112.66.104.150

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.66.104.41	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410875db8eeeb29 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/4.054101423 Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:36:01

Type

Details

Datetime

112.66.104.41

attack

The IP has triggered Cloudflare WAF. CF-Ray: 5410875db8eeeb29 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: img.skk.moe | User-Agent: Mozilla/4.054101423 Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1) | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:36:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.104.150
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56059
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.66.104.150.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 05:51:04 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 150.104.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 150.104.66.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.48.212.113	attackbotsspam	$f2bV_matches	2019-12-15 20:06:05
192.144.142.72	attack	Dec 15 12:07:02 h2177944 sshd\[18679\]: Invalid user kristianse from 192.144.142.72 port 42879 Dec 15 12:07:02 h2177944 sshd\[18679\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.142.72 Dec 15 12:07:04 h2177944 sshd\[18679\]: Failed password for invalid user kristianse from 192.144.142.72 port 42879 ssh2 Dec 15 12:14:12 h2177944 sshd\[18927\]: Invalid user shianhan from 192.144.142.72 port 41490 ...	2019-12-15 19:57:14
45.76.232.166	attackspam	45.76.232.166 was recorded 6 times by 6 hosts attempting to connect to the following ports: 123. Incident counter (4h, 24h, all-time): 6, 70, 150	2019-12-15 20:22:33
132.232.113.102	attackbotsspam	Dec 15 12:11:29 mail sshd\[23798\]: Invalid user hadzri from 132.232.113.102 Dec 15 12:11:29 mail sshd\[23798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.113.102 Dec 15 12:11:31 mail sshd\[23798\]: Failed password for invalid user hadzri from 132.232.113.102 port 57572 ssh2 ...	2019-12-15 20:16:36
129.28.193.154	attackbots	Dec 15 03:25:22 ws19vmsma01 sshd[190417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.193.154 Dec 15 03:25:24 ws19vmsma01 sshd[190417]: Failed password for invalid user gatt from 129.28.193.154 port 35312 ssh2 ...	2019-12-15 20:05:37
175.138.108.78	attackbots	Dec 15 12:30:25 vps647732 sshd[29217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.138.108.78 Dec 15 12:30:28 vps647732 sshd[29217]: Failed password for invalid user euro from 175.138.108.78 port 42954 ssh2 ...	2019-12-15 19:47:13
51.79.87.90	attackbots	$f2bV_matches	2019-12-15 20:17:59
68.183.204.24	attackbotsspam	Dec 15 09:17:33 sip sshd[9912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.24 Dec 15 09:17:35 sip sshd[9912]: Failed password for invalid user emery from 68.183.204.24 port 40016 ssh2 Dec 15 09:24:19 sip sshd[10287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.24	2019-12-15 19:56:15
114.242.245.32	attack	Dec 15 07:25:45 lnxmail61 sshd[20058]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.242.245.32	2019-12-15 19:45:10
78.27.172.65	attackbotsspam	2019-12-15T13:03:53.802287scmdmz1 sshd\[17718\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=unnum-78-27-172-65.domashka.kiev.ua user=root 2019-12-15T13:03:55.754059scmdmz1 sshd\[17718\]: Failed password for root from 78.27.172.65 port 40158 ssh2 2019-12-15T13:09:42.995499scmdmz1 sshd\[18214\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=unnum-78-27-172-65.domashka.kiev.ua user=root ...	2019-12-15 20:20:18
168.228.199.59	attackspam	Honeypot attack, port: 23, PTR: resources-168-228-199-59.yune.com.br.	2019-12-15 19:54:19
185.142.236.35	attackspambots	scan z	2019-12-15 20:08:52
46.101.204.20	attack	Dec 15 12:26:38 eventyay sshd[17748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.204.20 Dec 15 12:26:41 eventyay sshd[17748]: Failed password for invalid user nicholous from 46.101.204.20 port 42976 ssh2 Dec 15 12:31:59 eventyay sshd[18104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.204.20 ...	2019-12-15 19:46:01
45.77.183.32	attackspam	Dec 14 22:09:57 ns4 sshd[23837]: warning: /etc/hosts.allow, line 15: can't verify hostname: getaddrinfo(45.77.183.32.vultr.com, AF_INET) failed Dec 14 22:10:00 ns4 sshd[23837]: reveeclipse mapping checking getaddrinfo for 45.77.183.32.vultr.com [45.77.183.32] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 14 22:10:00 ns4 sshd[23837]: Invalid user shingler from 45.77.183.32 Dec 14 22:10:00 ns4 sshd[23837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.77.183.32 Dec 14 22:10:02 ns4 sshd[23837]: Failed password for invalid user shingler from 45.77.183.32 port 43182 ssh2 Dec 14 22:19:33 ns4 sshd[25422]: warning: /etc/hosts.allow, line 15: can't verify hostname: getaddrinfo(45.77.183.32.vultr.com, AF_INET) failed Dec 14 22:19:37 ns4 sshd[25422]: reveeclipse mapping checking getaddrinfo for 45.77.183.32.vultr.com [45.77.183.32] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 14 22:19:37 ns4 sshd[25422]: Invalid user newburgh from 45.77.183.32 De........ -------------------------------	2019-12-15 20:10:08
82.80.148.195	attack	Honeypot attack, port: 23, PTR: bzq-82-80-148-195.static.bezeqint.net.	2019-12-15 20:20:00

Recently Reported IPs

112.66.103.68	112.66.104.69	112.66.104.208	112.66.105.109
112.66.105.135	112.66.105.166	112.66.105.205	112.66.105.213
112.66.105.94	112.66.106.25	112.66.106.75	112.66.106.122
112.66.106.12	112.66.107.188	112.66.107.223	112.66.107.242
112.66.107.62	112.66.108.106	112.66.107.53	112.66.107.249