112.66.97.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.66.97.41	attack	Unauthorized connection attempt detected from IP address 112.66.97.41 to port 21	2020-05-31 03:06:48
112.66.97.253	attackbotsspam	Web Server Scan. RayID: 593404aeac290540, UA: Mozilla/4.066686748 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1), Country: CN	2020-05-21 04:12:06
112.66.97.225	attackspambots	Unauthorized connection attempt detected from IP address 112.66.97.225 to port 3389 [J]	2020-03-03 02:24:27
112.66.97.231	attack	Unauthorized connection attempt detected from IP address 112.66.97.231 to port 8000 [J]	2020-03-02 19:11:12
112.66.97.95	attack	Unauthorized connection attempt detected from IP address 112.66.97.95 to port 3128 [J]	2020-03-02 18:42:40
112.66.97.98	attackbotsspam	Unauthorized connection attempt detected from IP address 112.66.97.98 to port 8899 [J]	2020-03-02 16:47:14
112.66.97.40	attackbotsspam	Unauthorized connection attempt detected from IP address 112.66.97.40 to port 8001 [T]	2020-01-10 09:23:59
112.66.97.57	attackspambots	Unauthorized connection attempt detected from IP address 112.66.97.57 to port 8001 [T]	2020-01-10 09:23:39
112.66.97.59	attack	Unauthorized connection attempt detected from IP address 112.66.97.59 to port 801 [T]	2020-01-10 08:57:30
112.66.97.73	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 54171d0e0878e80d \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.051975669 Mozilla/5.0 (Macintosh; Intel Mac OS X 10_13_6) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:38:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.97.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41241
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.66.97.45.			IN	A

;; AUTHORITY SECTION:
.			121	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 13:32:57 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 45.97.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 45.97.66.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.22.251.76	attackbots	Lines containing failures of 165.22.251.76 (max 1000) Aug 18 13:01:28 efa3 sshd[32279]: Invalid user erica from 165.22.251.76 port 59910 Aug 18 13:01:28 efa3 sshd[32279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.251.76 Aug 18 13:01:29 efa3 sshd[32279]: Failed password for invalid user erica from 165.22.251.76 port 59910 ssh2 Aug 18 13:01:30 efa3 sshd[32279]: Received disconnect from 165.22.251.76 port 59910:11: Bye Bye [preauth] Aug 18 13:01:30 efa3 sshd[32279]: Disconnected from 165.22.251.76 port 59910 [preauth] Aug 18 13:14:35 efa3 sshd[1805]: Invalid user oracle from 165.22.251.76 port 46234 Aug 18 13:14:35 efa3 sshd[1805]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.251.76 Aug 18 13:14:37 efa3 sshd[1805]: Failed password for invalid user oracle from 165.22.251.76 port 46234 ssh2 Aug 18 13:14:37 efa3 sshd[1805]: Received disconnect from 165.22.251.76 port 46234:11........ ------------------------------	2020-08-20 17:33:56
46.148.201.206	attack	Aug 20 06:28:23 ws22vmsma01 sshd[10844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.148.201.206 Aug 20 06:28:25 ws22vmsma01 sshd[10844]: Failed password for invalid user bruno from 46.148.201.206 port 40008 ssh2 ...	2020-08-20 17:35:19
138.197.25.187	attack	Aug 19 21:50:14 Host-KLAX-C sshd[8750]: Disconnected from invalid user tania 138.197.25.187 port 49834 [preauth] ...	2020-08-20 16:57:37
106.12.51.110	attackspambots	2647/tcp 13677/tcp 18200/tcp... [2020-06-24/08-20]10pkt,10pt.(tcp)	2020-08-20 16:59:33
114.119.161.100	attackspam	[N10.H1.VM1] SPAM Detected Blocked by UFW	2020-08-20 17:15:45
91.226.14.135	attackbotsspam	Aug 20 10:18:27 rotator sshd\[26301\]: Invalid user sammy from 91.226.14.135Aug 20 10:18:29 rotator sshd\[26301\]: Failed password for invalid user sammy from 91.226.14.135 port 40360 ssh2Aug 20 10:23:02 rotator sshd\[27094\]: Invalid user jumper from 91.226.14.135Aug 20 10:23:04 rotator sshd\[27094\]: Failed password for invalid user jumper from 91.226.14.135 port 44250 ssh2Aug 20 10:27:31 rotator sshd\[27884\]: Invalid user hf from 91.226.14.135Aug 20 10:27:32 rotator sshd\[27884\]: Failed password for invalid user hf from 91.226.14.135 port 48132 ssh2 ...	2020-08-20 17:19:25
157.245.5.133	attackbots	157.245.5.133 - - [20/Aug/2020:10:37:59 +0200] "POST /wp-login.php HTTP/1.1" 200 5181 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.5.133 - - [20/Aug/2020:10:38:02 +0200] "POST /wp-login.php HTTP/1.1" 200 5165 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.5.133 - - [20/Aug/2020:10:38:04 +0200] "POST /wp-login.php HTTP/1.1" 200 5163 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.5.133 - - [20/Aug/2020:10:38:07 +0200] "POST /wp-login.php HTTP/1.1" 200 5158 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 157.245.5.133 - - [20/Aug/2020:10:46:34 +0200] "POST /wp-login.php HTTP/1.1" 200 5521 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-20 17:24:27
193.169.253.27	attackspam	Aug 20 08:46:59 web01.agentur-b-2.de postfix/smtpd[1415018]: warning: unknown[193.169.253.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 20 08:46:59 web01.agentur-b-2.de postfix/smtpd[1415018]: lost connection after AUTH from unknown[193.169.253.27] Aug 20 08:49:53 web01.agentur-b-2.de postfix/smtpd[1419336]: warning: unknown[193.169.253.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 20 08:49:53 web01.agentur-b-2.de postfix/smtpd[1419336]: lost connection after AUTH from unknown[193.169.253.27] Aug 20 08:50:41 web01.agentur-b-2.de postfix/smtpd[1415018]: warning: unknown[193.169.253.27]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-20 17:26:20
195.144.21.219	attackbotsspam	2020-08-20T04:20:27.871931sorsha.thespaminator.com sshd[6995]: Failed password for root from 195.144.21.219 port 35484 ssh2 2020-08-20T04:20:30.834982sorsha.thespaminator.com sshd[6995]: Failed password for root from 195.144.21.219 port 35484 ssh2 ...	2020-08-20 17:18:25
180.97.182.226	attack	Aug 20 05:52:47 jumpserver sshd[225400]: Invalid user lost+found from 180.97.182.226 port 57812 Aug 20 05:52:49 jumpserver sshd[225400]: Failed password for invalid user lost+found from 180.97.182.226 port 57812 ssh2 Aug 20 05:54:43 jumpserver sshd[225424]: Invalid user eis from 180.97.182.226 port 52560 ...	2020-08-20 17:29:46
106.12.6.55	attackbotsspam	Aug 20 02:58:11 firewall sshd[20233]: Invalid user ftpserver from 106.12.6.55 Aug 20 02:58:13 firewall sshd[20233]: Failed password for invalid user ftpserver from 106.12.6.55 port 35248 ssh2 Aug 20 03:02:45 firewall sshd[20341]: Invalid user pi from 106.12.6.55 ...	2020-08-20 17:13:36
160.153.147.139	attackspambots	Automatic report - XMLRPC Attack	2020-08-20 17:31:30
188.166.54.199	attackspambots	Aug 19 21:53:55 pixelmemory sshd[3132600]: Invalid user nico from 188.166.54.199 port 50261 Aug 19 21:53:55 pixelmemory sshd[3132600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.54.199 Aug 19 21:53:55 pixelmemory sshd[3132600]: Invalid user nico from 188.166.54.199 port 50261 Aug 19 21:53:57 pixelmemory sshd[3132600]: Failed password for invalid user nico from 188.166.54.199 port 50261 ssh2 Aug 19 21:59:42 pixelmemory sshd[3134430]: Invalid user denis from 188.166.54.199 port 54739 ...	2020-08-20 17:23:00
139.155.76.135	attackspambots	Aug 20 08:55:40 hosting sshd[13931]: Invalid user bpoint from 139.155.76.135 port 44220 ...	2020-08-20 17:00:56
192.99.135.113	attack	2020-08-20T19:03:38.922943luisaranguren sshd[1644902]: Invalid user andromahi from 192.99.135.113 port 61236 2020-08-20T19:03:41.680409luisaranguren sshd[1644902]: Failed password for invalid user andromahi from 192.99.135.113 port 61236 ssh2 ...	2020-08-20 17:11:54

Recently Reported IPs

112.66.98.111	112.66.98.69	112.66.98.66	112.66.98.124
112.66.98.242	112.66.98.73	112.66.99.227	112.66.99.179
112.67.190.232	112.72.144.45	112.72.185.175	112.66.99.58
112.74.39.28	112.7.46.162	112.74.56.145	112.74.168.139
112.78.133.146	112.7.43.236	112.78.181.182	112.72.95.94