112.66.98.114 - IPInfo

Basic Info

City: Haikou

Region: Hainan

Country: China

Internet Service Provider: ChinaNet Hainan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	The IP has triggered Cloudflare WAF. CF-Ray: 54128ea20951d37e \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/4.038533357 Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1) QQBrowser/6.0 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:13:49

Type

Details

Datetime

attack

The IP has triggered Cloudflare WAF. CF-Ray: 54128ea20951d37e | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: theme-suka.skk.moe | User-Agent: Mozilla/4.038533357 Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1) QQBrowser/6.0 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 04:13:49

Comments on same subnet:

IP	Type	Details	Datetime
112.66.98.86	attackbots	Unauthorised access (Aug 30) SRC=112.66.98.86 LEN=40 TTL=51 ID=13759 TCP DPT=23 WINDOW=6350 SYN	2020-08-31 08:15:47
112.66.98.112	attackspam	Unauthorized connection attempt detected from IP address 112.66.98.112 to port 8123 [J]	2020-03-02 15:04:45
112.66.98.99	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 54304a3eb933ebc9 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 04:49:23
112.66.98.35	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 541560a2cd22e7ed \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:48:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.98.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34833
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.66.98.114.			IN	A

;; AUTHORITY SECTION:
.			572	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120701 1800 900 604800 86400

;; Query time: 94 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 04:13:46 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 114.98.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 114.98.66.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.97.114.61	attackspambots	Unauthorized connection attempt from IP address 185.97.114.61 on Port 445(SMB)	2019-12-06 01:55:29
201.218.255.102	attack	Unauthorized connection attempt from IP address 201.218.255.102 on Port 445(SMB)	2019-12-06 01:44:14
77.105.149.16	attack	Attack to ftp login	2019-12-06 01:41:34
134.73.51.238	attackspam	Postfix DNSBL listed. Trying to send SPAM.	2019-12-06 02:00:53
191.243.156.114	attackbots	Fail2Ban Ban Triggered	2019-12-06 01:59:46
185.156.73.52	attackspam	12/05/2019-12:50:46.718788 185.156.73.52 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-06 01:54:57
47.105.197.245	attack	REQUESTED PAGE: /license.php	2019-12-06 01:47:31
180.247.181.222	attack	Unauthorized connection attempt from IP address 180.247.181.222 on Port 445(SMB)	2019-12-06 02:11:42
200.228.214.66	attack	Unauthorized connection attempt from IP address 200.228.214.66 on Port 445(SMB)	2019-12-06 02:04:09
36.66.67.252	attack	Unauthorized connection attempt from IP address 36.66.67.252 on Port 445(SMB)	2019-12-06 02:03:37
109.12.217.42	attack	Dec 5 15:32:57 venus sshd\[14153\]: Invalid user gaze from 109.12.217.42 port 36264 Dec 5 15:32:57 venus sshd\[14153\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.12.217.42 Dec 5 15:32:59 venus sshd\[14153\]: Failed password for invalid user gaze from 109.12.217.42 port 36264 ssh2 ...	2019-12-06 02:05:06
109.110.52.77	attack	Dec 5 19:00:00 cvbnet sshd[24991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.110.52.77 Dec 5 19:00:02 cvbnet sshd[24991]: Failed password for invalid user vmadmin from 109.110.52.77 port 38456 ssh2 ...	2019-12-06 02:01:42
39.79.54.31	attackbots	Unauthorised access (Dec 5) SRC=39.79.54.31 LEN=40 TTL=49 ID=7480 TCP DPT=23 WINDOW=48271 SYN Unauthorised access (Dec 5) SRC=39.79.54.31 LEN=40 TTL=49 ID=7480 TCP DPT=23 WINDOW=48271 SYN	2019-12-06 02:03:07
36.228.3.124	attack	Unauthorized connection attempt from IP address 36.228.3.124 on Port 445(SMB)	2019-12-06 02:24:47
46.34.200.230	attackspambots	Unauthorized connection attempt from IP address 46.34.200.230 on Port 445(SMB)	2019-12-06 02:25:07

Recently Reported IPs

74.89.185.221	129.171.146.69	111.224.218.11	62.171.147.74
111.206.221.39	124.59.36.254	111.162.142.196	108.91.0.87
139.226.242.71	111.11.6.21	54.170.160.197	110.80.154.97
160.154.112.41	71.157.41.124	152.15.232.234	106.11.154.46
131.162.253.101	106.22.25.57	106.11.153.56	157.35.150.182