106.54.208.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	May 24 14:14:05 vps647732 sshd[12020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.21 May 24 14:14:07 vps647732 sshd[12020]: Failed password for invalid user lyd from 106.54.208.21 port 55080 ssh2 ...	2020-05-24 22:29:47

Type

Details

Datetime

attackbotsspam

May 24 14:14:05 vps647732 sshd[12020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.21
May 24 14:14:07 vps647732 sshd[12020]: Failed password for invalid user lyd from 106.54.208.21 port 55080 ssh2
...

2020-05-24 22:29:47

Comments on same subnet:

IP	Type	Details	Datetime
106.54.208.123	attackbots	2020-10-08T15:40:18.123964mail.broermann.family sshd[5834]: Failed password for root from 106.54.208.123 port 42838 ssh2 2020-10-08T15:44:13.930003mail.broermann.family sshd[6197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 user=root 2020-10-08T15:44:16.414126mail.broermann.family sshd[6197]: Failed password for root from 106.54.208.123 port 54770 ssh2 2020-10-08T15:48:06.755463mail.broermann.family sshd[6621]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 user=root 2020-10-08T15:48:08.557543mail.broermann.family sshd[6621]: Failed password for root from 106.54.208.123 port 38462 ssh2 ...	2020-10-09 01:43:18
106.54.208.123	attackspambots	2020-10-07T15:45:15.868973linuxbox-skyline sshd[39412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 user=root 2020-10-07T15:45:17.718861linuxbox-skyline sshd[39412]: Failed password for root from 106.54.208.123 port 51626 ssh2 ...	2020-10-08 17:39:52
106.54.208.123	attackspam	SSH Invalid Login	2020-10-05 04:39:30
106.54.208.123	attackbots	SSH Invalid Login	2020-10-04 20:33:43
106.54.208.123	attackbotsspam	SSH Invalid Login	2020-10-04 12:16:54
106.54.208.123	attack	sshd: Failed password for .... from 106.54.208.123 port 56028 ssh2 (10 attempts)	2020-09-07 17:09:57
106.54.208.123	attack	Aug 16 20:07:41 gw1 sshd[9732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 Aug 16 20:07:42 gw1 sshd[9732]: Failed password for invalid user vpn from 106.54.208.123 port 41580 ssh2 ...	2020-08-17 03:36:44
106.54.208.123	attackspam	SSH Brute Force	2020-08-09 19:23:34
106.54.208.123	attack	[ssh] SSH attack	2020-07-26 23:08:53
106.54.208.123	attack	Jul 25 23:13:32 ip106 sshd[14025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 Jul 25 23:13:34 ip106 sshd[14025]: Failed password for invalid user remotos from 106.54.208.123 port 44756 ssh2 ...	2020-07-26 05:43:03
106.54.208.123	attack	2020-07-14T16:28:26.435499mail.standpoint.com.ua sshd[7069]: Invalid user bm from 106.54.208.123 port 45740 2020-07-14T16:28:26.438425mail.standpoint.com.ua sshd[7069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 2020-07-14T16:28:26.435499mail.standpoint.com.ua sshd[7069]: Invalid user bm from 106.54.208.123 port 45740 2020-07-14T16:28:28.072121mail.standpoint.com.ua sshd[7069]: Failed password for invalid user bm from 106.54.208.123 port 45740 ssh2 2020-07-14T16:32:09.254803mail.standpoint.com.ua sshd[7554]: Invalid user ftpvm from 106.54.208.123 port 57926 ...	2020-07-14 22:33:59
106.54.208.123	attackspambots	2020-07-14T14:55:03.936846mail.standpoint.com.ua sshd[26276]: Invalid user kn from 106.54.208.123 port 51732 2020-07-14T14:55:03.940076mail.standpoint.com.ua sshd[26276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 2020-07-14T14:55:03.936846mail.standpoint.com.ua sshd[26276]: Invalid user kn from 106.54.208.123 port 51732 2020-07-14T14:55:06.382295mail.standpoint.com.ua sshd[26276]: Failed password for invalid user kn from 106.54.208.123 port 51732 ssh2 2020-07-14T14:58:46.926474mail.standpoint.com.ua sshd[26817]: Invalid user mara from 106.54.208.123 port 35684 ...	2020-07-14 20:16:06
106.54.208.123	attackbotsspam	2020-07-07T09:34:15.861314mail.standpoint.com.ua sshd[9858]: Invalid user test1 from 106.54.208.123 port 36420 2020-07-07T09:34:15.863980mail.standpoint.com.ua sshd[9858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 2020-07-07T09:34:15.861314mail.standpoint.com.ua sshd[9858]: Invalid user test1 from 106.54.208.123 port 36420 2020-07-07T09:34:18.382946mail.standpoint.com.ua sshd[9858]: Failed password for invalid user test1 from 106.54.208.123 port 36420 ssh2 2020-07-07T09:38:40.241411mail.standpoint.com.ua sshd[10461]: Invalid user carbon from 106.54.208.123 port 56318 ...	2020-07-07 15:09:45
106.54.208.123	attackspam	Failed password for invalid user boat from 106.54.208.123 port 53626 ssh2	2020-07-05 01:55:02
106.54.208.123	attackbotsspam	Jun 29 13:10:13 vps687878 sshd\[10169\]: Failed password for invalid user opl from 106.54.208.123 port 50472 ssh2 Jun 29 13:11:55 vps687878 sshd\[10444\]: Invalid user vmail from 106.54.208.123 port 41198 Jun 29 13:11:55 vps687878 sshd\[10444\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 Jun 29 13:11:56 vps687878 sshd\[10444\]: Failed password for invalid user vmail from 106.54.208.123 port 41198 ssh2 Jun 29 13:13:39 vps687878 sshd\[10626\]: Invalid user samurai from 106.54.208.123 port 60156 Jun 29 13:13:39 vps687878 sshd\[10626\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.208.123 ...	2020-06-29 19:35:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.208.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30607
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.54.208.21.			IN	A

;; AUTHORITY SECTION:
.			542	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052400 1800 900 604800 86400

;; Query time: 91 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 24 22:29:37 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 21.208.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.208.54.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
191.255.232.53	attackbots	Dec 21 19:02:22 vps647732 sshd[4664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.255.232.53 Dec 21 19:02:24 vps647732 sshd[4664]: Failed password for invalid user pipofoods from 191.255.232.53 port 34175 ssh2 ...	2019-12-22 02:27:56
40.73.39.195	attackspambots	Dec 22 00:58:28 webhost01 sshd[2189]: Failed password for mysql from 40.73.39.195 port 57134 ssh2 Dec 22 01:04:55 webhost01 sshd[2278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.39.195 ...	2019-12-22 02:29:38
45.160.131.144	attack	Unauthorized connection attempt detected from IP address 45.160.131.144 to port 23	2019-12-22 02:28:30
195.154.119.75	attackspambots	Dec 21 07:43:47 kapalua sshd\[26660\]: Invalid user gookin from 195.154.119.75 Dec 21 07:43:47 kapalua sshd\[26660\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-154-119-75.rev.poneytelecom.eu Dec 21 07:43:48 kapalua sshd\[26660\]: Failed password for invalid user gookin from 195.154.119.75 port 52974 ssh2 Dec 21 07:49:28 kapalua sshd\[27245\]: Invalid user guym from 195.154.119.75 Dec 21 07:49:28 kapalua sshd\[27245\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-154-119-75.rev.poneytelecom.eu	2019-12-22 01:52:24
113.203.233.65	attackbots	Unauthorized connection attempt detected from IP address 113.203.233.65 to port 445	2019-12-22 01:55:19
192.248.21.148	attack	Dec 21 15:46:27 srv01 sshd[20553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.248.21.148 user=backup Dec 21 15:46:29 srv01 sshd[20553]: Failed password for backup from 192.248.21.148 port 33348 ssh2 Dec 21 15:53:23 srv01 sshd[21022]: Invalid user test from 192.248.21.148 port 41970 Dec 21 15:53:23 srv01 sshd[21022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.248.21.148 Dec 21 15:53:23 srv01 sshd[21022]: Invalid user test from 192.248.21.148 port 41970 Dec 21 15:53:25 srv01 sshd[21022]: Failed password for invalid user test from 192.248.21.148 port 41970 ssh2 ...	2019-12-22 01:59:11
51.83.74.203	attack	Dec 21 17:36:26 zeus sshd[10135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.74.203 Dec 21 17:36:28 zeus sshd[10135]: Failed password for invalid user test from 51.83.74.203 port 60846 ssh2 Dec 21 17:42:50 zeus sshd[10347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.74.203 Dec 21 17:42:52 zeus sshd[10347]: Failed password for invalid user cw from 51.83.74.203 port 37840 ssh2	2019-12-22 01:51:16
54.37.154.113	attack	Dec 21 18:41:09 pornomens sshd\[23691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.154.113 user=root Dec 21 18:41:11 pornomens sshd\[23691\]: Failed password for root from 54.37.154.113 port 39856 ssh2 Dec 21 18:51:45 pornomens sshd\[23798\]: Invalid user admin from 54.37.154.113 port 46104 Dec 21 18:51:45 pornomens sshd\[23798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.154.113 ...	2019-12-22 02:21:06
45.82.153.141	attack	Dec 21 18:33:37 relay postfix/smtpd\[21941\]: warning: unknown\[45.82.153.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 21 18:33:58 relay postfix/smtpd\[21938\]: warning: unknown\[45.82.153.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 21 18:38:13 relay postfix/smtpd\[21938\]: warning: unknown\[45.82.153.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 21 18:38:26 relay postfix/smtpd\[21930\]: warning: unknown\[45.82.153.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 21 18:43:48 relay postfix/smtpd\[21940\]: warning: unknown\[45.82.153.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-22 01:49:23
187.75.145.66	attackspam	Dec 21 18:47:05 microserver sshd[7537]: Invalid user www from 187.75.145.66 port 48994 Dec 21 18:47:05 microserver sshd[7537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.75.145.66 Dec 21 18:47:06 microserver sshd[7537]: Failed password for invalid user www from 187.75.145.66 port 48994 ssh2 Dec 21 18:53:45 microserver sshd[8420]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.75.145.66 user=root Dec 21 18:53:47 microserver sshd[8420]: Failed password for root from 187.75.145.66 port 16237 ssh2 Dec 21 19:07:34 microserver sshd[10664]: Invalid user Gurriz from 187.75.145.66 port 36640 Dec 21 19:07:34 microserver sshd[10664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.75.145.66 Dec 21 19:07:36 microserver sshd[10664]: Failed password for invalid user Gurriz from 187.75.145.66 port 36640 ssh2 Dec 21 19:14:51 microserver sshd[11634]: Invalid user luisaustin from 187.75.145	2019-12-22 01:47:17
190.181.60.26	attackbotsspam	Dec 21 18:42:39 root sshd[22954]: Failed password for root from 190.181.60.26 port 42348 ssh2 Dec 21 18:48:43 root sshd[23038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.181.60.26 Dec 21 18:48:45 root sshd[23038]: Failed password for invalid user fronz from 190.181.60.26 port 46958 ssh2 ...	2019-12-22 01:53:05
167.86.127.137	attackbotsspam	Dec 21 12:57:25 TORMINT sshd\[5241\]: Invalid user llewelly from 167.86.127.137 Dec 21 12:57:25 TORMINT sshd\[5241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.86.127.137 Dec 21 12:57:26 TORMINT sshd\[5241\]: Failed password for invalid user llewelly from 167.86.127.137 port 57602 ssh2 ...	2019-12-22 02:24:12
182.61.177.109	attackspambots	Dec 21 08:08:47 sachi sshd\[27756\]: Invalid user admin from 182.61.177.109 Dec 21 08:08:47 sachi sshd\[27756\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.177.109 Dec 21 08:08:50 sachi sshd\[27756\]: Failed password for invalid user admin from 182.61.177.109 port 33332 ssh2 Dec 21 08:14:42 sachi sshd\[28360\]: Invalid user newsome from 182.61.177.109 Dec 21 08:14:42 sachi sshd\[28360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.177.109	2019-12-22 02:22:21
222.186.175.161	attackbotsspam	2019-12-21T18:21:40.253454+00:00 suse sshd[4192]: User root from 222.186.175.161 not allowed because not listed in AllowUsers 2019-12-21T18:21:43.087210+00:00 suse sshd[4192]: error: PAM: Authentication failure for illegal user root from 222.186.175.161 2019-12-21T18:21:40.253454+00:00 suse sshd[4192]: User root from 222.186.175.161 not allowed because not listed in AllowUsers 2019-12-21T18:21:43.087210+00:00 suse sshd[4192]: error: PAM: Authentication failure for illegal user root from 222.186.175.161 2019-12-21T18:21:40.253454+00:00 suse sshd[4192]: User root from 222.186.175.161 not allowed because not listed in AllowUsers 2019-12-21T18:21:43.087210+00:00 suse sshd[4192]: error: PAM: Authentication failure for illegal user root from 222.186.175.161 2019-12-21T18:21:43.089382+00:00 suse sshd[4192]: Failed keyboard-interactive/pam for invalid user root from 222.186.175.161 port 63324 ssh2 ...	2019-12-22 02:25:25
13.92.189.179	attackspam	Dec 21 18:13:23 MK-Soft-VM6 sshd[19045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.92.189.179 Dec 21 18:13:25 MK-Soft-VM6 sshd[19045]: Failed password for invalid user hoeler from 13.92.189.179 port 43288 ssh2 ...	2019-12-22 02:30:08

Recently Reported IPs

196.120.51.92	20.247.220.38	186.251.224.200	95.85.154.77
103.131.71.91	34.84.179.51	104.248.241.180	171.231.140.219
141.226.18.251	8.98.6.131	104.18.70.149	62.30.62.194
41.105.50.98	5.119.98.138	36.85.191.136	24.138.217.115
117.1.178.33	189.1.15.246	208.12.12.64	48.151.250.63