112.66.104.39 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.66.104.41	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410875db8eeeb29 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/4.054101423 Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1) \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:36:01

Type

Details

Datetime

112.66.104.41

attack

The IP has triggered Cloudflare WAF. CF-Ray: 5410875db8eeeb29 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: img.skk.moe | User-Agent: Mozilla/4.054101423 Mozilla/4.0 (compatible; MSIE 9.0; Windows NT 6.1) | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:36:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.104.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2572
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.66.104.39.			IN	A

;; AUTHORITY SECTION:
.			219	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030501 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 06 10:40:30 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 39.104.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 39.104.66.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.82.65.60	attackspam	May 5 20:57:00 debian-2gb-nbg1-2 kernel: \[10963913.274739\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=80.82.65.60 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=16969 PROTO=TCP SPT=58026 DPT=26563 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-06 03:26:24
185.234.219.101	attackbots	Mar 10 15:42:19 WHD8 postfix/smtpd\[65955\]: warning: unknown\[185.234.219.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 10 16:00:04 WHD8 postfix/smtpd\[67110\]: warning: unknown\[185.234.219.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 10 16:15:00 WHD8 postfix/smtpd\[67970\]: warning: unknown\[185.234.219.101\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-05-06 04:02:20
165.22.28.34	attackspam	May 5 16:23:45 firewall sshd[27124]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.28.34 May 5 16:23:45 firewall sshd[27124]: Invalid user odoo from 165.22.28.34 May 5 16:23:47 firewall sshd[27124]: Failed password for invalid user odoo from 165.22.28.34 port 49022 ssh2 ...	2020-05-06 03:54:31
222.186.169.192	attack	May 5 21:18:05 PorscheCustomer sshd[3182]: Failed password for root from 222.186.169.192 port 22782 ssh2 May 5 21:18:08 PorscheCustomer sshd[3182]: Failed password for root from 222.186.169.192 port 22782 ssh2 May 5 21:18:11 PorscheCustomer sshd[3182]: Failed password for root from 222.186.169.192 port 22782 ssh2 May 5 21:18:16 PorscheCustomer sshd[3182]: error: maximum authentication attempts exceeded for root from 222.186.169.192 port 22782 ssh2 [preauth] ...	2020-05-06 03:31:58
5.189.127.147	attack	scan r	2020-05-06 03:49:24
89.248.167.141	attack	May 5 21:32:23 debian-2gb-nbg1-2 kernel: \[10966036.694094\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.167.141 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=28274 PROTO=TCP SPT=41426 DPT=7373 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-06 03:49:10
123.185.134.236	attack	Fail2Ban Ban Triggered	2020-05-06 03:47:52
106.13.161.250	attackspambots	May 5 20:05:58 Ubuntu-1404-trusty-64-minimal sshd\[6574\]: Invalid user postgres from 106.13.161.250 May 5 20:05:58 Ubuntu-1404-trusty-64-minimal sshd\[6574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.161.250 May 5 20:06:00 Ubuntu-1404-trusty-64-minimal sshd\[6574\]: Failed password for invalid user postgres from 106.13.161.250 port 48068 ssh2 May 5 20:16:43 Ubuntu-1404-trusty-64-minimal sshd\[14337\]: Invalid user cd from 106.13.161.250 May 5 20:16:43 Ubuntu-1404-trusty-64-minimal sshd\[14337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.161.250	2020-05-06 03:26:03
115.77.166.119	attackspambots	Port probing on unauthorized port 81	2020-05-06 03:51:58
31.170.62.245	attackspam	Automatic report - Port Scan Attack	2020-05-06 03:28:03
159.89.130.231	attack	2020-05-05T17:50:56.596567abusebot-5.cloudsearch.cf sshd[21303]: Invalid user jrodriguez from 159.89.130.231 port 53506 2020-05-05T17:50:56.603389abusebot-5.cloudsearch.cf sshd[21303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.130.231 2020-05-05T17:50:56.596567abusebot-5.cloudsearch.cf sshd[21303]: Invalid user jrodriguez from 159.89.130.231 port 53506 2020-05-05T17:50:58.042793abusebot-5.cloudsearch.cf sshd[21303]: Failed password for invalid user jrodriguez from 159.89.130.231 port 53506 ssh2 2020-05-05T17:56:11.335270abusebot-5.cloudsearch.cf sshd[21314]: Invalid user team1 from 159.89.130.231 port 53992 2020-05-05T17:56:11.343114abusebot-5.cloudsearch.cf sshd[21314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.130.231 2020-05-05T17:56:11.335270abusebot-5.cloudsearch.cf sshd[21314]: Invalid user team1 from 159.89.130.231 port 53992 2020-05-05T17:56:13.359643abusebot-5.cloudsearch. ...	2020-05-06 03:52:44
217.61.121.57	attackspam	May 5 21:23:09 tuxlinux sshd[54884]: Invalid user admin from 217.61.121.57 port 39744 May 5 21:23:09 tuxlinux sshd[54884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.121.57 May 5 21:23:09 tuxlinux sshd[54884]: Invalid user admin from 217.61.121.57 port 39744 May 5 21:23:09 tuxlinux sshd[54884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.121.57 ...	2020-05-06 03:25:08
195.54.167.17	attackbots	May 5 20:26:00 debian-2gb-nbg1-2 kernel: \[10962053.469458\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.54.167.17 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=23332 PROTO=TCP SPT=43468 DPT=28470 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-06 03:44:51
125.124.193.237	attackbots	$f2bV_matches	2020-05-06 03:50:59
185.50.149.11	attackbotsspam	May 5 20:52:43 blackbee postfix/smtpd\[28783\]: warning: unknown\[185.50.149.11\]: SASL LOGIN authentication failed: authentication failure May 5 20:52:53 blackbee postfix/smtpd\[28783\]: warning: unknown\[185.50.149.11\]: SASL LOGIN authentication failed: authentication failure May 5 20:54:26 blackbee postfix/smtpd\[28783\]: warning: unknown\[185.50.149.11\]: SASL LOGIN authentication failed: authentication failure May 5 20:54:34 blackbee postfix/smtpd\[28783\]: warning: unknown\[185.50.149.11\]: SASL LOGIN authentication failed: authentication failure May 5 20:57:20 blackbee postfix/smtpd\[28783\]: warning: unknown\[185.50.149.11\]: SASL LOGIN authentication failed: authentication failure ...	2020-05-06 03:59:23

Recently Reported IPs

112.66.104.238	112.66.104.26	112.66.104.67	112.66.104.64
112.66.104.66	112.66.104.75	112.66.104.63	112.66.104.90
112.66.104.7	112.66.104.98	113.128.16.144	112.66.105.127
112.66.105.151	112.66.105.108	112.66.105.168	112.66.105.153
112.66.105.241	112.66.105.254	112.66.105.69	112.66.105.68