112.66.106.180

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.66.106.218	attack	Unauthorized connection attempt detected from IP address 112.66.106.218 to port 8080	2019-12-31 06:31:00
112.66.106.87	attack	The IP has triggered Cloudflare WAF. CF-Ray: 540f2ea2d96a9965 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:18:11

Type

Details

Datetime

112.66.106.218

attack

Unauthorized connection attempt detected from IP address 112.66.106.218 to port 8080

2019-12-31 06:31:00

112.66.106.87

attack

The IP has triggered Cloudflare WAF. CF-Ray: 540f2ea2d96a9965 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:18:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.106.180
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50964
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.66.106.180.			IN	A

;; AUTHORITY SECTION:
.			240	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 11:04:24 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 180.106.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 180.106.66.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.119.27.55	attackbots	[portscan] Port scan	2019-10-21 16:01:26
182.61.136.53	attack	ssh brute force	2019-10-21 16:13:03
52.130.67.235	attackbotsspam	2019-10-21T04:20:42.096938abusebot-8.cloudsearch.cf sshd\[15849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.130.67.235 user=root	2019-10-21 16:11:41
159.203.201.59	attackspam	10/21/2019-07:14:11.568106 159.203.201.59 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-21 16:05:37
151.80.60.151	attack	Oct 21 08:01:54 SilenceServices sshd[31473]: Failed password for root from 151.80.60.151 port 46926 ssh2 Oct 21 08:06:06 SilenceServices sshd[32606]: Failed password for root from 151.80.60.151 port 58596 ssh2	2019-10-21 16:13:32
92.42.109.150	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-10-21 16:23:49
185.73.113.89	attackbotsspam	rain	2019-10-21 16:10:56
112.161.203.170	attack	Oct 21 09:35:38 MK-Soft-VM4 sshd[9950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.161.203.170 Oct 21 09:35:39 MK-Soft-VM4 sshd[9950]: Failed password for invalid user teamspeak from 112.161.203.170 port 45758 ssh2 ...	2019-10-21 15:54:47
200.146.232.97	attack	Oct 21 07:05:23 www sshd\[62721\]: Invalid user sys_admin from 200.146.232.97Oct 21 07:05:25 www sshd\[62721\]: Failed password for invalid user sys_admin from 200.146.232.97 port 44145 ssh2Oct 21 07:10:43 www sshd\[62817\]: Invalid user Abc123 from 200.146.232.97Oct 21 07:10:45 www sshd\[62817\]: Failed password for invalid user Abc123 from 200.146.232.97 port 33891 ssh2 ...	2019-10-21 15:59:14
129.213.63.120	attack	Invalid user project from 129.213.63.120 port 50062	2019-10-21 16:25:02
176.107.131.128	attack	Invalid user 0 from 176.107.131.128 port 43284 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.107.131.128 Failed password for invalid user 0 from 176.107.131.128 port 43284 ssh2 Invalid user world from 176.107.131.128 port 47614 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.107.131.128	2019-10-21 16:21:01
49.37.197.205	attack	Unauthorised access (Oct 21) SRC=49.37.197.205 LEN=52 TTL=111 ID=22940 DF TCP DPT=445 WINDOW=8192 SYN	2019-10-21 16:06:02
123.206.219.211	attack	Oct 20 23:49:59 Tower sshd[9819]: Connection from 123.206.219.211 port 36851 on 192.168.10.220 port 22 Oct 20 23:50:01 Tower sshd[9819]: Invalid user developer from 123.206.219.211 port 36851 Oct 20 23:50:01 Tower sshd[9819]: error: Could not get shadow information for NOUSER Oct 20 23:50:01 Tower sshd[9819]: Failed password for invalid user developer from 123.206.219.211 port 36851 ssh2 Oct 20 23:50:01 Tower sshd[9819]: Received disconnect from 123.206.219.211 port 36851:11: Bye Bye [preauth] Oct 20 23:50:01 Tower sshd[9819]: Disconnected from invalid user developer 123.206.219.211 port 36851 [preauth]	2019-10-21 15:50:15
138.68.53.163	attackbots	5x Failed Password	2019-10-21 16:18:16
138.197.189.138	attackspam	2019-10-21T03:49:50.640747abusebot-5.cloudsearch.cf sshd\[30781\]: Invalid user Yfnfif from 138.197.189.138 port 35480	2019-10-21 16:02:08

Recently Reported IPs

112.66.106.11	112.66.105.36	112.66.106.224	112.66.106.192
112.66.105.89	112.66.106.6	112.66.106.201	112.66.105.210
112.66.107.117	112.66.107.200	112.66.107.217	112.66.107.164
112.66.107.91	112.66.108.176	112.66.108.191	112.66.108.131
112.66.108.207	112.66.108.235	112.66.108.186	112.66.108.58