106.111.54.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.111.54.250	attackspambots	Brute force blocker - service: proftpd1 - aantal: 155 - Sun Sep 2 21:30:16 2018	2020-09-26 06:46:30
106.111.54.250	attack	Brute force blocker - service: proftpd1 - aantal: 155 - Sun Sep 2 21:30:16 2018	2020-09-25 23:51:10
106.111.54.250	attack	Brute force blocker - service: proftpd1 - aantal: 155 - Sun Sep 2 21:30:16 2018	2020-09-25 15:27:46

Type

Details

Datetime

106.111.54.250

attackspambots

Brute force blocker - service: proftpd1 - aantal: 155 - Sun Sep  2 21:30:16 2018

2020-09-26 06:46:30

106.111.54.250

attack

Brute force blocker - service: proftpd1 - aantal: 155 - Sun Sep  2 21:30:16 2018

2020-09-25 23:51:10

106.111.54.250

attack

Brute force blocker - service: proftpd1 - aantal: 155 - Sun Sep  2 21:30:16 2018

2020-09-25 15:27:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.111.54.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27625
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.111.54.20.			IN	A

;; AUTHORITY SECTION:
.			145	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 21:19:58 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 20.54.111.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.54.111.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.23.184.99	attack	Sep 2 03:01:17 mout sshd[28361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.23.184.99 user=root Sep 2 03:01:20 mout sshd[28361]: Failed password for root from 177.23.184.99 port 46902 ssh2	2020-09-02 09:35:27
61.177.172.177	attack	Sep 2 08:08:21 itv-usvr-02 sshd[30745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.177 user=root Sep 2 08:08:22 itv-usvr-02 sshd[30745]: Failed password for root from 61.177.172.177 port 65265 ssh2	2020-09-02 09:18:45
185.118.48.206	attack	Sep 2 01:27:06 rush sshd[12298]: Failed password for root from 185.118.48.206 port 57800 ssh2 Sep 2 01:30:46 rush sshd[12448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.118.48.206 Sep 2 01:30:48 rush sshd[12448]: Failed password for invalid user tomcat from 185.118.48.206 port 34324 ssh2 ...	2020-09-02 09:35:01
178.151.27.223	attackspam	Port probing on unauthorized port 445	2020-09-02 12:00:20
45.142.120.36	attack	2020-09-02 03:16:18 dovecot_login authenticator failed for \(User\) \[45.142.120.36\]: 535 Incorrect authentication data \(set_id=nawlins@no-server.de\) 2020-09-02 03:16:19 dovecot_login authenticator failed for \(User\) \[45.142.120.36\]: 535 Incorrect authentication data \(set_id=nawlins@no-server.de\) 2020-09-02 03:16:29 dovecot_login authenticator failed for \(User\) \[45.142.120.36\]: 535 Incorrect authentication data \(set_id=gx@no-server.de\) 2020-09-02 03:16:29 dovecot_login authenticator failed for \(User\) \[45.142.120.36\]: 535 Incorrect authentication data \(set_id=gx@no-server.de\) 2020-09-02 03:16:54 dovecot_login authenticator failed for \(User\) \[45.142.120.36\]: 535 Incorrect authentication data \(set_id=gx@no-server.de\) 2020-09-02 03:16:56 dovecot_login authenticator failed for \(User\) \[45.142.120.36\]: 535 Incorrect authentication data \(set_id=gx@no-server.de\) 2020-09-02 03:17:05 dovecot_login authenticator failed for \(User\) \[45.142.120.36\]: 535 Incorrect a ...	2020-09-02 09:25:49
145.239.78.143	attackspam	[01/Sep/2020:18:44:09 +0200] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-02 09:30:20
218.92.0.168	attack	Sep 2 01:31:15 instance-2 sshd[5603]: Failed password for root from 218.92.0.168 port 28163 ssh2 Sep 2 01:31:18 instance-2 sshd[5603]: Failed password for root from 218.92.0.168 port 28163 ssh2 Sep 2 01:31:24 instance-2 sshd[5603]: Failed password for root from 218.92.0.168 port 28163 ssh2 Sep 2 01:31:27 instance-2 sshd[5603]: Failed password for root from 218.92.0.168 port 28163 ssh2	2020-09-02 09:42:31
46.101.113.206	attackspam	prod6 ...	2020-09-02 09:23:24
139.59.57.2	attackbots	TCP (SYN) 139.59.57.2:50847 -> port 4845, len 44	2020-09-02 09:16:22
93.85.132.245	attackbots	Automatic report - XMLRPC Attack	2020-09-02 09:33:00
180.126.50.141	attackspam	Icarus honeypot on github	2020-09-02 12:01:54
179.255.100.124	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-02 09:24:35
154.28.188.220	attack	Qnap nas login attempts	2020-09-02 10:09:07
51.68.11.199	attackbots	Brute force attack stopped by firewall	2020-09-02 12:04:42
154.28.188.220	attack	Tried to guess my "admin" password of my QNAP NAS. If that happens to you, enable two-factor authentification for the NAS, create a new user account with admin privileges, and disable the default admin account (the hacker will have to guess both the account and the password in addition to the 2-factor authentification).	2020-09-02 09:56:16

Recently Reported IPs

106.111.54.147	101.228.140.179	106.111.54.205	106.111.54.223
106.111.54.227	106.111.54.232	106.111.54.242	106.111.54.208
106.111.54.218	106.111.54.211	106.111.54.247	106.111.54.244
106.111.54.28	106.111.54.252	101.228.188.225	106.111.54.42
106.111.54.5	106.111.54.34	106.111.54.36	106.111.54.51