106.54.200.22 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Jun 30 12:57:08 webhost01 sshd[18844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.22 Jun 30 12:57:10 webhost01 sshd[18844]: Failed password for invalid user admin from 106.54.200.22 port 34514 ssh2 ...	2020-06-30 15:12:27
attackbotsspam	Jun 27 12:28:23 rush sshd[12384]: Failed password for root from 106.54.200.22 port 51300 ssh2 Jun 27 12:31:33 rush sshd[12478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.22 Jun 27 12:31:35 rush sshd[12478]: Failed password for invalid user wrc from 106.54.200.22 port 34246 ssh2 ...	2020-06-28 02:49:35
attackspam	Jun 10 08:32:56 localhost sshd[43517]: Invalid user admin from 106.54.200.22 port 42094 Jun 10 08:32:56 localhost sshd[43517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.22 Jun 10 08:32:56 localhost sshd[43517]: Invalid user admin from 106.54.200.22 port 42094 Jun 10 08:32:58 localhost sshd[43517]: Failed password for invalid user admin from 106.54.200.22 port 42094 ssh2 Jun 10 08:36:42 localhost sshd[43895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.22 user=root Jun 10 08:36:44 localhost sshd[43895]: Failed password for root from 106.54.200.22 port 58298 ssh2 ...	2020-06-10 17:31:04
attack	Bruteforce detected by fail2ban	2020-05-21 22:20:09
attack	2020-05-21T05:39:04.393881shield sshd\[5309\]: Invalid user nhq from 106.54.200.22 port 56056 2020-05-21T05:39:04.397983shield sshd\[5309\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.22 2020-05-21T05:39:05.924865shield sshd\[5309\]: Failed password for invalid user nhq from 106.54.200.22 port 56056 ssh2 2020-05-21T05:41:17.172175shield sshd\[5889\]: Invalid user okc from 106.54.200.22 port 52266 2020-05-21T05:41:17.175694shield sshd\[5889\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.22	2020-05-21 14:33:54
attackbots	Invalid user bmdmserver from 106.54.200.22 port 52162	2020-05-16 17:47:16
attackbotsspam	May 11 05:57:40 sip sshd[207319]: Invalid user ab from 106.54.200.22 port 40240 May 11 05:57:41 sip sshd[207319]: Failed password for invalid user ab from 106.54.200.22 port 40240 ssh2 May 11 06:03:30 sip sshd[207443]: Invalid user webuser from 106.54.200.22 port 39162 ...	2020-05-11 14:54:16
attackbots	(sshd) Failed SSH login from 106.54.200.22 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 22 01:01:08 amsweb01 sshd[17370]: Invalid user test from 106.54.200.22 port 33276 Apr 22 01:01:10 amsweb01 sshd[17370]: Failed password for invalid user test from 106.54.200.22 port 33276 ssh2 Apr 22 01:08:57 amsweb01 sshd[18058]: Invalid user ou from 106.54.200.22 port 43330 Apr 22 01:08:59 amsweb01 sshd[18058]: Failed password for invalid user ou from 106.54.200.22 port 43330 ssh2 Apr 22 01:12:40 amsweb01 sshd[18361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.22 user=root	2020-04-22 07:41:44

相同子网IP讨论:

IP	类型	评论内容	时间
106.54.200.209	attackspambots	2020-09-15 UTC: (37x) - 666666,admin,june,monster,norberto,pollinate,root(27x),super,support,teamspeak3,userftp	2020-09-16 23:22:14
106.54.200.209	attack	SSH Invalid Login	2020-09-16 15:38:39
106.54.200.209	attack	SSH Invalid Login	2020-09-16 07:37:48
106.54.200.209	attack	Invalid user webnet from 106.54.200.209 port 38064	2020-08-23 17:34:42
106.54.200.209	attackbots	2020-08-18T05:53:08.193285cyberdyne sshd[2026727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 2020-08-18T05:53:08.187096cyberdyne sshd[2026727]: Invalid user seth from 106.54.200.209 port 49332 2020-08-18T05:53:09.972546cyberdyne sshd[2026727]: Failed password for invalid user seth from 106.54.200.209 port 49332 ssh2 2020-08-18T05:56:14.097832cyberdyne sshd[2027518]: Invalid user adsl from 106.54.200.209 port 58970 ...	2020-08-18 13:20:05
106.54.200.209	attackspambots	Aug 16 22:23:10 roki-contabo sshd\[3027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 user=root Aug 16 22:23:13 roki-contabo sshd\[3027\]: Failed password for root from 106.54.200.209 port 41422 ssh2 Aug 16 22:31:11 roki-contabo sshd\[3210\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 user=root Aug 16 22:31:14 roki-contabo sshd\[3210\]: Failed password for root from 106.54.200.209 port 55756 ssh2 Aug 16 22:33:34 roki-contabo sshd\[3279\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 user=root ...	2020-08-17 05:27:19
106.54.200.209	attackspambots	$f2bV_matches	2020-08-15 17:46:14
106.54.200.209	attackspambots	2020-08-07T06:48:40.733209amanda2.illicoweb.com sshd\[14950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 user=root 2020-08-07T06:48:43.240233amanda2.illicoweb.com sshd\[14950\]: Failed password for root from 106.54.200.209 port 37102 ssh2 2020-08-07T06:50:50.529270amanda2.illicoweb.com sshd\[15299\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 user=root 2020-08-07T06:50:52.213627amanda2.illicoweb.com sshd\[15299\]: Failed password for root from 106.54.200.209 port 48860 ssh2 2020-08-07T06:52:58.556961amanda2.illicoweb.com sshd\[15814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 user=root ...	2020-08-07 14:11:50
106.54.200.209	attack	Aug 2 05:55:55 lnxmysql61 sshd[5109]: Failed password for root from 106.54.200.209 port 36566 ssh2 Aug 2 05:55:55 lnxmysql61 sshd[5109]: Failed password for root from 106.54.200.209 port 36566 ssh2	2020-08-02 12:17:35
106.54.200.209	attack	Fail2Ban Ban Triggered	2020-08-02 05:37:02
106.54.200.209	attackbotsspam	Jul 29 00:55:49 eventyay sshd[22109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 Jul 29 00:55:50 eventyay sshd[22109]: Failed password for invalid user dailinjie from 106.54.200.209 port 42760 ssh2 Jul 29 01:03:43 eventyay sshd[22479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 ...	2020-07-29 07:26:43
106.54.200.209	attack	Bruteforce detected by fail2ban	2020-07-19 02:00:33
106.54.200.209	attack	Invalid user mati from 106.54.200.209 port 52410	2020-07-13 15:05:24
106.54.200.209	attack	Jul 12 11:05:49 django-0 sshd[16376]: Invalid user bobo from 106.54.200.209 ...	2020-07-12 19:15:01
106.54.200.209	attackbotsspam	Jul 3 20:31:35 ncomp sshd[9430]: Invalid user jaka from 106.54.200.209 Jul 3 20:31:35 ncomp sshd[9430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.200.209 Jul 3 20:31:35 ncomp sshd[9430]: Invalid user jaka from 106.54.200.209 Jul 3 20:31:38 ncomp sshd[9430]: Failed password for invalid user jaka from 106.54.200.209 port 50692 ssh2	2020-07-04 02:56:57

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.200.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1543
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.54.200.22.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042101 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 22 07:41:40 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

Host 22.200.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 22.200.54.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
149.56.12.88	attackspambots	Mar 19 20:47:58 lnxmail61 sshd[23948]: Failed password for root from 149.56.12.88 port 50528 ssh2 Mar 19 20:54:38 lnxmail61 sshd[24661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.12.88 Mar 19 20:54:40 lnxmail61 sshd[24661]: Failed password for invalid user openvpn_as from 149.56.12.88 port 44390 ssh2	2020-03-20 04:26:33
61.160.96.90	attackbotsspam	$f2bV_matches	2020-03-20 04:07:55
114.141.191.238	attack	Mar 19 17:27:45 163-172-32-151 sshd[5624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.141.191.238 user=root Mar 19 17:27:47 163-172-32-151 sshd[5624]: Failed password for root from 114.141.191.238 port 54313 ssh2 ...	2020-03-20 04:32:14
51.254.113.128	attackbotsspam	2020-03-19T15:13:08.895118abusebot-5.cloudsearch.cf sshd[4354]: Invalid user sam from 51.254.113.128 port 58461 2020-03-19T15:13:08.902509abusebot-5.cloudsearch.cf sshd[4354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.ip-51-254-113.eu 2020-03-19T15:13:08.895118abusebot-5.cloudsearch.cf sshd[4354]: Invalid user sam from 51.254.113.128 port 58461 2020-03-19T15:13:11.105160abusebot-5.cloudsearch.cf sshd[4354]: Failed password for invalid user sam from 51.254.113.128 port 58461 ssh2 2020-03-19T15:17:26.044725abusebot-5.cloudsearch.cf sshd[4361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.ip-51-254-113.eu user=root 2020-03-19T15:17:27.666430abusebot-5.cloudsearch.cf sshd[4361]: Failed password for root from 51.254.113.128 port 54549 ssh2 2020-03-19T15:21:39.800465abusebot-5.cloudsearch.cf sshd[4376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.i ...	2020-03-20 04:09:10
103.129.222.135	attack	Mar 19 20:09:30 tuxlinux sshd[40295]: Invalid user fossil from 103.129.222.135 port 39989 Mar 19 20:09:30 tuxlinux sshd[40295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.129.222.135 Mar 19 20:09:30 tuxlinux sshd[40295]: Invalid user fossil from 103.129.222.135 port 39989 Mar 19 20:09:30 tuxlinux sshd[40295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.129.222.135 ...	2020-03-20 04:36:43
1.214.220.227	attackbotsspam	Invalid user billy from 1.214.220.227 port 45168	2020-03-20 04:16:45
51.15.226.137	attackspambots	Mar 19 21:31:17 ns382633 sshd\[30870\]: Invalid user rizon from 51.15.226.137 port 35602 Mar 19 21:31:17 ns382633 sshd\[30870\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.226.137 Mar 19 21:31:18 ns382633 sshd\[30870\]: Failed password for invalid user rizon from 51.15.226.137 port 35602 ssh2 Mar 19 21:34:38 ns382633 sshd\[31166\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.226.137 user=root Mar 19 21:34:40 ns382633 sshd\[31166\]: Failed password for root from 51.15.226.137 port 44658 ssh2	2020-03-20 04:41:15
114.67.122.89	attackspambots	Invalid user sistemas from 114.67.122.89 port 37868	2020-03-20 04:32:47
91.121.175.61	attack	Invalid user nmrsu from 91.121.175.61 port 59522	2020-03-20 04:37:53
45.231.12.37	attack	SSH bruteforce	2020-03-20 04:12:52
124.156.102.254	attack	(sshd) Failed SSH login from 124.156.102.254 (HK/Hong Kong/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 19 18:09:10 andromeda sshd[7189]: Invalid user bitrix from 124.156.102.254 port 39380 Mar 19 18:09:13 andromeda sshd[7189]: Failed password for invalid user bitrix from 124.156.102.254 port 39380 ssh2 Mar 19 18:28:46 andromeda sshd[7862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.156.102.254 user=root	2020-03-20 04:30:01
106.13.81.162	attackbotsspam	web-1 [ssh] SSH Attack	2020-03-20 04:35:18
159.65.189.115	attack	Brute force attempt	2020-03-20 04:25:03
180.76.166.51	attackspam	port scan and connect, tcp 22 (ssh)	2020-03-20 04:23:25
51.83.57.157	attackbots	Mar 19 18:43:18 vpn01 sshd[17862]: Failed password for root from 51.83.57.157 port 40018 ssh2 ...	2020-03-20 04:10:34

最近上报的IP列表

85.40.219.137	62.154.45.56	160.7.236.14	156.220.88.44
47.18.42.53	72.47.37.63	75.181.8.188	84.183.32.80
126.33.84.83	52.240.207.105	122.231.76.61	58.48.255.42
208.250.173.145	69.220.189.94	198.237.138.200	177.19.64.120
111.187.53.82	187.62.22.167	119.224.22.110	158.109.3.158