116.54.98.69 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.54.98.234	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413b8b76b0298c9 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:13:59

Type

Details

Datetime

116.54.98.234

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5413b8b76b0298c9 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: theme-suka.skk.moe | User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 06:13:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.54.98.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20983
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.54.98.69.			IN	A

;; AUTHORITY SECTION:
.			544	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 16:22:59 CST 2022
;; MSG SIZE  rcvd: 105

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 116.54.98.69.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.103.210.192	attackspambots	Mar 4 06:02:29 vps58358 sshd\[25510\]: Invalid user alice from 180.103.210.192Mar 4 06:02:32 vps58358 sshd\[25510\]: Failed password for invalid user alice from 180.103.210.192 port 60818 ssh2Mar 4 06:06:16 vps58358 sshd\[25601\]: Invalid user test from 180.103.210.192Mar 4 06:06:19 vps58358 sshd\[25601\]: Failed password for invalid user test from 180.103.210.192 port 58337 ssh2Mar 4 06:10:22 vps58358 sshd\[25737\]: Invalid user pellegrini from 180.103.210.192Mar 4 06:10:23 vps58358 sshd\[25737\]: Failed password for invalid user pellegrini from 180.103.210.192 port 55847 ssh2 ...	2020-03-04 13:51:13
91.221.221.21	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 14:01:24
106.13.233.178	attack	Mar 4 11:11:27 gw1 sshd[28182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.233.178 Mar 4 11:11:28 gw1 sshd[28182]: Failed password for invalid user myftp from 106.13.233.178 port 53330 ssh2 ...	2020-03-04 14:15:20
139.59.31.205	attackspam	Mar 4 05:32:37 ip-172-31-62-245 sshd\[16003\]: Invalid user postgres from 139.59.31.205\ Mar 4 05:32:40 ip-172-31-62-245 sshd\[16003\]: Failed password for invalid user postgres from 139.59.31.205 port 44140 ssh2\ Mar 4 05:36:28 ip-172-31-62-245 sshd\[16071\]: Failed password for root from 139.59.31.205 port 15144 ssh2\ Mar 4 05:40:14 ip-172-31-62-245 sshd\[16222\]: Invalid user postgres from 139.59.31.205\ Mar 4 05:40:16 ip-172-31-62-245 sshd\[16222\]: Failed password for invalid user postgres from 139.59.31.205 port 41148 ssh2\	2020-03-04 13:43:59
14.215.47.223	attackbots	Mar 4 10:57:20 gw1 sshd[27391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.215.47.223 Mar 4 10:57:21 gw1 sshd[27391]: Failed password for invalid user testnet from 14.215.47.223 port 57624 ssh2 ...	2020-03-04 14:02:19
90.150.204.114	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 14:18:54
60.190.129.6	attackspambots	Mar 4 04:01:28 XXX sshd[31617]: Invalid user admin from 60.190.129.6 port 35204	2020-03-04 13:44:59
91.200.57.218	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 14:08:07
1.20.160.134	attackspambots	firewall-block, port(s): 1433/tcp	2020-03-04 13:38:26
41.223.4.155	attack	Mar 4 10:29:42 areeb-Workstation sshd[26466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.223.4.155 Mar 4 10:29:44 areeb-Workstation sshd[26466]: Failed password for invalid user minecraft from 41.223.4.155 port 38046 ssh2 ...	2020-03-04 13:55:08
122.224.164.194	attack	2020-03-0405:59:551j9M8O-0004ke-Kw\<=verena@rs-solution.chH=$localhost$[113.173.169.120]:46546P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=2325id=D1D462313AEEC073AFAAE35BAF48201B@rs-solution.chT="Youhappentobetryingtofindtruelove\?"foramightlycapo@gmail.comeverett.mcginnis1983@gmail.com2020-03-0405:59:561j9M8R-0004lD-8N\<=verena@rs-solution.chH=$localhost$[122.224.164.194]:47830P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3046id=2683c9868da67380a35dabf8f3271e3211fb33d319@rs-solution.chT="fromMallietorobertwright49"forrobertwright49@gmail.compipryder@hotmail.com2020-03-0405:59:421j9M8D-0004k6-0B\<=verena@rs-solution.chH=41-139-131-175.safaricombusiness.co.ke$localhost$[41.139.131.175]:54844P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:verena@rs-solution.chS=3144id=8000b6e5eec5efe77b7ec86483775d41117b4b@rs-solution.chT="fromMagnoliatojuanpaola1971"forjuanpaola1971@gmail.comabsentta	2020-03-04 13:37:08
104.248.25.225	attackbotsspam	$f2bV_matches	2020-03-04 14:17:18
37.49.226.137	attack	Mar 4 05:59:51 debian-2gb-nbg1-2 kernel: \[5557167.479614\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=37.49.226.137 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=54321 PROTO=TCP SPT=42910 DPT=5500 WINDOW=65535 RES=0x00 SYN URGP=0	2020-03-04 13:50:15
222.186.173.183	attackspambots	Mar 4 06:15:52 localhost sshd[43030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Mar 4 06:15:54 localhost sshd[43030]: Failed password for root from 222.186.173.183 port 31360 ssh2 Mar 4 06:15:58 localhost sshd[43030]: Failed password for root from 222.186.173.183 port 31360 ssh2 Mar 4 06:15:52 localhost sshd[43030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Mar 4 06:15:54 localhost sshd[43030]: Failed password for root from 222.186.173.183 port 31360 ssh2 Mar 4 06:15:58 localhost sshd[43030]: Failed password for root from 222.186.173.183 port 31360 ssh2 Mar 4 06:15:52 localhost sshd[43030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Mar 4 06:15:54 localhost sshd[43030]: Failed password for root from 222.186.173.183 port 31360 ssh2 Mar 4 06:15:58 localhost sshd[43 ...	2020-03-04 14:21:12
91.222.223.240	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-04 14:00:52

Recently Reported IPs

116.54.98.254	116.55.1.5	116.54.98.54	116.54.98.93
116.55.246.163	116.55.13.36	116.74.157.13	116.74.126.78
116.74.18.161	116.74.134.141	116.74.254.196	116.74.18.35
116.74.125.185	116.74.27.246	116.74.20.72	116.74.32.164
116.74.33.160	116.74.22.36	116.74.34.195	116.74.59.209