116.54.98.69 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
116.54.98.234	attackspam	The IP has triggered Cloudflare WAF. CF-Ray: 5413b8b76b0298c9 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:13:59

Type

Details

Datetime

116.54.98.234

attackspam

The IP has triggered Cloudflare WAF. CF-Ray: 5413b8b76b0298c9 | WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 | WAF_Kind: firewall | CF_Action: challenge | Country: CN | CF_IPClass: noRecord | Protocol: HTTP/1.1 | Method: GET | Host: theme-suka.skk.moe | User-Agent: Mozilla/5.0101097241 Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/69.0.3497.81 Safari/537.36 | CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).

2019-12-08 06:13:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 116.54.98.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20983
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;116.54.98.69.			IN	A

;; AUTHORITY SECTION:
.			544	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 16:22:59 CST 2022
;; MSG SIZE  rcvd: 105

Host info

b';; connection timed out; no servers could be reached
'

Nslookup info:

server can't find 116.54.98.69.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
2.81.224.200	attackbots	2019-09-06T00:50:02.547374ns2.unifynetsol.net webmin\[12955\]: Invalid login as root from 2.81.224.200 2019-09-06T00:50:08.001086ns2.unifynetsol.net webmin\[12956\]: Invalid login as root from 2.81.224.200 2019-09-06T00:50:13.455193ns2.unifynetsol.net webmin\[12957\]: Invalid login as root from 2.81.224.200 2019-09-06T00:50:18.938646ns2.unifynetsol.net webmin\[12976\]: Invalid login as root from 2.81.224.200 2019-09-06T00:50:24.404020ns2.unifynetsol.net webmin\[12979\]: Invalid login as root from 2.81.224.200	2019-09-06 06:27:21
218.98.26.162	attackbotsspam	2019-09-05T21:40:45.303610Z e3617fd9e692 New connection: 218.98.26.162:46802 (172.17.0.6:2222) [session: e3617fd9e692] 2019-09-05T22:35:53.764471Z 06a33d63544d New connection: 218.98.26.162:15417 (172.17.0.6:2222) [session: 06a33d63544d]	2019-09-06 06:36:57
104.248.7.24	attackbotsspam	Sep 5 22:16:04 web8 sshd\[24311\]: Invalid user gituser from 104.248.7.24 Sep 5 22:16:04 web8 sshd\[24311\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.7.24 Sep 5 22:16:06 web8 sshd\[24311\]: Failed password for invalid user gituser from 104.248.7.24 port 55690 ssh2 Sep 5 22:20:31 web8 sshd\[26565\]: Invalid user tf2server from 104.248.7.24 Sep 5 22:20:31 web8 sshd\[26565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.7.24	2019-09-06 06:38:48
45.55.38.39	attack	Sep 5 12:31:02 sachi sshd\[1038\]: Invalid user webadmin from 45.55.38.39 Sep 5 12:31:02 sachi sshd\[1038\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 Sep 5 12:31:04 sachi sshd\[1038\]: Failed password for invalid user webadmin from 45.55.38.39 port 41638 ssh2 Sep 5 12:35:26 sachi sshd\[1415\]: Invalid user ubuntu from 45.55.38.39 Sep 5 12:35:26 sachi sshd\[1415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39	2019-09-06 07:04:35
123.206.80.113	attackspambots	Sep 5 21:04:16 vserver sshd\[25275\]: Invalid user debian from 123.206.80.113Sep 5 21:04:18 vserver sshd\[25275\]: Failed password for invalid user debian from 123.206.80.113 port 58874 ssh2Sep 5 21:07:32 vserver sshd\[25320\]: Invalid user minecraft from 123.206.80.113Sep 5 21:07:34 vserver sshd\[25320\]: Failed password for invalid user minecraft from 123.206.80.113 port 33718 ssh2 ...	2019-09-06 06:30:57
218.98.40.154	attackspambots	19/9/5@18:55:42: FAIL: Alarm-SSH address from=218.98.40.154 ...	2019-09-06 07:01:07
158.174.89.71	attackspam	fire	2019-09-06 07:05:27
60.250.23.233	attackbotsspam	Sep 5 12:41:05 eddieflores sshd\[30734\]: Invalid user password from 60.250.23.233 Sep 5 12:41:05 eddieflores sshd\[30734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60-250-23-233.hinet-ip.hinet.net Sep 5 12:41:08 eddieflores sshd\[30734\]: Failed password for invalid user password from 60.250.23.233 port 61914 ssh2 Sep 5 12:46:08 eddieflores sshd\[31167\]: Invalid user adminuser from 60.250.23.233 Sep 5 12:46:08 eddieflores sshd\[31167\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60-250-23-233.hinet-ip.hinet.net	2019-09-06 06:56:14
159.89.125.55	attack	fire	2019-09-06 07:03:38
167.99.38.73	attack	firewall-block, port(s): 7128/tcp	2019-09-06 06:32:03
189.212.113.93	attack	" "	2019-09-06 06:45:15
159.146.78.161	attack	Unauthorised access (Sep 5) SRC=159.146.78.161 LEN=44 TTL=50 ID=59133 TCP DPT=8080 WINDOW=23789 SYN	2019-09-06 06:55:37
82.102.173.72	attackbots	Portscan or hack attempt detected by psad/fwsnort	2019-09-06 06:48:30
145.239.57.37	attackbots	Sep 5 12:19:10 friendsofhawaii sshd\[27601\]: Invalid user temp@123 from 145.239.57.37 Sep 5 12:19:10 friendsofhawaii sshd\[27601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.57.37 Sep 5 12:19:12 friendsofhawaii sshd\[27601\]: Failed password for invalid user temp@123 from 145.239.57.37 port 48550 ssh2 Sep 5 12:23:41 friendsofhawaii sshd\[28015\]: Invalid user welcome from 145.239.57.37 Sep 5 12:23:41 friendsofhawaii sshd\[28015\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.57.37	2019-09-06 06:40:35
106.52.24.184	attackbotsspam	Sep 5 11:17:57 hcbb sshd\[2165\]: Invalid user web from 106.52.24.184 Sep 5 11:17:57 hcbb sshd\[2165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.24.184 Sep 5 11:17:59 hcbb sshd\[2165\]: Failed password for invalid user web from 106.52.24.184 port 55946 ssh2 Sep 5 11:22:52 hcbb sshd\[2621\]: Invalid user admin from 106.52.24.184 Sep 5 11:22:52 hcbb sshd\[2621\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.24.184	2019-09-06 06:25:24

Recently Reported IPs

116.54.98.254	116.55.1.5	116.54.98.54	116.54.98.93
116.55.246.163	116.55.13.36	116.74.157.13	116.74.126.78
116.74.18.161	116.74.134.141	116.74.254.196	116.74.18.35
116.74.125.185	116.74.27.246	116.74.20.72	116.74.32.164
116.74.33.160	116.74.22.36	116.74.34.195	116.74.59.209