116.54.42.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.54.42.231	attackspambots	The IP has triggered Cloudflare WAF. CF-Ray: 5412f4529cb2eb71 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:16:29

Type

Details

Datetime

116.54.42.231

attackspambots

The IP has triggered Cloudflare WAF. CF-Ray: 5412f4529cb2eb71 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: blog.skk.moe | User-Agent: Mozilla/5.077692140 Mozilla/5.0 (Windows NT 6.1; Trident/7.0; rv:11.0) like Gecko | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 03:16:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.54.42.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10360
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.54.42.72.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 13:52:53 CST 2022
;; MSG SIZE  rcvd: 105

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 116.54.42.72.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.250.185.6	attackspambots	TCP Port Scanning	2020-03-18 00:16:27
222.186.180.8	attackbotsspam	Mar 17 17:30:32 v22018076622670303 sshd\[11829\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Mar 17 17:30:34 v22018076622670303 sshd\[11829\]: Failed password for root from 222.186.180.8 port 53786 ssh2 Mar 17 17:30:37 v22018076622670303 sshd\[11829\]: Failed password for root from 222.186.180.8 port 53786 ssh2 ...	2020-03-18 00:34:16
118.70.216.153	attackspam	Mar 17 12:22:43 firewall sshd[29748]: Failed password for root from 118.70.216.153 port 36764 ssh2 Mar 17 12:23:21 firewall sshd[29754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.70.216.153 user=root Mar 17 12:23:23 firewall sshd[29754]: Failed password for root from 118.70.216.153 port 57726 ssh2 ...	2020-03-18 00:35:06
116.12.251.135	attackspam	Mar 16 09:02:58 iago sshd[21608]: User mail from 116.12.251.135 not allowed because not listed in AllowUsers Mar 16 09:02:58 iago sshd[21608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.12.251.135 user=mail ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=116.12.251.135	2020-03-18 00:11:45
116.228.191.130	attackbotsspam	$f2bV_matches	2020-03-18 00:49:57
46.61.235.111	attackbots	Mar 17 09:41:16 163-172-32-151 sshd[1726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.61.235.111 user=root Mar 17 09:41:18 163-172-32-151 sshd[1726]: Failed password for root from 46.61.235.111 port 36488 ssh2 ...	2020-03-18 00:03:57
218.92.0.189	attackspambots	Automatic report BANNED IP	2020-03-18 00:39:12
23.105.172.118	attackspam	SpamScore above: 10.0	2020-03-18 00:18:45
81.63.167.178	attackspambots	rdp brute-force attack (aggressivity: high)	2020-03-18 00:27:26
5.117.121.1	attackspambots	1584434460 - 03/17/2020 09:41:00 Host: 5.117.121.1/5.117.121.1 Port: 445 TCP Blocked	2020-03-18 00:19:12
106.54.79.140	attackbotsspam	Mar 17 09:40:52 v22018076622670303 sshd\[7283\]: Invalid user mcserver from 106.54.79.140 port 36236 Mar 17 09:40:52 v22018076622670303 sshd\[7283\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.79.140 Mar 17 09:40:53 v22018076622670303 sshd\[7283\]: Failed password for invalid user mcserver from 106.54.79.140 port 36236 ssh2 ...	2020-03-18 00:26:32
157.38.55.211	attack	Unauthorized connection attempt detected from IP address 157.38.55.211 to port 445	2020-03-18 00:17:30
222.222.141.171	attackbotsspam	Mar 16 23:38:58 web9 sshd\[1582\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.222.141.171 user=root Mar 16 23:39:01 web9 sshd\[1582\]: Failed password for root from 222.222.141.171 port 48133 ssh2 Mar 16 23:42:42 web9 sshd\[2065\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.222.141.171 user=root Mar 16 23:42:43 web9 sshd\[2065\]: Failed password for root from 222.222.141.171 port 42263 ssh2 Mar 16 23:46:17 web9 sshd\[2579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.222.141.171 user=root	2020-03-18 00:38:50
2.30.219.39	attack	TCP Port Scanning	2020-03-18 00:10:49
112.85.42.232	attackbotsspam	1363 connection attempt	2020-03-18 00:52:47

Recently Reported IPs

116.54.98.174	116.54.98.238	116.54.98.224	116.58.230.122
116.58.23.78	116.58.232.58	116.58.182.127	116.58.232.196
116.54.98.239	116.58.245.230	116.58.21.218	116.58.242.58
116.62.105.32	116.58.250.41	116.58.251.53	116.62.170.67
116.62.190.16	116.62.66.232	116.6.56.66	116.58.34.90