117.66.149.101

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.66.149.229	attackspam	Dec 8 09:52:42 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:52:52 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:53:00 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:53:12 esmtp postfix/smtpd[12184]: lost connection after AUTH from unknown[117.66.149.229] Dec 8 09:53:20 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.66.149.229	2019-12-09 03:08:50

Type

Details

Datetime

117.66.149.229

attackspam

Dec  8 09:52:42 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229]
Dec  8 09:52:52 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229]
Dec  8 09:53:00 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229]
Dec  8 09:53:12 esmtp postfix/smtpd[12184]: lost connection after AUTH from unknown[117.66.149.229]
Dec  8 09:53:20 esmtp postfix/smtpd[12149]: lost connection after AUTH from unknown[117.66.149.229]

........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=117.66.149.229

2019-12-09 03:08:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.66.149.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58821
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.66.149.101.			IN	A

;; AUTHORITY SECTION:
.			247	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030400 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 22:07:08 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 101.149.66.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 101.149.66.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.236.63.99	attack	Sep 16 02:19:28 lcdev sshd\[6195\]: Invalid user user from 104.236.63.99 Sep 16 02:19:28 lcdev sshd\[6195\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.63.99 Sep 16 02:19:29 lcdev sshd\[6195\]: Failed password for invalid user user from 104.236.63.99 port 48758 ssh2 Sep 16 02:23:11 lcdev sshd\[6499\]: Invalid user Admin from 104.236.63.99 Sep 16 02:23:11 lcdev sshd\[6499\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.63.99	2019-09-16 20:36:30
140.0.81.137	attackbotsspam	Looking for resource vulnerabilities	2019-09-16 20:45:37
106.12.58.4	attackbotsspam	Sep 16 12:24:35 pkdns2 sshd\[57276\]: Invalid user doku from 106.12.58.4Sep 16 12:24:37 pkdns2 sshd\[57276\]: Failed password for invalid user doku from 106.12.58.4 port 34918 ssh2Sep 16 12:27:44 pkdns2 sshd\[57442\]: Invalid user ucpss from 106.12.58.4Sep 16 12:27:46 pkdns2 sshd\[57442\]: Failed password for invalid user ucpss from 106.12.58.4 port 60542 ssh2Sep 16 12:30:55 pkdns2 sshd\[57602\]: Invalid user ju from 106.12.58.4Sep 16 12:30:57 pkdns2 sshd\[57602\]: Failed password for invalid user ju from 106.12.58.4 port 57994 ssh2 ...	2019-09-16 20:51:02
222.137.159.196	attackbotsspam	Honeypot attack, port: 23, PTR: hn.kd.ny.adsl.	2019-09-16 20:46:26
152.168.137.2	attackbotsspam	$f2bV_matches	2019-09-16 20:50:05
5.135.181.11	attackbots	Sep 16 07:55:08 vps200512 sshd\[2188\]: Invalid user mvts from 5.135.181.11 Sep 16 07:55:08 vps200512 sshd\[2188\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.181.11 Sep 16 07:55:10 vps200512 sshd\[2188\]: Failed password for invalid user mvts from 5.135.181.11 port 37594 ssh2 Sep 16 07:59:37 vps200512 sshd\[2293\]: Invalid user Administrator from 5.135.181.11 Sep 16 07:59:37 vps200512 sshd\[2293\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.181.11	2019-09-16 20:05:50
140.143.15.169	attackspam	Sep 16 04:25:38 Tower sshd[45005]: Connection from 140.143.15.169 port 36886 on 192.168.10.220 port 22 Sep 16 04:25:39 Tower sshd[45005]: Invalid user oracle from 140.143.15.169 port 36886 Sep 16 04:25:39 Tower sshd[45005]: error: Could not get shadow information for NOUSER Sep 16 04:25:39 Tower sshd[45005]: Failed password for invalid user oracle from 140.143.15.169 port 36886 ssh2 Sep 16 04:25:40 Tower sshd[45005]: Received disconnect from 140.143.15.169 port 36886:11: Bye Bye [preauth] Sep 16 04:25:40 Tower sshd[45005]: Disconnected from invalid user oracle 140.143.15.169 port 36886 [preauth]	2019-09-16 20:08:57
164.132.110.223	attackbots	Sep 16 01:53:09 friendsofhawaii sshd\[7465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.ip-164-132-110.eu user=root Sep 16 01:53:11 friendsofhawaii sshd\[7465\]: Failed password for root from 164.132.110.223 port 60256 ssh2 Sep 16 01:57:20 friendsofhawaii sshd\[7824\]: Invalid user vh from 164.132.110.223 Sep 16 01:57:20 friendsofhawaii sshd\[7824\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.ip-164-132-110.eu Sep 16 01:57:22 friendsofhawaii sshd\[7824\]: Failed password for invalid user vh from 164.132.110.223 port 55991 ssh2	2019-09-16 20:29:14
217.182.206.141	attackspam	Sep 16 07:34:07 ny01 sshd[16718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.206.141 Sep 16 07:34:09 ny01 sshd[16718]: Failed password for invalid user user from 217.182.206.141 port 38868 ssh2 Sep 16 07:38:02 ny01 sshd[17391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.182.206.141	2019-09-16 20:11:56
110.138.150.222	attackspambots	Honeypot attack, port: 445, PTR: 222.subnet110-138-150.speedy.telkom.net.id.	2019-09-16 20:21:34
183.80.156.183	attack	Sep 16 14:00:02 rotator sshd\[10863\]: Invalid user ubnt from 183.80.156.183Sep 16 14:00:05 rotator sshd\[10863\]: Failed password for invalid user ubnt from 183.80.156.183 port 46206 ssh2Sep 16 14:03:53 rotator sshd\[11714\]: Invalid user admin from 183.80.156.183Sep 16 14:04:00 rotator sshd\[11714\]: Failed password for invalid user admin from 183.80.156.183 port 50978 ssh2Sep 16 14:05:36 rotator sshd\[12495\]: Invalid user admin from 183.80.156.183Sep 16 14:05:41 rotator sshd\[12495\]: Failed password for invalid user admin from 183.80.156.183 port 49820 ssh2 ...	2019-09-16 20:13:38
49.88.112.78	attackspambots	SSH Brute Force, server-1 sshd[26904]: Failed password for root from 49.88.112.78 port 51451 ssh2	2019-09-16 20:23:33
46.39.224.200	attackspam	$f2bV_matches	2019-09-16 20:12:55
36.67.91.81	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-09-16 20:10:41
139.199.82.171	attack	Sep 16 14:17:46 vps691689 sshd[1294]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.82.171 Sep 16 14:17:48 vps691689 sshd[1294]: Failed password for invalid user edgar from 139.199.82.171 port 57184 ssh2 ...	2019-09-16 20:38:13

Recently Reported IPs

117.66.148.89	117.66.149.11	117.66.148.97	114.229.255.109
117.66.149.105	117.66.149.108	117.66.149.113	117.66.149.118
117.66.149.111	117.66.149.125	117.66.149.139	117.66.149.130
117.66.149.13	117.66.149.132	117.66.149.145	117.66.149.128
117.66.149.136	117.66.149.1	114.229.32.138	117.66.149.120