106.11.1.141 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
106.11.172.9	spam	Spammer Website	2023-09-18 06:13:20
106.11.153.49	attackspam	Automated report (2020-08-12T20:43:55+08:00). Misbehaving bot detected at this address.	2020-08-12 20:59:54
106.11.152.38	attackbotsspam	Automated report (2020-07-23T11:59:07+08:00). Misbehaving bot detected at this address.	2020-07-23 12:31:59
106.11.167.110	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54346f238ce1eb25 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0(Linux;Android4.1.1;Nexus7Build/JRO03D) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 07:15:28
106.11.157.121	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 543446d0e963791c \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 04:04:30
106.11.159.109	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5436d4ba9e4fe819 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:11:43
106.11.152.105	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54106dd64d2dd33e \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:19:27
106.11.153.82	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5415fa0819e7ebb5 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:18:56
106.11.155.72	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5415a3d57e8b76fe \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:07:32
106.11.159.82	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 5415d7cce96f990b \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:07:14
106.11.158.90	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413e8898fa576b6 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:43:40
106.11.153.56	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541378a7fa1b98f3 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:17:55
106.11.154.46	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541183fbad48eb85 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:17:36
106.11.159.142	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410032158f8e7c9 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: YisouSpider \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:58:39
106.11.154.33	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 540fd4e34f64eab7 \| WAF_Rule_ID: f6705d4933894b0583ba1042603083f6 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/2 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 YisouSpider/5.0 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:38:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.11.1.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11391
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.11.1.141.			IN	A

;; AUTHORITY SECTION:
.			513	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011002 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 17:45:16 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 141.1.11.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 141.1.11.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.211.137.127	attack	Invalid user arron from 80.211.137.127 port 46732	2019-11-16 07:50:22
206.189.44.141	attackbotsspam	Nov 11 13:23:48 itv-usvr-01 sshd[12054]: Invalid user nocchi from 206.189.44.141 Nov 11 13:23:48 itv-usvr-01 sshd[12054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.44.141 Nov 11 13:23:48 itv-usvr-01 sshd[12054]: Invalid user nocchi from 206.189.44.141 Nov 11 13:23:51 itv-usvr-01 sshd[12054]: Failed password for invalid user nocchi from 206.189.44.141 port 55756 ssh2 Nov 11 13:27:40 itv-usvr-01 sshd[12219]: Invalid user conklin from 206.189.44.141	2019-11-16 07:36:49
159.89.234.82	attackspam	159.89.234.82 was recorded 5 times by 5 hosts attempting to connect to the following ports: 8545. Incident counter (4h, 24h, all-time): 5, 15, 365	2019-11-16 07:39:30
195.88.66.108	attackbotsspam	Nov 16 01:04:04 vps647732 sshd[21411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.88.66.108 Nov 16 01:04:07 vps647732 sshd[21411]: Failed password for invalid user scann from 195.88.66.108 port 40767 ssh2 ...	2019-11-16 08:06:32
173.218.195.227	attackspambots	2019-11-15T23:31:20.558275abusebot-5.cloudsearch.cf sshd\[22285\]: Invalid user sasaf from 173.218.195.227 port 37912	2019-11-16 07:49:50
176.107.131.128	attackbotsspam	F2B jail: sshd. Time: 2019-11-16 00:35:22, Reported by: VKReport	2019-11-16 07:48:03
159.192.144.203	attackbotsspam	Nov 16 00:29:00 legacy sshd[15278]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.203 Nov 16 00:29:02 legacy sshd[15278]: Failed password for invalid user creane from 159.192.144.203 port 35536 ssh2 Nov 16 00:33:15 legacy sshd[15432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.203 ...	2019-11-16 07:42:16
37.187.181.182	attackspam	Nov 15 23:56:12 SilenceServices sshd[19120]: Failed password for root from 37.187.181.182 port 34508 ssh2 Nov 15 23:59:34 SilenceServices sshd[22618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.181.182 Nov 15 23:59:36 SilenceServices sshd[22618]: Failed password for invalid user server from 37.187.181.182 port 43140 ssh2	2019-11-16 07:38:21
159.65.178.4	attackspam	Nov 16 00:22:25 dedicated sshd[26677]: Invalid user brilee from 159.65.178.4 port 59608	2019-11-16 07:35:32
201.22.59.94	attack	Nov 9 13:39:09 itv-usvr-01 sshd[20441]: Invalid user ddd from 201.22.59.94 Nov 9 13:39:09 itv-usvr-01 sshd[20441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.22.59.94 Nov 9 13:39:09 itv-usvr-01 sshd[20441]: Invalid user ddd from 201.22.59.94 Nov 9 13:39:12 itv-usvr-01 sshd[20441]: Failed password for invalid user ddd from 201.22.59.94 port 33560 ssh2 Nov 9 13:45:07 itv-usvr-01 sshd[20649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.22.59.94 user=root Nov 9 13:45:10 itv-usvr-01 sshd[20649]: Failed password for root from 201.22.59.94 port 54354 ssh2	2019-11-16 07:57:03
81.22.45.115	attackbots	Nov 16 00:20:32 h2177944 kernel: \[6735519.876694\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.115 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=37917 PROTO=TCP SPT=40293 DPT=1055 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 16 00:22:59 h2177944 kernel: \[6735666.327282\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.115 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=5139 PROTO=TCP SPT=40293 DPT=944 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 16 00:23:33 h2177944 kernel: \[6735700.313829\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.115 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=14282 PROTO=TCP SPT=40293 DPT=1896 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 16 00:24:36 h2177944 kernel: \[6735763.449720\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.115 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=58129 PROTO=TCP SPT=40293 DPT=1456 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 16 00:25:57 h2177944 kernel: \[6735844.918841\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.115 DST=85.214.117.9 LEN=40	2019-11-16 08:08:40
195.29.105.125	attack	2019-11-15T03:26:15.0300961495-001 sshd\[838\]: Invalid user godfree from 195.29.105.125 port 43722 2019-11-15T03:26:15.0371071495-001 sshd\[838\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.29.105.125 2019-11-15T03:26:16.8562771495-001 sshd\[838\]: Failed password for invalid user godfree from 195.29.105.125 port 43722 ssh2 2019-11-15T15:20:03.7300271495-001 sshd\[26821\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.29.105.125 user=sshd 2019-11-15T15:20:05.0881431495-001 sshd\[26821\]: Failed password for sshd from 195.29.105.125 port 59344 ssh2 2019-11-15T18:18:40.1181271495-001 sshd\[33124\]: Invalid user vcsa from 195.29.105.125 port 59042 2019-11-15T18:18:40.1254881495-001 sshd\[33124\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.29.105.125 ...	2019-11-16 08:08:10
200.16.132.202	attackbots	Brute-force attempt banned	2019-11-16 08:00:20
104.236.142.200	attackbotsspam	Automatic report - Banned IP Access	2019-11-16 08:11:03
180.183.155.46	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/180.183.155.46/ TH - 1H : (32) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TH NAME ASN : ASN45758 IP : 180.183.155.46 CIDR : 180.183.0.0/16 PREFIX COUNT : 64 UNIQUE IP COUNT : 1069568 ATTACKS DETECTED ASN45758 : 1H - 1 3H - 1 6H - 3 12H - 7 24H - 13 DateTime : 2019-11-15 23:59:16 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-16 07:58:00

Recently Reported IPs

7.47.181.132	87.169.76.184	250.61.81.220	253.187.27.212
25.163.58.131	120.184.231.71	6.57.211.231	50.144.67.172
81.23.34.19	61.102.37.81	239.155.71.66	176.225.24.53
242.50.141.96	112.72.134.164	20.149.0.182	43.199.54.80
229.76.109.28	200.162.174.165	186.3.217.70	184.124.203.1