112.66.111.6 - IPInfo

基本信息:

城市(city): Haikou

省份(region): Hainan

国家(country): China

运营商(isp): ChinaNet Hainan Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 541353298c7beb81 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/4.074482891 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:17:55

类型

评论内容

时间

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 541353298c7beb81 | WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: ip.skk.moe | User-Agent: Mozilla/4.074482891 Mozilla/4.0 (compatible; MSIE 8.0; Windows NT 6.1; Trident/4.0 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:17:55

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.66.111.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40964
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.66.111.6.			IN	A

;; AUTHORITY SECTION:
.			444	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120700 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 08 03:17:52 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 6.111.66.112.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 6.111.66.112.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
141.98.9.164	attackbotsspam	2020-09-07T05:37:24.359169centos sshd[21197]: Failed none for invalid user admin from 141.98.9.164 port 40101 ssh2 2020-09-07T05:37:47.908499centos sshd[21267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.9.164 user=root 2020-09-07T05:37:49.887612centos sshd[21267]: Failed password for root from 141.98.9.164 port 36495 ssh2 ...	2020-09-07 12:51:43
45.95.168.96	attackspambots	Sep 7 06:44:07 mail postfix/smtpd\[19972\]: warning: unknown\[45.95.168.96\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 7 06:45:10 mail postfix/smtpd\[19972\]: warning: unknown\[45.95.168.96\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 7 06:45:10 mail postfix/smtpd\[20444\]: warning: unknown\[45.95.168.96\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Sep 7 06:45:10 mail postfix/smtpd\[19971\]: warning: unknown\[45.95.168.96\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-09-07 12:53:55
103.209.100.238	attack	TCP (SYN) 103.209.100.238:56230 -> port 18748, len 44	2020-09-07 12:49:01
112.85.42.89	attackspam	Sep 7 04:33:41 plex-server sshd[2620209]: Failed password for root from 112.85.42.89 port 48843 ssh2 Sep 7 04:35:25 plex-server sshd[2620971]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.89 user=root Sep 7 04:35:26 plex-server sshd[2620971]: Failed password for root from 112.85.42.89 port 62583 ssh2 Sep 7 04:36:17 plex-server sshd[2621332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.89 user=root Sep 7 04:36:19 plex-server sshd[2621332]: Failed password for root from 112.85.42.89 port 54444 ssh2 ...	2020-09-07 12:48:16
45.227.255.4	attack	Sep 7 06:14:43 theomazars sshd[19736]: Invalid user ubnt from 45.227.255.4 port 41975	2020-09-07 12:18:05
192.241.220.88	attackbotsspam	Scanned 1 times in the last 24 hours on port 22	2020-09-07 12:10:25
45.142.120.49	attack	Sep 7 06:27:45 cho postfix/smtpd[2394640]: warning: unknown[45.142.120.49]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 06:28:29 cho postfix/smtpd[2399253]: warning: unknown[45.142.120.49]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 06:29:12 cho postfix/smtpd[2394958]: warning: unknown[45.142.120.49]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 06:29:57 cho postfix/smtpd[2396950]: warning: unknown[45.142.120.49]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 06:31:34 cho postfix/smtpd[2396980]: warning: unknown[45.142.120.49]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-07 12:34:51
179.182.183.228	attackbotsspam	Automatic report - Port Scan Attack	2020-09-07 12:48:44
192.42.116.20	attackbots	192.42.116.20 (NL/Netherlands/-), 7 distributed sshd attacks on account [admin] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 6 22:01:14 server2 sshd[14926]: Invalid user admin from 192.42.116.20 Sep 6 22:31:18 server2 sshd[4732]: Invalid user admin from 51.195.136.14 Sep 6 22:01:16 server2 sshd[14926]: Failed password for invalid user admin from 192.42.116.20 port 33232 ssh2 Sep 6 22:00:12 server2 sshd[14296]: Invalid user admin from 141.98.252.163 Sep 6 21:57:59 server2 sshd[12656]: Failed password for invalid user admin from 185.220.103.6 port 55148 ssh2 Sep 6 22:00:07 server2 sshd[14210]: Invalid user admin from 141.98.252.163 Sep 6 22:00:10 server2 sshd[14210]: Failed password for invalid user admin from 141.98.252.163 port 40750 ssh2 IP Addresses Blocked:	2020-09-07 12:33:11
112.119.33.54	attack	Honeypot attack, port: 5555, PTR: n11211933054.netvigator.com.	2020-09-07 12:15:59
114.84.188.227	attack	Sep 6 21:31:05 minden010 sshd[22280]: Failed password for root from 114.84.188.227 port 20877 ssh2 Sep 6 21:34:35 minden010 sshd[22669]: Failed password for root from 114.84.188.227 port 49235 ssh2 Sep 6 21:38:02 minden010 sshd[23102]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.84.188.227 ...	2020-09-07 12:38:38
140.143.207.57	attackbotsspam	Sep 6 23:28:38 onepixel sshd[2247016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.207.57 Sep 6 23:28:38 onepixel sshd[2247016]: Invalid user ubuntu from 140.143.207.57 port 42848 Sep 6 23:28:40 onepixel sshd[2247016]: Failed password for invalid user ubuntu from 140.143.207.57 port 42848 ssh2 Sep 6 23:30:16 onepixel sshd[2247296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.207.57 user=root Sep 6 23:30:17 onepixel sshd[2247296]: Failed password for root from 140.143.207.57 port 60512 ssh2	2020-09-07 12:19:01
36.99.180.242	attackbots	(sshd) Failed SSH login from 36.99.180.242 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 6 23:53:12 optimus sshd[31094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.99.180.242 user=root Sep 6 23:53:14 optimus sshd[31094]: Failed password for root from 36.99.180.242 port 38370 ssh2 Sep 6 23:55:49 optimus sshd[31928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.99.180.242 user=root Sep 6 23:55:51 optimus sshd[31928]: Failed password for root from 36.99.180.242 port 33894 ssh2 Sep 6 23:56:51 optimus sshd[32276]: Invalid user ts3 from 36.99.180.242	2020-09-07 12:18:31
13.65.214.72	attack	Unauthorised login to NAS	2020-09-07 12:41:27
117.61.241.147	attack	20/9/6@19:20:51: FAIL: Alarm-Network address from=117.61.241.147 ...	2020-09-07 12:20:45

最近上报的IP列表

67.204.232.17	88.88.125.162	202.219.173.204	106.39.189.88
149.170.184.183	106.11.154.83	98.190.215.139	73.145.186.211
60.230.123.16	103.192.227.199	77.226.178.0	86.107.29.12
60.13.7.241	151.63.6.169	115.41.160.59	60.13.7.30
86.136.2.85	222.74.44.91	110.151.14.207	58.248.202.136