116.211.5.254 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.211.5.52	attackspambots	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2020-05-10 04:00:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.211.5.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21011
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.211.5.254.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 21:31:41 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 254.5.211.116.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 254.5.211.116.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.73.38.58	attackspam	Nov 24 07:16:54 mxgate1 postfix/postscreen[13998]: CONNECT from [94.73.38.58]:61114 to [176.31.12.44]:25 Nov 24 07:16:54 mxgate1 postfix/dnsblog[14020]: addr 94.73.38.58 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 24 07:16:54 mxgate1 postfix/dnsblog[14020]: addr 94.73.38.58 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 24 07:16:54 mxgate1 postfix/dnsblog[14020]: addr 94.73.38.58 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 24 07:16:54 mxgate1 postfix/dnsblog[14022]: addr 94.73.38.58 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 24 07:16:54 mxgate1 postfix/dnsblog[14019]: addr 94.73.38.58 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 24 07:16:54 mxgate1 postfix/dnsblog[14021]: addr 94.73.38.58 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 24 07:17:00 mxgate1 postfix/postscreen[13998]: DNSBL rank 5 for [94.73.38.58]:61114 Nov x@x Nov 24 07:17:00 mxgate1 postfix/postscreen[13998]: HANGUP after 0.36 from [94.73.38.58]:61114 in tests........ -------------------------------	2019-11-24 17:45:06
183.214.161.24	attackspambots	11/24/2019-04:36:25.785915 183.214.161.24 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-24 17:36:29
46.98.208.2	attackspam	SMB Server BruteForce Attack	2019-11-24 17:56:38
45.55.88.94	attackspam	Nov 24 10:08:23 mout sshd[29349]: Invalid user saripah from 45.55.88.94 port 56798	2019-11-24 17:58:34
157.245.85.148	attackbotsspam	2019-11-24T10:04:26.937093abusebot-6.cloudsearch.cf sshd\[16067\]: Invalid user 114477114477 from 157.245.85.148 port 59402	2019-11-24 18:08:33
107.170.76.170	attack	Nov 24 08:38:43 MK-Soft-VM4 sshd[13297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.76.170 Nov 24 08:38:44 MK-Soft-VM4 sshd[13297]: Failed password for invalid user margarita123 from 107.170.76.170 port 44780 ssh2 ...	2019-11-24 17:32:25
86.102.88.242	attackbots	Nov 24 10:34:34 MK-Soft-VM5 sshd[13069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.102.88.242 Nov 24 10:34:36 MK-Soft-VM5 sshd[13069]: Failed password for invalid user password2222 from 86.102.88.242 port 48668 ssh2 ...	2019-11-24 18:00:58
145.239.198.218	attackspambots	Nov 24 14:33:21 gw1 sshd[11725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.198.218 Nov 24 14:33:23 gw1 sshd[11725]: Failed password for invalid user http from 145.239.198.218 port 40084 ssh2 ...	2019-11-24 17:51:39
103.120.227.53	attackspam	Nov 24 05:19:21 sanyalnet-cloud-vps4 sshd[16145]: Connection from 103.120.227.53 port 43594 on 64.137.160.124 port 22 Nov 24 05:19:23 sanyalnet-cloud-vps4 sshd[16145]: Invalid user guest from 103.120.227.53 Nov 24 05:19:23 sanyalnet-cloud-vps4 sshd[16145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.227.53 Nov 24 05:19:26 sanyalnet-cloud-vps4 sshd[16145]: Failed password for invalid user guest from 103.120.227.53 port 43594 ssh2 Nov 24 05:19:26 sanyalnet-cloud-vps4 sshd[16145]: Received disconnect from 103.120.227.53: 11: Bye Bye [preauth] Nov 24 05:59:37 sanyalnet-cloud-vps4 sshd[16955]: Connection from 103.120.227.53 port 58666 on 64.137.160.124 port 22 Nov 24 05:59:39 sanyalnet-cloud-vps4 sshd[16955]: User r.r from 103.120.227.53 not allowed because not listed in AllowUsers Nov 24 05:59:39 sanyalnet-cloud-vps4 sshd[16955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.1........ -------------------------------	2019-11-24 17:38:01
213.32.7.212	attackspam	Nov 23 23:32:24 web1 sshd\[327\]: Invalid user erenity from 213.32.7.212 Nov 23 23:32:24 web1 sshd\[327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.7.212 Nov 23 23:32:26 web1 sshd\[327\]: Failed password for invalid user erenity from 213.32.7.212 port 37062 ssh2 Nov 23 23:35:56 web1 sshd\[665\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.7.212 user=root Nov 23 23:35:59 web1 sshd\[665\]: Failed password for root from 213.32.7.212 port 44918 ssh2	2019-11-24 17:39:48
185.176.27.6	attackspam	11/24/2019-10:55:54.740401 185.176.27.6 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-24 18:08:50
190.40.157.78	attack	Nov 24 10:44:10 MK-Soft-Root2 sshd[31721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.40.157.78 Nov 24 10:44:13 MK-Soft-Root2 sshd[31721]: Failed password for invalid user test from 190.40.157.78 port 35764 ssh2 ...	2019-11-24 18:05:33
103.114.60.41	attackspambots	Automatic report - Port Scan Attack	2019-11-24 18:00:43
115.94.204.156	attackbotsspam	IP blocked	2019-11-24 18:07:13
222.186.190.2	attack	Nov 24 10:17:50 sd-53420 sshd\[18696\]: User root from 222.186.190.2 not allowed because none of user's groups are listed in AllowGroups Nov 24 10:17:51 sd-53420 sshd\[18696\]: Failed none for invalid user root from 222.186.190.2 port 62262 ssh2 Nov 24 10:17:51 sd-53420 sshd\[18696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.2 user=root Nov 24 10:17:53 sd-53420 sshd\[18696\]: Failed password for invalid user root from 222.186.190.2 port 62262 ssh2 Nov 24 10:17:56 sd-53420 sshd\[18696\]: Failed password for invalid user root from 222.186.190.2 port 62262 ssh2 ...	2019-11-24 17:38:51

Recently Reported IPs

244.100.34.103	115.126.82.35	76.54.180.120	48.41.201.176
250.178.195.73	241.252.178.125	38.214.31.244	62.195.100.237
42.108.102.0	45.7.107.68	151.94.88.57	222.227.39.233
104.16.225.205	84.248.14.35	189.112.35.213	58.200.45.133
27.97.140.56	164.118.206.122	235.44.137.67	231.248.158.20