190.214.106.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Ecuador

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 190.214.106.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63473
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;190.214.106.6.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012301 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 24 07:01:28 CST 2025
;; MSG SIZE  rcvd: 106

Host info

6.106.214.190.in-addr.arpa domain name pointer 6.106.214.190.static.anycast.cnt-grms.ec.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
6.106.214.190.in-addr.arpa	name = 6.106.214.190.static.anycast.cnt-grms.ec.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.70.168.25	attack	Unauthorized connection attempt from IP address 118.70.168.25 on Port 445(SMB)	2019-09-07 20:25:57
27.111.83.239	attackspambots	Sep 7 15:03:52 markkoudstaal sshd[25788]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.111.83.239 Sep 7 15:03:54 markkoudstaal sshd[25788]: Failed password for invalid user deploy from 27.111.83.239 port 44423 ssh2 Sep 7 15:08:18 markkoudstaal sshd[26171]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.111.83.239	2019-09-07 21:21:01
60.250.164.169	attack	2019-09-07T13:04:33.635099abusebot-2.cloudsearch.cf sshd\[30473\]: Invalid user p4ssw0rd from 60.250.164.169 port 33074	2019-09-07 21:14:42
218.92.0.143	attack	Sep 7 05:49:08 aat-srv002 sshd[6996]: Failed password for root from 218.92.0.143 port 8146 ssh2 Sep 7 05:49:22 aat-srv002 sshd[6996]: Failed password for root from 218.92.0.143 port 8146 ssh2 Sep 7 05:49:22 aat-srv002 sshd[6996]: error: maximum authentication attempts exceeded for root from 218.92.0.143 port 8146 ssh2 [preauth] Sep 7 05:49:26 aat-srv002 sshd[7006]: Failed password for root from 218.92.0.143 port 20952 ssh2 ...	2019-09-07 21:23:52
218.98.26.163	attackspambots	Sep 7 09:05:54 ny01 sshd[27194]: Failed password for root from 218.98.26.163 port 53494 ssh2 Sep 7 09:06:04 ny01 sshd[27195]: Failed password for root from 218.98.26.163 port 61861 ssh2	2019-09-07 21:07:38
222.186.42.94	attackbotsspam	Sep 7 02:54:29 lcprod sshd\[25510\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.94 user=root Sep 7 02:54:31 lcprod sshd\[25510\]: Failed password for root from 222.186.42.94 port 27396 ssh2 Sep 7 02:54:38 lcprod sshd\[25520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.94 user=root Sep 7 02:54:40 lcprod sshd\[25520\]: Failed password for root from 222.186.42.94 port 38073 ssh2 Sep 7 02:54:47 lcprod sshd\[25530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.94 user=root	2019-09-07 21:06:52
167.114.230.252	attackbotsspam	Sep 7 15:08:08 eventyay sshd[2135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.230.252 Sep 7 15:08:10 eventyay sshd[2135]: Failed password for invalid user webtool from 167.114.230.252 port 52465 ssh2 Sep 7 15:12:38 eventyay sshd[2256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.230.252 ...	2019-09-07 21:19:39
88.85.213.129	attack	[Sat Sep 07 07:50:26.514733 2019] [:error] [pid 218970] [client 88.85.213.129:45925] [client 88.85.213.129] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 21)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "127.0.0.1"] [uri "/cgi-bin/ViewLog.asp"] [unique_id "XXOLcp4jHltEES0J5rqqlAAAAAc"] ...	2019-09-07 20:40:13
151.230.51.228	attack	Portscan detected	2019-09-07 21:18:11
117.93.16.253	attackbots	Sep 6 14:34:17 itv-usvr-01 sshd[13661]: Invalid user admin from 117.93.16.253 Sep 6 14:34:17 itv-usvr-01 sshd[13661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.93.16.253 Sep 6 14:34:17 itv-usvr-01 sshd[13661]: Invalid user admin from 117.93.16.253 Sep 6 14:34:20 itv-usvr-01 sshd[13661]: Failed password for invalid user admin from 117.93.16.253 port 38669 ssh2 Sep 6 14:34:17 itv-usvr-01 sshd[13661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.93.16.253 Sep 6 14:34:17 itv-usvr-01 sshd[13661]: Invalid user admin from 117.93.16.253 Sep 6 14:34:20 itv-usvr-01 sshd[13661]: Failed password for invalid user admin from 117.93.16.253 port 38669 ssh2 Sep 6 14:34:23 itv-usvr-01 sshd[13661]: Failed password for invalid user admin from 117.93.16.253 port 38669 ssh2	2019-09-07 21:12:38
1.161.161.169	attackbotsspam	Fail2Ban - FTP Abuse Attempt	2019-09-07 21:16:22
129.204.176.234	attack	Sep 7 02:09:29 auw2 sshd\[22893\]: Invalid user gituser from 129.204.176.234 Sep 7 02:09:29 auw2 sshd\[22893\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.176.234 Sep 7 02:09:32 auw2 sshd\[22893\]: Failed password for invalid user gituser from 129.204.176.234 port 47034 ssh2 Sep 7 02:16:17 auw2 sshd\[23438\]: Invalid user bot from 129.204.176.234 Sep 7 02:16:17 auw2 sshd\[23438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.176.234	2019-09-07 20:24:33
45.136.109.85	attack	Port scan on 3 port(s): 8416 15739 33632	2019-09-07 20:58:52
175.167.204.240	attack	Unauthorised access (Sep 7) SRC=175.167.204.240 LEN=40 TTL=49 ID=62590 TCP DPT=8080 WINDOW=20360 SYN Unauthorised access (Sep 7) SRC=175.167.204.240 LEN=40 TTL=49 ID=22312 TCP DPT=8080 WINDOW=20360 SYN Unauthorised access (Sep 7) SRC=175.167.204.240 LEN=40 TTL=49 ID=12905 TCP DPT=8080 WINDOW=35137 SYN Unauthorised access (Sep 6) SRC=175.167.204.240 LEN=40 TTL=49 ID=57468 TCP DPT=8080 WINDOW=20360 SYN Unauthorised access (Sep 4) SRC=175.167.204.240 LEN=40 TTL=49 ID=37896 TCP DPT=8080 WINDOW=20360 SYN	2019-09-07 20:38:52
39.89.156.53	attack	firewall-block, port(s): 22/tcp	2019-09-07 20:59:27

Recently Reported IPs

75.209.48.231	98.217.211.143	215.233.108.50	90.44.253.54
19.193.200.214	27.226.207.69	55.128.39.76	42.33.66.13
134.221.101.233	122.107.229.165	24.47.105.126	71.32.41.201
115.168.93.74	70.165.250.146	104.233.20.241	108.97.152.193
52.131.111.241	173.80.159.78	126.253.248.56	193.184.115.127