166.111.229.179

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       166.111.0.0 - 166.111.255.255
CIDR:           166.111.0.0/16
NetName:        APNIC-ERX-166-111-0-0
NetHandle:      NET-166-111-0-0-1
Parent:         NET166 (NET-166-0-0-0-0)
NetType:        Early Registrations, Transferred to APNIC
OriginAS:       
Organization:   Asia Pacific Network Information Centre (APNIC)
RegDate:        2003-08-06
Updated:        2009-10-08
Comment:        This IP address range is not registered in the ARIN database.
Comment:        This range was transferred to the APNIC Whois Database as
Comment:        part of the ERX (Early Registration Transfer) project.
Comment:        For details, refer to the APNIC Whois Database via
Comment:        WHOIS.APNIC.NET or http://wq.apnic.net/apnic-bin/whois.pl
Comment:        
Comment:        ** IMPORTANT NOTE: APNIC is the Regional Internet Registry
Comment:        for the Asia Pacific region.  APNIC does not operate networks
Comment:        using this IP address range and is not able to investigate
Comment:        spam or abuse reports relating to these addresses.  For more
Comment:        help, refer to http://www.apnic.net/apnic-info/whois_search2/abuse-and-spamming
Ref:            https://rdap.arin.net/registry/ip/166.111.0.0

ResourceLink:  https://apps.db.ripe.net/db-web-ui/query
ResourceLink:  whois.apnic.net


OrgName:        Asia Pacific Network Information Centre
OrgId:          APNIC
Address:        PO Box 3646
City:           South Brisbane
StateProv:      QLD
PostalCode:     4101
Country:        AU
RegDate:        
Updated:        2012-01-24
Ref:            https://rdap.arin.net/registry/entity/APNIC

ReferralServer:  whois://whois.apnic.net
ResourceLink:  http://wq.apnic.net/whois-search/static/search.html

OrgAbuseHandle: AWC12-ARIN
OrgAbuseName:   APNIC Whois Contact
OrgAbusePhone:  +61 7 3858 3188 
OrgAbuseEmail:  search-apnic-not-arin@apnic.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/AWC12-ARIN

OrgTechHandle: AWC12-ARIN
OrgTechName:   APNIC Whois Contact
OrgTechPhone:  +61 7 3858 3188 
OrgTechEmail:  search-apnic-not-arin@apnic.net
OrgTechRef:    https://rdap.arin.net/registry/entity/AWC12-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#



Found a referral to whois.apnic.net.

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '166.111.0.0 - 166.111.255.255'

% Abuse contact for '166.111.0.0 - 166.111.255.255' is 'abuse@cernet.edu.cn'

inetnum:        166.111.0.0 - 166.111.255.255
netname:        TSINGHUA-CN
descr:          Tsinghua University
country:        CN
org:            ORG-CEAR1-AP
admin-c:        CER-AP
tech-c:         CER-AP
abuse-c:        AC1685-AP
status:         ALLOCATED PORTABLE
mnt-by:         APNIC-HM
mnt-lower:      MAINT-TSINGHUA-CERNET
mnt-routes:     MAINT-TSINGHUA-CERNET
mnt-irt:        IRT-CERNET-AP
last-modified:  2023-09-06T06:09:18Z
source:         APNIC

irt:            IRT-CERNET-AP
address:        Network Center,
address:        FIT-3-220, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
fax-no:         +86-10-62785933
e-mail:         abuse@cernet.edu.cn
abuse-mailbox:  abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
auth:           # Filtered
remarks:        timezone GMT+8
remarks:        abuse@cernet.edu.cn was validated on 2026-03-05
mnt-by:         MAINT-CERNET-AP
last-modified:  2026-03-05T06:39:56Z
source:         APNIC

organisation:   ORG-CEAR1-AP
org-name:       China Education and Research Network (CERNET)
country:        CN
address:        FIT 3-220,
address:        Tsinghua University
phone:          +86-10-62785983
fax-no:         +86-10-62785933
e-mail:         hostmaster@cernic.net
mnt-ref:        APNIC-HM
mnt-by:         APNIC-HM
last-modified:  2018-09-13T12:56:34Z
source:         APNIC

role:           ABUSE CERNETAP
country:        ZZ
address:        Network Center,
address:        FIT-3-220, Tsinghua Univ
address:        Beijing 100084, China
phone:          +86-10-62784301
e-mail:         abuse@cernet.edu.cn
admin-c:        CER-AP
tech-c:         CER-AP
nic-hdl:        AC1685-AP
remarks:        Generated from irt object IRT-CERNET-AP
remarks:        abuse@cernet.edu.cn was validated on 2026-03-05
abuse-mailbox:  abuse@cernet.edu.cn
mnt-by:         APNIC-ABUSE
last-modified:  2026-03-05T06:40:20Z
source:         APNIC

role:           CERNET Helpdesk
address:        CERNET Center
address:        Beijing 100084, China
country:        CN
phone:          +86-10-6278-4049
fax-no:         +86-10-6278-5933
e-mail:         helpdesk@cernet.edu.cn
remarks:        abuse@cernet.edu.cn
admin-c:        XL1-CN
tech-c:         SZ2-AP
nic-hdl:        CER-AP
mnt-by:         MAINT-CERNET-AP
last-modified:  2020-09-03T09:14:12Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 166.111.229.179
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16790
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;166.111.229.179.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026032300 1800 900 604800 86400

;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 23 16:47:03 CST 2026
;; MSG SIZE  rcvd: 108

Host info

Host 179.229.111.166.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 179.229.111.166.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.168	attackbotsspam	Dec 2 17:14:48 eventyay sshd[16074]: Failed password for root from 218.92.0.168 port 38976 ssh2 Dec 2 17:14:51 eventyay sshd[16074]: Failed password for root from 218.92.0.168 port 38976 ssh2 Dec 2 17:14:54 eventyay sshd[16074]: Failed password for root from 218.92.0.168 port 38976 ssh2 Dec 2 17:15:00 eventyay sshd[16074]: error: maximum authentication attempts exceeded for root from 218.92.0.168 port 38976 ssh2 [preauth] ...	2019-12-03 00:22:11
122.54.131.186	attackbots	SMB Server BruteForce Attack	2019-12-03 00:10:41
104.236.112.52	attackspam	SSH brute-force: detected 8 distinct usernames within a 24-hour window.	2019-12-03 00:31:02
199.231.185.113	attackbotsspam	Automatic report - XMLRPC Attack	2019-12-03 00:03:05
185.175.93.104	attackbots	firewall-block, port(s): 4328/tcp, 4490/tcp, 50050/tcp	2019-12-03 00:03:33
218.92.0.180	attack	Dec 2 17:12:18 serwer sshd\[29809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.180 user=root Dec 2 17:12:20 serwer sshd\[29809\]: Failed password for root from 218.92.0.180 port 45285 ssh2 Dec 2 17:12:21 serwer sshd\[29814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.180 user=root ...	2019-12-03 00:12:53
130.61.83.71	attack	Dec 2 17:13:49 meumeu sshd[26755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.83.71 Dec 2 17:13:51 meumeu sshd[26755]: Failed password for invalid user vithoune from 130.61.83.71 port 58353 ssh2 Dec 2 17:19:24 meumeu sshd[27592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.61.83.71 ...	2019-12-03 00:25:42
200.209.174.76	attackspambots	Nov 29 19:15:42 microserver sshd[5823]: Invalid user irvin from 200.209.174.76 port 60705 Nov 29 19:15:42 microserver sshd[5823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.209.174.76 Nov 29 19:15:45 microserver sshd[5823]: Failed password for invalid user irvin from 200.209.174.76 port 60705 ssh2 Nov 29 19:19:52 microserver sshd[6120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.209.174.76 user=root Nov 29 19:19:54 microserver sshd[6120]: Failed password for root from 200.209.174.76 port 47364 ssh2 Nov 29 19:33:48 microserver sshd[8402]: Invalid user ssh from 200.209.174.76 port 35580 Nov 29 19:33:48 microserver sshd[8402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.209.174.76 Nov 29 19:33:51 microserver sshd[8402]: Failed password for invalid user ssh from 200.209.174.76 port 35580 ssh2 Nov 29 19:37:56 microserver sshd[9179]: pam_unix(sshd:auth): authentication f	2019-12-03 00:16:31
49.234.68.13	attackspambots	Dec 2 10:33:47 server sshd\[8119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.68.13 Dec 2 10:33:48 server sshd\[8119\]: Failed password for invalid user frye from 49.234.68.13 port 48094 ssh2 Dec 2 16:34:52 server sshd\[10103\]: Invalid user bitnami from 49.234.68.13 Dec 2 16:34:52 server sshd\[10103\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.68.13 Dec 2 16:34:54 server sshd\[10103\]: Failed password for invalid user bitnami from 49.234.68.13 port 44746 ssh2 ...	2019-12-03 00:07:55
52.141.19.182	attack	Dec 2 15:41:06 hell sshd[10861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.141.19.182 Dec 2 15:41:09 hell sshd[10861]: Failed password for invalid user lauren from 52.141.19.182 port 37350 ssh2 ...	2019-12-03 00:05:15
58.246.6.238	attack	" "	2019-12-03 00:14:44
36.22.187.34	attack	2019-12-02T16:19:35.725718abusebot-7.cloudsearch.cf sshd\[26387\]: Invalid user harizat from 36.22.187.34 port 40300	2019-12-03 00:36:40
185.55.148.4	attackspambots	Brute force attempt	2019-12-03 00:06:44
104.193.29.33	attack	Autoban 104.193.29.33 ABORTED AUTH	2019-12-03 00:23:07
193.66.202.67	attack	Dec 2 05:39:01 server sshd\[26308\]: Failed password for invalid user socorro from 193.66.202.67 port 38532 ssh2 Dec 2 16:26:58 server sshd\[8019\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.66.202.67 user=root Dec 2 16:27:00 server sshd\[8019\]: Failed password for root from 193.66.202.67 port 51138 ssh2 Dec 2 16:35:04 server sshd\[10198\]: Invalid user ws from 193.66.202.67 Dec 2 16:35:04 server sshd\[10198\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.66.202.67 ...	2019-12-02 23:58:23

Recently Reported IPs

88.46.2.140	10.23.12.11	47.15.240.190	74.121.229.134
212.170.112.11	82.145.117.233	2606:4700:10::6814:4998	2606:4700:10::6814:4814
2606:4700:10::6816:3322	2606:4700:10::6814:8583	2606:4700:10::6814:6878	2606:4700:10::6814:4512
2606:4700:10::6814:6341	2606:4700:10::6814:7617	2606:4700:10::6814:5779	110.78.150.134
2606:4700:10::6816:1133	2606:4700:10::ac43:1279	172.17.20.83	68.221.139.109