106.55.149.238

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.55.149.162	attackbots	Oct 12 10:07:55 mockhub sshd[1265310]: Invalid user alexander from 106.55.149.162 port 52990 Oct 12 10:07:57 mockhub sshd[1265310]: Failed password for invalid user alexander from 106.55.149.162 port 52990 ssh2 Oct 12 10:10:58 mockhub sshd[1265464]: Invalid user yakim from 106.55.149.162 port 59820 ...	2020-10-13 03:47:28
106.55.149.162	attack	Oct 12 12:27:41 rotator sshd\[10795\]: Failed password for root from 106.55.149.162 port 50228 ssh2Oct 12 12:29:45 rotator sshd\[10839\]: Failed password for root from 106.55.149.162 port 44354 ssh2Oct 12 12:31:47 rotator sshd\[11624\]: Invalid user oy from 106.55.149.162Oct 12 12:31:49 rotator sshd\[11624\]: Failed password for invalid user oy from 106.55.149.162 port 38478 ssh2Oct 12 12:33:55 rotator sshd\[11668\]: Invalid user arias from 106.55.149.162Oct 12 12:33:57 rotator sshd\[11668\]: Failed password for invalid user arias from 106.55.149.162 port 60842 ssh2 ...	2020-10-12 19:21:10
106.55.149.162	attackbotsspam	Invalid user carolina from 106.55.149.162 port 40668	2020-08-29 08:10:59
106.55.149.162	attackbots	Invalid user webuser from 106.55.149.162 port 37544	2020-08-17 15:30:18
106.55.149.162	attackspam	2020-08-15T14:18:22.465771v22018076590370373 sshd[30218]: Failed password for root from 106.55.149.162 port 40866 ssh2 2020-08-15T14:21:59.919959v22018076590370373 sshd[2896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.149.162 user=root 2020-08-15T14:22:02.429949v22018076590370373 sshd[2896]: Failed password for root from 106.55.149.162 port 47512 ssh2 2020-08-15T14:25:18.358441v22018076590370373 sshd[26120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.149.162 user=root 2020-08-15T14:25:20.521915v22018076590370373 sshd[26120]: Failed password for root from 106.55.149.162 port 54152 ssh2 ...	2020-08-15 20:55:45
106.55.149.60	attack	B: f2b 404 5x	2020-08-07 20:11:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.55.149.238
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44183
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.55.149.238.			IN	A

;; AUTHORITY SECTION:
.			565	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 06:32:07 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 238.149.55.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 238.149.55.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.189.248.100	attackspambots	1582927017 - 02/28/2020 22:56:57 Host: 189.189.248.100/189.189.248.100 Port: 445 TCP Blocked	2020-02-29 08:07:49
112.3.30.62	attackspam	Feb 29 05:13:04 gw1 sshd[13039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.3.30.62 Feb 29 05:13:06 gw1 sshd[13039]: Failed password for invalid user test2 from 112.3.30.62 port 59952 ssh2 ...	2020-02-29 08:26:41
185.176.27.122	attackspambots	Port 23498 scan denied	2020-02-29 08:11:11
121.152.89.10	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-29 08:30:51
132.232.132.103	attackspam	Invalid user sonarqube from 132.232.132.103 port 40784	2020-02-29 08:19:03
99.185.76.161	attackbotsspam	Feb 29 01:09:31 vps647732 sshd[9613]: Failed password for root from 99.185.76.161 port 41942 ssh2 Feb 29 01:16:56 vps647732 sshd[9783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.185.76.161 ...	2020-02-29 08:29:06
2.232.193.26	attack	IT_FASTWEB-MNT_<177>1582926963 [1:2403306:55614] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 4 [Classification: Misc Attack] [Priority: 2] {TCP} 2.232.193.26:9248	2020-02-29 08:36:06
5.135.253.172	attackspam	Feb 28 19:05:47 plusreed sshd[14635]: Invalid user git from 5.135.253.172 ...	2020-02-29 08:14:28
106.12.121.40	attack	Feb 28 13:33:29 wbs sshd\[9837\]: Invalid user ricochet from 106.12.121.40 Feb 28 13:33:29 wbs sshd\[9837\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.121.40 Feb 28 13:33:31 wbs sshd\[9837\]: Failed password for invalid user ricochet from 106.12.121.40 port 58478 ssh2 Feb 28 13:36:57 wbs sshd\[10153\]: Invalid user uploadu from 106.12.121.40 Feb 28 13:36:57 wbs sshd\[10153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.121.40	2020-02-29 08:08:12
123.22.212.99	attackbots	SSH / Telnet Brute Force Attempts on Honeypot	2020-02-29 08:37:51
209.59.143.230	attackspam	Feb 29 01:22:16 dev0-dcde-rnet sshd[19239]: Failed password for www-data from 209.59.143.230 port 33681 ssh2 Feb 29 01:36:19 dev0-dcde-rnet sshd[19330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.59.143.230 Feb 29 01:36:21 dev0-dcde-rnet sshd[19330]: Failed password for invalid user dan from 209.59.143.230 port 42053 ssh2	2020-02-29 08:42:00
88.247.114.186	attack	Automatic report - Port Scan Attack	2020-02-29 08:05:00
197.238.235.218	attackbotsspam	1582926998 - 02/28/2020 22:56:38 Host: 197.238.235.218/197.238.235.218 Port: 445 TCP Blocked	2020-02-29 08:18:31
81.31.248.8	attackbots	Port probing on unauthorized port 445	2020-02-29 08:15:13
64.227.19.68	attackspam	Feb 28 13:22:15 XXX sshd[16266]: User r.r from 64.227.19.68 not allowed because none of user's groups are listed in AllowGroups Feb 28 13:22:15 XXX sshd[16266]: Received disconnect from 64.227.19.68: 11: Bye Bye [preauth] Feb 28 13:22:16 XXX sshd[16268]: Invalid user admin from 64.227.19.68 Feb 28 13:22:16 XXX sshd[16268]: Received disconnect from 64.227.19.68: 11: Bye Bye [preauth] Feb 28 13:22:17 XXX sshd[16270]: Invalid user ubnt from 64.227.19.68 Feb 28 13:22:17 XXX sshd[16270]: Received disconnect from 64.227.19.68: 11: Bye Bye [preauth] Feb 28 13:22:18 XXX sshd[16272]: User r.r from 64.227.19.68 not allowed because none of user's groups are listed in AllowGroups Feb 28 13:22:18 XXX sshd[16272]: Received disconnect from 64.227.19.68: 11: Bye Bye [preauth] Feb 28 13:22:18 XXX sshd[16274]: Invalid user support from 64.227.19.68 Feb 28 13:22:19 XXX sshd[16274]: Received disconnect from 64.227.19.68: 11: Bye Bye [preauth] Feb 28 13:22:19 XXX sshd[16276]: User r.r from ........ -------------------------------	2020-02-29 08:18:04

Recently Reported IPs

106.54.174.82	106.54.197.53	106.55.143.41	106.54.4.237
106.55.164.193	106.55.177.141	106.55.182.176	106.55.24.175
106.55.25.77	106.55.57.12	106.55.28.143	106.55.253.75
106.6.246.2	106.57.40.212	106.56.233.90	106.66.14.205
106.56.233.190	106.66.20.8	106.58.17.224	106.59.245.223