112.54.204.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Mobile Communications Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port Scan: UDP/49153	2019-09-20 19:42:04

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.54.204.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28890
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.54.204.2.			IN	A

;; AUTHORITY SECTION:
.			469	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092000 1800 900 604800 86400

;; Query time: 256 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 20 19:41:57 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 2.204.54.112.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 2.204.54.112.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.122.148.216	attack	Mar 18 14:37:14 OPSO sshd\[32365\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.216 user=root Mar 18 14:37:16 OPSO sshd\[32365\]: Failed password for root from 186.122.148.216 port 42748 ssh2 Mar 18 14:43:57 OPSO sshd\[1182\]: Invalid user muie from 186.122.148.216 port 53226 Mar 18 14:43:57 OPSO sshd\[1182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.122.148.216 Mar 18 14:43:59 OPSO sshd\[1182\]: Failed password for invalid user muie from 186.122.148.216 port 53226 ssh2	2020-03-18 22:29:39
220.133.224.2	attack	" "	2020-03-18 22:49:22
87.117.54.161	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:47.	2020-03-18 22:53:55
162.243.58.222	attackbotsspam	Brute force attempt	2020-03-18 22:20:35
165.227.101.226	attackbots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-03-18 22:20:14
41.232.83.13	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:40.	2020-03-18 23:06:23
142.93.122.58	attackspam	Mar 18 18:43:03 areeb-Workstation sshd[29560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.122.58 Mar 18 18:43:06 areeb-Workstation sshd[29560]: Failed password for invalid user admin from 142.93.122.58 port 43832 ssh2 ...	2020-03-18 22:50:37
218.89.241.68	attack	2020-03-18T14:03:55.622986 sshd[25401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.89.241.68 user=root 2020-03-18T14:03:57.257006 sshd[25401]: Failed password for root from 218.89.241.68 port 46820 ssh2 2020-03-18T14:11:10.571859 sshd[25501]: Invalid user user from 218.89.241.68 port 52527 ...	2020-03-18 22:22:03
46.172.10.26	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:43.	2020-03-18 23:02:43
94.254.50.251	attackbotsspam	Chat Spam	2020-03-18 22:30:22
78.164.219.171	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:45.	2020-03-18 22:58:02
185.26.147.245	attackbotsspam	Mar 18 19:12:06 gw1 sshd[30066]: Failed password for root from 185.26.147.245 port 57664 ssh2 ...	2020-03-18 22:32:39
186.224.238.253	attackbotsspam	Mar 18 15:16:54 localhost sshd\[19136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.224.238.253 user=root Mar 18 15:16:56 localhost sshd\[19136\]: Failed password for root from 186.224.238.253 port 52670 ssh2 Mar 18 15:19:51 localhost sshd\[19584\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.224.238.253 user=root	2020-03-18 23:01:07
82.178.106.8	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:46.	2020-03-18 22:56:11
82.213.38.147	attackspam	Mar 18 10:08:21 firewall sshd[23509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.213.38.147 user=root Mar 18 10:08:23 firewall sshd[23509]: Failed password for root from 82.213.38.147 port 61225 ssh2 Mar 18 10:11:01 firewall sshd[23698]: Invalid user fossil from 82.213.38.147 ...	2020-03-18 22:31:36

Recently Reported IPs

202.169.137.132	102.152.20.138	45.244.204.156	3.103.237.85
53.213.236.92	38.65.51.225	101.68.83.236	219.164.23.76
38.183.248.6	64.93.180.47	16.59.146.142	92.53.65.41
49.211.33.199	135.161.215.116	184.245.203.107	91.207.184.203
157.50.80.222	88.87.91.103	87.120.214.128	79.106.20.207