106.54.201.240 Threat Intelligence and Host Information

Share on:
May 10, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 37/100

Host and Network Information

  • Mitre ATT&CK IDs: T1110 - Brute Force
  • Tags: Bruteforce, Nextray, SSH, brute force, bruteforce, cowrie, cyber security, fail2ban, ioc, malicious, phishing, ssh, tsec
  • View other sources: Spamhaus VirusTotal

  • Contained within other IP sets: haley_ssh

  • Country: China
  • Network: AS45090 shenzhen tencent computer systems company limited
  • Noticed: 50 times
  • Protcols Attacked: SSH
  • Countries Attacked: Australia, Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: dongyang-sz.com augurit.com www.augurit.com suma99.com www.suma99.com haineizaixian.com xuchangfeng.com agrichun.com enmindmedical.com www.spsnhl.cn healthguard-biomed.com www.healthguard-biomed.com dgzphj.com.luv407.faipod.com m.juntaigrease.cn www.juntaigrease.cn juntaigrease.cn zrhjkjy.com feirentc.com www.zt701.com guangzhouyongke.com www.jpsny.com jpsny.com www.xiangcaoriji.com yeguitars.com hzcyzs88.com qinfeng-model.com zgsywhdd.com hubeizhiqi.com www.hrtyy.cn hrtyy.cn.luv207.faipod.com whkleader.cn.luv207.faipod.com m.whkleader.cn www.smartlabel.com.cn www.whkleader.cn whkleader.cn syjazz.com.luv207.faipod.com anxindisplay.com beiyanzpw.com gyts123.com caiyundong.com muyuanyj.com www.lohaslearn.com shyxzs.com www.shyxzs.com m.shyxzs.com www.czyjyd.com www.hemprino.com m.hlyjm.com www.hlyjm.com hlyjm.com znuoyun.com tubibaobei.com ukingstar.com.luv207.faipod.com www.pqlsh.com www.newezoom.com www.kuaiquzhineng.com b2scommercial.com eliteup.cn yddbf.com hemucenter.com tpw56.com spsnhl.cn kunpengzhichuang.com gxbr668.com ddhongren.net share-shell.com scysmz.com yjydesigner.com www.yjydesigner.com ypcktech.com sourcecolor.com zibolaixi.com 0834kl120.com xryqimo.com yizhengip.com gdsendao.com weihemedia.com jiajuhui8.com xlxxlx.com ncxueli.com dsjmbj.com pqlsh.com kuaiquzhineng.com cs-gx.com fulvene.com lintengbc.com yichengdianqi.com yooybang.com qlgpm.com setmgc.com htttielu.com zgbsjz.com 51ctlg.com suxishengtai.com militta.net.cn militta.net.cn.luv407.faipod.com dekepeixun.com jingdun2016.com hztxkyzc.com rlxhtech.com cpazbj.com sxxyjs.com.cn www.sxxyjs.com.cn jiuhangwuliu.com shist.net www.sanlingdj.com sanlingdj.com kcjyjk.com hengwanfeng.cn www.hengwanfeng.cn xueguanjiamta.com.luv7.faipod.com htss888.com.luv207.faipod.com zhongshanshixindisplayproductscoltd.com.luv7.faipod.com setmgc.com.luv407.faipod.com zt701.com.luv407.faipod.com kns-hb.com.luv7.faipod.com sxxyjs.com.cn.luv407.faipod.com qz199.com.luv407.faipod.com hengwanfeng.cn.luv7.faipod.com czyjyd.com.luv207.faipod.com sz-maronde.com.luv207.faipod.com czyjyd.com hemprino.com.luv407.faipod.com spsnhl.cn.luv207.faipod.com eliteup.cn.luv7.faipod.com ddclick.cn.luv207.faipod.com b2scommercial.com.luv407.faipod.com kuaiquzhineng.com.luv407.faipod.com yjydesigner.com.luv407.faipod.com pay-fz.com.luv407.faipod.com automedic.cn.luv407.faipod.com hlyjm.com.luv207.faipod.com bjliwanjia.com.luv7.faipod.com 0834kl120.com.luv207.faipod.com meonetech.com.luv207.faipod.com rlxhtech.com.luv7.faipod.com beijingbaojiewang.com.luv7.faipod.com

Map

Whois Information

  • inetnum: 106.75.0.0 - 106.75.255.255
  • netname: UCLOUD-NET
  • descr: Shanghai UCloud Information Technology Company Limited
  • country: CN
  • admin-c: JJ2197-AP
  • tech-c: JJ2197-AP
  • abuse-c: AC1601-AP
  • status: ALLOCATED PORTABLE
  • mnt-by: MAINT-CNNIC-AP
  • mnt-lower: MAINT-CNNIC-AP
  • mnt-routes: MAINT-CNNIC-AP
  • mnt-irt: IRT-CNNIC-CN
  • last-modified: 2021-06-16T01:31:08Z
  • irt: IRT-CNNIC-CN
  • address: Beijing, China
  • e-mail: [email protected]
  • abuse-mailbox: [email protected]
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • mnt-by: MAINT-CNNIC-AP
  • last-modified: 2021-06-16T01:39:57Z
  • role: ABUSE CNNICCN
  • address: Beijing, China
  • country: ZZ
  • phone: +000000000
  • e-mail: [email protected]
  • admin-c: IP50-AP
  • tech-c: IP50-AP
  • nic-hdl: AC1601-AP
  • abuse-mailbox: [email protected]
  • mnt-by: APNIC-ABUSE
  • last-modified: 2020-05-14T11:19:01Z
  • person: Jinhui Jia
  • e-mail: [email protected]
  • address: 510,SOHO B,Zhongguancun,Haidian, Beijing
  • phone: +86-13811069300
  • country: CN
  • mnt-by: MAINT-CNNIC-AP
  • nic-hdl: JJ2197-AP
  • last-modified: 2022-03-23T06:19:21Z

Links to attack logs

bruteforce-ip-list-2020-11-09 bruteforce-ip-list-2020-11-29