116.52.118.200

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.52.118.253	attack	Unauthorized connection attempt detected from IP address 116.52.118.253 to port 4712 [T]	2020-04-15 02:07:01
116.52.118.52	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5435ea1e4817eb19 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: doku.skk.moe \| User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 05:13:51
116.52.118.239	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5413a39aae84e7ad \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:35:34

Type

Details

Datetime

116.52.118.253

attack

Unauthorized connection attempt detected from IP address 116.52.118.253 to port 4712 [T]

2020-04-15 02:07:01

116.52.118.52

attackbots

The IP has triggered Cloudflare WAF. CF-Ray: 5435ea1e4817eb19 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: drop | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: doku.skk.moe | User-Agent: Mozilla/5.084743666 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/64.0.3282.140 Safari/537.36 Edge/17.17134 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-12 05:13:51

116.52.118.239

attack

The IP has triggered Cloudflare WAF. CF-Ray: 5413a39aae84e7ad | WAF_Rule_ID: 1112824 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: blog.skk.moe | User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:35:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.52.118.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7974
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.52.118.200.			IN	A

;; AUTHORITY SECTION:
.			538	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022000 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 01:26:48 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 200.118.52.116.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

server can't find 116.52.118.200.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
109.95.42.42	attack	<6 unauthorized SSH connections	2020-06-05 16:59:13
170.150.72.28	attack	Jun 5 07:52:43 localhost sshd\[19795\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.150.72.28 user=root Jun 5 07:52:45 localhost sshd\[19795\]: Failed password for root from 170.150.72.28 port 57376 ssh2 Jun 5 07:54:42 localhost sshd\[19865\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.150.72.28 user=root Jun 5 07:54:44 localhost sshd\[19865\]: Failed password for root from 170.150.72.28 port 54690 ssh2 Jun 5 07:56:34 localhost sshd\[20081\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.150.72.28 user=root ...	2020-06-05 16:52:37
212.244.23.8	attackbotsspam	Brute force attempt	2020-06-05 16:53:15
114.34.46.16	attackbotsspam	port scan and connect, tcp 23 (telnet)	2020-06-05 16:54:41
106.13.68.190	attackbotsspam	Jun 5 03:53:21 *** sshd[14347]: User root from 106.13.68.190 not allowed because not listed in AllowUsers	2020-06-05 16:25:16
209.152.157.37	attack	" "	2020-06-05 16:39:10
195.54.160.211	attackbotsspam	ET DROP Dshield Block Listed Source group 1 - port: 14017 proto: TCP cat: Misc Attack	2020-06-05 16:43:18
91.214.114.7	attack	<6 unauthorized SSH connections	2020-06-05 16:26:04
213.195.222.28	attack	(CZ/Czechia/-) SMTP Bruteforcing attempts	2020-06-05 16:42:50
36.111.182.52	attack	Tried sshing with brute force.	2020-06-05 16:46:49
213.92.163.219	attackbots	(PL/Poland/-) SMTP Bruteforcing attempts	2020-06-05 16:32:52
183.182.102.156	attackspambots	Automatic report - XMLRPC Attack	2020-06-05 16:38:36
46.105.28.141	attackbotsspam	$f2bV_matches	2020-06-05 16:21:55
122.51.204.47	attack	Fail2Ban Ban Triggered (2)	2020-06-05 17:01:48
112.85.42.189	attackspam	Jun 5 10:30:05 PorscheCustomer sshd[19669]: Failed password for root from 112.85.42.189 port 12749 ssh2 Jun 5 10:31:02 PorscheCustomer sshd[19688]: Failed password for root from 112.85.42.189 port 17611 ssh2 Jun 5 10:31:04 PorscheCustomer sshd[19688]: Failed password for root from 112.85.42.189 port 17611 ssh2 ...	2020-06-05 16:36:35

Recently Reported IPs

116.50.97.237	116.52.2.56	116.52.206.133	116.52.207.12
116.52.207.131	116.52.207.248	116.53.230.4	116.54.42.122
116.54.42.14	116.54.42.143	116.55.116.30	116.55.209.133
116.55.227.251	116.55.233.40	116.55.250.144	116.55.250.150
116.55.250.151	116.55.250.158	116.55.250.211	93.228.155.217