]: Failed password for root from 106.54.83.45 port 43366 ssh2 Aug 2 23:22:21 PorscheCustomer sshd[2713]: Failed password for root from 106.54.83.45 port 38598 ssh2 ...	2020-08-03 05:48:51
106.54.83.45	attackbotsspam	Jul 28 19:03:40 mail sshd[18341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.83.45 Jul 28 19:03:42 mail sshd[18341]: Failed password for invalid user jike from 106.54.83.45 port 35514 ssh2 ...	2020-07-29 01:45:15
106.54.83.45	attack	Jul 25 23:18:29 mockhub sshd[11387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.83.45 Jul 25 23:18:31 mockhub sshd[11387]: Failed password for invalid user server from 106.54.83.45 port 50950 ssh2 ...	2020-07-26 15:49:52
106.54.83.45	attackspambots	Invalid user ubuntu from 106.54.83.45 port 40492	2020-07-25 12:24:35
106.54.83.45	attack	Jul 12 04:59:07 dhoomketu sshd[1445117]: Invalid user jan from 106.54.83.45 port 45154 Jul 12 04:59:07 dhoomketu sshd[1445117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.83.45 Jul 12 04:59:07 dhoomketu sshd[1445117]: Invalid user jan from 106.54.83.45 port 45154 Jul 12 04:59:09 dhoomketu sshd[1445117]: Failed password for invalid user jan from 106.54.83.45 port 45154 ssh2 Jul 12 05:01:50 dhoomketu sshd[1445166]: Invalid user website from 106.54.83.45 port 45998 ...	2020-07-12 07:41:29
106.54.83.45	attackbotsspam	Jun 24 13:14:43 itv-usvr-02 sshd[25901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.83.45 user=root Jun 24 13:14:45 itv-usvr-02 sshd[25901]: Failed password for root from 106.54.83.45 port 38206 ssh2 Jun 24 13:17:32 itv-usvr-02 sshd[26001]: Invalid user botmaster from 106.54.83.45 port 53386 Jun 24 13:17:32 itv-usvr-02 sshd[26001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.83.45 Jun 24 13:17:32 itv-usvr-02 sshd[26001]: Invalid user botmaster from 106.54.83.45 port 53386 Jun 24 13:17:34 itv-usvr-02 sshd[26001]: Failed password for invalid user botmaster from 106.54.83.45 port 53386 ssh2	2020-06-24 17:31:32
106.54.83.45	attackbotsspam	Jun 15 22:40:14 web1 sshd\[10091\]: Invalid user ubuntu from 106.54.83.45 Jun 15 22:40:14 web1 sshd\[10091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.83.45 Jun 15 22:40:15 web1 sshd\[10091\]: Failed password for invalid user ubuntu from 106.54.83.45 port 40582 ssh2 Jun 15 22:44:20 web1 sshd\[10235\]: Invalid user lzb from 106.54.83.45 Jun 15 22:44:20 web1 sshd\[10235\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.83.45	2020-06-16 05:18:31
106.54.83.45	attack	Failed password for invalid user bliu from 106.54.83.45 port 55982 ssh2	2020-06-13 16:58:51
106.54.83.45	attackbots	May 23 14:18:27 webhost01 sshd[10265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.83.45 May 23 14:18:29 webhost01 sshd[10265]: Failed password for invalid user pathplan from 106.54.83.45 port 53874 ssh2 ...	2020-05-23 19:10:20
106.54.83.45	attack	$f2bV_matches	2020-05-21 03:30:56
106.54.83.45	attackbotsspam	" "	2020-05-16 02:39:55
106.54.83.45	attack	2020-05-14T06:28:11.875513linuxbox-skyline sshd[164965]: Invalid user tacpro from 106.54.83.45 port 54512 ...	2020-05-14 21:26:47
106.54.83.45	attack	May 10 06:39:28 OPSO sshd\[19744\]: Invalid user test from 106.54.83.45 port 52868 May 10 06:39:28 OPSO sshd\[19744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.83.45 May 10 06:39:31 OPSO sshd\[19744\]: Failed password for invalid user test from 106.54.83.45 port 52868 ssh2 May 10 06:44:28 OPSO sshd\[21068\]: Invalid user user from 106.54.83.45 port 50524 May 10 06:44:28 OPSO sshd\[21068\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.83.45	2020-05-10 12:45:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.83.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41871
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.54.83.138.			IN	A

;; AUTHORITY SECTION:
.			570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040400 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 04 14:28:03 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 138.83.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 138.83.54.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.84.76.5	attackspam	Nov 8 07:28:50 cvbnet sshd[21137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.84.76.5 Nov 8 07:28:51 cvbnet sshd[21137]: Failed password for invalid user admin from 115.84.76.5 port 56584 ssh2 ...	2019-11-08 16:24:29
78.35.40.51	normal	h	2019-11-08 16:53:05
45.125.65.99	attackbots	\[2019-11-08 03:46:17\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-08T03:46:17.488-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="6463401148556213011",SessionID="0x7fdf2c2677c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.99/58915",ACLName="no_extension_match" \[2019-11-08 03:46:46\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-08T03:46:46.058-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="6799901148585359060",SessionID="0x7fdf2c8a8ab8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.99/52442",ACLName="no_extension_match" \[2019-11-08 03:47:01\] SECURITY\[2634\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-11-08T03:47:01.981-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="6139301148343508002",SessionID="0x7fdf2c003608",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.125.65.99/52687",ACLNam	2019-11-08 17:02:16
185.23.200.231	attackspam	Nov 7 11:19:22 Aberdeen-m4-Access auth.info sshd[8064]: Failed password for r.r from 185.23.200.231 port 46130 ssh2 Nov 7 11:19:22 Aberdeen-m4-Access auth.notice sshguard[2827]: Attack from "185.23.200.231" on service 100 whostnameh danger 10. Nov 7 11:19:22 Aberdeen-m4-Access auth.info sshd[8064]: Received disconnect from 185.23.200.231 port 46130:11: Bye Bye [preauth] Nov 7 11:19:22 Aberdeen-m4-Access auth.info sshd[8064]: Disconnected from 185.23.200.231 port 46130 [preauth] Nov 7 11:19:22 Aberdeen-m4-Access auth.notice sshguard[2827]: Attack from "185.23.200.231" on service 100 whostnameh danger 10. Nov 7 11:19:22 Aberdeen-m4-Access auth.notice sshguard[2827]: Attack from "185.23.200.231" on service 100 whostnameh danger 10. Nov 7 11:19:22 Aberdeen-m4-Access auth.warn sshguard[2827]: Blocking "185.23.200.231/32" for 240 secs (3 attacks in 0 secs, after 2 abuses over 1118 secs.) Nov 7 11:26:21 Aberdeen-m4-Access auth.info sshd[12174]: Failed password for r.r f........ ------------------------------	2019-11-08 16:39:44
108.179.219.114	attackspam	POST /wp-login.php HTTP/1.1 200 1827 Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0	2019-11-08 16:59:34
222.186.175.161	attackbots	Nov 8 13:51:59 vibhu-HP-Z238-Microtower-Workstation sshd\[30251\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Nov 8 13:52:02 vibhu-HP-Z238-Microtower-Workstation sshd\[30251\]: Failed password for root from 222.186.175.161 port 37740 ssh2 Nov 8 13:52:30 vibhu-HP-Z238-Microtower-Workstation sshd\[30272\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Nov 8 13:52:32 vibhu-HP-Z238-Microtower-Workstation sshd\[30272\]: Failed password for root from 222.186.175.161 port 35572 ssh2 Nov 8 13:52:46 vibhu-HP-Z238-Microtower-Workstation sshd\[30272\]: Failed password for root from 222.186.175.161 port 35572 ssh2 ...	2019-11-08 16:28:37
178.128.153.159	attackspam	Automatic report - XMLRPC Attack	2019-11-08 17:00:46
175.211.112.66	attackbots	2019-11-08T07:41:27.566835abusebot-5.cloudsearch.cf sshd\[29379\]: Invalid user bjorn from 175.211.112.66 port 40528	2019-11-08 16:37:11
42.54.115.205	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-11-08 16:34:24
86.12.128.253	attack	Honeypot attack, port: 23, PTR: 253-128-12-86.static.virginm.net.	2019-11-08 16:30:01
123.206.190.82	attack	$f2bV_matches	2019-11-08 16:41:54
81.22.45.107	attackspambots	Nov 8 09:16:00 mc1 kernel: \[4487253.738134\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=11420 PROTO=TCP SPT=49947 DPT=53780 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 8 09:20:40 mc1 kernel: \[4487533.444698\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=58186 PROTO=TCP SPT=49947 DPT=53935 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 8 09:24:16 mc1 kernel: \[4487749.689404\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=33789 PROTO=TCP SPT=49947 DPT=53658 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-08 16:27:28
125.77.198.169	attackspambots	SSH bruteforce (Triggered fail2ban)	2019-11-08 16:49:05
222.186.175.151	attackspambots	Nov 8 09:47:28 odroid64 sshd\[27381\]: User root from 222.186.175.151 not allowed because not listed in AllowUsers Nov 8 09:47:29 odroid64 sshd\[27381\]: Failed none for invalid user root from 222.186.175.151 port 49304 ssh2 ...	2019-11-08 16:50:02
27.72.102.190	attackbots	Nov 7 22:01:21 php1 sshd\[9766\]: Invalid user debian from 27.72.102.190 Nov 7 22:01:21 php1 sshd\[9766\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.72.102.190 Nov 7 22:01:23 php1 sshd\[9766\]: Failed password for invalid user debian from 27.72.102.190 port 64419 ssh2 Nov 7 22:06:09 php1 sshd\[10387\]: Invalid user Shadow1 from 27.72.102.190 Nov 7 22:06:09 php1 sshd\[10387\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.72.102.190	2019-11-08 16:25:44

Recently Reported IPs

106.54.82.40	106.55.171.23	106.55.182.63	106.55.227.177
106.55.231.88	106.55.25.2	106.55.32.199	106.55.50.220
106.55.57.218	106.55.94.179	106.56.249.194	106.58.117.210
106.58.167.4	106.58.167.41	106.58.181.177	106.58.184.142
106.58.184.2	106.75.175.241	106.75.233.51	106.75.54.241