111.56.124.136

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Mobile Communications Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Connection by 111.56.124.136 on port: 23 got caught by honeypot at 10/27/2019 9:45:05 PM	2019-10-28 14:54:13
attackspambots	firewall-block, port(s): 23/tcp	2019-10-12 10:05:39

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.56.124.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57318
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.56.124.136.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090701 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 08 11:24:25 CST 2019
;; MSG SIZE  rcvd: 118

Host info

136.124.56.111.in-addr.arpa has no PTR record

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 136.124.56.111.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.146.145.104	attack	Sep 5 22:47:45 vtv3 sshd\[4102\]: Invalid user demo from 119.146.145.104 port 5367 Sep 5 22:47:45 vtv3 sshd\[4102\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.145.104 Sep 5 22:47:48 vtv3 sshd\[4102\]: Failed password for invalid user demo from 119.146.145.104 port 5367 ssh2 Sep 5 22:50:15 vtv3 sshd\[5721\]: Invalid user testuser from 119.146.145.104 port 5368 Sep 5 22:50:15 vtv3 sshd\[5721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.145.104 Sep 5 23:02:41 vtv3 sshd\[12678\]: Invalid user user from 119.146.145.104 port 5373 Sep 5 23:02:41 vtv3 sshd\[12678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.146.145.104 Sep 5 23:02:44 vtv3 sshd\[12678\]: Failed password for invalid user user from 119.146.145.104 port 5373 ssh2 Sep 5 23:05:19 vtv3 sshd\[14382\]: Invalid user oracle from 119.146.145.104 port 5374 Sep 5 23:05:19 vtv3 sshd\[14382\]	2019-09-20 18:59:31
92.190.144.72	attackspam	Port Scan: TCP/8000	2019-09-20 19:14:44
207.71.31.20	attackbotsspam	Port Scan: UDP/137	2019-09-20 19:26:18
185.239.238.237	attackbots	Sep 20 12:13:17 MK-Soft-VM4 sshd\[17908\]: Invalid user kamatari from 185.239.238.237 port 59982 Sep 20 12:13:17 MK-Soft-VM4 sshd\[17908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.239.238.237 Sep 20 12:13:19 MK-Soft-VM4 sshd\[17908\]: Failed password for invalid user kamatari from 185.239.238.237 port 59982 ssh2 ...	2019-09-20 18:51:42
138.99.207.27	attackspambots	Port Scan: TCP/8080	2019-09-20 19:10:53
113.130.154.109	attackbots	Port Scan: TCP/34567	2019-09-20 19:14:10
37.187.79.117	attack	2019-09-20T12:04:41.906652centos sshd\[12085\]: Invalid user sonar from 37.187.79.117 port 41065 2019-09-20T12:04:41.912383centos sshd\[12085\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.79.117 2019-09-20T12:04:44.139587centos sshd\[12085\]: Failed password for invalid user sonar from 37.187.79.117 port 41065 ssh2	2019-09-20 18:45:06
121.141.146.123	attackspambots	Port Scan: UDP/17612	2019-09-20 19:12:57
64.132.151.98	attack	Port Scan: UDP/137	2019-09-20 19:17:57
202.147.193.2	attackspambots	Port Scan: TCP/445	2019-09-20 19:26:41
201.228.121.230	attack	Sep 20 12:20:40 MK-Soft-VM5 sshd\[7610\]: Invalid user nivea from 201.228.121.230 port 59008 Sep 20 12:20:40 MK-Soft-VM5 sshd\[7610\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.228.121.230 Sep 20 12:20:42 MK-Soft-VM5 sshd\[7610\]: Failed password for invalid user nivea from 201.228.121.230 port 59008 ssh2 ...	2019-09-20 18:57:15
209.97.128.177	attack	Sep 20 06:43:22 plusreed sshd[8764]: Invalid user scott from 209.97.128.177 ...	2019-09-20 18:45:26
188.167.175.74	attackbotsspam	scan z	2019-09-20 18:58:33
177.10.162.235	attack	Port Scan: TCP/8888	2019-09-20 19:08:53
61.5.19.194	attackbotsspam	Port Scan: TCP/23	2019-09-20 19:19:00

Recently Reported IPs

191.53.52.245	115.214.107.41	123.125.71.58	196.246.0.62
57.150.19.213	9.59.28.130	217.250.190.192	201.182.32.224
198.23.133.81	18.140.6.83	111.72.146.198	189.112.217.244
61.69.250.57	119.75.157.212	178.128.126.56	46.229.212.240
150.95.212.72	31.5.154.171	105.184.13.197	166.218.159.28