116.52.118.161

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.52.118.253	attack	Unauthorized connection attempt detected from IP address 116.52.118.253 to port 4712 [T]	2020-04-15 02:07:01
116.52.118.52	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5435ea1e4817eb19 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: doku.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 05:13:51
116.52.118.239	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5413a39aae84e7ad \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:35:34

Type

Details

Datetime

116.52.118.253

attack

Unauthorized connection attempt detected from IP address 116.52.118.253 to port 4712 [T]

2020-04-15 02:07:01

116.52.118.52

attackbots

The IP has triggered Cloudflare WAF. CF-Ray: 5435ea1e4817eb19 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: doku.skk.moe | User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 05:13:51

116.52.118.239

attack

The IP has triggered Cloudflare WAF. CF-Ray: 5413a39aae84e7ad | WAF_Rule_ID: 1112824 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: blog.skk.moe | User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:35:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.52.118.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51466
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.52.118.161.			IN	A

;; AUTHORITY SECTION:
.			310	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 71 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 17:54:51 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 161.118.52.116.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

server can't find 116.52.118.161.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.55.184.78	attackbots	$f2bV_matches	2020-04-16 20:59:48
171.247.155.198	attack	1587039315 - 04/16/2020 14:15:15 Host: 171.247.155.198/171.247.155.198 Port: 445 TCP Blocked	2020-04-16 21:11:43
112.78.185.146	attack	Unauthorized connection attempt from IP address 112.78.185.146 on Port 445(SMB)	2020-04-16 21:21:46
159.203.190.189	attack	Bruteforce detected by fail2ban	2020-04-16 21:29:04
180.242.53.112	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 16-04-2020 13:15:17.	2020-04-16 21:09:43
88.238.87.10	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 16-04-2020 13:15:18.	2020-04-16 21:08:11
54.165.156.81	attackspambots	\x16\x03\x01\x02 etc... Error 400...	2020-04-16 21:18:33
189.243.8.173	attack	5x Failed Password	2020-04-16 21:21:15
103.112.191.100	attackspambots	Repeated brute force against a port	2020-04-16 21:22:15
49.88.112.111	attackbotsspam	Apr 16 18:22:12 gw1 sshd[32246]: Failed password for root from 49.88.112.111 port 44739 ssh2 Apr 16 18:22:15 gw1 sshd[32246]: Failed password for root from 49.88.112.111 port 44739 ssh2 ...	2020-04-16 21:33:03
200.219.229.57	attack	port 5901	2020-04-16 21:14:42
159.65.196.65	attackspam	firewall-block, port(s): 30607/tcp	2020-04-16 21:34:44
222.186.173.183	attackbots	Apr 16 15:46:31 ift sshd\[56845\]: Failed password for root from 222.186.173.183 port 45726 ssh2Apr 16 15:46:50 ift sshd\[56850\]: Failed password for root from 222.186.173.183 port 56688 ssh2Apr 16 15:46:54 ift sshd\[56850\]: Failed password for root from 222.186.173.183 port 56688 ssh2Apr 16 15:46:57 ift sshd\[56850\]: Failed password for root from 222.186.173.183 port 56688 ssh2Apr 16 15:47:00 ift sshd\[56850\]: Failed password for root from 222.186.173.183 port 56688 ssh2 ...	2020-04-16 20:58:50
192.241.237.193	attack	" "	2020-04-16 21:09:09
106.12.113.63	attack	Brute force SMTP login attempted. ...	2020-04-16 21:15:51

Recently Reported IPs

116.52.118.154	116.52.118.183	119.118.19.63	119.118.2.104
119.118.19.69	119.118.19.78	119.118.2.116	119.118.19.79
119.118.2.23	119.118.2.132	119.118.2.143	119.118.2.200
119.118.2.153	119.118.2.15	116.52.118.187	119.118.20.119
119.118.20.127	119.118.20.214	119.118.20.39	119.118.20.43