112.66.99.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Hainan Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5414bd353ee5eb45 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.066704189 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:09:41

Type

Details

Datetime

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5414bd353ee5eb45 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: ip.skk.moe | User-Agent: Mozilla/5.066704189 Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 01:09:41

Comments on same subnet:

IP	Type	Details	Datetime
112.66.99.6	attackspam	Unauthorized connection attempt detected from IP address 112.66.99.6 to port 8000 [J]	2020-01-27 15:15:57
112.66.99.159	attackspam	Unauthorized connection attempt detected from IP address 112.66.99.159 to port 802 [T]	2020-01-10 09:23:22
112.66.99.167	attackspam	Unauthorized connection attempt detected from IP address 112.66.99.167 to port 8899	2020-01-04 08:33:51
112.66.99.25	attackspambots	Unauthorized connection attempt detected from IP address 112.66.99.25 to port 8090	2020-01-01 21:33:22
112.66.99.1	attackspambots	Unauthorized connection attempt detected from IP address 112.66.99.1 to port 2095	2019-12-31 08:33:07
112.66.99.6	attackbotsspam	Unauthorized connection attempt detected from IP address 112.66.99.6 to port 3128	2019-12-31 07:42:24
112.66.99.211	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5430c47bb86fe825 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:48:59
112.66.99.155	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 540f7b87ae62e4fe \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:35:16
112.66.99.63	attack	The%20IP%20has%20triggered%20Cloudflare%20WAF.%20Report%20generated%20by%20Cloudflare-WAF-to-AbuseIPDB%20(https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB)	2019-11-19 04:18:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.99.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60654
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.66.99.74.			IN	A

;; AUTHORITY SECTION:
.			359	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120700 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 01:09:38 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 74.99.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 74.99.66.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.19.197.46	attackspam	Unauthorized connection attempt from IP address 187.19.197.46 on Port 445(SMB)	2020-09-22 16:53:30
51.77.200.139	attackbots	Sep 22 07:40:03 inter-technics sshd[3240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.139 user=root Sep 22 07:40:05 inter-technics sshd[3240]: Failed password for root from 51.77.200.139 port 43674 ssh2 Sep 22 07:43:51 inter-technics sshd[3467]: Invalid user minecraft from 51.77.200.139 port 52942 Sep 22 07:43:51 inter-technics sshd[3467]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.200.139 Sep 22 07:43:51 inter-technics sshd[3467]: Invalid user minecraft from 51.77.200.139 port 52942 Sep 22 07:43:53 inter-technics sshd[3467]: Failed password for invalid user minecraft from 51.77.200.139 port 52942 ssh2 ...	2020-09-22 16:55:01
116.106.19.183	attackbots	[PY] (sshd) Failed SSH login from 116.106.19.183 (VN/Vietnam/dynamic-ip-adsl.viettel.vn): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 21 21:03:58 svr sshd[3191314]: refused connect from 116.106.19.183 (116.106.19.183) Sep 21 21:03:59 svr sshd[3191325]: refused connect from 116.106.19.183 (116.106.19.183) Sep 21 21:04:01 svr sshd[3191581]: refused connect from 116.106.19.183 (116.106.19.183) Sep 21 21:04:04 svr sshd[3191854]: refused connect from 116.106.19.183 (116.106.19.183) Sep 21 21:04:07 svr sshd[3191992]: refused connect from 116.106.19.183 (116.106.19.183)	2020-09-22 16:53:47
191.85.247.7	attackbotsspam	1600707683 - 09/21/2020 19:01:23 Host: 191.85.247.7/191.85.247.7 Port: 445 TCP Blocked	2020-09-22 17:10:07
31.184.199.114	attackbots	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-22T08:49:29Z and 2020-09-22T08:49:31Z	2020-09-22 17:12:08
36.225.145.121	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-22 17:08:29
202.142.110.180	attack	PHI,WP GET /wp-login.php	2020-09-22 16:40:51
115.72.27.78	attackspambots	Unauthorized connection attempt from IP address 115.72.27.78 on Port 445(SMB)	2020-09-22 17:01:07
36.66.188.183	attackspambots	Automatic report - Banned IP Access	2020-09-22 16:38:52
52.146.37.33	attack	Sep 21 19:01:36 nopemail auth.info sshd[17535]: Invalid user testftp from 52.146.37.33 port 34944 ...	2020-09-22 16:49:25
113.161.224.93	attackspam	Unauthorized connection attempt from IP address 113.161.224.93 on Port 445(SMB)	2020-09-22 16:51:25
202.166.217.108	attack	Unauthorized connection attempt from IP address 202.166.217.108 on Port 445(SMB)	2020-09-22 17:13:18
210.202.110.238	attackspambots	20/9/21@13:01:21: FAIL: IoT-SSH address from=210.202.110.238 ...	2020-09-22 17:12:53
162.216.143.173	attackbotsspam	Unauthorized connection attempt from IP address 162.216.143.173 on Port 445(SMB)	2020-09-22 17:05:45
141.98.10.211	attackbotsspam	Sep 22 10:54:08 marvibiene sshd[13542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.10.211 Sep 22 10:54:09 marvibiene sshd[13542]: Failed password for invalid user admin from 141.98.10.211 port 37527 ssh2 Sep 22 10:54:58 marvibiene sshd[13573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.10.211	2020-09-22 16:57:43

Recently Reported IPs

179.84.70.40	49.7.3.245	240e:58:2:200:100::c2	2408:8648:1300:40:787c:7954:546f:f43f
2408:8648:1300:40:4569:c195:5535:ab79	2400:dd0d:2000:0:29da:5f0d:fcc:1d49	56.12.133.14	34.82.3.66
27.224.137.98	3.112.171.116	223.166.75.60	223.166.74.143
222.94.163.135	221.213.75.207	221.13.12.188	220.250.62.202
12.79.244.19	53.250.140.191	180.95.231.196	175.184.167.72