172.245.66.112

Basic Info

City: Buffalo

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.245.66.22	attackproxy	Bad IP: PHP Forum Spammer	2024-06-13 12:33:42
172.245.66.53	attack	Aug 20 10:28:19 roki-contabo sshd\[21198\]: Invalid user sam from 172.245.66.53 Aug 20 10:28:19 roki-contabo sshd\[21198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53 Aug 20 10:28:21 roki-contabo sshd\[21198\]: Failed password for invalid user sam from 172.245.66.53 port 49766 ssh2 Aug 20 10:29:04 roki-contabo sshd\[21201\]: Invalid user ftp from 172.245.66.53 Aug 20 10:29:04 roki-contabo sshd\[21201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53 ...	2020-08-20 19:02:25
172.245.66.53	attackbotsspam	Aug 17 18:48:23 sachi sshd\[21399\]: Invalid user cron from 172.245.66.53 Aug 17 18:48:23 sachi sshd\[21399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53 Aug 17 18:48:26 sachi sshd\[21399\]: Failed password for invalid user cron from 172.245.66.53 port 50418 ssh2 Aug 17 18:53:46 sachi sshd\[21728\]: Invalid user administrador from 172.245.66.53 Aug 17 18:53:46 sachi sshd\[21728\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53	2020-08-18 14:02:49
172.245.66.53	attack	"Unauthorized connection attempt on SSHD detected"	2020-08-15 03:32:58
172.245.66.53	attackbotsspam	Brute-force attempt banned	2020-08-10 12:08:30
172.245.66.53	attackspambots	Invalid user matwork from 172.245.66.53 port 53226	2020-07-31 13:22:23
172.245.66.53	attackspambots	Jul 29 18:56:54 wbs sshd\[5260\]: Invalid user jkx from 172.245.66.53 Jul 29 18:56:54 wbs sshd\[5260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53 Jul 29 18:56:56 wbs sshd\[5260\]: Failed password for invalid user jkx from 172.245.66.53 port 48590 ssh2 Jul 29 19:02:00 wbs sshd\[5735\]: Invalid user dell from 172.245.66.53 Jul 29 19:02:00 wbs sshd\[5735\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53	2020-07-30 14:41:53
172.245.66.53	attack	SSH Brute Force	2020-07-30 00:57:33
172.245.66.53	attackspam	Invalid user admin from 172.245.66.53 port 33378	2020-07-28 07:12:32
172.245.66.53	attackbotsspam	SSH Login Bruteforce	2020-07-24 12:52:51
172.245.66.53	attackspambots	Jul 23 15:15:39 scw-6657dc sshd[6179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53 Jul 23 15:15:39 scw-6657dc sshd[6179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53 Jul 23 15:15:41 scw-6657dc sshd[6179]: Failed password for invalid user lucas from 172.245.66.53 port 52570 ssh2 ...	2020-07-24 00:09:39
172.245.66.53	attackbots	Jul 14 11:28:29 propaganda sshd[41003]: Connection from 172.245.66.53 port 47286 on 10.0.0.160 port 22 rdomain "" Jul 14 11:28:29 propaganda sshd[41003]: Connection closed by 172.245.66.53 port 47286 [preauth]	2020-07-15 02:47:52
172.245.66.53	attack	Jul 8 18:03:59 serwer sshd\[30692\]: Invalid user peony from 172.245.66.53 port 58962 Jul 8 18:03:59 serwer sshd\[30692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.245.66.53 Jul 8 18:04:01 serwer sshd\[30692\]: Failed password for invalid user peony from 172.245.66.53 port 58962 ssh2 ...	2020-07-09 00:14:02
172.245.66.53	attackspam	Invalid user yll from 172.245.66.53 port 56162	2020-06-18 05:31:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.245.66.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59407
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.245.66.112.			IN	A

;; AUTHORITY SECTION:
.			412	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024061401 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 15 13:48:07 CST 2024
;; MSG SIZE  rcvd: 107

Host info

112.66.245.172.in-addr.arpa domain name pointer 172-245-66-112-host.colocrossing.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
112.66.245.172.in-addr.arpa	name = 172-245-66-112-host.colocrossing.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.234.217.64	attackbots	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:12:23
190.27.198.74	attackspam	Scanning random ports - tries to find possible vulnerable services	2020-03-02 08:48:42
185.200.118.89	attackspam	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:17:06
187.33.235.50	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:07:03
185.252.101.3	attackbots	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:11:55
187.58.27.194	attackspambots	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:05:19
189.154.61.199	attack	Scanning random ports - tries to find possible vulnerable services	2020-03-02 08:52:02
187.18.102.200	attackspambots	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:08:19
189.112.148.121	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2020-03-02 08:53:36
190.63.130.130	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2020-03-02 08:47:39
187.33.235.58	attack	Scanning random ports - tries to find possible vulnerable services	2020-03-02 09:06:37
101.109.250.83	attackspambots	Unauthorized connection attempt detected from IP address 101.109.250.83 to port 23 [J]	2020-03-02 08:59:16
189.158.108.210	attackbots	Scanning random ports - tries to find possible vulnerable services	2020-03-02 08:51:37
188.165.244.73	attackbots	Scanning random ports - tries to find possible vulnerable services	2020-03-02 08:55:56
185.209.0.51	attack	Mar 2 01:40:57 debian-2gb-nbg1-2 kernel: \[5368842.268849\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.209.0.51 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=58501 PROTO=TCP SPT=40111 DPT=44444 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-02 09:15:49

Recently Reported IPs

103.183.99.150	103.183.99.210	103.183.99.10	146.170.96.145
45.204.212.139	23.225.183.142	122.162.147.24	1.54.204.165
199.26.100.67	199.26.100.92	1.192.246.174	199.26.100.145
119.178.184.68	23.225.183.75	25.35.58.114	113.110.216.61
52.216.162.80	40.122.110.132	40.122.110.144	192.168.43.95