106.54.50.56 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Tencent Cloud Computing (Beijing) Co. Ltd.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorized connection attempt detected from IP address 106.54.50.56 to port 80 [T]	2020-01-09 02:00:26

相同子网IP讨论:

IP	类型	评论内容	时间
106.54.50.236	attackspam	Jun 17 02:27:01 Host-KEWR-E sshd[13435]: Disconnected from invalid user admin 106.54.50.236 port 60776 [preauth] ...	2020-06-17 20:01:16
106.54.50.236	attackbotsspam	2020-06-16T17:15:39.865604mail.standpoint.com.ua sshd[5801]: Failed password for invalid user jiang from 106.54.50.236 port 48828 ssh2 2020-06-16T17:19:44.348208mail.standpoint.com.ua sshd[6425]: Invalid user tracyf from 106.54.50.236 port 36722 2020-06-16T17:19:44.351652mail.standpoint.com.ua sshd[6425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 2020-06-16T17:19:44.348208mail.standpoint.com.ua sshd[6425]: Invalid user tracyf from 106.54.50.236 port 36722 2020-06-16T17:19:46.517350mail.standpoint.com.ua sshd[6425]: Failed password for invalid user tracyf from 106.54.50.236 port 36722 ssh2 ...	2020-06-16 22:40:33
106.54.50.236	attackbots	20 attempts against mh-ssh on echoip	2020-06-15 16:24:40
106.54.50.236	attack	2020-05-14T23:58:17.614772sd-86998 sshd[23357]: Invalid user dcnpro from 106.54.50.236 port 45818 2020-05-14T23:58:17.619963sd-86998 sshd[23357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 2020-05-14T23:58:17.614772sd-86998 sshd[23357]: Invalid user dcnpro from 106.54.50.236 port 45818 2020-05-14T23:58:19.406979sd-86998 sshd[23357]: Failed password for invalid user dcnpro from 106.54.50.236 port 45818 ssh2 2020-05-15T00:02:50.398891sd-86998 sshd[23897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 user=root 2020-05-15T00:02:52.328592sd-86998 sshd[23897]: Failed password for root from 106.54.50.236 port 43200 ssh2 ...	2020-05-15 07:20:09
106.54.50.236	attack	Invalid user support from 106.54.50.236 port 54314	2020-05-02 13:25:03
106.54.50.236	attack	$f2bV_matches	2020-04-19 19:44:49
106.54.50.232	attack	Apr 10 08:31:24 MainVPS sshd[4135]: Invalid user ubuntu from 106.54.50.232 port 48962 Apr 10 08:31:24 MainVPS sshd[4135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.232 Apr 10 08:31:24 MainVPS sshd[4135]: Invalid user ubuntu from 106.54.50.232 port 48962 Apr 10 08:31:27 MainVPS sshd[4135]: Failed password for invalid user ubuntu from 106.54.50.232 port 48962 ssh2 Apr 10 08:36:49 MainVPS sshd[14435]: Invalid user yangy from 106.54.50.232 port 48406 ...	2020-04-10 15:51:22
106.54.50.236	attackspambots	Apr 9 19:00:52 mail sshd[2972]: Invalid user appserver from 106.54.50.236 Apr 9 19:00:52 mail sshd[2972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 Apr 9 19:00:52 mail sshd[2972]: Invalid user appserver from 106.54.50.236 Apr 9 19:00:54 mail sshd[2972]: Failed password for invalid user appserver from 106.54.50.236 port 44636 ssh2 ...	2020-04-10 01:20:38
106.54.50.236	attackspambots	Apr 6 05:58:50 eventyay sshd[29434]: Failed password for root from 106.54.50.236 port 44924 ssh2 Apr 6 06:01:48 eventyay sshd[29584]: Failed password for root from 106.54.50.236 port 47392 ssh2 ...	2020-04-06 20:46:34
106.54.50.236	attackbots	fail2ban logged	2020-04-02 20:05:04
106.54.50.232	attackspambots	2020-04-01T15:37:26.672738shield sshd\[16005\]: Invalid user re from 106.54.50.232 port 46490 2020-04-01T15:37:26.676414shield sshd\[16005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.232 2020-04-01T15:37:28.496996shield sshd\[16005\]: Failed password for invalid user re from 106.54.50.232 port 46490 ssh2 2020-04-01T15:41:53.258759shield sshd\[16782\]: Invalid user hate from 106.54.50.232 port 33782 2020-04-01T15:41:53.262309shield sshd\[16782\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.232	2020-04-01 23:53:58
106.54.50.236	attack	Mar 23 18:33:47 localhost sshd\[5803\]: Invalid user yf from 106.54.50.236 port 35076 Mar 23 18:33:47 localhost sshd\[5803\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 Mar 23 18:33:50 localhost sshd\[5803\]: Failed password for invalid user yf from 106.54.50.236 port 35076 ssh2 ...	2020-03-24 05:15:05
106.54.50.236	attackbots	Mar 23 05:36:06 ns381471 sshd[7485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.236 Mar 23 05:36:08 ns381471 sshd[7485]: Failed password for invalid user maurta from 106.54.50.236 port 40350 ssh2	2020-03-23 12:42:02
106.54.50.236	attackspambots	Mar 19 12:30:56 areeb-Workstation sshd[4027]: Failed password for root from 106.54.50.236 port 40850 ssh2 ...	2020-03-19 15:05:50
106.54.50.232	attackspambots	Feb 1 21:38:00 MK-Soft-Root2 sshd[8306]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.50.232 Feb 1 21:38:02 MK-Soft-Root2 sshd[8306]: Failed password for invalid user 1 from 106.54.50.232 port 46464 ssh2 ...	2020-02-02 05:06:51

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.50.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29198
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.54.50.56.			IN	A

;; AUTHORITY SECTION:
.			202	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010801 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 09 02:00:21 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 56.50.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 56.50.54.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
109.251.68.112	attackspam	2019-07-24T12:28:48.276215enmeeting.mahidol.ac.th sshd\[24976\]: Invalid user clue from 109.251.68.112 port 48928 2019-07-24T12:28:48.291294enmeeting.mahidol.ac.th sshd\[24976\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.251.68.112 2019-07-24T12:28:50.932379enmeeting.mahidol.ac.th sshd\[24976\]: Failed password for invalid user clue from 109.251.68.112 port 48928 ssh2 ...	2019-07-24 15:03:24
167.99.75.174	attackspam	Invalid user applmgr from 167.99.75.174 port 43076	2019-07-24 15:20:43
27.185.16.212	attack	firewall-block, port(s): 1433/tcp	2019-07-24 14:26:19
163.172.82.142	attackbotsspam	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-07-24 15:10:38
118.24.81.93	attack	Jul 24 07:18:52 mail sshd\[13320\]: Failed password for invalid user pr from 118.24.81.93 port 56004 ssh2 Jul 24 07:33:56 mail sshd\[13494\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.81.93 user=root ...	2019-07-24 14:43:56
109.99.54.59	attackbotsspam	Mail sent to address hacked/leaked from Gamigo	2019-07-24 15:14:36
39.85.6.248	attackbots	firewall-block, port(s): 23/tcp	2019-07-24 14:22:26
128.199.69.86	attack	Jul 24 06:52:59 MK-Soft-VM6 sshd\[9053\]: Invalid user scaner from 128.199.69.86 port 44022 Jul 24 06:52:59 MK-Soft-VM6 sshd\[9053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.69.86 Jul 24 06:53:01 MK-Soft-VM6 sshd\[9053\]: Failed password for invalid user scaner from 128.199.69.86 port 44022 ssh2 ...	2019-07-24 14:55:20
77.60.16.15	attackspam	Unauthorized connection attempt from IP address 77.60.16.15 on Port 445(SMB)	2019-07-24 14:25:40
27.254.61.112	attackspambots	Jul 24 08:29:32 SilenceServices sshd[12353]: Failed password for root from 27.254.61.112 port 40990 ssh2 Jul 24 08:34:59 SilenceServices sshd[16102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.254.61.112 Jul 24 08:35:01 SilenceServices sshd[16102]: Failed password for invalid user developer from 27.254.61.112 port 37024 ssh2	2019-07-24 14:54:42
78.128.113.68	attackbotsspam	Time: Wed Jul 24 02:28:38 2019 -0300 IP: 78.128.113.68 (BG/Bulgaria/ip-113-68.4vendeta.com) Failures: 5 (smtpauth) Interval: 3600 seconds Blocked: Permanent Block	2019-07-24 14:19:48
1.179.220.208	attackspambots	Jul 24 08:13:27 OPSO sshd\[7959\]: Invalid user soc from 1.179.220.208 port 60340 Jul 24 08:13:27 OPSO sshd\[7959\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.220.208 Jul 24 08:13:29 OPSO sshd\[7959\]: Failed password for invalid user soc from 1.179.220.208 port 60340 ssh2 Jul 24 08:18:52 OPSO sshd\[8986\]: Invalid user sql from 1.179.220.208 port 56524 Jul 24 08:18:52 OPSO sshd\[8986\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.179.220.208	2019-07-24 14:42:04
213.55.92.81	attackbotsspam	2019-07-24T06:44:15.371687hub.schaetter.us sshd\[12952\]: Invalid user team2 from 213.55.92.81 2019-07-24T06:44:15.421072hub.schaetter.us sshd\[12952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.55.92.81 2019-07-24T06:44:17.540532hub.schaetter.us sshd\[12952\]: Failed password for invalid user team2 from 213.55.92.81 port 53124 ssh2 2019-07-24T06:50:07.928380hub.schaetter.us sshd\[12981\]: Invalid user zd from 213.55.92.81 2019-07-24T06:50:07.968995hub.schaetter.us sshd\[12981\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.55.92.81 ...	2019-07-24 15:02:17
175.126.176.21	attackspam	Jul 24 08:33:43 OPSO sshd\[11927\]: Invalid user rabbitmq from 175.126.176.21 port 60872 Jul 24 08:33:43 OPSO sshd\[11927\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.126.176.21 Jul 24 08:33:45 OPSO sshd\[11927\]: Failed password for invalid user rabbitmq from 175.126.176.21 port 60872 ssh2 Jul 24 08:39:38 OPSO sshd\[13189\]: Invalid user gp from 175.126.176.21 port 57384 Jul 24 08:39:38 OPSO sshd\[13189\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.126.176.21	2019-07-24 14:50:16
187.109.169.228	attackspambots	Jul 24 01:28:35 web1 postfix/smtpd[30356]: warning: unknown[187.109.169.228]: SASL PLAIN authentication failed: authentication failure ...	2019-07-24 15:09:29

最近上报的IP列表

142.102.192.56	209.155.239.118	38.42.108.253	49.231.232.22
49.68.157.109	42.117.86.108	42.117.20.124	42.113.229.1
14.227.81.95	1.52.86.231	202.89.96.41	195.2.238.235
183.81.59.54	183.80.13.17	180.130.250.112	180.124.247.116
180.115.254.58	124.205.141.245	198.127.168.4	122.80.251.177