112.66.99.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Hainan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 112.66.99.6 to port 8000 [J]	2020-01-27 15:15:57
attackbotsspam	Unauthorized connection attempt detected from IP address 112.66.99.6 to port 3128	2019-12-31 07:42:24

Comments on same subnet:

IP	Type	Details	Datetime
112.66.99.159	attackspam	Unauthorized connection attempt detected from IP address 112.66.99.159 to port 802 [T]	2020-01-10 09:23:22
112.66.99.167	attackspam	Unauthorized connection attempt detected from IP address 112.66.99.167 to port 8899	2020-01-04 08:33:51
112.66.99.25	attackspambots	Unauthorized connection attempt detected from IP address 112.66.99.25 to port 8090	2020-01-01 21:33:22
112.66.99.1	attackspambots	Unauthorized connection attempt detected from IP address 112.66.99.1 to port 2095	2019-12-31 08:33:07
112.66.99.211	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5430c47bb86fe825 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:48:59
112.66.99.155	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 540f7b87ae62e4fe \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:35:16
112.66.99.74	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5414bd353ee5eb45 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.066704189 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:09:41
112.66.99.63	attack	The%20IP%20has%20triggered%20Cloudflare%20WAF.%20Report%20generated%20by%20Cloudflare-WAF-to-AbuseIPDB%20(https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB)	2019-11-19 04:18:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.99.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38785
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.66.99.6.			IN	A

;; AUTHORITY SECTION:
.			546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019123001 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 31 07:42:21 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 6.99.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.99.66.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
42.117.20.222	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-01-30 23:09:40
42.118.204.90	attackbotsspam	Unauthorized connection attempt detected from IP address 42.118.204.90 to port 23 [J]	2020-01-30 23:25:26
111.90.150.204	spambotsattackproxynormal	usigdkgx	2020-01-30 23:23:13
185.220.101.60	attackbots	Unauthorized connection attempt detected from IP address 185.220.101.60 to port 5000 [J]	2020-01-30 23:29:48
39.41.63.30	attack	Unauthorized connection attempt detected from IP address 39.41.63.30 to port 4567 [J]	2020-01-30 23:10:33
103.95.12.132	attack	5x Failed Password	2020-01-30 23:21:08
115.238.59.165	attackspam	Jan 30 15:15:55 sd-53420 sshd\[11314\]: Invalid user informix from 115.238.59.165 Jan 30 15:15:55 sd-53420 sshd\[11314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.59.165 Jan 30 15:15:57 sd-53420 sshd\[11314\]: Failed password for invalid user informix from 115.238.59.165 port 52996 ssh2 Jan 30 15:20:25 sd-53420 sshd\[11744\]: Invalid user raghupati from 115.238.59.165 Jan 30 15:20:25 sd-53420 sshd\[11744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.238.59.165 ...	2020-01-30 22:49:55
111.90.150.204	spambotsattackproxynormal	tuet7eutd	2020-01-30 23:22:34
197.51.122.21	attack	Unauthorized connection attempt detected from IP address 197.51.122.21 to port 23 [J]	2020-01-30 23:13:10
222.186.169.194	attackbots	Jan 30 15:52:37 sso sshd[8792]: Failed password for root from 222.186.169.194 port 49748 ssh2 Jan 30 15:52:40 sso sshd[8792]: Failed password for root from 222.186.169.194 port 49748 ssh2 ...	2020-01-30 22:55:27
101.254.182.206	attackbots	Unauthorized connection attempt detected from IP address 101.254.182.206 to port 1433 [J]	2020-01-30 23:21:39
117.45.163.0	attackspam	Unauthorized connection attempt detected from IP address 117.45.163.0 to port 5555 [J]	2020-01-30 23:18:55
217.182.129.39	attack	Unauthorized connection attempt detected from IP address 217.182.129.39 to port 2220 [J]	2020-01-30 22:51:30
42.2.59.125	attack	Unauthorized connection attempt detected from IP address 42.2.59.125 to port 5555 [J]	2020-01-30 23:26:35
192.169.216.153	attack	192.169.216.153 - - \[30/Jan/2020:14:37:42 +0100\] "POST /wp-login.php HTTP/1.0" 200 6997 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 192.169.216.153 - - \[30/Jan/2020:14:37:44 +0100\] "POST /wp-login.php HTTP/1.0" 200 6864 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 192.169.216.153 - - \[30/Jan/2020:14:37:46 +0100\] "POST /wp-login.php HTTP/1.0" 200 6860 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-01-30 22:52:42

Recently Reported IPs

221.213.75.14	221.13.12.125	221.13.12.61	221.1.70.189
220.250.63.73	220.250.63.63	219.143.174.202	219.136.222.79
210.74.15.139	180.180.44.170	180.167.37.166	180.137.9.252
171.36.134.182	171.36.130.39	145.255.3.17	134.175.102.60
124.235.138.3	124.193.191.52	166.249.30.65	124.156.192.62