106.54.194.194

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2019-11-09T08:58:41.943056abusebot-4.cloudsearch.cf sshd\[10356\]: Invalid user akanistha from 106.54.194.194 port 52048	2019-11-09 20:54:53

Comments on same subnet:

IP	Type	Details	Datetime
106.54.194.35	attack	Port Scan/VNC login attempt ...	2020-10-14 03:41:18
106.54.194.35	attackspambots	Oct 13 11:32:14 rocket sshd[15480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.194.35 Oct 13 11:32:15 rocket sshd[15480]: Failed password for invalid user sun from 106.54.194.35 port 40530 ssh2 ...	2020-10-13 19:00:37
106.54.194.77	attack	Oct 7 19:01:57 PorscheCustomer sshd[6253]: Failed password for root from 106.54.194.77 port 42446 ssh2 Oct 7 19:06:35 PorscheCustomer sshd[6320]: Failed password for root from 106.54.194.77 port 37734 ssh2 ...	2020-10-08 06:34:04
106.54.194.77	attackspam	SSH bruteforce	2020-10-07 22:54:34
106.54.194.77	attackspam	2020-10-07 01:29:15.417400-0500 localhost sshd[9366]: Failed password for root from 106.54.194.77 port 42522 ssh2	2020-10-07 14:58:30
106.54.194.189	attack	Found on CINS badguys / proto=6 . srcport=58174 . dstport=8888 . (3321)	2020-09-25 08:59:53
106.54.194.77	attackbotsspam	Sep 18 13:10:31 ip106 sshd[2043]: Failed password for root from 106.54.194.77 port 55904 ssh2 ...	2020-09-18 19:43:22
106.54.194.77	attackbots	Sep 18 05:53:46 haigwepa sshd[9039]: Failed password for root from 106.54.194.77 port 59426 ssh2 ...	2020-09-18 12:01:24
106.54.194.77	attackbotsspam	5x Failed Password	2020-09-18 02:14:22
106.54.194.189	attack	SSH brute-force attempt	2020-09-07 01:47:15
106.54.194.189	attack	Sep 6 16:57:40 localhost sshd[1486905]: Connection closed by 106.54.194.189 port 60966 [preauth] ...	2020-09-06 17:08:44
106.54.194.189	attack	Scanned 2 times in the last 24 hours on port 22	2020-09-06 09:08:56
106.54.194.189	attackspam	Aug 29 10:04:12 l03 sshd[944]: Invalid user apsrtcoprs from 106.54.194.189 port 59132 ...	2020-08-29 17:56:30
106.54.194.35	attackspambots	Aug 25 13:54:21 serwer sshd\[11400\]: Invalid user dlc from 106.54.194.35 port 34932 Aug 25 13:54:21 serwer sshd\[11400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.194.35 Aug 25 13:54:23 serwer sshd\[11400\]: Failed password for invalid user dlc from 106.54.194.35 port 34932 ssh2 ...	2020-08-27 03:59:17
106.54.194.189	attack	SSH Invalid Login	2020-08-26 06:47:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.194.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45990
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.54.194.194.			IN	A

;; AUTHORITY SECTION:
.			494	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019110900 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 09 20:54:47 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 194.194.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 194.194.54.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.207.139.203	attackspam	SSH login attempts.	2020-03-29 13:29:57
180.76.100.229	attackbotsspam	Mar 29 06:12:35 DAAP sshd[13865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.100.229 user=games Mar 29 06:12:38 DAAP sshd[13865]: Failed password for games from 180.76.100.229 port 56416 ssh2 Mar 29 06:17:21 DAAP sshd[13961]: Invalid user jv from 180.76.100.229 port 56068 Mar 29 06:17:21 DAAP sshd[13961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.100.229 Mar 29 06:17:21 DAAP sshd[13961]: Invalid user jv from 180.76.100.229 port 56068 Mar 29 06:17:23 DAAP sshd[13961]: Failed password for invalid user jv from 180.76.100.229 port 56068 ssh2 ...	2020-03-29 13:56:03
49.235.86.177	attack	Mar 29 05:59:08 santamaria sshd\[24400\]: Invalid user skn from 49.235.86.177 Mar 29 05:59:08 santamaria sshd\[24400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.86.177 Mar 29 05:59:10 santamaria sshd\[24400\]: Failed password for invalid user skn from 49.235.86.177 port 34104 ssh2 ...	2020-03-29 13:15:00
91.108.155.43	attackspambots	SSH login attempts.	2020-03-29 13:26:59
106.75.244.62	attackbots	SSH login attempts.	2020-03-29 13:14:41
139.215.217.180	attack	SSH login attempts.	2020-03-29 13:28:30
49.235.90.120	attackspam	Mar 29 10:31:42 gw1 sshd[27203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.90.120 Mar 29 10:31:45 gw1 sshd[27203]: Failed password for invalid user oi from 49.235.90.120 port 58108 ssh2 ...	2020-03-29 13:45:50
178.128.14.102	attack	Mar 29 07:19:18 host sshd[32407]: Invalid user site from 178.128.14.102 port 34368 ...	2020-03-29 13:46:17
37.139.19.169	attack	Mar 29 08:12:25 tuotantolaitos sshd[8654]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.139.19.169 Mar 29 08:12:27 tuotantolaitos sshd[8654]: Failed password for invalid user pqk from 37.139.19.169 port 40842 ssh2 ...	2020-03-29 13:32:30
59.29.151.106	attackbotsspam	Unauthorized connection attempt detected from IP address 59.29.151.106 to port 23	2020-03-29 13:32:00
119.29.161.236	attack	2020-03-29T05:55:24.395664librenms sshd[5015]: Invalid user ard from 119.29.161.236 port 38016 2020-03-29T05:55:26.621992librenms sshd[5015]: Failed password for invalid user ard from 119.29.161.236 port 38016 ssh2 2020-03-29T05:58:52.789482librenms sshd[5055]: Invalid user bvb from 119.29.161.236 port 50524 ...	2020-03-29 13:48:38
31.133.0.84	attack	(sshd) Failed SSH login from 31.133.0.84 (PT/Portugal/vps12141.htvps.pl): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 29 05:38:48 amsweb01 sshd[24667]: Invalid user shi from 31.133.0.84 port 44188 Mar 29 05:38:50 amsweb01 sshd[24667]: Failed password for invalid user shi from 31.133.0.84 port 44188 ssh2 Mar 29 05:53:29 amsweb01 sshd[26063]: Invalid user wtg from 31.133.0.84 port 45678 Mar 29 05:53:31 amsweb01 sshd[26063]: Failed password for invalid user wtg from 31.133.0.84 port 45678 ssh2 Mar 29 05:59:04 amsweb01 sshd[26678]: Invalid user qgx from 31.133.0.84 port 57612	2020-03-29 13:24:08
5.182.39.63	attack	SSH login attempts.	2020-03-29 13:52:23
221.236.77.85	attack	SSH login attempts.	2020-03-29 13:21:19
111.229.121.142	attackspam	SSH brute force attempt	2020-03-29 13:31:25

Recently Reported IPs

179.83.194.167	132.145.167.107	97.74.24.9	78.137.252.238
91.221.132.107	165.22.195.163	106.56.90.157	148.70.111.66
188.18.41.171	99.80.31.200	94.137.52.147	157.46.35.76
109.108.130.76	98.124.25.245	139.59.9.234	83.175.217.26
212.174.242.126	181.171.140.59	106.0.6.236	103.45.109.240