112.66.99.41 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
112.66.99.6	attackspam	Unauthorized connection attempt detected from IP address 112.66.99.6 to port 8000 [J]	2020-01-27 15:15:57
112.66.99.159	attackspam	Unauthorized connection attempt detected from IP address 112.66.99.159 to port 802 [T]	2020-01-10 09:23:22
112.66.99.167	attackspam	Unauthorized connection attempt detected from IP address 112.66.99.167 to port 8899	2020-01-04 08:33:51
112.66.99.25	attackspambots	Unauthorized connection attempt detected from IP address 112.66.99.25 to port 8090	2020-01-01 21:33:22
112.66.99.1	attackspambots	Unauthorized connection attempt detected from IP address 112.66.99.1 to port 2095	2019-12-31 08:33:07
112.66.99.6	attackbotsspam	Unauthorized connection attempt detected from IP address 112.66.99.6 to port 3128	2019-12-31 07:42:24
112.66.99.211	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5430c47bb86fe825 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:48:59
112.66.99.155	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 540f7b87ae62e4fe \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:35:16
112.66.99.74	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5414bd353ee5eb45 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.066704189 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:09:41
112.66.99.63	attack	The%20IP%20has%20triggered%20Cloudflare%20WAF.%20Report%20generated%20by%20Cloudflare-WAF-to-AbuseIPDB%20(https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB)	2019-11-19 04:18:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.99.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23335
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;112.66.99.41.			IN	A

;; AUTHORITY SECTION:
.			144	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 10:36:49 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 41.99.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 41.99.66.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
107.189.10.141	attackbots	2020-03-03T17:30:45.584645vpc sshd[17175]: Invalid user fake from 107.189.10.141 port 57976 2020-03-03T17:30:45.678040vpc sshd[17175]: Disconnected from 107.189.10.141 port 57976 [preauth] 2020-03-03T17:30:46.396938vpc sshd[17177]: Invalid user admin from 107.189.10.141 port 59140 2020-03-03T17:30:46.489777vpc sshd[17177]: Disconnected from 107.189.10.141 port 59140 [preauth] 2020-03-03T17:30:47.304586vpc sshd[17179]: Disconnected from 107.189.10.141 port 59980 [preauth] ...	2020-03-04 01:41:22
187.11.140.235	attackbotsspam	"SSH brute force auth login attempt."	2020-03-04 01:59:59
103.127.65.40	attackspam	Jan 5 19:09:18 mercury wordpress(www.learnargentinianspanish.com)[25692]: XML-RPC authentication failure for josh from 103.127.65.40 ...	2020-03-04 01:59:13
36.26.85.60	attack	Mar 3 18:40:49 lnxmysql61 sshd[19439]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.26.85.60	2020-03-04 02:07:58
185.230.82.40	attackbots	Invalid user otrs from 185.230.82.40 port 40500	2020-03-04 01:46:08
103.73.102.130	attack	[Thu Nov 21 09:06:31.194975 2019] [access_compat:error] [pid 14650] [client 103.73.102.130:50224] AH01797: client denied by server configuration: /var/www/html/josh/wp-login.php ...	2020-03-04 02:05:47
14.63.167.192	attack	$f2bV_matches	2020-03-04 02:16:15
107.189.11.193	attackspambots	Port 22 (SSH) access denied	2020-03-04 02:01:56
200.222.44.196	attackbots	SSH bruteforce	2020-03-04 02:10:46
103.103.128.201	attackspam	2019-11-30T23:33:12.107Z CLOSE host=103.103.128.201 port=42086 fd=4 time=20.020 bytes=20 ...	2020-03-04 02:02:47
103.7.8.201	attackbotsspam	[Tue Dec 31 16:26:11.023059 2019] [access_compat:error] [pid 8591] [client 103.7.8.201:46494] AH01797: client denied by server configuration: /var/www/html/luke/wp-login.php ...	2020-03-04 02:18:42
45.199.179.100	attackspam	Fail2Ban Ban Triggered	2020-03-04 01:38:35
116.126.139.74	attackbotsspam	Feb 20 00:19:59 mercury smtpd[1148]: 43d2ba25a6dfb372 smtp event=failed-command address=116.126.139.74 host=116.126.139.74 command="RCPT to:" result="550 Invalid recipient" ...	2020-03-04 01:54:09
106.105.66.51	attackspam	Dec 22 22:37:41 mercury kernel: [UFW ALLOW] IN=eth0 OUT= MAC=f2:3c:91:bc:4d:f8:84:78:ac:0d:8f:41:08:00 SRC=106.105.66.51 DST=109.74.200.221 LEN=32 TOS=0x00 PREC=0x00 TTL=46 ID=0 DF PROTO=UDP SPT=123 DPT=123 LEN=12 ...	2020-03-04 01:48:39
107.191.107.105	attackbots	suspicious action Tue, 03 Mar 2020 10:23:19 -0300	2020-03-04 01:54:39

Recently Reported IPs

112.66.243.128	112.66.247.99	112.67.187.143	112.74.98.13
112.78.1.220	112.78.1.239	112.78.11.10	112.78.112.43
112.78.11.11	112.78.117.105	112.78.117.172	112.66.97.191
112.78.125.31	112.78.143.22	112.78.2.104	112.78.2.146
112.78.2.14	112.78.2.112	112.78.2.26	112.78.2.163