106.45.1.216 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Ningxia Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 106.45.1.216 to port 8090	2020-01-01 21:35:28

Comments on same subnet:

IP	Type	Details	Datetime
106.45.172.230	attackbots	Invalid user server from 106.45.172.230 port 16352	2020-08-28 01:38:18
106.45.1.234	attackbotsspam	Web Server Scan. RayID: 594576a0de09d38e, UA: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729), Country: CN	2020-05-21 04:14:02
106.45.1.98	attackbotsspam	Scanning	2020-05-06 01:26:48
106.45.1.68	attackspambots	Unauthorized connection attempt detected from IP address 106.45.1.68 to port 8118 [J]	2020-03-02 18:44:45
106.45.1.241	attackspam	Unauthorized connection attempt detected from IP address 106.45.1.241 to port 80	2020-02-16 02:12:18
106.45.1.39	attack	The IP has triggered Cloudflare WAF. CF-Ray: 560547b4df36eae7 \| WAF_Rule_ID: a75424b44a1e4f27881d03344a122815 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-02-06 04:50:32
106.45.1.141	attackspam	Unauthorized connection attempt detected from IP address 106.45.1.141 to port 80 [J]	2020-02-05 09:41:40
106.45.1.5	attackspambots	Unauthorized connection attempt detected from IP address 106.45.1.5 to port 8080 [J]	2020-01-31 22:37:30
106.45.10.142	attack	Unauthorized connection attempt detected from IP address 106.45.10.142 to port 23 [T]	2020-01-30 08:46:48
106.45.1.20	attackspambots	Unauthorized connection attempt detected from IP address 106.45.1.20 to port 3979 [T]	2020-01-29 17:45:05
106.45.1.241	attackbots	Unauthorized connection attempt detected from IP address 106.45.1.241 to port 808 [J]	2020-01-27 15:16:25
106.45.1.219	attackbotsspam	Unauthorized connection attempt detected from IP address 106.45.1.219 to port 8080 [T]	2020-01-27 14:48:32
106.45.1.102	attack	Unauthorized connection attempt detected from IP address 106.45.1.102 to port 8118 [J]	2020-01-22 08:36:39
106.45.1.37	attackbotsspam	Unauthorized connection attempt detected from IP address 106.45.1.37 to port 8123 [J]	2020-01-22 08:12:04
106.45.1.181	attackspambots	Unauthorized connection attempt detected from IP address 106.45.1.181 to port 80 [J]	2020-01-19 16:05:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.45.1.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34934
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.45.1.216.			IN	A

;; AUTHORITY SECTION:
.			308	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123101 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 01 21:35:22 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 216.1.45.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 216.1.45.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.190.2	attack	Sep 20 18:50:59 piServer sshd[2599]: Failed password for root from 222.186.190.2 port 31602 ssh2 Sep 20 18:51:02 piServer sshd[2599]: Failed password for root from 222.186.190.2 port 31602 ssh2 Sep 20 18:51:07 piServer sshd[2599]: Failed password for root from 222.186.190.2 port 31602 ssh2 Sep 20 18:51:11 piServer sshd[2599]: Failed password for root from 222.186.190.2 port 31602 ssh2 ...	2020-09-21 00:51:45
85.26.235.238	attackbotsspam	Unauthorized connection attempt from IP address 85.26.235.238 on Port 445(SMB)	2020-09-21 00:47:35
103.209.81.218	attack	Unauthorized connection attempt from IP address 103.209.81.218 on Port 445(SMB)	2020-09-21 00:30:20
218.92.0.250	attack	Sep 20 16:37:04 IngegnereFirenze sshd[28041]: User root from 218.92.0.250 not allowed because not listed in AllowUsers ...	2020-09-21 00:39:22
114.45.49.74	attackbots	TCP (SYN) 114.45.49.74:6384 -> port 23, len 44	2020-09-21 00:48:59
167.248.133.30	attackbotsspam	" "	2020-09-21 00:44:20
78.177.80.204	attackbots	SMB Server BruteForce Attack	2020-09-21 00:54:27
139.198.18.231	attack	Sep 20 18:28:30 pve1 sshd[21721]: Failed password for root from 139.198.18.231 port 56634 ssh2 ...	2020-09-21 00:50:02
79.120.54.174	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-20T14:25:41Z and 2020-09-20T14:33:29Z	2020-09-21 00:38:48
51.79.86.177	attackspambots	$f2bV_matches	2020-09-21 00:20:58
151.80.34.123	attackbots	Sep 20 18:39:56 s2 sshd[11228]: Failed password for root from 151.80.34.123 port 35334 ssh2 Sep 20 18:40:02 s2 sshd[11230]: Failed password for root from 151.80.34.123 port 57388 ssh2	2020-09-21 00:47:08
3.7.243.166	attack	3.7.243.166 - - [20/Sep/2020:17:53:54 +0200] "GET /wp-login.php HTTP/1.1" 200 1984 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.7.243.166 - - [20/Sep/2020:17:53:55 +0200] "POST /wp-login.php HTTP/1.1" 200 2104 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.7.243.166 - - [20/Sep/2020:17:53:55 +0200] "GET /wp-login.php HTTP/1.1" 200 1984 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.7.243.166 - - [20/Sep/2020:17:53:56 +0200] "POST /wp-login.php HTTP/1.1" 200 2090 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.7.243.166 - - [20/Sep/2020:17:53:56 +0200] "GET /wp-login.php HTTP/1.1" 200 1984 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.7.243.166 - - [20/Sep/2020:17:53:57 +0200] "POST /wp-login.php HTTP/1.1" 200 2091 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-21 00:43:20
89.187.178.18	attack	0,56-02/01 [bc02/m76] PostRequest-Spammer scoring: Durban01	2020-09-21 00:54:04
113.253.81.179	attack	Sep 20 02:06:33 ssh2 sshd[42944]: User root from 113.253.81.179 not allowed because not listed in AllowUsers Sep 20 02:06:33 ssh2 sshd[42944]: Failed password for invalid user root from 113.253.81.179 port 57018 ssh2 Sep 20 02:06:34 ssh2 sshd[42944]: Connection closed by invalid user root 113.253.81.179 port 57018 [preauth] ...	2020-09-21 00:36:18
114.35.119.25	attackspam	Auto Detect Rule! proto TCP (SYN), 114.35.119.25:28299->gjan.info:23, len 40	2020-09-21 00:20:36

Recently Reported IPs

112.135.63.98	150.0.205.76	112.229.162.102	40.153.104.157
184.238.175.149	47.104.210.65	16.103.251.160	83.143.144.249
47.101.201.241	115.18.32.167	46.167.91.105	137.44.111.205
148.60.64.224	58.224.114.230	42.116.140.110	171.132.186.202
106.98.121.90	3.202.111.194	176.140.30.228	85.125.225.131