106.54.40.11 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Tencent Cloud Computing (Beijing) Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SSH Brute Force	2020-04-29 12:43:34
attackspambots	$f2bV_matches	2020-04-11 04:23:55
attack	SSH Brute-Force reported by Fail2Ban	2020-04-09 08:44:24
attackbots	Apr 5 23:19:34 ns382633 sshd\[13752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root Apr 5 23:19:36 ns382633 sshd\[13752\]: Failed password for root from 106.54.40.11 port 57718 ssh2 Apr 5 23:31:36 ns382633 sshd\[16587\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root Apr 5 23:31:39 ns382633 sshd\[16587\]: Failed password for root from 106.54.40.11 port 39070 ssh2 Apr 5 23:36:31 ns382633 sshd\[17685\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root	2020-04-06 08:36:20
attackbots	2020-04-01 UTC: (2x) - nproc,root	2020-04-02 19:07:07
attack	Mar 30 00:28:17 eventyay sshd[29577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Mar 30 00:28:19 eventyay sshd[29577]: Failed password for invalid user ppk from 106.54.40.11 port 33014 ssh2 Mar 30 00:31:50 eventyay sshd[29648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 ...	2020-03-30 07:04:14
attack	Mar 28 07:41:45 pi sshd[28102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Mar 28 07:41:47 pi sshd[28102]: Failed password for invalid user bl from 106.54.40.11 port 45872 ssh2	2020-03-28 15:57:07
attack	Mar 13 08:30:27 ncomp sshd[10651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root Mar 13 08:30:29 ncomp sshd[10651]: Failed password for root from 106.54.40.11 port 50534 ssh2 Mar 13 08:38:27 ncomp sshd[10894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root Mar 13 08:38:28 ncomp sshd[10894]: Failed password for root from 106.54.40.11 port 35496 ssh2	2020-03-13 15:02:46
attackbotsspam	2020-02-06T12:12:48.872295 sshd[3058]: Invalid user qol from 106.54.40.11 port 47038 2020-02-06T12:12:51.099187 sshd[3058]: Failed password for invalid user qol from 106.54.40.11 port 47038 ssh2 2020-02-06T12:26:30.979781 sshd[3426]: Invalid user ayi from 106.54.40.11 port 36720 2020-02-06T12:26:30.993511 sshd[3426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 2020-02-06T12:26:30.979781 sshd[3426]: Invalid user ayi from 106.54.40.11 port 36720 2020-02-06T12:26:33.051768 sshd[3426]: Failed password for invalid user ayi from 106.54.40.11 port 36720 ssh2 ...	2020-02-07 02:36:24
attackspam	SSH Brute Force	2020-02-06 19:05:00
attackbots	...	2020-01-12 08:29:06
attackbots	Jan 10 12:58:42 firewall sshd[15024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Jan 10 12:58:42 firewall sshd[15024]: Invalid user guido from 106.54.40.11 Jan 10 12:58:43 firewall sshd[15024]: Failed password for invalid user guido from 106.54.40.11 port 44358 ssh2 ...	2020-01-11 00:14:59
attackspam	SSH brutforce	2020-01-02 14:53:29
attackspam	Dec 17 23:25:18 lnxmysql61 sshd[2811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Dec 17 23:25:20 lnxmysql61 sshd[2811]: Failed password for invalid user admin from 106.54.40.11 port 50368 ssh2 Dec 17 23:30:35 lnxmysql61 sshd[3384]: Failed password for backup from 106.54.40.11 port 48498 ssh2	2019-12-18 06:47:44
attackbots	Dec 16 18:56:17 server sshd\[867\]: Invalid user yttervoll from 106.54.40.11 Dec 16 18:56:17 server sshd\[867\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Dec 16 18:56:19 server sshd\[867\]: Failed password for invalid user yttervoll from 106.54.40.11 port 41728 ssh2 Dec 16 19:11:07 server sshd\[5479\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root Dec 16 19:11:10 server sshd\[5479\]: Failed password for root from 106.54.40.11 port 57560 ssh2 ...	2019-12-17 04:27:20
attackspam	Dec 8 18:13:00 mail sshd[26873]: Failed password for root from 106.54.40.11 port 48646 ssh2 Dec 8 18:18:43 mail sshd[28240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Dec 8 18:18:45 mail sshd[28240]: Failed password for invalid user test from 106.54.40.11 port 44572 ssh2	2019-12-10 08:56:26
attack	Dec 7 05:53:44 zeus sshd[15441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Dec 7 05:53:45 zeus sshd[15441]: Failed password for invalid user kalbfell from 106.54.40.11 port 45138 ssh2 Dec 7 06:00:55 zeus sshd[15626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Dec 7 06:00:56 zeus sshd[15626]: Failed password for invalid user wilken from 106.54.40.11 port 50668 ssh2	2019-12-07 14:12:20
attackbots	Brute-force attempt banned	2019-12-01 20:22:59
attackspam	Nov 26 11:20:36 server sshd\[20559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root Nov 26 11:20:38 server sshd\[20559\]: Failed password for root from 106.54.40.11 port 59138 ssh2 Nov 26 11:44:24 server sshd\[25913\]: Invalid user backup from 106.54.40.11 Nov 26 11:44:24 server sshd\[25913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Nov 26 11:44:26 server sshd\[25913\]: Failed password for invalid user backup from 106.54.40.11 port 46734 ssh2 ...	2019-11-26 20:14:34
attack	Nov 22 18:37:33 lnxweb62 sshd[2791]: Failed password for root from 106.54.40.11 port 44602 ssh2 Nov 22 18:37:33 lnxweb62 sshd[2791]: Failed password for root from 106.54.40.11 port 44602 ssh2	2019-11-23 01:57:13
attackbots	2019-11-15T18:07:32.912415struts4.enskede.local sshd\[19904\]: Invalid user iti from 106.54.40.11 port 53670 2019-11-15T18:07:32.926941struts4.enskede.local sshd\[19904\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 2019-11-15T18:07:35.838805struts4.enskede.local sshd\[19904\]: Failed password for invalid user iti from 106.54.40.11 port 53670 ssh2 2019-11-15T18:12:18.371728struts4.enskede.local sshd\[19906\]: Invalid user demicro from 106.54.40.11 port 33426 2019-11-15T18:12:18.379493struts4.enskede.local sshd\[19906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 ...	2019-11-16 01:38:33
attackbots	3x Failed Password	2019-11-13 23:03:23
attack	Nov 2 05:09:02 ip-172-31-1-72 sshd\[22906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root Nov 2 05:09:03 ip-172-31-1-72 sshd\[22906\]: Failed password for root from 106.54.40.11 port 56546 ssh2 Nov 2 05:12:51 ip-172-31-1-72 sshd\[23089\]: Invalid user user from 106.54.40.11 Nov 2 05:12:51 ip-172-31-1-72 sshd\[23089\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Nov 2 05:12:52 ip-172-31-1-72 sshd\[23089\]: Failed password for invalid user user from 106.54.40.11 port 59464 ssh2	2019-11-02 13:58:51
attack	Oct 31 16:39:45 localhost sshd[25512]: Failed password for invalid user frappe from 106.54.40.11 port 53936 ssh2 Oct 31 16:43:44 localhost sshd[25669]: Invalid user test2 from 106.54.40.11 port 55426 Oct 31 16:43:44 localhost sshd[25669]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Oct 31 16:43:44 localhost sshd[25669]: Invalid user test2 from 106.54.40.11 port 55426 Oct 31 16:43:46 localhost sshd[25669]: Failed password for invalid user test2 from 106.54.40.11 port 55426 ssh2	2019-11-01 02:37:11
attackspambots	2019-10-27T13:20:20.098659abusebot-4.cloudsearch.cf sshd\[16665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 user=root	2019-10-27 21:43:02
attack	Oct 27 09:45:05 jane sshd[21152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.11 Oct 27 09:45:07 jane sshd[21152]: Failed password for invalid user ty from 106.54.40.11 port 36992 ssh2 ...	2019-10-27 17:51:35

Comments on same subnet:

IP	Type	Details	Datetime
106.54.40.151	attack	20 attempts against mh-ssh on cloud	2020-09-23 02:17:04
106.54.40.151	attack	$f2bV_matches	2020-09-22 18:20:01
106.54.40.151	attackbots	Sep 1 14:26:19 buvik sshd[14150]: Failed password for invalid user postgres from 106.54.40.151 port 58034 ssh2 Sep 1 14:31:30 buvik sshd[14883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.151 user=root Sep 1 14:31:31 buvik sshd[14883]: Failed password for root from 106.54.40.151 port 57005 ssh2 ...	2020-09-02 00:23:57
106.54.40.151	attackbots	Aug 31 17:00:08 jane sshd[6413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.151 Aug 31 17:00:10 jane sshd[6413]: Failed password for invalid user centos from 106.54.40.151 port 59931 ssh2 ...	2020-09-01 03:38:17
106.54.40.151	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-31 02:56:16
106.54.40.151	attackbots	Aug 17 17:25:59 ny01 sshd[27836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.151 Aug 17 17:26:01 ny01 sshd[27836]: Failed password for invalid user kyh from 106.54.40.151 port 34399 ssh2 Aug 17 17:31:19 ny01 sshd[28650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.151	2020-08-18 05:33:49
106.54.40.151	attackspambots	Aug 9 14:07:15 cosmoit sshd[20499]: Failed password for root from 106.54.40.151 port 52510 ssh2	2020-08-10 02:33:15
106.54.40.151	attackspambots	sshd: Failed password for .... from 106.54.40.151 port 54468 ssh2 (8 attempts)	2020-08-06 20:59:17
106.54.40.226	attack	Jul 27 04:52:53 mockhub sshd[14393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.226 Jul 27 04:52:55 mockhub sshd[14393]: Failed password for invalid user radha from 106.54.40.226 port 38580 ssh2 ...	2020-07-27 23:56:52
106.54.40.226	attackspambots	Jul 26 20:59:29 scw-tender-jepsen sshd[24323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.226 Jul 26 20:59:31 scw-tender-jepsen sshd[24323]: Failed password for invalid user bp from 106.54.40.226 port 59492 ssh2	2020-07-27 07:37:28
106.54.40.151	attackspambots	Jul 15 18:08:08 vm0 sshd[25823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.151 Jul 15 18:08:10 vm0 sshd[25823]: Failed password for invalid user bc from 106.54.40.151 port 54447 ssh2 ...	2020-07-16 02:11:53
106.54.40.151	attack	Jun 25 10:38:21 firewall sshd[15860]: Failed password for invalid user luan from 106.54.40.151 port 34976 ssh2 Jun 25 10:41:43 firewall sshd[15959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.151 user=root Jun 25 10:41:45 firewall sshd[15959]: Failed password for root from 106.54.40.151 port 53137 ssh2 ...	2020-06-25 21:48:58
106.54.40.151	attackspambots	SSH Brute-Forcing (server2)	2020-06-12 23:42:06
106.54.40.151	attackspam	Jun 7 06:58:00 legacy sshd[24243]: Failed password for root from 106.54.40.151 port 55806 ssh2 Jun 7 07:01:56 legacy sshd[24335]: Failed password for root from 106.54.40.151 port 48033 ssh2 ...	2020-06-07 13:19:58
106.54.40.151	attackbotsspam	Jun 4 21:20:49 pixelmemory sshd[818458]: Failed password for root from 106.54.40.151 port 36985 ssh2 Jun 4 21:25:19 pixelmemory sshd[851357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.151 user=root Jun 4 21:25:21 pixelmemory sshd[851357]: Failed password for root from 106.54.40.151 port 60951 ssh2 Jun 4 21:29:38 pixelmemory sshd[855381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.40.151 user=root Jun 4 21:29:41 pixelmemory sshd[855381]: Failed password for root from 106.54.40.151 port 56675 ssh2 ...	2020-06-05 14:08:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.54.40.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13520
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.54.40.11.			IN	A

;; AUTHORITY SECTION:
.			554	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102501 1800 900 604800 86400

;; Query time: 123 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Oct 26 02:01:00 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 11.40.54.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 11.40.54.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.43.16.244	attack	May 10 07:25:43 plex sshd[711]: Invalid user rohit from 124.43.16.244 port 54080	2020-05-10 16:14:27
223.247.141.162	attackspambots	May 10 07:36:33 legacy sshd[7335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.141.162 May 10 07:36:35 legacy sshd[7335]: Failed password for invalid user postgres from 223.247.141.162 port 58776 ssh2 May 10 07:40:23 legacy sshd[7452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.141.162 ...	2020-05-10 16:12:39
218.92.0.172	attackbotsspam	[ssh] SSH attack	2020-05-10 16:13:07
36.37.115.106	attackspambots	srv02 Mass scanning activity detected Target: 25165 ..	2020-05-10 16:06:30
167.172.145.142	attackbotsspam	May 10 09:35:52 localhost sshd\[7136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.145.142 user=root May 10 09:35:54 localhost sshd\[7136\]: Failed password for root from 167.172.145.142 port 43282 ssh2 May 10 09:39:54 localhost sshd\[7279\]: Invalid user zhang from 167.172.145.142 May 10 09:39:54 localhost sshd\[7279\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.145.142 May 10 09:39:56 localhost sshd\[7279\]: Failed password for invalid user zhang from 167.172.145.142 port 54564 ssh2 ...	2020-05-10 15:59:57
116.52.164.10	attack	May 10 07:27:35 xeon sshd[22005]: Failed password for invalid user uh from 116.52.164.10 port 44009 ssh2	2020-05-10 16:04:58
192.175.111.228	attackspambots	Scanning	2020-05-10 16:17:21
106.124.130.114	attackspam	May 10 13:50:42 pihole sshd[21449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.124.130.114 ...	2020-05-10 16:42:21
14.29.214.233	attackbots	May 10 00:15:55 ny01 sshd[7403]: Failed password for root from 14.29.214.233 port 41707 ssh2 May 10 00:17:44 ny01 sshd[7614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.214.233 May 10 00:17:46 ny01 sshd[7614]: Failed password for invalid user v from 14.29.214.233 port 51230 ssh2	2020-05-10 16:00:58
194.204.194.11	attackbots	(sshd) Failed SSH login from 194.204.194.11 (MA/Morocco/ll194-2-11-194-204-194.ll194-2.iam.net.ma): 5 in the last 3600 secs	2020-05-10 16:13:36
103.130.214.207	attack	May 10 08:23:44 game-panel sshd[13450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.130.214.207 May 10 08:23:46 game-panel sshd[13450]: Failed password for invalid user fe from 103.130.214.207 port 32774 ssh2 May 10 08:25:03 game-panel sshd[13500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.130.214.207	2020-05-10 16:40:08
202.102.79.232	attackbots	May 10 06:23:53 ns381471 sshd[31124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.102.79.232 May 10 06:23:55 ns381471 sshd[31124]: Failed password for invalid user celery from 202.102.79.232 port 9695 ssh2	2020-05-10 16:28:28
51.83.141.61	attackspam	Automatic report - XMLRPC Attack	2020-05-10 16:40:34
200.146.215.26	attack	(sshd) Failed SSH login from 200.146.215.26 (BR/Brazil/200-146-215-026.static.ctbctelecom.com.br): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 10 05:51:37 ubnt-55d23 sshd[31374]: Invalid user phq from 200.146.215.26 port 14416 May 10 05:51:39 ubnt-55d23 sshd[31374]: Failed password for invalid user phq from 200.146.215.26 port 14416 ssh2	2020-05-10 16:02:33
82.62.153.15	attackspam	SSH brute-force attempt	2020-05-10 16:21:53

Recently Reported IPs

103.215.58.66	69.25.214.137	142.192.1.234	6.44.78.210
208.253.189.206	38.148.51.223	110.214.159.5	74.158.130.8
177.75.78.238	10.172.255.223	197.65.223.110	89.73.253.109
172.37.104.130	34.148.225.45	171.77.180.244	182.176.109.48
159.207.176.115	209.239.42.227	37.44.139.201	238.143.241.96