Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Guangxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Type Details Datetime
attackbotsspam
Port scan: Attack repeated for 24 hours
2020-07-18 13:41:40
attackbotsspam
Mar 31 23:30:13 debian-2gb-nbg1-2 kernel: \[7949264.233947\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=116.252.80.130 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=26802 PROTO=TCP SPT=22266 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0
2020-04-01 07:27:25
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.252.80.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41116
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;116.252.80.130.			IN	A

;; AUTHORITY SECTION:
.			367	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020033102 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 07:27:20 CST 2020
;; MSG SIZE  rcvd: 118
Host info
130.80.252.116.in-addr.arpa has no PTR record
Nslookup info:
;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 130.80.252.116.in-addr.arpa: SERVFAIL

Related IP info:
Related comments:
IP Type Details Datetime
47.9.243.184 attackbotsspam
Host Scan
2019-12-10 17:24:12
119.23.18.55 attackspam
Host Scan
2019-12-10 17:38:16
77.42.83.185 attack
Automatic report - Port Scan Attack
2019-12-10 17:41:12
50.239.143.100 attackspambots
Dec  9 23:18:01 eddieflores sshd\[31986\]: Invalid user romlah from 50.239.143.100
Dec  9 23:18:01 eddieflores sshd\[31986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100
Dec  9 23:18:02 eddieflores sshd\[31986\]: Failed password for invalid user romlah from 50.239.143.100 port 48188 ssh2
Dec  9 23:23:36 eddieflores sshd\[662\]: Invalid user apache from 50.239.143.100
Dec  9 23:23:36 eddieflores sshd\[662\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100
2019-12-10 17:31:57
106.12.30.59 attackspambots
Dec 10 09:17:17 eventyay sshd[12886]: Failed password for root from 106.12.30.59 port 40977 ssh2
Dec 10 09:23:56 eventyay sshd[13130]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.30.59
Dec 10 09:23:59 eventyay sshd[13130]: Failed password for invalid user abello from 106.12.30.59 port 40223 ssh2
...
2019-12-10 17:50:31
218.92.0.141 attackspam
Brute-force attempt banned
2019-12-10 17:50:50
222.186.173.154 attackspambots
Unauthorized connection attempt detected from IP address 222.186.173.154 to port 22
2019-12-10 17:30:46
182.52.30.103 attackbots
Dec 10 07:33:21 *** sshd[18377]: Invalid user prueba from 182.52.30.103
2019-12-10 17:31:32
119.196.83.30 attackspam
2019-12-10T09:28:54.302565abusebot-5.cloudsearch.cf sshd\[6020\]: Invalid user hp from 119.196.83.30 port 60078
2019-12-10 17:30:20
92.118.38.55 attackbots
Dec 10 10:16:37 andromeda postfix/smtpd\[12704\]: warning: unknown\[92.118.38.55\]: SASL LOGIN authentication failed: authentication failure
Dec 10 10:16:39 andromeda postfix/smtpd\[9751\]: warning: unknown\[92.118.38.55\]: SASL LOGIN authentication failed: authentication failure
Dec 10 10:16:51 andromeda postfix/smtpd\[12689\]: warning: unknown\[92.118.38.55\]: SASL LOGIN authentication failed: authentication failure
Dec 10 10:17:04 andromeda postfix/smtpd\[9664\]: warning: unknown\[92.118.38.55\]: SASL LOGIN authentication failed: authentication failure
Dec 10 10:17:06 andromeda postfix/smtpd\[9751\]: warning: unknown\[92.118.38.55\]: SASL LOGIN authentication failed: authentication failure
2019-12-10 17:23:52
119.146.145.104 attackbots
Dec 10 10:41:11 ns381471 sshd[23073]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.145.104
Dec 10 10:41:13 ns381471 sshd[23073]: Failed password for invalid user roybal from 119.146.145.104 port 2493 ssh2
2019-12-10 17:45:33
192.163.224.116 attack
Dec 10 15:06:54 areeb-Workstation sshd[14082]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.163.224.116 
Dec 10 15:06:57 areeb-Workstation sshd[14082]: Failed password for invalid user ubuntu from 192.163.224.116 port 47664 ssh2
...
2019-12-10 17:57:52
218.92.0.135 attackspambots
Dec  9 23:48:51 hanapaa sshd\[3938\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.135  user=root
Dec  9 23:48:52 hanapaa sshd\[3938\]: Failed password for root from 218.92.0.135 port 26528 ssh2
Dec  9 23:48:56 hanapaa sshd\[3938\]: Failed password for root from 218.92.0.135 port 26528 ssh2
Dec  9 23:48:59 hanapaa sshd\[3938\]: Failed password for root from 218.92.0.135 port 26528 ssh2
Dec  9 23:49:08 hanapaa sshd\[3986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.135  user=root
2019-12-10 17:51:21
51.91.101.222 attackspambots
Dec 10 04:03:22 server sshd\[7107\]: Failed password for invalid user k from 51.91.101.222 port 32770 ssh2
Dec 10 11:36:51 server sshd\[4931\]: Invalid user odont from 51.91.101.222
Dec 10 11:36:51 server sshd\[4931\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.ip-51-91-101.eu 
Dec 10 11:36:54 server sshd\[4931\]: Failed password for invalid user odont from 51.91.101.222 port 46148 ssh2
Dec 10 11:45:40 server sshd\[7953\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.ip-51-91-101.eu  user=root
...
2019-12-10 17:46:05
61.245.153.139 attack
Dec 10 04:44:12 TORMINT sshd\[12233\]: Invalid user apache from 61.245.153.139
Dec 10 04:44:12 TORMINT sshd\[12233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.245.153.139
Dec 10 04:44:14 TORMINT sshd\[12233\]: Failed password for invalid user apache from 61.245.153.139 port 52970 ssh2
...
2019-12-10 17:58:13

Recently Reported IPs

134.122.61.205 111.120.16.2 103.45.106.55 222.77.77.162
183.111.197.102 109.73.176.53 103.25.58.129 213.238.181.236
121.122.97.162 110.93.91.95 114.79.144.99 89.223.93.15
110.87.106.72 116.90.145.153 82.0.24.21 53.39.108.147
77.40.131.162 208.126.209.0 95.170.239.20 206.208.188.181