106.54.245.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	$f2bV_matches	2020-06-14 16:34:55
attackbots	May 28 09:11:18 hosting sshd[8032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.34 user=root May 28 09:11:20 hosting sshd[8032]: Failed password for root from 106.54.245.34 port 41592 ssh2 ...	2020-05-28 14:20:18
attackspambots	May 5 01:35:52 h1745522 sshd[3271]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.34 user=root May 5 01:35:53 h1745522 sshd[3271]: Failed password for root from 106.54.245.34 port 48158 ssh2 May 5 01:40:35 h1745522 sshd[4119]: Invalid user vbox from 106.54.245.34 port 47038 May 5 01:40:35 h1745522 sshd[4119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.34 May 5 01:40:35 h1745522 sshd[4119]: Invalid user vbox from 106.54.245.34 port 47038 May 5 01:40:37 h1745522 sshd[4119]: Failed password for invalid user vbox from 106.54.245.34 port 47038 ssh2 May 5 01:45:18 h1745522 sshd[4842]: Invalid user hzt from 106.54.245.34 port 45922 May 5 01:45:18 h1745522 sshd[4842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.34 May 5 01:45:18 h1745522 sshd[4842]: Invalid user hzt from 106.54.245.34 port 45922 May 5 01:45:19 h1745522 ss ...	2020-05-05 08:21:08
attackbots	sshd login attampt	2020-04-26 20:30:58
attackbots	Apr 24 19:06:43 MainVPS sshd[3244]: Invalid user shoutcas1 from 106.54.245.34 port 46684 Apr 24 19:06:43 MainVPS sshd[3244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.34 Apr 24 19:06:43 MainVPS sshd[3244]: Invalid user shoutcas1 from 106.54.245.34 port 46684 Apr 24 19:06:45 MainVPS sshd[3244]: Failed password for invalid user shoutcas1 from 106.54.245.34 port 46684 ssh2 Apr 24 19:10:02 MainVPS sshd[6271]: Invalid user matt from 106.54.245.34 port 50334 ...	2020-04-25 01:25:51
attackbots	3x Failed Password	2020-03-27 22:48:36
attack	Mar 21 02:33:46 haigwepa sshd[15861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.34 Mar 21 02:33:48 haigwepa sshd[15861]: Failed password for invalid user tomcat from 106.54.245.34 port 39908 ssh2 ...	2020-03-21 10:44:06
attackbotsspam	2020-03-19T08:03:23.621138scmdmz1 sshd[27528]: Failed password for invalid user krishna from 106.54.245.34 port 50742 ssh2 2020-03-19T08:06:51.163697scmdmz1 sshd[27985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.34 user=root 2020-03-19T08:06:52.868431scmdmz1 sshd[27985]: Failed password for root from 106.54.245.34 port 34284 ssh2 ...	2020-03-19 15:50:32
attack	Unauthorized connection attempt detected from IP address 106.54.245.34 to port 2220 [J]	2020-02-04 01:39:33
attackbots	SSH Login Bruteforce	2020-01-27 01:58:09

Comments on same subnet:

IP	Type	Details	Datetime
106.54.245.12	attackbotsspam	detected by Fail2Ban	2020-09-14 23:57:50
106.54.245.12	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-09-14 15:43:59
106.54.245.12	attackspam	Sep 13 23:16:56 h2646465 sshd[404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 user=root Sep 13 23:16:58 h2646465 sshd[404]: Failed password for root from 106.54.245.12 port 50074 ssh2 Sep 13 23:26:59 h2646465 sshd[1800]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 user=root Sep 13 23:27:02 h2646465 sshd[1800]: Failed password for root from 106.54.245.12 port 33306 ssh2 Sep 13 23:31:48 h2646465 sshd[2439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 user=root Sep 13 23:31:50 h2646465 sshd[2439]: Failed password for root from 106.54.245.12 port 56674 ssh2 Sep 13 23:36:37 h2646465 sshd[3064]: Invalid user prueba from 106.54.245.12 Sep 13 23:36:37 h2646465 sshd[3064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 Sep 13 23:36:37 h2646465 sshd[3064]: Invalid user prueba from 106.54.2	2020-09-14 07:37:23
106.54.245.12	attackspambots	Invalid user sophia from 106.54.245.12 port 45772	2020-08-23 12:17:28
106.54.245.12	attack	Aug 22 15:21:14 server sshd[64391]: Failed password for root from 106.54.245.12 port 53400 ssh2 Aug 22 15:26:34 server sshd[1754]: Failed password for root from 106.54.245.12 port 53390 ssh2 Aug 22 15:31:58 server sshd[4188]: Failed password for invalid user hhh from 106.54.245.12 port 53392 ssh2	2020-08-22 23:22:49
106.54.245.12	attackbots	leo_www	2020-08-14 12:52:09
106.54.245.12	attackspambots	Aug 8 15:33:45 ajax sshd[8264]: Failed password for root from 106.54.245.12 port 55134 ssh2	2020-08-09 01:09:53
106.54.245.12	attack	Invalid user ftt from 106.54.245.12 port 44948	2020-07-21 06:57:19
106.54.245.12	attackbotsspam	Jul 18 20:23:53 h2779839 sshd[25333]: Invalid user bcx from 106.54.245.12 port 48820 Jul 18 20:23:53 h2779839 sshd[25333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 Jul 18 20:23:53 h2779839 sshd[25333]: Invalid user bcx from 106.54.245.12 port 48820 Jul 18 20:23:55 h2779839 sshd[25333]: Failed password for invalid user bcx from 106.54.245.12 port 48820 ssh2 Jul 18 20:26:30 h2779839 sshd[25347]: Invalid user administrator from 106.54.245.12 port 49040 Jul 18 20:26:30 h2779839 sshd[25347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 Jul 18 20:26:30 h2779839 sshd[25347]: Invalid user administrator from 106.54.245.12 port 49040 Jul 18 20:26:32 h2779839 sshd[25347]: Failed password for invalid user administrator from 106.54.245.12 port 49040 ssh2 Jul 18 20:29:06 h2779839 sshd[25372]: Invalid user lzz from 106.54.245.12 port 49262 ...	2020-07-19 02:31:22
106.54.245.12	attackspambots	Invalid user yrpark99 from 106.54.245.12 port 44732	2020-07-15 08:56:38
106.54.245.12	attack	Jul 10 19:25:07 itv-usvr-02 sshd[7891]: Invalid user info from 106.54.245.12 port 55748 Jul 10 19:25:07 itv-usvr-02 sshd[7891]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 Jul 10 19:25:07 itv-usvr-02 sshd[7891]: Invalid user info from 106.54.245.12 port 55748 Jul 10 19:25:09 itv-usvr-02 sshd[7891]: Failed password for invalid user info from 106.54.245.12 port 55748 ssh2 Jul 10 19:31:07 itv-usvr-02 sshd[8058]: Invalid user confluence from 106.54.245.12 port 51566	2020-07-11 03:25:29
106.54.245.12	attackbotsspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-07-04 05:01:21
106.54.245.12	attack	SSH Brute-Forcing (server1)	2020-06-21 03:24:09
106.54.245.12	attackbots	Jun 16 14:15:07 srv-ubuntu-dev3 sshd[73169]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 user=root Jun 16 14:15:08 srv-ubuntu-dev3 sshd[73169]: Failed password for root from 106.54.245.12 port 37548 ssh2 Jun 16 14:16:42 srv-ubuntu-dev3 sshd[73479]: Invalid user bamboo from 106.54.245.12 Jun 16 14:16:42 srv-ubuntu-dev3 sshd[73479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 Jun 16 14:16:42 srv-ubuntu-dev3 sshd[73479]: Invalid user bamboo from 106.54.245.12 Jun 16 14:16:44 srv-ubuntu-dev3 sshd[73479]: Failed password for invalid user bamboo from 106.54.245.12 port 53750 ssh2 Jun 16 14:18:16 srv-ubuntu-dev3 sshd[73693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 user=root Jun 16 14:18:18 srv-ubuntu-dev3 sshd[73693]: Failed password for root from 106.54.245.12 port 41716 ssh2 Jun 16 14:19:50 srv-ubuntu-dev3 sshd[73 ...	2020-06-17 01:02:27
106.54.245.12	attackbots	Jun 10 21:50:17 legacy sshd[19802]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 Jun 10 21:50:19 legacy sshd[19802]: Failed password for invalid user mysql from 106.54.245.12 port 41238 ssh2 Jun 10 21:51:45 legacy sshd[19837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.245.12 ...	2020-06-11 05:24:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.245.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65468
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.54.245.34.			IN	A

;; AUTHORITY SECTION:
.			474	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012601 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 01:58:03 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 34.245.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.245.54.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.14.150.51	attack	2020-06-24T17:25:39.274723203.190.112.150 sshd[52479]: Failed password for root from 45.14.150.51 port 55302 ssh2 ...	2020-06-25 17:20:22
68.183.88.186	attackspambots	Jun 25 09:04:10 game-panel sshd[16093]: Failed password for root from 68.183.88.186 port 54816 ssh2 Jun 25 09:06:16 game-panel sshd[16216]: Failed password for root from 68.183.88.186 port 55824 ssh2	2020-06-25 17:15:08
218.92.0.253	attackbots	Jun 25 09:09:39 game-panel sshd[16473]: Failed password for root from 218.92.0.253 port 48938 ssh2 Jun 25 09:09:42 game-panel sshd[16473]: Failed password for root from 218.92.0.253 port 48938 ssh2 Jun 25 09:09:51 game-panel sshd[16473]: Failed password for root from 218.92.0.253 port 48938 ssh2 Jun 25 09:09:51 game-panel sshd[16473]: error: maximum authentication attempts exceeded for root from 218.92.0.253 port 48938 ssh2 [preauth]	2020-06-25 17:10:05
51.91.77.103	attackspambots	sshd: Failed password for invalid user .... from 51.91.77.103 port 48876 ssh2 (7 attempts)	2020-06-25 17:26:04
162.243.129.100	attack	firewall-block, port(s): 47808/tcp	2020-06-25 17:37:50
104.236.124.45	attackspambots	Jun 25 10:57:41 fhem-rasp sshd[25635]: Invalid user robot from 104.236.124.45 port 48992 ...	2020-06-25 17:13:42
94.102.51.95	attackbots	Port scan on 6 port(s): 17474 47708 55938 61511 61626 64812	2020-06-25 17:34:17
46.38.150.37	attackspambots	2020-06-25 08:52:19 auth_plain authenticator failed for (User) [46.38.150.37]: 535 Incorrect authentication data (set_id=adnet@csmailer.org) 2020-06-25 08:53:12 auth_plain authenticator failed for (User) [46.38.150.37]: 535 Incorrect authentication data (set_id=man@csmailer.org) 2020-06-25 08:54:05 auth_plain authenticator failed for (User) [46.38.150.37]: 535 Incorrect authentication data (set_id=dpt@csmailer.org) 2020-06-25 08:54:59 auth_plain authenticator failed for (User) [46.38.150.37]: 535 Incorrect authentication data (set_id=webcp@csmailer.org) 2020-06-25 08:55:51 auth_plain authenticator failed for (User) [46.38.150.37]: 535 Incorrect authentication data (set_id=obits@csmailer.org) ...	2020-06-25 17:12:07
93.146.237.163	attackspam	Invalid user fabian from 93.146.237.163 port 33526	2020-06-25 17:23:36
107.151.64.150	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2020-06-25 17:09:37
80.82.77.86	attack	80.82.77.86 was recorded 7 times by 5 hosts attempting to connect to the following ports: 32771,12111,10000,32768. Incident counter (4h, 24h, all-time): 7, 43, 12493	2020-06-25 17:24:59
222.186.180.147	attackbotsspam	Jun 25 11:05:41 abendstille sshd\[13431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Jun 25 11:05:43 abendstille sshd\[13431\]: Failed password for root from 222.186.180.147 port 7732 ssh2 Jun 25 11:05:47 abendstille sshd\[13431\]: Failed password for root from 222.186.180.147 port 7732 ssh2 Jun 25 11:05:52 abendstille sshd\[13431\]: Failed password for root from 222.186.180.147 port 7732 ssh2 Jun 25 11:05:56 abendstille sshd\[13431\]: Failed password for root from 222.186.180.147 port 7732 ssh2 ...	2020-06-25 17:23:04
154.208.143.15	attackbotsspam	SSH_attack	2020-06-25 17:40:36
129.204.19.9	attackbots	Jun 25 08:05:48 sigma sshd\[13048\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.19.9 user=rootJun 25 08:20:27 sigma sshd\[13666\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.19.9 user=root ...	2020-06-25 17:00:46
52.166.188.244	attackspam	sshd: Failed password for .... from 52.166.188.244 port 1280 ssh2	2020-06-25 17:17:59

Recently Reported IPs

113.145.105.22	42.112.165.235	41.42.14.134	31.223.57.87
24.155.42.88	5.13.34.133	220.133.30.36	218.146.232.130
213.238.246.156	202.84.35.183	185.155.19.43	180.247.22.7
179.0.192.22	178.128.184.54	178.34.182.186	176.104.103.60
175.137.186.214	174.4.13.231	140.95.119.53	121.121.107.249