106.54.98.14 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.54.98.89	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-10-10T12:29:40Z and 2020-10-10T12:35:41Z	2020-10-11 02:10:08
106.54.98.89	attack	Oct 10 11:09:47 Invalid user jobs from 106.54.98.89 port 47820	2020-10-10 17:54:28
106.54.98.89	attack	(sshd) Failed SSH login from 106.54.98.89 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 30 13:58:07 amsweb01 sshd[31607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 user=root Aug 30 13:58:09 amsweb01 sshd[31607]: Failed password for root from 106.54.98.89 port 55178 ssh2 Aug 30 14:09:15 amsweb01 sshd[762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 user=root Aug 30 14:09:17 amsweb01 sshd[762]: Failed password for root from 106.54.98.89 port 37502 ssh2 Aug 30 14:11:57 amsweb01 sshd[1061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 user=root	2020-08-31 02:51:47
106.54.98.89	attackspam	$f2bV_matches	2020-08-26 15:16:39
106.54.98.89	attackspam	SSH Brute-Forcing (server1)	2020-08-24 12:23:29
106.54.98.89	attack	2020-08-23T09:59:04.020159shield sshd\[12634\]: Invalid user postgres from 106.54.98.89 port 55322 2020-08-23T09:59:04.042443shield sshd\[12634\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 2020-08-23T09:59:06.744353shield sshd\[12634\]: Failed password for invalid user postgres from 106.54.98.89 port 55322 ssh2 2020-08-23T10:02:37.003177shield sshd\[13363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 user=root 2020-08-23T10:02:38.807016shield sshd\[13363\]: Failed password for root from 106.54.98.89 port 35636 ssh2	2020-08-23 18:02:54
106.54.98.89	attackspambots	Aug 21 14:39:26 firewall sshd[25562]: Invalid user yhy from 106.54.98.89 Aug 21 14:39:28 firewall sshd[25562]: Failed password for invalid user yhy from 106.54.98.89 port 41548 ssh2 Aug 21 14:44:02 firewall sshd[25736]: Invalid user rdp from 106.54.98.89 ...	2020-08-22 01:54:02
106.54.98.89	attackspam	prod6 ...	2020-08-12 03:09:44
106.54.98.89	attackspam	Unauthorized SSH login attempts	2020-08-06 02:06:41
106.54.98.89	attackspambots	Jul 27 04:55:07 gospond sshd[3580]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 Jul 27 04:55:07 gospond sshd[3580]: Invalid user rf from 106.54.98.89 port 55274 Jul 27 04:55:09 gospond sshd[3580]: Failed password for invalid user rf from 106.54.98.89 port 55274 ssh2 ...	2020-07-27 13:52:14
106.54.98.89	attackbots	Jul 7 22:42:14 marvibiene sshd[23322]: Invalid user zeng from 106.54.98.89 port 44306 Jul 7 22:42:14 marvibiene sshd[23322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 Jul 7 22:42:14 marvibiene sshd[23322]: Invalid user zeng from 106.54.98.89 port 44306 Jul 7 22:42:16 marvibiene sshd[23322]: Failed password for invalid user zeng from 106.54.98.89 port 44306 ssh2 ...	2020-07-08 07:05:54
106.54.98.89	attackspam	Jun 30 08:00:59 home sshd[27219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 Jun 30 08:01:00 home sshd[27219]: Failed password for invalid user mitra from 106.54.98.89 port 51078 ssh2 Jun 30 08:04:05 home sshd[27561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 ...	2020-06-30 17:44:14
106.54.98.89	attack	2020-06-26T11:15:26.721515dmca.cloudsearch.cf sshd[12537]: Invalid user bp from 106.54.98.89 port 57830 2020-06-26T11:15:26.726914dmca.cloudsearch.cf sshd[12537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 2020-06-26T11:15:26.721515dmca.cloudsearch.cf sshd[12537]: Invalid user bp from 106.54.98.89 port 57830 2020-06-26T11:15:28.642082dmca.cloudsearch.cf sshd[12537]: Failed password for invalid user bp from 106.54.98.89 port 57830 ssh2 2020-06-26T11:19:04.408031dmca.cloudsearch.cf sshd[12698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.98.89 user=root 2020-06-26T11:19:06.584200dmca.cloudsearch.cf sshd[12698]: Failed password for root from 106.54.98.89 port 38970 ssh2 2020-06-26T11:22:31.753048dmca.cloudsearch.cf sshd[12826]: Invalid user tecmint from 106.54.98.89 port 48340 ...	2020-06-27 03:13:27
106.54.98.89	attackbots	$f2bV_matches	2020-06-23 21:49:22
106.54.98.89	attack	Invalid user qxn from 106.54.98.89 port 50708	2020-06-21 15:15:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.98.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42777
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.54.98.14.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022032000 1800 900 604800 86400

;; Query time: 82 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 20 16:44:49 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 14.98.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.98.54.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.22.128.115	attack	Sep 14 12:10:57 tdfoods sshd\[17644\]: Invalid user ingres from 165.22.128.115 Sep 14 12:10:57 tdfoods sshd\[17644\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.128.115 Sep 14 12:10:59 tdfoods sshd\[17644\]: Failed password for invalid user ingres from 165.22.128.115 port 47880 ssh2 Sep 14 12:15:17 tdfoods sshd\[18012\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.128.115 user=root Sep 14 12:15:19 tdfoods sshd\[18012\]: Failed password for root from 165.22.128.115 port 35094 ssh2	2019-09-15 06:17:33
221.162.255.86	attackbotsspam	Sep 14 22:40:53 ArkNodeAT sshd\[24555\]: Invalid user jule from 221.162.255.86 Sep 14 22:40:53 ArkNodeAT sshd\[24555\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.162.255.86 Sep 14 22:40:55 ArkNodeAT sshd\[24555\]: Failed password for invalid user jule from 221.162.255.86 port 49058 ssh2	2019-09-15 06:12:16
45.82.153.35	attackbotsspam	Sep 14 23:41:07 lenivpn01 kernel: \[730059.771287\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=45.82.153.35 DST=195.201.121.15 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=17646 PROTO=TCP SPT=49076 DPT=34444 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 15 00:20:22 lenivpn01 kernel: \[732414.754465\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=45.82.153.35 DST=195.201.121.15 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=10788 PROTO=TCP SPT=49076 DPT=35444 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 15 00:21:38 lenivpn01 kernel: \[732491.097987\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:2f:6c:1b:d2:74:7f:6e:37:e3:08:00 SRC=45.82.153.35 DST=195.201.121.15 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=51699 PROTO=TCP SPT=49076 DPT=27444 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-09-15 06:31:49
177.75.56.56	attack	Sep 15 00:09:28 host sshd\[18849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.75.56.56 user=root Sep 15 00:09:30 host sshd\[18849\]: Failed password for root from 177.75.56.56 port 44282 ssh2 ...	2019-09-15 06:16:37
51.75.30.199	attack	Sep 14 21:20:16 vps691689 sshd[16146]: Failed password for root from 51.75.30.199 port 32773 ssh2 Sep 14 21:24:23 vps691689 sshd[16195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.30.199 ...	2019-09-15 05:55:11
123.142.192.18	attack	Sep 14 22:06:41 core sshd[9975]: Invalid user atan from 123.142.192.18 port 49960 Sep 14 22:06:43 core sshd[9975]: Failed password for invalid user atan from 123.142.192.18 port 49960 ssh2 ...	2019-09-15 06:13:32
216.245.220.166	attackbots	\[2019-09-14 18:03:22\] NOTICE\[20685\] chan_sip.c: Registration from '"801" \' failed for '216.245.220.166:5171' - Wrong password \[2019-09-14 18:03:22\] SECURITY\[20693\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-14T18:03:22.268-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="801",SessionID="0x7f8a6c329f48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/216.245.220.166/5171",Challenge="4748f7b0",ReceivedChallenge="4748f7b0",ReceivedHash="2cf223c09b932e03c2a26ad8b15b3540" \[2019-09-14 18:03:22\] NOTICE\[20685\] chan_sip.c: Registration from '"801" \' failed for '216.245.220.166:5171' - Wrong password \[2019-09-14 18:03:22\] SECURITY\[20693\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-14T18:03:22.344-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="801",SessionID="0x7f8a6c840658",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV	2019-09-15 06:20:56
54.38.82.14	attackspambots	Sep 14 17:49:15 vps200512 sshd\[17512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.82.14 user=root Sep 14 17:49:17 vps200512 sshd\[17512\]: Failed password for root from 54.38.82.14 port 59187 ssh2 Sep 14 17:49:18 vps200512 sshd\[17514\]: Invalid user admin from 54.38.82.14 Sep 14 17:49:18 vps200512 sshd\[17514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.82.14 Sep 14 17:49:20 vps200512 sshd\[17514\]: Failed password for invalid user admin from 54.38.82.14 port 36020 ssh2	2019-09-15 06:22:41
51.15.87.199	attackspambots	Sep 14 21:39:38 lnxmysql61 sshd[9203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.87.199	2019-09-15 06:23:08
188.254.0.182	attackbotsspam	Sep 14 21:31:29 hb sshd\[20641\]: Invalid user bingo from 188.254.0.182 Sep 14 21:31:29 hb sshd\[20641\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182 Sep 14 21:31:31 hb sshd\[20641\]: Failed password for invalid user bingo from 188.254.0.182 port 52092 ssh2 Sep 14 21:35:33 hb sshd\[20970\]: Invalid user or from 188.254.0.182 Sep 14 21:35:33 hb sshd\[20970\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182	2019-09-15 05:51:22
52.53.245.164	attackspambots	Sep 14 23:48:59 vps691689 sshd[19276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.53.245.164 Sep 14 23:49:02 vps691689 sshd[19276]: Failed password for invalid user system from 52.53.245.164 port 16514 ssh2 ...	2019-09-15 06:05:56
1.71.129.108	attackbotsspam	Sep 14 15:21:51 xtremcommunity sshd\[86289\]: Invalid user complex from 1.71.129.108 port 51510 Sep 14 15:21:51 xtremcommunity sshd\[86289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.129.108 Sep 14 15:21:53 xtremcommunity sshd\[86289\]: Failed password for invalid user complex from 1.71.129.108 port 51510 ssh2 Sep 14 15:25:52 xtremcommunity sshd\[86351\]: Invalid user nginx from 1.71.129.108 port 40491 Sep 14 15:25:52 xtremcommunity sshd\[86351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.71.129.108 ...	2019-09-15 05:51:50
109.207.79.116	attackspam	Invalid user upload from 109.207.79.116 port 58324	2019-09-15 06:19:26
188.166.239.106	attackspambots	Sep 14 11:02:44 php2 sshd\[15553\]: Invalid user mp from 188.166.239.106 Sep 14 11:02:44 php2 sshd\[15553\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gadgedo.com Sep 14 11:02:46 php2 sshd\[15553\]: Failed password for invalid user mp from 188.166.239.106 port 55981 ssh2 Sep 14 11:07:23 php2 sshd\[15949\]: Invalid user bw from 188.166.239.106 Sep 14 11:07:23 php2 sshd\[15949\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=gadgedo.com	2019-09-15 06:27:15
222.186.30.165	attackbotsspam	Sep 14 11:46:33 web9 sshd\[13167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.165 user=root Sep 14 11:46:35 web9 sshd\[13167\]: Failed password for root from 222.186.30.165 port 10204 ssh2 Sep 14 11:46:37 web9 sshd\[13167\]: Failed password for root from 222.186.30.165 port 10204 ssh2 Sep 14 11:46:39 web9 sshd\[13167\]: Failed password for root from 222.186.30.165 port 10204 ssh2 Sep 14 11:46:41 web9 sshd\[13202\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.165 user=root	2019-09-15 06:20:01

Recently Reported IPs

106.54.84.88	106.54.99.199	106.55.101.173	106.55.105.65
106.55.143.88	219.230.226.100	106.75.117.131	106.75.117.219
106.75.118.115	106.75.118.208	106.75.140.237	106.75.245.55
106.75.72.63	106.8.29.219	107.154.158.142	107.154.158.224
107.154.158.34	107.154.159.150	107.154.159.225	107.154.159.93