112.66.106.23 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.66.106.218	attack	Unauthorized connection attempt detected from IP address 112.66.106.218 to port 8080	2019-12-31 06:31:00
112.66.106.87	attack	The IP has triggered Cloudflare WAF. CF-Ray: 540f2ea2d96a9965 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:18:11

Type

Details

Datetime

112.66.106.218

attack

Unauthorized connection attempt detected from IP address 112.66.106.218 to port 8080

2019-12-31 06:31:00

112.66.106.87

attack

The IP has triggered Cloudflare WAF. CF-Ray: 540f2ea2d96a9965 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:18:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.106.23
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38047
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.66.106.23.			IN	A

;; AUTHORITY SECTION:
.			105	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 11:59:36 CST 2022
;; MSG SIZE  rcvd: 106

Host info

b'Host 23.106.66.112.in-addr.arpa. not found: 3(NXDOMAIN)
'

Nslookup info:

server can't find 112.66.106.23.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.165.2.239	attack	Sep 20 16:41:04 ip106 sshd[17599]: Failed password for root from 89.165.2.239 port 43332 ssh2 ...	2020-09-20 22:51:24
118.37.64.202	attackbotsspam	Sep 20 05:01:23 ssh2 sshd[46163]: User root from 118.37.64.202 not allowed because not listed in AllowUsers Sep 20 05:01:24 ssh2 sshd[46163]: Failed password for invalid user root from 118.37.64.202 port 38942 ssh2 Sep 20 05:01:24 ssh2 sshd[46163]: Connection closed by invalid user root 118.37.64.202 port 38942 [preauth] ...	2020-09-20 22:46:45
159.203.188.175	attack	SSH invalid-user multiple login try	2020-09-20 22:39:00
201.141.86.254	attack	Unauthorized connection attempt from IP address 201.141.86.254 on Port 445(SMB)	2020-09-20 22:42:40
89.144.47.251	attackspam	Port Scan: TCP/3389	2020-09-20 23:13:12
192.42.116.17	attackspambots	2020-09-20T05:46[Censored Hostname] sshd[4273]: Failed password for root from 192.42.116.17 port 52734 ssh2 2020-09-20T05:46[Censored Hostname] sshd[4273]: Failed password for root from 192.42.116.17 port 52734 ssh2 2020-09-20T05:46[Censored Hostname] sshd[4273]: Failed password for root from 192.42.116.17 port 52734 ssh2[...]	2020-09-20 23:11:30
222.186.169.194	attackspam	Sep 20 16:04:29 mavik sshd[10538]: Failed password for root from 222.186.169.194 port 27506 ssh2 Sep 20 16:04:32 mavik sshd[10538]: Failed password for root from 222.186.169.194 port 27506 ssh2 Sep 20 16:04:36 mavik sshd[10538]: Failed password for root from 222.186.169.194 port 27506 ssh2 Sep 20 16:04:39 mavik sshd[10538]: Failed password for root from 222.186.169.194 port 27506 ssh2 Sep 20 16:04:42 mavik sshd[10538]: Failed password for root from 222.186.169.194 port 27506 ssh2 ...	2020-09-20 23:08:49
191.248.197.74	attackbotsspam	Unauthorized connection attempt from IP address 191.248.197.74 on Port 445(SMB)	2020-09-20 23:03:02
65.49.20.72	attack	SSH break in attempt ...	2020-09-20 22:38:13
139.99.239.230	attack	frenzy	2020-09-20 23:18:05
218.156.30.196	attack	(sshd) Failed SSH login from 218.156.30.196 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 19 19:01:20 rainbow sshd[3261489]: Invalid user admin from 218.156.30.196 port 37579 Sep 19 19:01:20 rainbow sshd[3261489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.156.30.196 Sep 19 19:01:21 rainbow sshd[3261504]: Invalid user admin from 218.156.30.196 port 38062 Sep 19 19:01:21 rainbow sshd[3261504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.156.30.196 Sep 19 19:01:22 rainbow sshd[3261489]: Failed password for invalid user admin from 218.156.30.196 port 37579 ssh2	2020-09-20 22:58:51
152.253.100.252	attackbotsspam	Brute-force attempt banned	2020-09-20 23:17:07
163.172.49.56	attack	Sep 20 14:12:51 localhost sshd[3724]: Invalid user guest from 163.172.49.56 port 58471 Sep 20 14:12:51 localhost sshd[3724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.49.56 Sep 20 14:12:51 localhost sshd[3724]: Invalid user guest from 163.172.49.56 port 58471 Sep 20 14:12:53 localhost sshd[3724]: Failed password for invalid user guest from 163.172.49.56 port 58471 ssh2 Sep 20 14:18:18 localhost sshd[4291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.49.56 user=root Sep 20 14:18:20 localhost sshd[4291]: Failed password for root from 163.172.49.56 port 34915 ssh2 ...	2020-09-20 22:38:42
221.127.42.228	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-20 22:51:44
223.17.129.97	attack	Sep 20 01:10:36 ssh2 sshd[42712]: User root from 223.17.129.97 not allowed because not listed in AllowUsers Sep 20 01:10:36 ssh2 sshd[42712]: Failed password for invalid user root from 223.17.129.97 port 36193 ssh2 Sep 20 01:10:37 ssh2 sshd[42712]: Connection closed by invalid user root 223.17.129.97 port 36193 [preauth] ...	2020-09-20 22:45:54

Recently Reported IPs

112.66.107.215	112.66.107.246	112.66.107.5	112.66.107.30
112.66.107.3	112.66.108.72	112.66.108.238	112.66.109.133
112.66.109.123	112.66.108.154	112.66.109.15	112.66.109.161
112.66.109.209	112.66.109.24	112.66.109.213	112.66.109.42
112.66.109.223	112.66.109.234	112.66.109.49	112.66.110.121