116.54.42.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.54.42.231	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5412f4529cb2eb71 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:16:29

Type

Details

Datetime

116.54.42.231

attackspambots

The IP has triggered Cloudflare WAF. CF-Ray: 5412f4529cb2eb71 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: blog.skk.moe | User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:16:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.54.42.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10360
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.54.42.72.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 13:52:53 CST 2022
;; MSG SIZE  rcvd: 105

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 116.54.42.72.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
142.93.108.212	attackspambots	xmlrpc attack	2019-10-29 14:05:44
182.61.29.7	attackspam	web-1 [ssh_2] SSH Attack	2019-10-29 14:24:23
5.196.67.41	attack	SSH Bruteforce attack	2019-10-29 14:02:35
185.26.220.235	attackbots	2019-10-29T06:07:11.296206abusebot-5.cloudsearch.cf sshd\[29063\]: Invalid user marie12345678 from 185.26.220.235 port 32838	2019-10-29 14:16:13
177.184.66.13	attackspam	Automatic report - XMLRPC Attack	2019-10-29 13:54:16
139.155.22.165	attackbots	Oct 29 06:43:14 markkoudstaal sshd[21635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.22.165 Oct 29 06:43:16 markkoudstaal sshd[21635]: Failed password for invalid user bmffr from 139.155.22.165 port 43512 ssh2 Oct 29 06:48:53 markkoudstaal sshd[22204]: Failed password for root from 139.155.22.165 port 54918 ssh2	2019-10-29 13:56:38
49.234.24.108	attackspambots	Oct 29 07:01:02 MK-Soft-VM7 sshd[12664]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.24.108 Oct 29 07:01:04 MK-Soft-VM7 sshd[12664]: Failed password for invalid user ftpuser from 49.234.24.108 port 39952 ssh2 ...	2019-10-29 14:08:02
187.44.254.62	attackspambots	Autoban 187.44.254.62 AUTH/CONNECT	2019-10-29 14:04:53
192.163.207.48	attackspambots	sshd jail - ssh hack attempt	2019-10-29 14:01:41
182.50.132.93	attackspambots	abcdata-sys.de:80 182.50.132.93 - - \[29/Oct/2019:04:55:45 +0100\] "POST /xmlrpc.php HTTP/1.1" 301 441 "-" "WordPress/4.9.4\; http://www.atozdoor.com" www.goldgier.de 182.50.132.93 \[29/Oct/2019:04:55:47 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4484 "-" "WordPress/4.9.4\; http://www.atozdoor.com"	2019-10-29 14:03:53
64.235.45.17	attackspam	RDP Bruteforce	2019-10-29 14:29:14
107.161.9.171	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/107.161.9.171/ CA - 1H : (19) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CA NAME ASN : ASN22652 IP : 107.161.9.171 CIDR : 107.161.8.0/22 PREFIX COUNT : 122 UNIQUE IP COUNT : 91904 ATTACKS DETECTED ASN22652 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-29 04:55:13 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-29 14:23:24
171.244.129.66	attack	WordPress wp-login brute force :: 171.244.129.66 0.064 BYPASS [29/Oct/2019:05:26:05 0000] [censored_4] "POST /wp-login.php HTTP/1.1" 200 1525 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-29 14:05:26
132.232.93.48	attackbotsspam	Oct 29 05:39:07 venus sshd\[24027\]: Invalid user public from 132.232.93.48 port 56637 Oct 29 05:39:07 venus sshd\[24027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.93.48 Oct 29 05:39:09 venus sshd\[24027\]: Failed password for invalid user public from 132.232.93.48 port 56637 ssh2 ...	2019-10-29 13:54:40
123.207.167.233	attack	Invalid user wangyafang from 123.207.167.233 port 46532	2019-10-29 14:26:09

Recently Reported IPs

116.54.98.174	116.54.98.238	116.54.98.224	116.58.230.122
116.58.23.78	116.58.232.58	116.58.182.127	116.58.232.196
116.54.98.239	116.58.245.230	116.58.21.218	116.58.242.58
116.62.105.32	116.58.250.41	116.58.251.53	116.62.170.67
116.62.190.16	116.62.66.232	116.6.56.66	116.58.34.90