106.54.2.191 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Mar 12 04:40:28 mail sshd\[9372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.2.191 user=root Mar 12 04:40:30 mail sshd\[9372\]: Failed password for root from 106.54.2.191 port 36700 ssh2 Mar 12 04:48:22 mail sshd\[9410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.2.191 user=root ...	2020-03-12 18:16:22
attackspambots	Mar 9 16:19:47 pkdns2 sshd\[19850\]: Invalid user HTTP from 106.54.2.191Mar 9 16:19:49 pkdns2 sshd\[19850\]: Failed password for invalid user HTTP from 106.54.2.191 port 42712 ssh2Mar 9 16:23:06 pkdns2 sshd\[20015\]: Invalid user tinkerware from 106.54.2.191Mar 9 16:23:09 pkdns2 sshd\[20015\]: Failed password for invalid user tinkerware from 106.54.2.191 port 51594 ssh2Mar 9 16:26:32 pkdns2 sshd\[20152\]: Invalid user tfc from 106.54.2.191Mar 9 16:26:33 pkdns2 sshd\[20152\]: Failed password for invalid user tfc from 106.54.2.191 port 60470 ssh2 ...	2020-03-10 01:07:19
attackbots	Mar 6 17:10:31 serwer sshd\[5098\]: Invalid user user from 106.54.2.191 port 56714 Mar 6 17:10:31 serwer sshd\[5098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.2.191 Mar 6 17:10:33 serwer sshd\[5098\]: Failed password for invalid user user from 106.54.2.191 port 56714 ssh2 ...	2020-03-07 03:32:45
attackbots	Feb 20 21:28:42 mockhub sshd[14185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.2.191 Feb 20 21:28:44 mockhub sshd[14185]: Failed password for invalid user cpaneleximscanner from 106.54.2.191 port 59420 ssh2 ...	2020-02-21 14:07:26
attackspam	Feb 13 00:16:11 srv-ubuntu-dev3 sshd[129433]: Invalid user han from 106.54.2.191 Feb 13 00:16:11 srv-ubuntu-dev3 sshd[129433]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.2.191 Feb 13 00:16:11 srv-ubuntu-dev3 sshd[129433]: Invalid user han from 106.54.2.191 Feb 13 00:16:12 srv-ubuntu-dev3 sshd[129433]: Failed password for invalid user han from 106.54.2.191 port 60256 ssh2 Feb 13 00:23:09 srv-ubuntu-dev3 sshd[130020]: Invalid user zimeip from 106.54.2.191 Feb 13 00:23:09 srv-ubuntu-dev3 sshd[130020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.2.191 Feb 13 00:23:09 srv-ubuntu-dev3 sshd[130020]: Invalid user zimeip from 106.54.2.191 Feb 13 00:23:11 srv-ubuntu-dev3 sshd[130020]: Failed password for invalid user zimeip from 106.54.2.191 port 56994 ssh2 ...	2020-02-13 08:19:56
attack	Unauthorized connection attempt detected from IP address 106.54.2.191 to port 2220 [J]	2020-01-25 16:53:47
attackspam	Jan 20 15:54:50 server sshd\[28222\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.2.191 user=root Jan 20 15:54:52 server sshd\[28222\]: Failed password for root from 106.54.2.191 port 52700 ssh2 Jan 20 16:07:55 server sshd\[31708\]: Invalid user lrm from 106.54.2.191 Jan 20 16:07:55 server sshd\[31708\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.2.191 Jan 20 16:07:57 server sshd\[31708\]: Failed password for invalid user lrm from 106.54.2.191 port 35138 ssh2 ...	2020-01-20 21:37:43
attackspambots	Unauthorized connection attempt detected from IP address 106.54.2.191 to port 2220 [J]	2020-01-16 17:42:18
attackspambots	Jan 3 07:32:12 legacy sshd[30561]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.2.191 Jan 3 07:32:13 legacy sshd[30561]: Failed password for invalid user db2inst3 from 106.54.2.191 port 58844 ssh2 Jan 3 07:36:10 legacy sshd[30693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.2.191 ...	2020-01-03 15:36:45
attackspam	$f2bV_matches	2020-01-03 06:30:26

相同子网IP讨论:

IP	类型	评论内容	时间
106.54.255.11	attack	Oct 13 23:53:18 ip106 sshd[5128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.255.11 Oct 13 23:53:19 ip106 sshd[5128]: Failed password for invalid user andres from 106.54.255.11 port 52128 ssh2 ...	2020-10-14 06:37:11
106.54.255.11	attackbotsspam	Oct 13 22:46:35 ip106 sshd[761]: Failed password for root from 106.54.255.11 port 60234 ssh2 ...	2020-10-14 04:50:33
106.54.255.11	attackbotsspam	2020-10-13T12:19:01.805274amanda2.illicoweb.com sshd\[22791\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.255.11 user=root 2020-10-13T12:19:03.138992amanda2.illicoweb.com sshd\[22791\]: Failed password for root from 106.54.255.11 port 33346 ssh2 2020-10-13T12:23:39.387382amanda2.illicoweb.com sshd\[23209\]: Invalid user akiko from 106.54.255.11 port 53872 2020-10-13T12:23:39.390068amanda2.illicoweb.com sshd\[23209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.255.11 2020-10-13T12:23:40.889349amanda2.illicoweb.com sshd\[23209\]: Failed password for invalid user akiko from 106.54.255.11 port 53872 ssh2 ...	2020-10-13 20:20:54
106.54.203.54	attackbots	$f2bV_matches	2020-10-13 17:35:04
106.54.20.184	attackspam	Oct 10 20:04:36 ip-172-31-61-156 sshd[25710]: Failed password for invalid user device from 106.54.20.184 port 46734 ssh2 Oct 10 20:04:34 ip-172-31-61-156 sshd[25710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.20.184 Oct 10 20:04:34 ip-172-31-61-156 sshd[25710]: Invalid user device from 106.54.20.184 Oct 10 20:04:36 ip-172-31-61-156 sshd[25710]: Failed password for invalid user device from 106.54.20.184 port 46734 ssh2 Oct 10 20:07:58 ip-172-31-61-156 sshd[25911]: Invalid user prueba from 106.54.20.184 ...	2020-10-11 04:29:11
106.54.255.11	attackspambots	Oct 9 12:14:40 Tower sshd[25894]: refused connect from 118.25.144.133 (118.25.144.133) Oct 9 14:03:16 Tower sshd[25894]: Connection from 106.54.255.11 port 34296 on 192.168.10.220 port 22 rdomain "" Oct 9 14:03:18 Tower sshd[25894]: Invalid user alumni from 106.54.255.11 port 34296 Oct 9 14:03:18 Tower sshd[25894]: error: Could not get shadow information for NOUSER Oct 9 14:03:18 Tower sshd[25894]: Failed password for invalid user alumni from 106.54.255.11 port 34296 ssh2 Oct 9 14:03:18 Tower sshd[25894]: Received disconnect from 106.54.255.11 port 34296:11: Bye Bye [preauth] Oct 9 14:03:18 Tower sshd[25894]: Disconnected from invalid user alumni 106.54.255.11 port 34296 [preauth]	2020-10-10 03:26:18
106.54.255.11	attackspambots	SSH login attempts.	2020-10-09 19:20:12
106.54.208.123	attackbots	2020-10-08T15:40:18.123964mail.broermann.family sshd[5834]: Failed password for root from 106.54.208.123 port 42838 ssh2 2020-10-08T15:44:13.930003mail.broermann.family sshd[6197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 user=root 2020-10-08T15:44:16.414126mail.broermann.family sshd[6197]: Failed password for root from 106.54.208.123 port 54770 ssh2 2020-10-08T15:48:06.755463mail.broermann.family sshd[6621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 user=root 2020-10-08T15:48:08.557543mail.broermann.family sshd[6621]: Failed password for root from 106.54.208.123 port 38462 ssh2 ...	2020-10-09 01:43:18
106.54.208.123	attackspambots	2020-10-07T15:45:15.868973linuxbox-skyline sshd[39412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 user=root 2020-10-07T15:45:17.718861linuxbox-skyline sshd[39412]: Failed password for root from 106.54.208.123 port 51626 ssh2 ...	2020-10-08 17:39:52
106.54.202.131	attackspam	Oct 6 14:57:47 buvik sshd[12807]: Failed password for root from 106.54.202.131 port 59516 ssh2 Oct 6 15:01:53 buvik sshd[13854]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.202.131 user=root Oct 6 15:01:56 buvik sshd[13854]: Failed password for root from 106.54.202.131 port 45006 ssh2 ...	2020-10-06 21:07:32
106.54.202.131	attackbotsspam	Oct 6 04:47:12 melroy-server sshd[9438]: Failed password for root from 106.54.202.131 port 36568 ssh2 ...	2020-10-06 12:48:15
106.54.253.41	attack	Oct 6 00:12:48 abendstille sshd\[20986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.41 user=root Oct 6 00:12:50 abendstille sshd\[20986\]: Failed password for root from 106.54.253.41 port 44180 ssh2 Oct 6 00:16:14 abendstille sshd\[24099\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.41 user=root Oct 6 00:16:16 abendstille sshd\[24099\]: Failed password for root from 106.54.253.41 port 43794 ssh2 Oct 6 00:19:42 abendstille sshd\[27305\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.41 user=root ...	2020-10-06 06:32:00
106.54.255.57	attackbots	SSH login attempts.	2020-10-06 03:59:55
106.54.202.131	attackbotsspam	web-1 [ssh] SSH Attack	2020-10-06 01:16:06
106.54.253.41	attackspam	(sshd) Failed SSH login from 106.54.253.41 (CN/China/-): 5 in the last 3600 secs	2020-10-05 22:39:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.2.191
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13835
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.54.2.191.			IN	A

;; AUTHORITY SECTION:
.			537	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010201 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 06:30:23 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 191.2.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 191.2.54.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.255.149.55	attackspambots	2020-05-04T06:05:45.190804homeassistant sshd[26370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.149.55 user=root 2020-05-04T06:05:47.519720homeassistant sshd[26370]: Failed password for root from 51.255.149.55 port 37960 ssh2 ...	2020-05-04 17:23:09
35.198.105.76	attackspam	Attempt to hack Wordpress Login, XMLRPC or other login	2020-05-04 17:33:07
222.99.84.121	attackbots	May 4 06:23:02 web01 sshd[19820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.99.84.121 May 4 06:23:03 web01 sshd[19820]: Failed password for invalid user ruan from 222.99.84.121 port 46772 ssh2 ...	2020-05-04 18:01:02
83.9.161.43	attack	5x Failed Password	2020-05-04 17:42:22
103.100.209.172	attack	IP blocked	2020-05-04 17:46:04
168.196.165.26	attackbots	May 4 11:21:35 vps sshd[136612]: Failed password for invalid user test from 168.196.165.26 port 34331 ssh2 May 4 11:26:13 vps sshd[161041]: Invalid user xyz from 168.196.165.26 port 39381 May 4 11:26:13 vps sshd[161041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.196.165.26 May 4 11:26:15 vps sshd[161041]: Failed password for invalid user xyz from 168.196.165.26 port 39381 ssh2 May 4 11:30:39 vps sshd[183927]: Invalid user lxq from 168.196.165.26 port 44431 ...	2020-05-04 17:36:48
18.27.197.252	attack	May 4 18:59:09 web1 sshd[11956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.27.197.252 user=root May 4 18:59:11 web1 sshd[11956]: Failed password for root from 18.27.197.252 port 56282 ssh2 May 4 18:59:14 web1 sshd[11956]: Failed password for root from 18.27.197.252 port 56282 ssh2 May 4 18:59:09 web1 sshd[11956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.27.197.252 user=root May 4 18:59:11 web1 sshd[11956]: Failed password for root from 18.27.197.252 port 56282 ssh2 May 4 18:59:14 web1 sshd[11956]: Failed password for root from 18.27.197.252 port 56282 ssh2 May 4 18:59:09 web1 sshd[11956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.27.197.252 user=root May 4 18:59:11 web1 sshd[11956]: Failed password for root from 18.27.197.252 port 56282 ssh2 May 4 18:59:14 web1 sshd[11956]: Failed password for root from 18.27.197.252 port 56282 ...	2020-05-04 17:46:41
106.12.190.254	attackbotsspam	Fail2Ban Ban Triggered	2020-05-04 18:05:07
103.129.223.22	attackspambots	$f2bV_matches	2020-05-04 18:04:03
92.190.153.246	attackbots	$f2bV_matches	2020-05-04 17:26:30
157.245.12.36	attackspambots	May 4 11:13:00 ns382633 sshd\[7352\]: Invalid user qh from 157.245.12.36 port 60636 May 4 11:13:00 ns382633 sshd\[7352\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.12.36 May 4 11:13:02 ns382633 sshd\[7352\]: Failed password for invalid user qh from 157.245.12.36 port 60636 ssh2 May 4 11:22:01 ns382633 sshd\[9343\]: Invalid user user from 157.245.12.36 port 53156 May 4 11:22:01 ns382633 sshd\[9343\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.12.36	2020-05-04 17:50:54
168.232.204.42	attackspam	20/5/3@23:52:02: FAIL: Alarm-Intrusion address from=168.232.204.42 ...	2020-05-04 17:45:18
183.56.152.172	attackspam	From CCTV User Interface Log ...::ffff:183.56.152.172 - - [03/May/2020:23:51:35 +0000] "-" 400 0 ...	2020-05-04 18:03:24
152.67.67.89	attackbotsspam	May 4 11:43:21 santamaria sshd\[5185\]: Invalid user prl from 152.67.67.89 May 4 11:43:21 santamaria sshd\[5185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.67.67.89 May 4 11:43:23 santamaria sshd\[5185\]: Failed password for invalid user prl from 152.67.67.89 port 41502 ssh2 ...	2020-05-04 18:05:31
65.49.20.66	attackspam	Unauthorized connection attempt detected from IP address 65.49.20.66 to port 22	2020-05-04 17:46:24

最近上报的IP列表

89.180.59.117	172.13.85.165	42.116.122.85	11.11.18.238
210.33.181.73	54.207.149.18	155.75.195.10	93.144.155.137
152.113.223.57	169.15.230.177	179.144.8.156	235.217.237.4
209.112.96.148	77.116.249.70	18.244.184.255	31.103.161.104
208.129.80.26	25.227.81.163	163.228.73.79	227.99.44.212