116.54.98.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.54.98.234	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413b8b76b0298c9 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:13:59

Type

Details

Datetime

116.54.98.234

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5413b8b76b0298c9 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: theme-suka.skk.moe | User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 06:13:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.54.98.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8971
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.54.98.6.			IN	A

;; AUTHORITY SECTION:
.			104	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030800 1800 900 604800 86400

;; Query time: 81 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 08 17:57:15 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 6.98.54.116.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

server can't find 116.54.98.6.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
216.218.206.85	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-09 20:31:22
104.244.79.241	attackbotsspam	Sep 9 12:58:55 prox sshd[24842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.79.241 Sep 9 12:58:57 prox sshd[24842]: Failed password for invalid user admin from 104.244.79.241 port 35386 ssh2	2020-09-09 20:44:05
185.202.0.116	attack	IP 185.202.0.116 attacked honeypot on port: 3389 at 9/8/2020 11:03:18 AM	2020-09-09 20:45:06
54.37.116.204	attackbotsspam	Port Scan detected from 54.37.116.204 (FR/France/Hauts-de-France/Gravelines/ip204.ip-54-37-116.eu). 4 hits in the last 130 seconds	2020-09-09 20:14:37
130.149.80.199	attack	Automatic report - Banned IP Access	2020-09-09 20:34:03
191.217.170.33	attackbots	2020-09-08T23:19:54.667714morrigan.ad5gb.com sshd[2788166]: Failed password for root from 191.217.170.33 port 60941 ssh2 2020-09-08T23:19:55.612401morrigan.ad5gb.com sshd[2788166]: Disconnected from authenticating user root 191.217.170.33 port 60941 [preauth]	2020-09-09 20:19:28
188.166.9.210	attack	prod8 ...	2020-09-09 20:40:52
85.214.66.94	attack	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-09-09 20:16:51
83.103.59.192	attackspambots	Sep 9 09:20:01 server sshd[19877]: Failed password for invalid user netscape from 83.103.59.192 port 37646 ssh2 Sep 9 09:23:32 server sshd[21735]: Failed password for root from 83.103.59.192 port 42802 ssh2 Sep 9 09:27:03 server sshd[23505]: Failed password for root from 83.103.59.192 port 47956 ssh2	2020-09-09 20:40:16
170.239.47.251	attackbots	Tried sshing with brute force.	2020-09-09 20:43:08
59.1.28.70	attack	Sep 8 14:11:42 dns1 sshd[18296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.1.28.70 Sep 8 14:11:42 dns1 sshd[18295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.1.28.70 Sep 8 14:11:43 dns1 sshd[18296]: Failed password for invalid user pi from 59.1.28.70 port 36448 ssh2 Sep 8 14:11:44 dns1 sshd[18295]: Failed password for invalid user pi from 59.1.28.70 port 36440 ssh2	2020-09-09 20:53:53
154.121.36.189	attackbots	1599584088 - 09/08/2020 18:54:48 Host: 154.121.36.189/154.121.36.189 Port: 445 TCP Blocked	2020-09-09 20:30:26
84.17.59.81	attackspambots	0,28-01/01 [bc02/m43] PostRequest-Spammer scoring: essen	2020-09-09 20:51:22
190.98.54.18	attack	(smtpauth) Failed SMTP AUTH login from 190.98.54.18 (SR/Suriname/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-08 21:24:40 plain authenticator failed for (7kkjfsxhu00moc079z6pfjza6u) [190.98.54.18]: 535 Incorrect authentication data (set_id=admin@mehrbaft.com)	2020-09-09 20:36:59
186.211.71.24	attackbots	186.211.71.24 - [09/Sep/2020:03:44:56 +0300] "POST /xmlrpc.php HTTP/1.1" 404 17146 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" 186.211.71.24 - [09/Sep/2020:03:48:04 +0300] "POST /xmlrpc.php HTTP/1.1" 404 17146 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" "-" ...	2020-09-09 20:52:22

Recently Reported IPs

119.120.23.217	119.120.23.24	119.120.23.73	119.120.23.242
119.120.23.93	119.120.23.95	119.120.230.145	119.120.230.20
119.120.23.80	119.120.230.84	119.120.230.69	119.120.231.133
119.120.23.97	116.54.98.77	119.120.248.113	119.120.248.12
119.120.248.131	119.120.248.151	119.120.248.183	119.120.231.2