106.54.11.129 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.54.112.173	attack	$f2bV_matches	2020-10-04 07:38:17
106.54.112.173	attackbots	fail2ban -- 106.54.112.173 ...	2020-10-03 23:57:06
106.54.112.173	attackbots	SSHD brute force attack detected from [106.54.112.173]	2020-10-03 15:41:25
106.54.112.173	attack	2020-09-28T17:59:14.284681abusebot-6.cloudsearch.cf sshd[9351]: Invalid user teamspeak from 106.54.112.173 port 44482 2020-09-28T17:59:14.290120abusebot-6.cloudsearch.cf sshd[9351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.112.173 2020-09-28T17:59:14.284681abusebot-6.cloudsearch.cf sshd[9351]: Invalid user teamspeak from 106.54.112.173 port 44482 2020-09-28T17:59:16.516711abusebot-6.cloudsearch.cf sshd[9351]: Failed password for invalid user teamspeak from 106.54.112.173 port 44482 ssh2 2020-09-28T18:02:15.487597abusebot-6.cloudsearch.cf sshd[9413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.112.173 user=root 2020-09-28T18:02:17.895106abusebot-6.cloudsearch.cf sshd[9413]: Failed password for root from 106.54.112.173 port 55242 ssh2 2020-09-28T18:05:07.097950abusebot-6.cloudsearch.cf sshd[9425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost ...	2020-09-29 03:57:48
106.54.112.173	attackbotsspam	2020-09-28T10:42:59.861658Z c3199e29a8cd New connection: 106.54.112.173:51148 (172.17.0.5:2222) [session: c3199e29a8cd] 2020-09-28T10:54:31.023529Z 817f88402875 New connection: 106.54.112.173:42436 (172.17.0.5:2222) [session: 817f88402875]	2020-09-28 20:11:23
106.54.112.173	attackbotsspam	Sep 28 02:56:42 vps sshd[2506]: Failed password for root from 106.54.112.173 port 35522 ssh2 Sep 28 03:06:05 vps sshd[3185]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.112.173 Sep 28 03:06:07 vps sshd[3185]: Failed password for invalid user grid from 106.54.112.173 port 45496 ssh2 ...	2020-09-28 12:15:20
106.54.119.121	attack	Sep 20 20:42:44 MainVPS sshd[31411]: Invalid user postgres from 106.54.119.121 port 45488 Sep 20 20:42:44 MainVPS sshd[31411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.119.121 Sep 20 20:42:44 MainVPS sshd[31411]: Invalid user postgres from 106.54.119.121 port 45488 Sep 20 20:42:47 MainVPS sshd[31411]: Failed password for invalid user postgres from 106.54.119.121 port 45488 ssh2 Sep 20 20:47:52 MainVPS sshd[8957]: Invalid user server from 106.54.119.121 port 45076 ...	2020-09-21 03:30:15
106.54.119.121	attackbotsspam	DATE:2020-09-20 12:18:19, IP:106.54.119.121, PORT:ssh SSH brute force auth (docker-dc)	2020-09-20 19:37:44
106.54.117.51	attackbots	Invalid user maria from 106.54.117.51 port 58034	2020-09-19 16:06:20
106.54.117.51	attackspambots	Sep 18 18:57:33 haigwepa sshd[20387]: Failed password for root from 106.54.117.51 port 41798 ssh2 ...	2020-09-19 07:41:00
106.54.111.75	attackspambots	(sshd) Failed SSH login from 106.54.111.75 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 16 07:39:14 jbs1 sshd[21766]: Invalid user unison from 106.54.111.75 Sep 16 07:39:14 jbs1 sshd[21766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.111.75 Sep 16 07:39:16 jbs1 sshd[21766]: Failed password for invalid user unison from 106.54.111.75 port 36034 ssh2 Sep 16 07:53:50 jbs1 sshd[28703]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.111.75 user=root Sep 16 07:53:53 jbs1 sshd[28703]: Failed password for root from 106.54.111.75 port 45156 ssh2	2020-09-16 20:05:19
106.54.111.75	attackspambots	Sep 16 00:45:09 h1745522 sshd[21508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.111.75 user=root Sep 16 00:45:12 h1745522 sshd[21508]: Failed password for root from 106.54.111.75 port 35790 ssh2 Sep 16 00:48:58 h1745522 sshd[22094]: Invalid user yoyo from 106.54.111.75 port 35412 Sep 16 00:48:58 h1745522 sshd[22094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.111.75 Sep 16 00:48:58 h1745522 sshd[22094]: Invalid user yoyo from 106.54.111.75 port 35412 Sep 16 00:49:00 h1745522 sshd[22094]: Failed password for invalid user yoyo from 106.54.111.75 port 35412 ssh2 Sep 16 00:52:46 h1745522 sshd[22732]: Invalid user coralyn from 106.54.111.75 port 35050 Sep 16 00:52:46 h1745522 sshd[22732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.111.75 Sep 16 00:52:46 h1745522 sshd[22732]: Invalid user coralyn from 106.54.111.75 port 35050 Sep 16 00: ...	2020-09-16 12:33:00
106.54.111.75	attack	Time: Tue Sep 15 19:03:35 2020 +0200 IP: 106.54.111.75 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 15 18:48:32 mail-03 sshd[27553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.111.75 user=root Sep 15 18:48:34 mail-03 sshd[27553]: Failed password for root from 106.54.111.75 port 42548 ssh2 Sep 15 18:59:05 mail-03 sshd[27799]: Invalid user freedom1 from 106.54.111.75 port 37564 Sep 15 18:59:07 mail-03 sshd[27799]: Failed password for invalid user freedom1 from 106.54.111.75 port 37564 ssh2 Sep 15 19:03:31 mail-03 sshd[27890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.111.75 user=root	2020-09-16 04:20:43
106.54.119.121	attack	Sep 11 15:35:17 jumpserver sshd[2288]: Failed password for root from 106.54.119.121 port 42116 ssh2 Sep 11 15:37:26 jumpserver sshd[2326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.119.121 user=root Sep 11 15:37:28 jumpserver sshd[2326]: Failed password for root from 106.54.119.121 port 35992 ssh2 ...	2020-09-12 02:59:05
106.54.119.121	attackbots	Sep 11 12:13:59 mellenthin sshd[12012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.119.121 Sep 11 12:14:02 mellenthin sshd[12012]: Failed password for invalid user godleski from 106.54.119.121 port 51816 ssh2	2020-09-11 18:57:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.11.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64927
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.54.11.129.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013000 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 15:28:30 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 129.11.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 129.11.54.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
223.244.236.232	attack	(Feb 28) LEN=40 TTL=53 ID=16363 TCP DPT=8080 WINDOW=8474 SYN (Feb 28) LEN=40 TTL=53 ID=28712 TCP DPT=8080 WINDOW=42588 SYN (Feb 28) LEN=40 TTL=53 ID=34695 TCP DPT=8080 WINDOW=5162 SYN (Feb 27) LEN=40 TTL=53 ID=48330 TCP DPT=8080 WINDOW=8474 SYN (Feb 27) LEN=40 TTL=53 ID=51781 TCP DPT=8080 WINDOW=8474 SYN (Feb 27) LEN=40 TTL=53 ID=65467 TCP DPT=8080 WINDOW=42588 SYN (Feb 26) LEN=40 TTL=53 ID=39462 TCP DPT=8080 WINDOW=42588 SYN (Feb 26) LEN=40 TTL=53 ID=55856 TCP DPT=8080 WINDOW=8474 SYN (Feb 25) LEN=40 TTL=53 ID=52948 TCP DPT=8080 WINDOW=42588 SYN (Feb 25) LEN=40 TTL=53 ID=34173 TCP DPT=8080 WINDOW=42588 SYN	2020-02-28 19:37:57
31.132.143.21	attackbotsspam	Honeypot attack, port: 81, PTR: 31-132-143-21.bks-tv.ru.	2020-02-28 19:37:42
187.61.162.187	attackbots	Honeypot attack, port: 81, PTR: 187-61-162-187.cable.cabotelecom.com.br.	2020-02-28 19:42:34
192.241.210.125	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 19:26:32
77.232.100.192	attackspam	Feb 28 12:25:56 vps647732 sshd[10289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.232.100.192 Feb 28 12:25:58 vps647732 sshd[10289]: Failed password for invalid user tom from 77.232.100.192 port 54330 ssh2 ...	2020-02-28 19:38:35
14.240.65.255	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-02-28 19:46:32
104.206.128.6	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-02-28 20:00:56
185.175.93.103	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-28 19:31:17
157.245.83.211	attackbots	suspicious action Fri, 28 Feb 2020 07:36:29 -0300	2020-02-28 19:37:23
121.178.212.67	attack	Feb 28 12:47:28 MK-Soft-VM3 sshd[18133]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.178.212.67 Feb 28 12:47:31 MK-Soft-VM3 sshd[18133]: Failed password for invalid user linux from 121.178.212.67 port 52946 ssh2 ...	2020-02-28 20:05:43
58.33.31.82	attack	"SSH brute force auth login attempt."	2020-02-28 19:52:03
106.14.158.154	attack	/info/license.txt	2020-02-28 19:49:50
49.235.91.217	attackbots	Brute-force attempt banned	2020-02-28 19:56:38
118.69.134.245	attackbots	1582865392 - 02/28/2020 05:49:52 Host: 118.69.134.245/118.69.134.245 Port: 445 TCP Blocked	2020-02-28 19:54:30
59.145.252.98	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-28 19:49:36

Recently Reported IPs

44.72.132.245	76.108.167.98	149.243.24.124	36.9.43.51
32.235.153.2	42.88.180.25	226.68.8.144	194.212.146.195
204.69.75.54	242.191.206.181	189.63.245.67	245.48.140.208
174.0.50.177	34.20.98.132	238.151.211.157	227.100.111.226
200.18.113.80	155.233.15.244	23.168.138.166	192.131.193.152