54.37.106.114 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: France

Internet Service Provider: OVH SAS

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	2020-10-05T16:40:07.5814201495-001 sshd[9667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip114.ip-54-37-106.eu user=root 2020-10-05T16:40:09.6262751495-001 sshd[9667]: Failed password for root from 54.37.106.114 port 34312 ssh2 2020-10-05T16:43:29.6959701495-001 sshd[9864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip114.ip-54-37-106.eu user=root 2020-10-05T16:43:31.6820351495-001 sshd[9864]: Failed password for root from 54.37.106.114 port 42780 ssh2 2020-10-05T16:46:55.4122321495-001 sshd[10023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip114.ip-54-37-106.eu user=root 2020-10-05T16:46:57.4655721495-001 sshd[10023]: Failed password for root from 54.37.106.114 port 51248 ssh2 ...	2020-10-06 06:12:42
attackbots	Oct 5 16:02:22 vpn01 sshd[2849]: Failed password for root from 54.37.106.114 port 58726 ssh2 ...	2020-10-05 22:17:20
attackspambots	$f2bV_matches	2020-10-05 14:11:30
attack	2020-09-26T11:54:52.798739cyberdyne sshd[1395265]: Invalid user ocadmin from 54.37.106.114 port 53054 2020-09-26T11:54:54.891416cyberdyne sshd[1395265]: Failed password for invalid user ocadmin from 54.37.106.114 port 53054 ssh2 2020-09-26T11:58:20.184177cyberdyne sshd[1396105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.106.114 user=root 2020-09-26T11:58:21.824145cyberdyne sshd[1396105]: Failed password for root from 54.37.106.114 port 34150 ssh2 ...	2020-09-27 00:28:12
attackspambots	Sep 26 08:58:21 mavik sshd[21440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip114.ip-54-37-106.eu user=root Sep 26 08:58:23 mavik sshd[21440]: Failed password for root from 54.37.106.114 port 53610 ssh2 Sep 26 09:01:43 mavik sshd[21562]: Invalid user customer from 54.37.106.114 Sep 26 09:01:43 mavik sshd[21562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip114.ip-54-37-106.eu Sep 26 09:01:45 mavik sshd[21562]: Failed password for invalid user customer from 54.37.106.114 port 60652 ssh2 ...	2020-09-26 16:17:34
attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-25 04:56:15
attack	Sep 24 11:49:33 mavik sshd[24809]: Failed password for invalid user ubuntu from 54.37.106.114 port 60914 ssh2 Sep 24 11:53:11 mavik sshd[24990]: Invalid user daniel from 54.37.106.114 Sep 24 11:53:11 mavik sshd[24990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip114.ip-54-37-106.eu Sep 24 11:53:13 mavik sshd[24990]: Failed password for invalid user daniel from 54.37.106.114 port 42550 ssh2 Sep 24 11:56:57 mavik sshd[25123]: Invalid user admin from 54.37.106.114 ...	2020-09-25 03:47:02
attack	Sep 24 11:49:33 mavik sshd[24809]: Failed password for invalid user ubuntu from 54.37.106.114 port 60914 ssh2 Sep 24 11:53:11 mavik sshd[24990]: Invalid user daniel from 54.37.106.114 Sep 24 11:53:11 mavik sshd[24990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip114.ip-54-37-106.eu Sep 24 11:53:13 mavik sshd[24990]: Failed password for invalid user daniel from 54.37.106.114 port 42550 ssh2 Sep 24 11:56:57 mavik sshd[25123]: Invalid user admin from 54.37.106.114 ...	2020-09-24 19:33:43

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 54.37.106.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43703
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;54.37.106.114.			IN	A

;; AUTHORITY SECTION:
.			154	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092400 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 24 19:33:38 CST 2020
;; MSG SIZE  rcvd: 117

Host info

114.106.37.54.in-addr.arpa domain name pointer ip114.ip-54-37-106.eu.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
114.106.37.54.in-addr.arpa	name = ip114.ip-54-37-106.eu.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.116.251.34	attackspambots	May 10 13:54:21 sshd[5258]: Did not receive identification string from 178.116.251.34 May 10 13:54:25 sshd[5287]: Invalid user supervisor from 178.116.251.34 May 10 13:54:25 sshd[5287]: input_userauth_request: invalid user supervisor [preauth] May 10 13:54:25 sshd[5287]: pam_unix(sshd:auth): check pass; user unknown May 10 13:54:25 sshd[5287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178-116-251-34.access.telenet.be May 10 13:54:27 sshd[5287]: Failed password for invalid user supervisor from 178.116.251.34 port 62015 ssh2 May 10 13:54:27 sshd[5287]: Connection closed by 178.116.251.34 [preauth]	2020-05-11 04:14:28
112.85.42.195	attack	May 10 20:07:22 onepixel sshd[2878947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.195 user=root May 10 20:07:24 onepixel sshd[2878947]: Failed password for root from 112.85.42.195 port 41321 ssh2 May 10 20:07:22 onepixel sshd[2878947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.195 user=root May 10 20:07:24 onepixel sshd[2878947]: Failed password for root from 112.85.42.195 port 41321 ssh2 May 10 20:07:27 onepixel sshd[2878947]: Failed password for root from 112.85.42.195 port 41321 ssh2	2020-05-11 04:12:38
178.155.5.120	attackbots	fake user registration/login attempts	2020-05-11 04:29:10
46.167.124.216	attackbotsspam	May 10 21:23:05 sso sshd[23948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.167.124.216 May 10 21:23:08 sso sshd[23948]: Failed password for invalid user kafka from 46.167.124.216 port 57346 ssh2 ...	2020-05-11 04:02:33
186.85.159.135	attack	May 10 08:07:22 ny01 sshd[7404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.85.159.135 May 10 08:07:23 ny01 sshd[7404]: Failed password for invalid user atlas from 186.85.159.135 port 29281 ssh2 May 10 08:08:19 ny01 sshd[7498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.85.159.135	2020-05-11 03:49:58
104.248.144.208	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-11 04:01:42
95.218.250.9	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-11 04:28:45
187.204.14.235	attackbotsspam	Honeypot attack, port: 445, PTR: dsl-187-204-14-235-dyn.prod-infinitum.com.mx.	2020-05-11 04:07:38
51.38.231.36	attackspambots	2020-05-10T19:25:45.990108shield sshd\[7157\]: Invalid user vyatta from 51.38.231.36 port 56478 2020-05-10T19:25:45.994069shield sshd\[7157\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.ip-51-38-231.eu 2020-05-10T19:25:48.514168shield sshd\[7157\]: Failed password for invalid user vyatta from 51.38.231.36 port 56478 ssh2 2020-05-10T19:30:09.585993shield sshd\[9304\]: Invalid user test from 51.38.231.36 port 36042 2020-05-10T19:30:09.589636shield sshd\[9304\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.ip-51-38-231.eu	2020-05-11 04:23:15
105.154.239.241	attackbotsspam	Honeypot attack, port: 81, PTR: PTR record not found	2020-05-11 03:42:54
190.77.118.83	attack	Honeypot attack, port: 445, PTR: 190-77-118-83.dyn.dsl.cantv.net.	2020-05-11 04:03:36
129.211.157.209	attackspam	$f2bV_matches	2020-05-11 04:01:29
64.227.25.170	attackbotsspam	May 10 19:41:31 vps sshd[167727]: Failed password for invalid user john from 64.227.25.170 port 45666 ssh2 May 10 19:45:25 vps sshd[186508]: Invalid user mcserv from 64.227.25.170 port 57838 May 10 19:45:25 vps sshd[186508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.227.25.170 May 10 19:45:27 vps sshd[186508]: Failed password for invalid user mcserv from 64.227.25.170 port 57838 ssh2 May 10 19:49:18 vps sshd[200627]: Invalid user night from 64.227.25.170 port 41780 ...	2020-05-11 04:15:41
212.95.137.164	attackspambots	May 11 06:11:08 localhost sshd[367077]: Invalid user postgres from 212.95.137.164 port 39478 ...	2020-05-11 04:12:57
213.55.73.204	attack	Unauthorized connection attempt from IP address 213.55.73.204 on Port 445(SMB)	2020-05-11 03:56:13

Recently Reported IPs

94.10.159.167	51.132.17.50	103.69.245.182	202.99.237.174
190.104.245.164	119.152.109.47	103.231.92.3	66.185.193.120
20.191.251.172	178.128.206.34	94.143.198.219	118.100.24.79
111.217.101.136	5.54.204.188	218.235.20.180	175.215.52.222
5.234.145.159	110.90.150.249	134.116.31.79	200.182.72.136