Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
112.66.97.41 attack
Unauthorized connection attempt detected from IP address 112.66.97.41 to port 21
2020-05-31 03:06:48
112.66.97.253 attackbotsspam
Web Server Scan. RayID: 593404aeac290540, UA: Mozilla/4.066686748 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1), Country: CN
2020-05-21 04:12:06
112.66.97.225 attackspambots
Unauthorized connection attempt detected from IP address 112.66.97.225 to port 3389 [J]
2020-03-03 02:24:27
112.66.97.231 attack
Unauthorized connection attempt detected from IP address 112.66.97.231 to port 8000 [J]
2020-03-02 19:11:12
112.66.97.95 attack
Unauthorized connection attempt detected from IP address 112.66.97.95 to port 3128 [J]
2020-03-02 18:42:40
112.66.97.98 attackbotsspam
Unauthorized connection attempt detected from IP address 112.66.97.98 to port 8899 [J]
2020-03-02 16:47:14
112.66.97.40 attackbotsspam
Unauthorized connection attempt detected from IP address 112.66.97.40 to port 8001 [T]
2020-01-10 09:23:59
112.66.97.57 attackspambots
Unauthorized connection attempt detected from IP address 112.66.97.57 to port 8001 [T]
2020-01-10 09:23:39
112.66.97.59 attack
Unauthorized connection attempt detected from IP address 112.66.97.59 to port 801 [T]
2020-01-10 08:57:30
112.66.97.73 attackspambots
The IP has triggered Cloudflare WAF. CF-Ray: 54171d0e0878e80d | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: blog.skk.moe | User-Agent: Mozilla/5.051975669 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).
2019-12-08 04:38:32
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.97.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41241
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.66.97.45.			IN	A

;; AUTHORITY SECTION:
.			121	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 13:32:57 CST 2022
;; MSG SIZE  rcvd: 105
Host info
Host 45.97.66.112.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.97.66.112.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
165.22.251.76 attackbots
Lines containing failures of 165.22.251.76 (max 1000)
Aug 18 13:01:28 efa3 sshd[32279]: Invalid user erica from 165.22.251.76 port 59910
Aug 18 13:01:28 efa3 sshd[32279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.251.76
Aug 18 13:01:29 efa3 sshd[32279]: Failed password for invalid user erica from 165.22.251.76 port 59910 ssh2
Aug 18 13:01:30 efa3 sshd[32279]: Received disconnect from 165.22.251.76 port 59910:11: Bye Bye [preauth]
Aug 18 13:01:30 efa3 sshd[32279]: Disconnected from 165.22.251.76 port 59910 [preauth]
Aug 18 13:14:35 efa3 sshd[1805]: Invalid user oracle from 165.22.251.76 port 46234
Aug 18 13:14:35 efa3 sshd[1805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.251.76
Aug 18 13:14:37 efa3 sshd[1805]: Failed password for invalid user oracle from 165.22.251.76 port 46234 ssh2
Aug 18 13:14:37 efa3 sshd[1805]: Received disconnect from 165.22.251.76 port 46234:11........
------------------------------
2020-08-20 17:33:56
46.148.201.206 attack
Aug 20 06:28:23 ws22vmsma01 sshd[10844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.148.201.206
Aug 20 06:28:25 ws22vmsma01 sshd[10844]: Failed password for invalid user bruno from 46.148.201.206 port 40008 ssh2
...
2020-08-20 17:35:19
138.197.25.187 attack
Aug 19 21:50:14 Host-KLAX-C sshd[8750]: Disconnected from invalid user tania 138.197.25.187 port 49834 [preauth]
...
2020-08-20 16:57:37
106.12.51.110 attackspambots
2647/tcp 13677/tcp 18200/tcp...
[2020-06-24/08-20]10pkt,10pt.(tcp)
2020-08-20 16:59:33
114.119.161.100 attackspam
[N10.H1.VM1] SPAM Detected Blocked by UFW
2020-08-20 17:15:45
91.226.14.135 attackbotsspam
Aug 20 10:18:27 rotator sshd\[26301\]: Invalid user sammy from 91.226.14.135Aug 20 10:18:29 rotator sshd\[26301\]: Failed password for invalid user sammy from 91.226.14.135 port 40360 ssh2Aug 20 10:23:02 rotator sshd\[27094\]: Invalid user jumper from 91.226.14.135Aug 20 10:23:04 rotator sshd\[27094\]: Failed password for invalid user jumper from 91.226.14.135 port 44250 ssh2Aug 20 10:27:31 rotator sshd\[27884\]: Invalid user hf from 91.226.14.135Aug 20 10:27:32 rotator sshd\[27884\]: Failed password for invalid user hf from 91.226.14.135 port 48132 ssh2
...
2020-08-20 17:19:25
157.245.5.133 attackbots
157.245.5.133 - - [20/Aug/2020:10:37:59 +0200] "POST /wp-login.php HTTP/1.1" 200 5181 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
157.245.5.133 - - [20/Aug/2020:10:38:02 +0200] "POST /wp-login.php HTTP/1.1" 200 5165 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
157.245.5.133 - - [20/Aug/2020:10:38:04 +0200] "POST /wp-login.php HTTP/1.1" 200 5163 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
157.245.5.133 - - [20/Aug/2020:10:38:07 +0200] "POST /wp-login.php HTTP/1.1" 200 5158 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
157.245.5.133 - - [20/Aug/2020:10:46:34 +0200] "POST /wp-login.php HTTP/1.1" 200 5521 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...
2020-08-20 17:24:27
193.169.253.27 attackspam
Aug 20 08:46:59 web01.agentur-b-2.de postfix/smtpd[1415018]: warning: unknown[193.169.253.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Aug 20 08:46:59 web01.agentur-b-2.de postfix/smtpd[1415018]: lost connection after AUTH from unknown[193.169.253.27]
Aug 20 08:49:53 web01.agentur-b-2.de postfix/smtpd[1419336]: warning: unknown[193.169.253.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Aug 20 08:49:53 web01.agentur-b-2.de postfix/smtpd[1419336]: lost connection after AUTH from unknown[193.169.253.27]
Aug 20 08:50:41 web01.agentur-b-2.de postfix/smtpd[1415018]: warning: unknown[193.169.253.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
2020-08-20 17:26:20
195.144.21.219 attackbotsspam
2020-08-20T04:20:27.871931sorsha.thespaminator.com sshd[6995]: Failed password for root from 195.144.21.219 port 35484 ssh2
2020-08-20T04:20:30.834982sorsha.thespaminator.com sshd[6995]: Failed password for root from 195.144.21.219 port 35484 ssh2
...
2020-08-20 17:18:25
180.97.182.226 attack
Aug 20 05:52:47 jumpserver sshd[225400]: Invalid user lost+found from 180.97.182.226 port 57812
Aug 20 05:52:49 jumpserver sshd[225400]: Failed password for invalid user lost+found from 180.97.182.226 port 57812 ssh2
Aug 20 05:54:43 jumpserver sshd[225424]: Invalid user eis from 180.97.182.226 port 52560
...
2020-08-20 17:29:46
106.12.6.55 attackbotsspam
Aug 20 02:58:11 firewall sshd[20233]: Invalid user ftpserver from 106.12.6.55
Aug 20 02:58:13 firewall sshd[20233]: Failed password for invalid user ftpserver from 106.12.6.55 port 35248 ssh2
Aug 20 03:02:45 firewall sshd[20341]: Invalid user pi from 106.12.6.55
...
2020-08-20 17:13:36
160.153.147.139 attackspambots
Automatic report - XMLRPC Attack
2020-08-20 17:31:30
188.166.54.199 attackspambots
Aug 19 21:53:55 pixelmemory sshd[3132600]: Invalid user nico from 188.166.54.199 port 50261
Aug 19 21:53:55 pixelmemory sshd[3132600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.54.199 
Aug 19 21:53:55 pixelmemory sshd[3132600]: Invalid user nico from 188.166.54.199 port 50261
Aug 19 21:53:57 pixelmemory sshd[3132600]: Failed password for invalid user nico from 188.166.54.199 port 50261 ssh2
Aug 19 21:59:42 pixelmemory sshd[3134430]: Invalid user denis from 188.166.54.199 port 54739
...
2020-08-20 17:23:00
139.155.76.135 attackspambots
Aug 20 08:55:40 hosting sshd[13931]: Invalid user bpoint from 139.155.76.135 port 44220
...
2020-08-20 17:00:56
192.99.135.113 attack
2020-08-20T19:03:38.922943luisaranguren sshd[1644902]: Invalid user andromahi from 192.99.135.113 port 61236
2020-08-20T19:03:41.680409luisaranguren sshd[1644902]: Failed password for invalid user andromahi from 192.99.135.113 port 61236 ssh2
...
2020-08-20 17:11:54

Recently Reported IPs

112.66.98.111 112.66.98.69 112.66.98.66 112.66.98.124
112.66.98.242 112.66.98.73 112.66.99.227 112.66.99.179
112.67.190.232 112.72.144.45 112.72.185.175 112.66.99.58
112.74.39.28 112.7.46.162 112.74.56.145 112.74.168.139
112.78.133.146 112.7.43.236 112.78.181.182 112.72.95.94