106.54.242.120

Basic Info

City: Beijing

Region: Beijing

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Invalid user odroid from 106.54.242.120 port 59786	2020-06-13 20:28:54
attack	2020-06-09T08:36:17.6183761240 sshd\[10631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 user=root 2020-06-09T08:36:19.8615361240 sshd\[10631\]: Failed password for root from 106.54.242.120 port 43010 ssh2 2020-06-09T08:45:44.7015851240 sshd\[11145\]: Invalid user zhangzhitong from 106.54.242.120 port 55710 2020-06-09T08:45:44.7063791240 sshd\[11145\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 ...	2020-06-09 17:33:42
attackspambots	Jun 3 13:50:29 jane sshd[13732]: Failed password for root from 106.54.242.120 port 59382 ssh2 ...	2020-06-03 20:40:41
attackbotsspam	Invalid user qrs from 106.54.242.120 port 34676	2020-05-24 07:15:52
attack	SSH Brute Force	2020-05-21 05:55:16
attack	Invalid user zui from 106.54.242.120 port 46664	2020-05-16 07:39:41
attackbots	IP blocked	2020-05-10 05:06:39
attack	Brute-force attempt banned	2020-05-08 05:06:39
attack	May 3 14:20:51 localhost sshd\[28341\]: Invalid user test2 from 106.54.242.120 May 3 14:20:51 localhost sshd\[28341\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 May 3 14:20:53 localhost sshd\[28341\]: Failed password for invalid user test2 from 106.54.242.120 port 56046 ssh2 May 3 14:23:50 localhost sshd\[28404\]: Invalid user cache from 106.54.242.120 May 3 14:23:50 localhost sshd\[28404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 ...	2020-05-04 02:46:02
attack	2020-05-01T08:17:23.5995641495-001 sshd[35146]: Invalid user jerome from 106.54.242.120 port 56032 2020-05-01T08:17:25.0816921495-001 sshd[35146]: Failed password for invalid user jerome from 106.54.242.120 port 56032 ssh2 2020-05-01T08:23:14.0643341495-001 sshd[35345]: Invalid user benoit from 106.54.242.120 port 34406 2020-05-01T08:23:14.0716031495-001 sshd[35345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 2020-05-01T08:23:14.0643341495-001 sshd[35345]: Invalid user benoit from 106.54.242.120 port 34406 2020-05-01T08:23:16.0678021495-001 sshd[35345]: Failed password for invalid user benoit from 106.54.242.120 port 34406 ssh2 ...	2020-05-01 22:02:17
attackbotsspam	(sshd) Failed SSH login from 106.54.242.120 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 21 06:33:24 srv sshd[2502]: Invalid user ucnp from 106.54.242.120 port 54010 Apr 21 06:33:27 srv sshd[2502]: Failed password for invalid user ucnp from 106.54.242.120 port 54010 ssh2 Apr 21 06:51:04 srv sshd[2834]: Invalid user pv from 106.54.242.120 port 55658 Apr 21 06:51:06 srv sshd[2834]: Failed password for invalid user pv from 106.54.242.120 port 55658 ssh2 Apr 21 06:56:02 srv sshd[2939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 user=root	2020-04-21 13:26:36
attack	Apr 10 15:53:45 scw-6657dc sshd[17068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 Apr 10 15:53:45 scw-6657dc sshd[17068]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 Apr 10 15:53:48 scw-6657dc sshd[17068]: Failed password for invalid user test from 106.54.242.120 port 43630 ssh2 ...	2020-04-11 00:17:21
attackspam	Apr 2 07:00:00 minden010 sshd[11718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 Apr 2 07:00:02 minden010 sshd[11718]: Failed password for invalid user P@??word12345 from 106.54.242.120 port 59328 ssh2 Apr 2 07:04:49 minden010 sshd[15256]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 ...	2020-04-02 15:10:55
attackspambots	Mar 30 02:33:48 sshd[19160]: Failed password for invalid user qll from 106.54.242.120 port 36816 ssh2	2020-03-30 09:40:53
attack	Mar 27 14:15:13 vps58358 sshd\[4418\]: Invalid user vgv from 106.54.242.120Mar 27 14:15:14 vps58358 sshd\[4418\]: Failed password for invalid user vgv from 106.54.242.120 port 49278 ssh2Mar 27 14:18:38 vps58358 sshd\[4506\]: Invalid user alexander from 106.54.242.120Mar 27 14:18:41 vps58358 sshd\[4506\]: Failed password for invalid user alexander from 106.54.242.120 port 33396 ssh2Mar 27 14:21:49 vps58358 sshd\[4573\]: Invalid user mob from 106.54.242.120Mar 27 14:21:51 vps58358 sshd\[4573\]: Failed password for invalid user mob from 106.54.242.120 port 45742 ssh2 ...	2020-03-27 22:53:48
attack	Unauthorized SSH login attempts	2020-03-27 16:17:04
attackspam	Mar 19 23:25:13 legacy sshd[32433]: Failed password for root from 106.54.242.120 port 48122 ssh2 Mar 19 23:29:50 legacy sshd[32550]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 Mar 19 23:29:52 legacy sshd[32550]: Failed password for invalid user tiancheng from 106.54.242.120 port 38804 ssh2 ...	2020-03-20 06:58:22
attackspam	k+ssh-bruteforce	2020-03-19 14:30:07
attackbots	ssh brute force	2020-03-18 18:03:55
attackspam	SSH brute-force attempt	2020-03-14 05:28:34
attackspam	Mar 8 20:24:08 sd-53420 sshd\[17869\]: Invalid user zhangkai from 106.54.242.120 Mar 8 20:24:08 sd-53420 sshd\[17869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 Mar 8 20:24:11 sd-53420 sshd\[17869\]: Failed password for invalid user zhangkai from 106.54.242.120 port 57010 ssh2 Mar 8 20:26:54 sd-53420 sshd\[18229\]: Invalid user danielle from 106.54.242.120 Mar 8 20:26:54 sd-53420 sshd\[18229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 ...	2020-03-09 03:34:02
attackbotsspam	Mar 7 23:02:53 MainVPS sshd[30219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 user=root Mar 7 23:02:55 MainVPS sshd[30219]: Failed password for root from 106.54.242.120 port 36342 ssh2 Mar 7 23:05:43 MainVPS sshd[3156]: Invalid user ts3server from 106.54.242.120 port 52336 Mar 7 23:05:43 MainVPS sshd[3156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 Mar 7 23:05:43 MainVPS sshd[3156]: Invalid user ts3server from 106.54.242.120 port 52336 Mar 7 23:05:46 MainVPS sshd[3156]: Failed password for invalid user ts3server from 106.54.242.120 port 52336 ssh2 ...	2020-03-08 09:03:38
attack	20 attempts against mh-ssh on echoip	2020-03-04 09:56:06
attack	web-1 [ssh] SSH Attack	2020-02-28 08:22:34
attackspam	Feb 20 01:32:37 sd-53420 sshd\[11162\]: Invalid user nginx from 106.54.242.120 Feb 20 01:32:37 sd-53420 sshd\[11162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 Feb 20 01:32:38 sd-53420 sshd\[11162\]: Failed password for invalid user nginx from 106.54.242.120 port 49486 ssh2 Feb 20 01:35:55 sd-53420 sshd\[11452\]: Invalid user tom from 106.54.242.120 Feb 20 01:35:55 sd-53420 sshd\[11452\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.120 ...	2020-02-20 08:37:02
attack	Feb 16 23:27:53 mout sshd[18528]: Invalid user letha from 106.54.242.120 port 46108	2020-02-17 06:32:09

Comments on same subnet:

IP	Type	Details	Datetime
106.54.242.239	attackbotsspam	"fail2ban match"	2020-09-19 02:51:51
106.54.242.239	attack	2020-09-18T05:47:18.165683vps-d63064a2 sshd[5673]: User root from 106.54.242.239 not allowed because not listed in AllowUsers 2020-09-18T05:47:20.356837vps-d63064a2 sshd[5673]: Failed password for invalid user root from 106.54.242.239 port 45888 ssh2 2020-09-18T05:49:15.579443vps-d63064a2 sshd[5681]: User root from 106.54.242.239 not allowed because not listed in AllowUsers 2020-09-18T05:49:15.597531vps-d63064a2 sshd[5681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 user=root 2020-09-18T05:49:15.579443vps-d63064a2 sshd[5681]: User root from 106.54.242.239 not allowed because not listed in AllowUsers 2020-09-18T05:49:17.830757vps-d63064a2 sshd[5681]: Failed password for invalid user root from 106.54.242.239 port 58538 ssh2 ...	2020-09-18 18:53:45
106.54.242.239	attack	Sep 16 13:21:41 server sshd[27306]: Failed password for invalid user user02 from 106.54.242.239 port 48676 ssh2 Sep 16 13:26:57 server sshd[29326]: Failed password for invalid user med from 106.54.242.239 port 60556 ssh2 Sep 16 13:32:22 server sshd[31336]: Failed password for root from 106.54.242.239 port 44206 ssh2	2020-09-16 20:24:49
106.54.242.239	attackspambots	Sep 16 02:37:32 Ubuntu-1404-trusty-64-minimal sshd\[13483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 user=root Sep 16 02:37:34 Ubuntu-1404-trusty-64-minimal sshd\[13483\]: Failed password for root from 106.54.242.239 port 56712 ssh2 Sep 16 03:01:29 Ubuntu-1404-trusty-64-minimal sshd\[26071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 user=root Sep 16 03:01:31 Ubuntu-1404-trusty-64-minimal sshd\[26071\]: Failed password for root from 106.54.242.239 port 45528 ssh2 Sep 16 03:18:05 Ubuntu-1404-trusty-64-minimal sshd\[31997\]: Invalid user friend from 106.54.242.239	2020-09-16 12:57:21
106.54.242.239	attack	2020-09-16T02:54:08.748616billing sshd[22499]: Failed password for root from 106.54.242.239 port 49382 ssh2 2020-09-16T02:55:22.581365billing sshd[24704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 user=root 2020-09-16T02:55:23.926108billing sshd[24704]: Failed password for root from 106.54.242.239 port 57222 ssh2 ...	2020-09-16 04:42:25
106.54.242.90	attackbotsspam	(sshd) Failed SSH login from 106.54.242.90 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 14 12:42:16 elude sshd[8706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.90 user=root Sep 14 12:42:19 elude sshd[8706]: Failed password for root from 106.54.242.90 port 39302 ssh2 Sep 14 12:57:14 elude sshd[10944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.90 user=root Sep 14 12:57:17 elude sshd[10944]: Failed password for root from 106.54.242.90 port 41412 ssh2 Sep 14 13:02:01 elude sshd[11633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.90 user=root	2020-09-14 23:45:25
106.54.242.239	attackbots	Aug 28 05:42:55 ns382633 sshd\[24486\]: Invalid user vbox from 106.54.242.239 port 54074 Aug 28 05:42:55 ns382633 sshd\[24486\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 Aug 28 05:42:56 ns382633 sshd\[24486\]: Failed password for invalid user vbox from 106.54.242.239 port 54074 ssh2 Aug 28 05:54:53 ns382633 sshd\[26398\]: Invalid user jung from 106.54.242.239 port 58162 Aug 28 05:54:53 ns382633 sshd\[26398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239	2020-08-28 13:32:00
106.54.242.239	attackbots	Aug 10 10:52:35 vm0 sshd[12421]: Failed password for root from 106.54.242.239 port 39874 ssh2 ...	2020-08-10 19:20:28
106.54.242.239	attackspambots	Brute-force attempt banned	2020-05-17 04:34:37
106.54.242.239	attackbots	May 15 23:46:09 firewall sshd[31474]: Failed password for root from 106.54.242.239 port 54142 ssh2 May 15 23:49:24 firewall sshd[31555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 user=root May 15 23:49:26 firewall sshd[31555]: Failed password for root from 106.54.242.239 port 60416 ssh2 ...	2020-05-16 15:51:19
106.54.242.239	attack	May 13 05:41:34 pi sshd[10747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 May 13 05:41:36 pi sshd[10747]: Failed password for invalid user robson from 106.54.242.239 port 40658 ssh2	2020-05-13 17:01:11
106.54.242.239	attackspam	May 1 13:42:38 DAAP sshd[28385]: Invalid user sysadmin from 106.54.242.239 port 37842 May 1 13:42:38 DAAP sshd[28385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 May 1 13:42:38 DAAP sshd[28385]: Invalid user sysadmin from 106.54.242.239 port 37842 May 1 13:42:40 DAAP sshd[28385]: Failed password for invalid user sysadmin from 106.54.242.239 port 37842 ssh2 May 1 13:46:10 DAAP sshd[28399]: Invalid user tfs from 106.54.242.239 port 47564 ...	2020-05-02 03:32:10
106.54.242.239	attackbots	SSH Brute-Force. Ports scanning.	2020-04-27 17:04:20
106.54.242.239	attack	2020-04-24T20:57:20.085634shield sshd\[3197\]: Invalid user gustavo from 106.54.242.239 port 42722 2020-04-24T20:57:20.090000shield sshd\[3197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 2020-04-24T20:57:22.532461shield sshd\[3197\]: Failed password for invalid user gustavo from 106.54.242.239 port 42722 ssh2 2020-04-24T20:59:13.360206shield sshd\[3506\]: Invalid user cambricon from 106.54.242.239 port 36384 2020-04-24T20:59:13.362865shield sshd\[3506\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239	2020-04-25 04:59:23
106.54.242.239	attack	Apr 23 06:03:43 mail sshd[8240]: Invalid user kx from 106.54.242.239 Apr 23 06:03:43 mail sshd[8240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 Apr 23 06:03:43 mail sshd[8240]: Invalid user kx from 106.54.242.239 Apr 23 06:03:45 mail sshd[8240]: Failed password for invalid user kx from 106.54.242.239 port 56496 ssh2 Apr 23 06:09:47 mail sshd[9170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.242.239 user=root Apr 23 06:09:49 mail sshd[9170]: Failed password for root from 106.54.242.239 port 34600 ssh2 ...	2020-04-23 12:38:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.242.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39732
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.54.242.120.			IN	A

;; AUTHORITY SECTION:
.			325	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021601 1800 900 604800 86400

;; Query time: 153 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 06:32:06 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 120.242.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 120.242.54.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.32.163.249	attackbots	Apr 26 07:34:41 vmd48417 sshd[1819]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.163.249	2020-04-26 17:32:19
51.75.175.30	attackspambots	firewall-block, port(s): 80/tcp	2020-04-26 17:30:45
138.197.163.11	attackbotsspam	Invalid user oracle from 138.197.163.11 port 39356	2020-04-26 17:40:14
222.186.180.147	attack	Apr 26 11:17:11 santamaria sshd\[27588\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Apr 26 11:17:12 santamaria sshd\[27588\]: Failed password for root from 222.186.180.147 port 10542 ssh2 Apr 26 11:17:32 santamaria sshd\[27592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root ...	2020-04-26 17:21:45
115.236.66.242	attack	Apr 26 04:20:43 vps46666688 sshd[6781]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.236.66.242 Apr 26 04:20:45 vps46666688 sshd[6781]: Failed password for invalid user stevan from 115.236.66.242 port 10018 ssh2 ...	2020-04-26 17:43:30
221.133.18.119	attackspambots	Apr 26 10:19:12 host sshd[15889]: Invalid user epv from 221.133.18.119 port 35656 ...	2020-04-26 17:22:16
151.80.60.151	attackbotsspam	SSH Brute Force	2020-04-26 17:35:58
180.76.238.128	attackspambots	Apr 26 11:08:55 minden010 sshd[4662]: Failed password for root from 180.76.238.128 port 37936 ssh2 Apr 26 11:15:14 minden010 sshd[7759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.238.128 Apr 26 11:15:16 minden010 sshd[7759]: Failed password for invalid user coupon from 180.76.238.128 port 50260 ssh2 ...	2020-04-26 17:38:45
106.13.212.27	attack	SSH Login Bruteforce	2020-04-26 17:09:48
194.79.204.105	attackspam	IP blocked	2020-04-26 17:45:03
60.13.194.71	attackspam	firewall-block, port(s): 1433/tcp	2020-04-26 17:27:35
128.199.158.182	attackbots	128.199.158.182 - - [26/Apr/2020:10:53:27 +0200] "GET /wp-login.php HTTP/1.1" 200 5863 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 128.199.158.182 - - [26/Apr/2020:10:53:30 +0200] "POST /wp-login.php HTTP/1.1" 200 6114 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 128.199.158.182 - - [26/Apr/2020:10:53:33 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-26 17:45:51
71.6.147.254	attack	Unauthorized connection attempt detected from IP address 71.6.147.254 to port 554	2020-04-26 17:27:01
152.32.187.51	attackbotsspam	Failed password for invalid user root from 152.32.187.51 port 42112 ssh2	2020-04-26 17:47:55
187.192.4.167	attackbotsspam	1587873016 - 04/26/2020 05:50:16 Host: 187.192.4.167/187.192.4.167 Port: 445 TCP Blocked	2020-04-26 17:13:48

Recently Reported IPs

10.3.23.151	119.217.105.136	39.79.20.28	44.156.203.249
188.99.137.169	36.217.142.41	86.34.224.162	208.178.67.253
197.115.55.216	174.219.1.6	141.211.248.207	220.210.173.76
200.56.45.49	36.39.181.246	60.218.100.17	189.209.165.113
51.38.34.142	145.239.90.212	189.209.164.88	79.129.48.43