112.66.106.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.66.106.218	attack	Unauthorized connection attempt detected from IP address 112.66.106.218 to port 8080	2019-12-31 06:31:00
112.66.106.87	attack	The IP has triggered Cloudflare WAF. CF-Ray: 540f2ea2d96a9965 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:18:11

Type

Details

Datetime

112.66.106.218

attack

Unauthorized connection attempt detected from IP address 112.66.106.218 to port 8080

2019-12-31 06:31:00

112.66.106.87

attack

The IP has triggered Cloudflare WAF. CF-Ray: 540f2ea2d96a9965 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:18:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.106.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18977
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.66.106.34.			IN	A

;; AUTHORITY SECTION:
.			397	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 80 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 14:31:36 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 34.106.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.106.66.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.34.215.93	attackspam	2019-10-31 22:55:03 H=(ylmf-pc) [182.34.215.93]:65037 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc 2019-10-31 22:55:17 H=(ylmf-pc) [182.34.215.93]:49289 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc 2019-10-31 22:55:28 H=(ylmf-pc) [182.34.215.93]:49778 I=[192.147.25.65]:25 rejected EHLO or HELO ylmf-pc: CHECK_HELO: ylmf-pc ...	2019-11-01 13:26:17
122.55.90.45	attack	Oct 31 17:46:14 auw2 sshd\[26015\]: Invalid user mathlida from 122.55.90.45 Oct 31 17:46:14 auw2 sshd\[26015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.55.90.45 Oct 31 17:46:17 auw2 sshd\[26015\]: Failed password for invalid user mathlida from 122.55.90.45 port 57011 ssh2 Oct 31 17:55:44 auw2 sshd\[26794\]: Invalid user xn from 122.55.90.45 Oct 31 17:55:44 auw2 sshd\[26794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.55.90.45	2019-11-01 13:15:52
86.16.146.254	attackbotsspam	60001/tcp 60001/tcp [2019-10-30/31]2pkt	2019-11-01 14:03:20
151.80.155.98	attack	Nov 1 05:58:28 tux-35-217 sshd\[25869\]: Invalid user ulva from 151.80.155.98 port 46188 Nov 1 05:58:28 tux-35-217 sshd\[25869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.155.98 Nov 1 05:58:30 tux-35-217 sshd\[25869\]: Failed password for invalid user ulva from 151.80.155.98 port 46188 ssh2 Nov 1 06:02:09 tux-35-217 sshd\[25876\]: Invalid user admin123 from 151.80.155.98 port 55474 Nov 1 06:02:09 tux-35-217 sshd\[25876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.155.98 ...	2019-11-01 13:21:39
49.69.244.61	attackspam	2222/tcp 22/tcp... [2019-09-12/11-01]23pkt,2pt.(tcp)	2019-11-01 13:12:13
173.162.229.10	attackspam	2019-11-01T04:58:28.764221abusebot-5.cloudsearch.cf sshd\[8998\]: Invalid user kernel from 173.162.229.10 port 34206	2019-11-01 13:19:26
61.163.78.132	attackbotsspam	Nov 1 05:24:03 vps666546 sshd\[26735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.163.78.132 user=root Nov 1 05:24:04 vps666546 sshd\[26735\]: Failed password for root from 61.163.78.132 port 51092 ssh2 Nov 1 05:30:26 vps666546 sshd\[26850\]: Invalid user plex from 61.163.78.132 port 60276 Nov 1 05:30:26 vps666546 sshd\[26850\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.163.78.132 Nov 1 05:30:28 vps666546 sshd\[26850\]: Failed password for invalid user plex from 61.163.78.132 port 60276 ssh2 ...	2019-11-01 13:16:08
139.198.15.74	attackspambots	Nov 1 06:37:18 meumeu sshd[18131]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.15.74 Nov 1 06:37:20 meumeu sshd[18131]: Failed password for invalid user student8 from 139.198.15.74 port 37362 ssh2 Nov 1 06:41:21 meumeu sshd[18746]: Failed password for root from 139.198.15.74 port 45252 ssh2 ...	2019-11-01 13:44:01
58.210.219.5	attackspam	Helo	2019-11-01 13:52:38
45.40.195.23	attackbots	45.40.195.23 - - [01/Nov/2019:05:06:13 +0100] "GET /test.php HTTP/1.1" 301 162 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/49.0.2623.105 Safari/537.36" 45.40.195.23 - - [01/Nov/2019:05:06:17 +0100] "GET /webdav/ HTTP/1.1" 301 162 "-" "Mozilla/5.0" ...	2019-11-01 13:11:43
220.133.148.28	attackbots	23/tcp 9001/tcp 34567/tcp [2019-09-21/11-01]3pkt	2019-11-01 13:15:21
62.2.148.66	attackbots	Nov 1 06:03:30 legacy sshd[9458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.2.148.66 Nov 1 06:03:32 legacy sshd[9458]: Failed password for invalid user aleksandir from 62.2.148.66 port 57529 ssh2 Nov 1 06:07:51 legacy sshd[9585]: Failed password for root from 62.2.148.66 port 50285 ssh2 ...	2019-11-01 13:22:35
159.65.112.93	attack	Nov 1 01:56:51 firewall sshd[11123]: Invalid user qweasdpl!! from 159.65.112.93 Nov 1 01:56:52 firewall sshd[11123]: Failed password for invalid user qweasdpl!! from 159.65.112.93 port 54892 ssh2 Nov 1 02:00:28 firewall sshd[11232]: Invalid user madssen from 159.65.112.93 ...	2019-11-01 13:10:52
81.22.45.190	attackbots	Nov 1 05:50:30 h2177944 kernel: \[5459547.395224\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.190 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=39733 PROTO=TCP SPT=46310 DPT=38676 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 1 05:51:40 h2177944 kernel: \[5459617.218922\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.190 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=12201 PROTO=TCP SPT=46310 DPT=39240 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 1 05:55:10 h2177944 kernel: \[5459827.748916\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.190 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=41250 PROTO=TCP SPT=46310 DPT=39213 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 1 06:03:37 h2177944 kernel: \[5460334.451515\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.190 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=27202 PROTO=TCP SPT=46310 DPT=38703 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 1 06:04:58 h2177944 kernel: \[5460415.157915\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.190 DST=85.214.117.9	2019-11-01 13:09:25
65.49.33.62	attackbots	1433/tcp 445/tcp... [2019-09-10/11-01]7pkt,2pt.(tcp)	2019-11-01 13:07:47

Recently Reported IPs

112.66.106.143	112.66.106.124	112.66.106.53	112.66.106.71
112.66.107.105	112.66.107.116	112.66.107.162	112.66.107.1
112.66.107.169	112.66.107.166	106.58.224.22	112.66.107.34
112.66.108.125	112.66.107.88	112.66.108.206	112.66.108.111
112.66.108.237	112.66.107.221	112.66.108.27	112.66.108.44