113.200.71.106

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Shannxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	The IP has triggered Cloudflare WAF. CF-Ray: 5433d5d1c9427872 \| WAF_Rule_ID: 1122843 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 00:10:36

Type

Details

Datetime

attack

The IP has triggered Cloudflare WAF. CF-Ray: 5433d5d1c9427872 | WAF_Rule_ID: 1122843 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: disqus.skk.moe | User-Agent: Mozilla/5.0 (iPhone; CPU iPhone OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 00:10:36

Comments on same subnet:

IP	Type	Details	Datetime
113.200.71.110	attackbots	Unauthorized connection attempt detected from IP address 113.200.71.110 to port 8899 [J]	2020-03-02 20:33:59
113.200.71.105	attackbots	Unauthorized connection attempt detected from IP address 113.200.71.105 to port 80 [T]	2020-01-10 08:24:07
113.200.71.99	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 543659d799dce4e2 \| WAF_Rule_ID: 1025440 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 00:29:41
113.200.71.103	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54122307cb326e60 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.062334851 Mozilla/5.0 (Windows NT 6.3; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 05:43:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 113.200.71.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58370
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;113.200.71.106.			IN	A

;; AUTHORITY SECTION:
.			382	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121100 1800 900 604800 86400

;; Query time: 133 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 00:10:31 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 106.71.200.113.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 106.71.200.113.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.255.173.70	attackbots	Invalid user sonarUser from 51.255.173.70 port 53332	2020-06-14 16:18:37
184.168.152.188	attackspam	Automatic report - XMLRPC Attack	2020-06-14 16:45:18
177.154.237.133	attackbotsspam	smtp probe/invalid login attempt	2020-06-14 16:38:55
122.51.253.157	attack	Invalid user admin from 122.51.253.157 port 56342	2020-06-14 16:21:07
106.54.245.34	attackbots	$f2bV_matches	2020-06-14 16:34:55
54.39.238.84	attackbots	Jun 14 10:04:27 santamaria sshd\[27891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.238.84 user=root Jun 14 10:04:29 santamaria sshd\[27891\]: Failed password for root from 54.39.238.84 port 21739 ssh2 Jun 14 10:08:51 santamaria sshd\[27926\]: Invalid user james from 54.39.238.84 Jun 14 10:08:51 santamaria sshd\[27926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.238.84 ...	2020-06-14 16:19:42
106.12.89.173	attackbots	Jun 13 22:59:21 server1 sshd\[16635\]: Invalid user bernadine from 106.12.89.173 Jun 13 22:59:22 server1 sshd\[16635\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 Jun 13 22:59:24 server1 sshd\[16635\]: Failed password for invalid user bernadine from 106.12.89.173 port 59712 ssh2 Jun 13 23:02:52 server1 sshd\[17549\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.173 user=root Jun 13 23:02:54 server1 sshd\[17549\]: Failed password for root from 106.12.89.173 port 41358 ssh2 ...	2020-06-14 16:11:00
178.128.242.233	attackspam	<6 unauthorized SSH connections	2020-06-14 16:23:58
139.199.115.133	attackspam	Jun 14 01:16:54 pi sshd[8749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.115.133 Jun 14 01:16:56 pi sshd[8749]: Failed password for invalid user wei1 from 139.199.115.133 port 52286 ssh2	2020-06-14 16:35:29
177.140.198.186	attackbotsspam	Jun 14 00:54:35 pi sshd[8685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.140.198.186 Jun 14 00:54:37 pi sshd[8685]: Failed password for invalid user cron from 177.140.198.186 port 48601 ssh2	2020-06-14 16:00:25
149.202.4.243	attack	Jun 14 06:15:56 meumeu sshd[459382]: Invalid user matt from 149.202.4.243 port 49170 Jun 14 06:15:56 meumeu sshd[459382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.4.243 Jun 14 06:15:56 meumeu sshd[459382]: Invalid user matt from 149.202.4.243 port 49170 Jun 14 06:15:59 meumeu sshd[459382]: Failed password for invalid user matt from 149.202.4.243 port 49170 ssh2 Jun 14 06:17:49 meumeu sshd[461330]: Invalid user elizabet from 149.202.4.243 port 45020 Jun 14 06:17:49 meumeu sshd[461330]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.4.243 Jun 14 06:17:49 meumeu sshd[461330]: Invalid user elizabet from 149.202.4.243 port 45020 Jun 14 06:17:51 meumeu sshd[461330]: Failed password for invalid user elizabet from 149.202.4.243 port 45020 ssh2 Jun 14 06:19:38 meumeu sshd[461454]: Invalid user 1q2w3e4r from 149.202.4.243 port 40680 ...	2020-06-14 16:26:50
51.254.141.10	attackbots	Jun 14 09:41:29 sip sshd[643250]: Invalid user jessie from 51.254.141.10 port 46650 Jun 14 09:41:30 sip sshd[643250]: Failed password for invalid user jessie from 51.254.141.10 port 46650 ssh2 Jun 14 09:47:34 sip sshd[643299]: Invalid user haisou from 51.254.141.10 port 48258 ...	2020-06-14 16:43:01
218.69.16.26	attackspambots	frenzy	2020-06-14 16:37:32
175.165.228.124	attackspam	Email rejected due to spam filtering	2020-06-14 16:41:03
190.9.249.221	attackspambots	DATE:2020-06-14 05:51:17, IP:190.9.249.221, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-06-14 16:05:53

Recently Reported IPs

146.20.111.196	212.227.28.190	111.206.198.22	17.33.221.68
116.120.181.42	171.152.90.29	127.242.185.135	79.103.115.44
111.175.58.153	175.247.151.245	120.172.109.3	86.172.170.30
97.11.8.112	106.38.241.177	156.126.92.75	160.103.99.75
133.24.233.54	235.196.85.172	16.130.76.112	60.13.6.114