106.54.50.56 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 106.54.50.56 to port 80 [T]	2020-01-09 02:00:26

相同子网IP讨论:

IP	类型	评论内容	时间
106.54.50.236	attackspam	Jun 17 02:27:01 Host-KEWR-E sshd[13435]: Disconnected from invalid user admin 106.54.50.236 port 60776 [preauth] ...	2020-06-17 20:01:16
106.54.50.236	attackbotsspam	2020-06-16T17:15:39.865604mail.standpoint.com.ua sshd[5801]: Failed password for invalid user jiang from 106.54.50.236 port 48828 ssh2 2020-06-16T17:19:44.348208mail.standpoint.com.ua sshd[6425]: Invalid user tracyf from 106.54.50.236 port 36722 2020-06-16T17:19:44.351652mail.standpoint.com.ua sshd[6425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 2020-06-16T17:19:44.348208mail.standpoint.com.ua sshd[6425]: Invalid user tracyf from 106.54.50.236 port 36722 2020-06-16T17:19:46.517350mail.standpoint.com.ua sshd[6425]: Failed password for invalid user tracyf from 106.54.50.236 port 36722 ssh2 ...	2020-06-16 22:40:33
106.54.50.236	attackbots	20 attempts against mh-ssh on echoip	2020-06-15 16:24:40
106.54.50.236	attack	2020-05-14T23:58:17.614772sd-86998 sshd[23357]: Invalid user dcnpro from 106.54.50.236 port 45818 2020-05-14T23:58:17.619963sd-86998 sshd[23357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 2020-05-14T23:58:17.614772sd-86998 sshd[23357]: Invalid user dcnpro from 106.54.50.236 port 45818 2020-05-14T23:58:19.406979sd-86998 sshd[23357]: Failed password for invalid user dcnpro from 106.54.50.236 port 45818 ssh2 2020-05-15T00:02:50.398891sd-86998 sshd[23897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 user=root 2020-05-15T00:02:52.328592sd-86998 sshd[23897]: Failed password for root from 106.54.50.236 port 43200 ssh2 ...	2020-05-15 07:20:09
106.54.50.236	attack	Invalid user support from 106.54.50.236 port 54314	2020-05-02 13:25:03
106.54.50.236	attack	$f2bV_matches	2020-04-19 19:44:49
106.54.50.232	attack	Apr 10 08:31:24 MainVPS sshd[4135]: Invalid user ubuntu from 106.54.50.232 port 48962 Apr 10 08:31:24 MainVPS sshd[4135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.232 Apr 10 08:31:24 MainVPS sshd[4135]: Invalid user ubuntu from 106.54.50.232 port 48962 Apr 10 08:31:27 MainVPS sshd[4135]: Failed password for invalid user ubuntu from 106.54.50.232 port 48962 ssh2 Apr 10 08:36:49 MainVPS sshd[14435]: Invalid user yangy from 106.54.50.232 port 48406 ...	2020-04-10 15:51:22
106.54.50.236	attackspambots	Apr 9 19:00:52 mail sshd[2972]: Invalid user appserver from 106.54.50.236 Apr 9 19:00:52 mail sshd[2972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 Apr 9 19:00:52 mail sshd[2972]: Invalid user appserver from 106.54.50.236 Apr 9 19:00:54 mail sshd[2972]: Failed password for invalid user appserver from 106.54.50.236 port 44636 ssh2 ...	2020-04-10 01:20:38
106.54.50.236	attackspambots	Apr 6 05:58:50 eventyay sshd[29434]: Failed password for root from 106.54.50.236 port 44924 ssh2 Apr 6 06:01:48 eventyay sshd[29584]: Failed password for root from 106.54.50.236 port 47392 ssh2 ...	2020-04-06 20:46:34
106.54.50.236	attackbots	fail2ban logged	2020-04-02 20:05:04
106.54.50.232	attackspambots	2020-04-01T15:37:26.672738shield sshd\[16005\]: Invalid user re from 106.54.50.232 port 46490 2020-04-01T15:37:26.676414shield sshd\[16005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.232 2020-04-01T15:37:28.496996shield sshd\[16005\]: Failed password for invalid user re from 106.54.50.232 port 46490 ssh2 2020-04-01T15:41:53.258759shield sshd\[16782\]: Invalid user hate from 106.54.50.232 port 33782 2020-04-01T15:41:53.262309shield sshd\[16782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.232	2020-04-01 23:53:58
106.54.50.236	attack	Mar 23 18:33:47 localhost sshd\[5803\]: Invalid user yf from 106.54.50.236 port 35076 Mar 23 18:33:47 localhost sshd\[5803\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 Mar 23 18:33:50 localhost sshd\[5803\]: Failed password for invalid user yf from 106.54.50.236 port 35076 ssh2 ...	2020-03-24 05:15:05
106.54.50.236	attackbots	Mar 23 05:36:06 ns381471 sshd[7485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 Mar 23 05:36:08 ns381471 sshd[7485]: Failed password for invalid user maurta from 106.54.50.236 port 40350 ssh2	2020-03-23 12:42:02
106.54.50.236	attackspambots	Mar 19 12:30:56 areeb-Workstation sshd[4027]: Failed password for root from 106.54.50.236 port 40850 ssh2 ...	2020-03-19 15:05:50
106.54.50.232	attackspambots	Feb 1 21:38:00 MK-Soft-Root2 sshd[8306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.232 Feb 1 21:38:02 MK-Soft-Root2 sshd[8306]: Failed password for invalid user 1 from 106.54.50.232 port 46464 ssh2 ...	2020-02-02 05:06:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.50.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29198
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.54.50.56.			IN	A

;; AUTHORITY SECTION:
.			202	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010801 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 09 02:00:21 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 56.50.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 56.50.54.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.38.71.36	attackspambots	Feb 22 07:15:57 wbs sshd\[22851\]: Invalid user liyujiang from 51.38.71.36 Feb 22 07:15:57 wbs sshd\[22851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.ip-51-38-71.eu Feb 22 07:15:59 wbs sshd\[22851\]: Failed password for invalid user liyujiang from 51.38.71.36 port 46914 ssh2 Feb 22 07:19:09 wbs sshd\[23121\]: Invalid user csr1dev from 51.38.71.36 Feb 22 07:19:09 wbs sshd\[23121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.ip-51-38-71.eu	2020-02-23 02:29:47
106.12.52.98	attackspambots	Invalid user yang from 106.12.52.98 port 51810	2020-02-23 02:15:15
106.13.47.237	attackspambots	Feb 22 07:58:19 php1 sshd\[28699\]: Invalid user amandabackup from 106.13.47.237 Feb 22 07:58:19 php1 sshd\[28699\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.237 Feb 22 07:58:20 php1 sshd\[28699\]: Failed password for invalid user amandabackup from 106.13.47.237 port 55698 ssh2 Feb 22 08:01:30 php1 sshd\[29020\]: Invalid user test1 from 106.13.47.237 Feb 22 08:01:31 php1 sshd\[29020\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.47.237	2020-02-23 02:17:28
222.186.175.212	attackbots	Feb 22 19:39:29 MK-Soft-VM5 sshd[8407]: Failed password for root from 222.186.175.212 port 62992 ssh2 Feb 22 19:39:33 MK-Soft-VM5 sshd[8407]: Failed password for root from 222.186.175.212 port 62992 ssh2 ...	2020-02-23 02:45:14
222.186.173.180	attackbots	Feb 22 18:21:23 localhost sshd\[50823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root Feb 22 18:21:25 localhost sshd\[50823\]: Failed password for root from 222.186.173.180 port 49826 ssh2 Feb 22 18:21:28 localhost sshd\[50823\]: Failed password for root from 222.186.173.180 port 49826 ssh2 Feb 22 18:21:32 localhost sshd\[50823\]: Failed password for root from 222.186.173.180 port 49826 ssh2 Feb 22 18:21:35 localhost sshd\[50823\]: Failed password for root from 222.186.173.180 port 49826 ssh2 ...	2020-02-23 02:21:55
222.186.175.217	attackspam	Feb 22 19:40:55 nextcloud sshd\[32244\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root Feb 22 19:40:57 nextcloud sshd\[32244\]: Failed password for root from 222.186.175.217 port 28964 ssh2 Feb 22 19:41:01 nextcloud sshd\[32244\]: Failed password for root from 222.186.175.217 port 28964 ssh2	2020-02-23 02:46:06
69.75.115.194	attackbots	Automatic report - Port Scan Attack	2020-02-23 02:31:21
14.215.165.133	attack	Feb 22 18:45:39 silence02 sshd[4584]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.215.165.133 Feb 22 18:45:42 silence02 sshd[4584]: Failed password for invalid user developer from 14.215.165.133 port 49164 ssh2 Feb 22 18:48:41 silence02 sshd[4778]: Failed password for root from 14.215.165.133 port 35452 ssh2	2020-02-23 02:15:32
51.75.29.61	attack	February 22 2020, 18:11:45 [sshd] - Banned from the Cipher Host hosting platform by Fail2ban.	2020-02-23 02:22:37
91.109.27.81	attackbotsspam	[2020-02-22 13:16:34] NOTICE[1148] chan_sip.c: Registration from '' failed for '91.109.27.81:56645' - Wrong password [2020-02-22 13:16:34] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-22T13:16:34.083-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="61722",SessionID="0x7fd82cc0d5f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/91.109.27.81/56645",Challenge="0c6230ef",ReceivedChallenge="0c6230ef",ReceivedHash="ca9382c2ee9a098d51ddb6b2cef29329" [2020-02-22 13:16:34] NOTICE[1148] chan_sip.c: Registration from '' failed for '91.109.27.81:56642' - Wrong password [2020-02-22 13:16:34] SECURITY[1163] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-02-22T13:16:34.083-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="61722",SessionID="0x7fd82cdc4bd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/91.109.27.81/56642",Challenge="1 ...	2020-02-23 02:27:59
37.70.130.54	attackspam	2020-02-22T18:01:18.916987scmdmz1 sshd[31200]: Invalid user web from 37.70.130.54 port 44730 2020-02-22T18:01:18.920082scmdmz1 sshd[31200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.70.130.54 2020-02-22T18:01:18.916987scmdmz1 sshd[31200]: Invalid user web from 37.70.130.54 port 44730 2020-02-22T18:01:20.821746scmdmz1 sshd[31200]: Failed password for invalid user web from 37.70.130.54 port 44730 ssh2 2020-02-22T18:07:26.608190scmdmz1 sshd[31763]: Invalid user test from 37.70.130.54 port 36010 ...	2020-02-23 02:44:10
82.64.193.16	attackspam	$f2bV_matches	2020-02-23 02:10:29
89.248.171.97	attackspam	port scan and connect, tcp 80 (http)	2020-02-23 02:09:08
222.186.30.76	attackspambots	Feb 22 13:33:10 plusreed sshd[22251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.76 user=root Feb 22 13:33:12 plusreed sshd[22251]: Failed password for root from 222.186.30.76 port 21202 ssh2 ...	2020-02-23 02:36:30
106.13.75.115	attack	2020-02-22T17:49:18.035119centos sshd\[25868\]: Invalid user sinus from 106.13.75.115 port 35072 2020-02-22T17:49:18.040339centos sshd\[25868\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.75.115 2020-02-22T17:49:19.766599centos sshd\[25868\]: Failed password for invalid user sinus from 106.13.75.115 port 35072 ssh2	2020-02-23 02:38:58

最近上报的IP列表

142.102.192.56	209.155.239.118	38.42.108.253	49.231.232.22
49.68.157.109	42.117.86.108	42.117.20.124	42.113.229.1
14.227.81.95	1.52.86.231	202.89.96.41	195.2.238.235
183.81.59.54	183.80.13.17	180.130.250.112	180.124.247.116
180.115.254.58	124.205.141.245	198.127.168.4	122.80.251.177