106.54.121.117

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Sep 14 05:19:46 lanister sshd[10896]: Invalid user scarab from 106.54.121.117 Sep 14 05:19:46 lanister sshd[10896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 Sep 14 05:19:46 lanister sshd[10896]: Invalid user scarab from 106.54.121.117 Sep 14 05:19:49 lanister sshd[10896]: Failed password for invalid user scarab from 106.54.121.117 port 44630 ssh2	2020-09-15 01:26:20
attack	Sep 14 09:09:44 ns381471 sshd[12303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 Sep 14 09:09:46 ns381471 sshd[12303]: Failed password for invalid user skwarok from 106.54.121.117 port 48672 ssh2	2020-09-14 17:10:03
attack	Invalid user tomcat from 106.54.121.117 port 43516	2020-07-19 01:17:18
attackspam	Jul 8 06:08:23 haigwepa sshd[12452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 Jul 8 06:08:25 haigwepa sshd[12452]: Failed password for invalid user wildaliz from 106.54.121.117 port 41220 ssh2 ...	2020-07-08 16:47:57
attackbotsspam	Jun 29 05:38:28 roki-contabo sshd\[26294\]: Invalid user akhan from 106.54.121.117 Jun 29 05:38:28 roki-contabo sshd\[26294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 Jun 29 05:38:30 roki-contabo sshd\[26294\]: Failed password for invalid user akhan from 106.54.121.117 port 51148 ssh2 Jun 29 05:52:25 roki-contabo sshd\[26458\]: Invalid user story from 106.54.121.117 Jun 29 05:52:25 roki-contabo sshd\[26458\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 ...	2020-06-29 17:25:31
attack	Jun 21 15:08:24 master sshd[14292]: Failed password for root from 106.54.121.117 port 42410 ssh2	2020-06-22 00:05:34
attackspambots	Brute-force attempt banned	2020-06-20 03:28:34
attackbots	Jun 14 01:31:13 buvik sshd[20423]: Failed password for invalid user cbrown from 106.54.121.117 port 53462 ssh2 Jun 14 01:33:36 buvik sshd[20748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 user=root Jun 14 01:33:38 buvik sshd[20748]: Failed password for root from 106.54.121.117 port 53802 ssh2 ...	2020-06-14 08:59:03
attackbots	Repeated brute force against a port	2020-06-09 16:42:15
attackbotsspam	SSH Brute-Force. Ports scanning.	2020-05-23 22:55:51
attackspambots	Found by fail2ban	2020-05-12 12:27:38
attackspambots	May 1 10:11:28 gw1 sshd[24994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 May 1 10:11:30 gw1 sshd[24994]: Failed password for invalid user qz from 106.54.121.117 port 59874 ssh2 ...	2020-05-01 13:15:21
attackbots	$f2bV_matches	2020-04-18 18:03:46
attackspam	Brute-force attempt banned	2020-04-08 01:06:23
attack	Mar 25 19:27:09 itv-usvr-01 sshd[17260]: Invalid user nexus from 106.54.121.117 Mar 25 19:27:09 itv-usvr-01 sshd[17260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 Mar 25 19:27:09 itv-usvr-01 sshd[17260]: Invalid user nexus from 106.54.121.117 Mar 25 19:27:11 itv-usvr-01 sshd[17260]: Failed password for invalid user nexus from 106.54.121.117 port 34620 ssh2	2020-03-27 23:05:19
attackspam	Feb 13 20:44:27 legacy sshd[11518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 Feb 13 20:44:29 legacy sshd[11518]: Failed password for invalid user Root. from 106.54.121.117 port 43576 ssh2 Feb 13 20:47:43 legacy sshd[11753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 ...	2020-02-14 04:00:28
attackbots	Jan 19 01:51:15 firewall sshd[18867]: Invalid user teamspeak3 from 106.54.121.117 Jan 19 01:51:17 firewall sshd[18867]: Failed password for invalid user teamspeak3 from 106.54.121.117 port 44066 ssh2 Jan 19 01:58:28 firewall sshd[19060]: Invalid user ed from 106.54.121.117 ...	2020-01-19 13:17:17
attack	Unauthorized connection attempt detected from IP address 106.54.121.117 to port 2220 [J]	2020-01-07 05:48:22
attack	Jan 6 12:05:34 legacy sshd[19765]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 Jan 6 12:05:36 legacy sshd[19765]: Failed password for invalid user sylee from 106.54.121.117 port 39238 ssh2 Jan 6 12:09:25 legacy sshd[20089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 ...	2020-01-06 19:14:52

Comments on same subnet:

IP	Type	Details	Datetime
106.54.121.45	attackspam	Jul 6 11:29:23 h2427292 sshd\[21973\]: Invalid user ahmed from 106.54.121.45 Jul 6 11:29:23 h2427292 sshd\[21973\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 Jul 6 11:29:25 h2427292 sshd\[21973\]: Failed password for invalid user ahmed from 106.54.121.45 port 35600 ssh2 ...	2020-07-06 18:58:08
106.54.121.45	attackbotsspam	Invalid user eke from 106.54.121.45 port 43404	2020-06-28 06:35:47
106.54.121.45	attackbotsspam	Jun 27 13:03:03 serwer sshd\[11054\]: Invalid user cai from 106.54.121.45 port 45682 Jun 27 13:03:03 serwer sshd\[11054\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 Jun 27 13:03:05 serwer sshd\[11054\]: Failed password for invalid user cai from 106.54.121.45 port 45682 ssh2 ...	2020-06-27 19:34:50
106.54.121.45	attack	Jun 18 07:10:20 localhost sshd\[27166\]: Invalid user redmine from 106.54.121.45 Jun 18 07:10:20 localhost sshd\[27166\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 Jun 18 07:10:22 localhost sshd\[27166\]: Failed password for invalid user redmine from 106.54.121.45 port 45060 ssh2 Jun 18 07:15:00 localhost sshd\[27242\]: Invalid user edgar from 106.54.121.45 Jun 18 07:15:00 localhost sshd\[27242\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 ...	2020-06-18 14:17:28
106.54.121.45	attack	2020-06-14T00:21:37.929200galaxy.wi.uni-potsdam.de sshd[16483]: Invalid user admin from 106.54.121.45 port 35714 2020-06-14T00:21:39.702929galaxy.wi.uni-potsdam.de sshd[16483]: Failed password for invalid user admin from 106.54.121.45 port 35714 ssh2 2020-06-14T00:23:27.038364galaxy.wi.uni-potsdam.de sshd[16696]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root 2020-06-14T00:23:28.910184galaxy.wi.uni-potsdam.de sshd[16696]: Failed password for root from 106.54.121.45 port 57290 ssh2 2020-06-14T00:25:16.913920galaxy.wi.uni-potsdam.de sshd[16935]: Invalid user ftpuser from 106.54.121.45 port 50632 2020-06-14T00:25:16.915776galaxy.wi.uni-potsdam.de sshd[16935]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 2020-06-14T00:25:16.913920galaxy.wi.uni-potsdam.de sshd[16935]: Invalid user ftpuser from 106.54.121.45 port 50632 2020-06-14T00:25:19.420238galaxy.wi.uni-potsdam.de s ...	2020-06-14 06:44:32
106.54.121.45	attackspam	Jun 12 18:40:30 vps687878 sshd\[8440\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root Jun 12 18:40:33 vps687878 sshd\[8440\]: Failed password for root from 106.54.121.45 port 50404 ssh2 Jun 12 18:43:49 vps687878 sshd\[8950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root Jun 12 18:43:50 vps687878 sshd\[8950\]: Failed password for root from 106.54.121.45 port 54802 ssh2 Jun 12 18:46:55 vps687878 sshd\[9395\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root ...	2020-06-13 02:12:26
106.54.121.45	attack	Tried sshing with brute force.	2020-06-01 23:38:16
106.54.121.45	attackbotsspam	May 15 22:44:50 prox sshd[25019]: Failed password for root from 106.54.121.45 port 46698 ssh2 May 15 22:49:58 prox sshd[11723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45	2020-05-16 05:58:56
106.54.121.45	attackspam	Observed on multiple hosts.	2020-05-05 10:36:19
106.54.121.45	attackbotsspam	Apr 13 05:47:14 MainVPS sshd[3642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root Apr 13 05:47:17 MainVPS sshd[3642]: Failed password for root from 106.54.121.45 port 38442 ssh2 Apr 13 05:50:53 MainVPS sshd[6713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root Apr 13 05:50:55 MainVPS sshd[6713]: Failed password for root from 106.54.121.45 port 51568 ssh2 Apr 13 05:54:26 MainVPS sshd[9622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root Apr 13 05:54:29 MainVPS sshd[9622]: Failed password for root from 106.54.121.45 port 36462 ssh2 ...	2020-04-13 16:06:10
106.54.121.45	attackspambots	SSH Invalid Login	2020-04-12 06:30:52
106.54.121.45	attack	Brute-force attempt banned	2020-04-09 04:33:30
106.54.121.45	attackbotsspam	Apr 3 07:54:56 lukav-desktop sshd\[10725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root Apr 3 07:54:58 lukav-desktop sshd\[10725\]: Failed password for root from 106.54.121.45 port 45342 ssh2 Apr 3 07:57:34 lukav-desktop sshd\[10852\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root Apr 3 07:57:36 lukav-desktop sshd\[10852\]: Failed password for root from 106.54.121.45 port 43868 ssh2 Apr 3 08:00:10 lukav-desktop sshd\[10998\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root	2020-04-03 14:31:49
106.54.121.45	attackspambots	(sshd) Failed SSH login from 106.54.121.45 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 1 06:42:33 srv sshd[16833]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root Apr 1 06:42:36 srv sshd[16833]: Failed password for root from 106.54.121.45 port 56244 ssh2 Apr 1 06:48:39 srv sshd[17139]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root Apr 1 06:48:41 srv sshd[17139]: Failed password for root from 106.54.121.45 port 35020 ssh2 Apr 1 06:54:53 srv sshd[17351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 user=root	2020-04-01 13:27:38
106.54.121.45	attack	Mar 30 20:48:19 legacy sshd[14270]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.45 Mar 30 20:48:21 legacy sshd[14270]: Failed password for invalid user hu from 106.54.121.45 port 59338 ssh2 Mar 30 20:49:45 legacy sshd[14288]: Failed password for root from 106.54.121.45 port 44896 ssh2 ...	2020-03-31 06:05:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.121.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 47413
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.54.121.117.			IN	A

;; AUTHORITY SECTION:
.			191	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010600 1800 900 604800 86400

;; Query time: 146 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 06 19:14:48 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 117.121.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 117.121.54.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.246.101.2	attackspam	Automatic report - Port Scan Attack	2020-07-11 21:13:19
185.143.72.27	attackbotsspam	Jul 11 15:25:32 srv01 postfix/smtpd\[23694\]: warning: unknown\[185.143.72.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 15:26:05 srv01 postfix/smtpd\[22829\]: warning: unknown\[185.143.72.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 15:26:34 srv01 postfix/smtpd\[21603\]: warning: unknown\[185.143.72.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 15:27:03 srv01 postfix/smtpd\[24869\]: warning: unknown\[185.143.72.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 11 15:27:32 srv01 postfix/smtpd\[11475\]: warning: unknown\[185.143.72.27\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-11 21:36:02
123.141.112.243	attackbotsspam	Unauthorized connection attempt from IP address 123.141.112.243 on Port 445(SMB)	2020-07-11 21:46:11
68.183.147.58	attack	Jul 11 14:00:55 rancher-0 sshd[252170]: Invalid user cftest from 68.183.147.58 port 55586 ...	2020-07-11 21:39:11
94.102.51.28	attack	07/11/2020-09:04:19.836516 94.102.51.28 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-11 21:15:46
77.42.72.121	attack	Automatic report - Port Scan Attack	2020-07-11 21:37:55
36.37.93.234	attackspam	Unauthorized connection attempt from IP address 36.37.93.234 on Port 445(SMB)	2020-07-11 21:32:11
193.142.59.95	attack	5 failed smtp login attempts in 3600s	2020-07-11 21:26:12
222.186.42.155	attackspam	SSH bruteforce	2020-07-11 21:41:07
67.207.94.180	attackbotsspam	Port Scan detected from 67.207.94.180 (US/United States/New Jersey/North Bergen/-). 4 hits in the last 225 seconds	2020-07-11 21:39:28
222.186.30.57	attackbots	Jul 11 15:01:03 roki-contabo sshd\[32559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root Jul 11 15:01:05 roki-contabo sshd\[32559\]: Failed password for root from 222.186.30.57 port 17742 ssh2 Jul 11 15:01:10 roki-contabo sshd\[32561\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root Jul 11 15:01:12 roki-contabo sshd\[32561\]: Failed password for root from 222.186.30.57 port 57667 ssh2 Jul 11 15:01:19 roki-contabo sshd\[32568\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.57 user=root ...	2020-07-11 21:10:34
185.39.11.32	attack	TCP (SYN) 185.39.11.32:50329 -> port 15924, len 44	2020-07-11 21:30:24
37.152.177.66	attack	Jul 11 05:00:58 propaganda sshd[17112]: Connection from 37.152.177.66 port 46390 on 10.0.0.160 port 22 rdomain "" Jul 11 05:00:58 propaganda sshd[17112]: Connection closed by 37.152.177.66 port 46390 [preauth]	2020-07-11 21:36:47
222.186.42.137	attackspam	Jul 11 14:58:47 vps647732 sshd[9770]: Failed password for root from 222.186.42.137 port 48675 ssh2 ...	2020-07-11 21:07:05
46.38.145.5	attackspam	2020-07-11 16:31:41 auth_plain authenticator failed for (User) [46.38.145.5]: 535 Incorrect authentication data (set_id=shop2@lavrinenko.info) 2020-07-11 16:32:31 auth_plain authenticator failed for (User) [46.38.145.5]: 535 Incorrect authentication data (set_id=fao@lavrinenko.info) ...	2020-07-11 21:37:19

Recently Reported IPs

36.25.31.34	5.165.8.33	196.30.91.207	220.133.13.179
163.94.123.84	174.52.175.82	212.174.54.104	212.174.53.165
211.227.68.230	201.152.176.41	201.103.164.223	97.103.94.25
179.10.128.172	200.187.164.198	20.70.201.76	200.94.197.88
190.218.241.149	190.175.37.55	189.186.157.234	189.76.195.84