112.66.107.104

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
112.66.107.70	attack	Unauthorized connection attempt detected from IP address 112.66.107.70 to port 8082 [J]	2020-03-02 20:34:45
112.66.107.228	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 541755e7a874999b \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:05:42
112.66.107.110	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541760960bd7eb91 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:13:22

类型

评论内容

时间

112.66.107.70

attack

Unauthorized connection attempt detected from IP address 112.66.107.70 to port 8082 [J]

2020-03-02 20:34:45

112.66.107.228

attackspambots

The IP has triggered Cloudflare WAF. CF-Ray: 541755e7a874999b | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: theme-suka.skk.moe | User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 06:05:42

112.66.107.110

attack

The IP has triggered Cloudflare WAF. CF-Ray: 541760960bd7eb91 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: blog.skk.moe | User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:13:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.107.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16588
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.66.107.104.			IN	A

;; AUTHORITY SECTION:
.			165	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 06:39:24 CST 2022
;; MSG SIZE  rcvd: 107

HOST信息:

Host 104.107.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 104.107.66.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
49.51.161.95	attack	Automatic report - Banned IP Access	2020-09-20 19:03:37
185.220.102.241	attackspambots	php WP PHPmyadamin ABUSE blocked for 12h	2020-09-20 18:39:28
69.163.194.151	attack	[SatSep1918:58:20.9168192020][:error][pid2756:tid47838991030016][client69.163.194.151:48072][client69.163.194.151]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(wp-\)\?config\\\\\\\\.\(php\)\?\\\\\\\\.\(\?:bac\?k\\|o\(\?:ld\\|rig\)\\|copy\\|tmp\\|s\(\?:ave\\|wp\)\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1254"][id"390597"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-DataLeakage-attempttoaccessbackupsystem/applicationconfigfile\(disablethisruleonlyifyouwanttoallowanyoneaccesstothesebackupfiles\)"][severity"CRITICAL"][hostname"lacasadeitesori.com"][uri"/wp-config.php.bak"][unique_id"X2Y4rOnpg3w7ehOys6ZhKAAAAAc"][SatSep1918:58:27.8303522020][:error][pid3072:tid47838986827520][client69.163.194.151:48190][client69.163.194.151]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(wp-\)\?config\\\\\\\\.\(php\)\?\\\\\\\\.\(\?:bac\?k\\|o\(\?:ld\\|rig\)\\|copy\\|tmp\\|s\(\?:ave\\|wp\)\\|vim\?\\\\\\\\.\\|~\)"atREQUEST_FILENAME	2020-09-20 19:04:02
74.82.47.52	attack	firewall-block, port(s): 1883/tcp	2020-09-20 19:00:19
184.105.247.216	attackbotsspam	Unwanted checking 80 or 443 port ...	2020-09-20 18:41:36
23.108.47.179	attackspambots	Massiver Kommentar-Spam.	2020-09-20 19:02:00
111.47.18.22	attackspam	Automatic report - Banned IP Access	2020-09-20 18:55:45
45.138.100.138	attackspam	Chat Spam	2020-09-20 18:36:13
118.27.11.126	attackbotsspam	Sep 20 12:27:19 santamaria sshd\[25757\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.11.126 user=root Sep 20 12:27:21 santamaria sshd\[25757\]: Failed password for root from 118.27.11.126 port 43714 ssh2 Sep 20 12:30:08 santamaria sshd\[25789\]: Invalid user ftptest from 118.27.11.126 Sep 20 12:30:08 santamaria sshd\[25789\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.27.11.126 ...	2020-09-20 18:44:12
74.82.47.57	attack	Found on Github Combined on 3 lists / proto=6 . srcport=60723 . dstport=631 . (1709)	2020-09-20 18:34:45
81.68.97.184	attackspam	81.68.97.184 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 20 00:39:08 server4 sshd[29097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.163.236 user=root Sep 20 00:39:10 server4 sshd[29097]: Failed password for root from 106.13.163.236 port 44696 ssh2 Sep 20 00:39:10 server4 sshd[29040]: Failed password for root from 93.149.12.2 port 60092 ssh2 Sep 20 00:33:50 server4 sshd[26066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.97.184 user=root Sep 20 00:33:51 server4 sshd[26066]: Failed password for root from 81.68.97.184 port 52812 ssh2 Sep 20 00:33:13 server4 sshd[25425]: Failed password for root from 78.139.216.117 port 55360 ssh2 IP Addresses Blocked: 106.13.163.236 (CN/China/-) 93.149.12.2 (IT/Italy/-)	2020-09-20 18:38:57
112.85.42.200	attack	Sep 20 10:55:57 email sshd\[3695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.200 user=root Sep 20 10:55:59 email sshd\[3695\]: Failed password for root from 112.85.42.200 port 59855 ssh2 Sep 20 10:56:21 email sshd\[3771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.200 user=root Sep 20 10:56:23 email sshd\[3771\]: Failed password for root from 112.85.42.200 port 29415 ssh2 Sep 20 10:56:25 email sshd\[3771\]: Failed password for root from 112.85.42.200 port 29415 ssh2 ...	2020-09-20 19:08:53
167.114.86.47	attackspam	Sep 20 01:32:59 propaganda sshd[22366]: Connection from 167.114.86.47 port 34038 on 10.0.0.161 port 22 rdomain "" Sep 20 01:32:59 propaganda sshd[22366]: Connection closed by 167.114.86.47 port 34038 [preauth]	2020-09-20 18:46:24
184.105.139.78	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-20 18:40:10
124.133.246.77	attack	bruteforce detected	2020-09-20 18:43:52

最近上报的IP列表

112.66.107.142	112.66.107.168	112.66.107.222	112.66.107.179
112.66.108.218	112.66.107.194	112.66.108.22	112.66.108.80
112.66.109.110	112.66.109.192	112.66.109.21	112.66.109.74
112.66.110.127	112.66.110.183	112.66.109.79	112.66.110.129
112.66.110.186	112.66.110.212	112.66.110.205	112.66.111.216