112.66.111.148

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.66.111.6	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 541353298c7beb81 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/4.074482891 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:17:55

Type

Details

Datetime

112.66.111.6

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 541353298c7beb81 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: ip.skk.moe | User-Agent: Mozilla/4.074482891 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:17:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.111.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58263
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.66.111.148.			IN	A

;; AUTHORITY SECTION:
.			556	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030302 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 11:47:51 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 148.111.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.111.66.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.109.238.106	attack	Email rejected due to spam filtering	2020-03-09 14:58:39
218.78.46.81	attack	$f2bV_matches	2020-03-09 15:18:46
69.94.158.101	attack	Mar 9 04:30:31 mail.srvfarm.net postfix/smtpd[3830119]: NOQUEUE: reject: RCPT from delegate.swingthelamp.com[69.94.158.101]: 554 5.7.1 Service unavailable; Client host [69.94.158.101] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Mar 9 04:31:46 mail.srvfarm.net postfix/smtpd[3841583]: NOQUEUE: reject: RCPT from delegate.swingthelamp.com[69.94.158.101]: 554 5.7.1 Service unavailable; Client host [69.94.158.101] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= Mar 9 04:32:08 mail.srvfarm.net postfix/smtpd[3841577]: NOQUEUE: reject: RCPT from delegate.swingthelamp.com[69.94.158.101]: 554 5.7.1 Service unavailable; Client host [69.94.158.101] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from=	2020-03-09 15:04:12
185.54.179.51	attackbots	Email rejected due to spam filtering	2020-03-09 14:40:47
45.82.32.119	attackbotsspam	Mar 9 04:29:14 mail.srvfarm.net postfix/smtpd[3841577]: NOQUEUE: reject: RCPT from present.oliviertylczak.com[45.82.32.119]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 04:29:35 mail.srvfarm.net postfix/smtpd[3830119]: NOQUEUE: reject: RCPT from present.oliviertylczak.com[45.82.32.119]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 04:29:35 mail.srvfarm.net postfix/smtpd[3840822]: NOQUEUE: reject: RCPT from present.oliviertylczak.com[45.82.32.119]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 04:29:35 mail.srvfarm.net postfix/smtpd[3841583]: NOQUEUE: reject: RCPT from present	2020-03-09 15:08:20
14.246.86.4	attackbotsspam	Email rejected due to spam filtering	2020-03-09 14:56:18
113.194.138.34	attackspam	Email rejected due to spam filtering	2020-03-09 14:39:37
211.159.177.120	attack	scan r	2020-03-09 14:46:44
217.112.142.103	attack	Mar 9 05:38:31 mail.srvfarm.net postfix/smtpd[3851088]: NOQUEUE: reject: RCPT from unknown[217.112.142.103]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 05:41:20 mail.srvfarm.net postfix/smtpd[3865706]: NOQUEUE: reject: RCPT from unknown[217.112.142.103]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 05:41:20 mail.srvfarm.net postfix/smtpd[3864117]: NOQUEUE: reject: RCPT from unknown[217.112.142.103]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 9 05:41:49 mail.srvfarm.net postfix/smtpd[3864121]: NOQUEUE: reject: RCPT from unknown[217.112.142.103]: 450 4.1.8 : Sender	2020-03-09 14:58:59
122.51.71.156	attackspambots	Mar 9 03:26:33 ws12vmsma01 sshd[19337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.71.156 user=root Mar 9 03:26:35 ws12vmsma01 sshd[19337]: Failed password for root from 122.51.71.156 port 50700 ssh2 Mar 9 03:31:15 ws12vmsma01 sshd[20000]: Invalid user webuser from 122.51.71.156 ...	2020-03-09 14:43:31
51.38.46.41	attack	Mar 9 07:06:21 localhost sshd[31967]: Invalid user tf2server from 51.38.46.41 port 36478 Mar 9 07:06:21 localhost sshd[31967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.46.41 Mar 9 07:06:21 localhost sshd[31967]: Invalid user tf2server from 51.38.46.41 port 36478 Mar 9 07:06:23 localhost sshd[31967]: Failed password for invalid user tf2server from 51.38.46.41 port 36478 ssh2 Mar 9 07:14:02 localhost sshd[32689]: Invalid user zhengyifan from 51.38.46.41 port 34754 ...	2020-03-09 15:15:46
185.36.81.57	attack	Mar 9 07:30:01 mail postfix/smtpd\[19573\]: warning: unknown\[185.36.81.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 9 07:36:08 mail postfix/smtpd\[19565\]: warning: unknown\[185.36.81.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 9 08:09:05 mail postfix/smtpd\[20306\]: warning: unknown\[185.36.81.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Mar 9 08:15:49 mail postfix/smtpd\[20410\]: warning: unknown\[185.36.81.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-03-09 15:16:20
23.244.115.35	attack	MYH,DEF GET /adminer.php GET /adminer.php GET /adminer.php GET /adminer.php	2020-03-09 14:54:20
125.124.143.182	attack	Mar 8 21:08:16 hanapaa sshd\[18009\]: Invalid user alexis from 125.124.143.182 Mar 8 21:08:16 hanapaa sshd\[18009\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.143.182 Mar 8 21:08:18 hanapaa sshd\[18009\]: Failed password for invalid user alexis from 125.124.143.182 port 59712 ssh2 Mar 8 21:14:22 hanapaa sshd\[18546\]: Invalid user plex from 125.124.143.182 Mar 8 21:14:22 hanapaa sshd\[18546\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.143.182	2020-03-09 15:21:47
85.234.125.82	attackbots	20/3/8@23:51:07: FAIL: Alarm-Network address from=85.234.125.82 ...	2020-03-09 14:44:42

Recently Reported IPs

104.18.113.38	104.18.121.46	104.18.126.24	112.66.111.154
104.18.15.100	104.18.15.190	104.18.15.12	104.18.15.31
104.18.15.23	104.18.15.56	104.18.15.29	104.18.15.245
112.66.111.164	104.18.15.58	104.18.15.5	104.18.15.89
104.18.158.9	104.18.15.90	104.18.159.60	104.18.158.60