124.131.112.56

Basic Info

City: Yantai

Region: Shandong

Country: China

Internet Service Provider: China Unicom Shandong Province Network

Hostname: unknown

Organization: CHINA UNICOM China169 Backbone

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 6 11:15:15 DDOS Attack: SRC=124.131.112.56 DST=[Masked] LEN=40 TOS=0x00 PREC=0x00 TTL=48 DF PROTO=TCP SPT=29285 DPT=80 WINDOW=0 RES=0x00 RST URGP=0	2019-08-07 02:50:40

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.131.112.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7175
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.131.112.56.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080601 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 07 02:50:34 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 56.112.131.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 56.112.131.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.125.110.139	attackbots	Jul 18 06:04:15 [host] sshd[29012]: Invalid user netadmin from 217.125.110.139 Jul 18 06:04:15 [host] sshd[29012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.125.110.139 Jul 18 06:04:18 [host] sshd[29012]: Failed password for invalid user netadmin from 217.125.110.139 port 37404 ssh2	2019-07-18 15:46:28
62.24.102.106	attackspambots	Jul 18 08:45:29 microserver sshd[13328]: Invalid user git from 62.24.102.106 port 36869 Jul 18 08:45:29 microserver sshd[13328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.24.102.106 Jul 18 08:45:32 microserver sshd[13328]: Failed password for invalid user git from 62.24.102.106 port 36869 ssh2 Jul 18 08:51:23 microserver sshd[14327]: Invalid user rstudio from 62.24.102.106 port 15684 Jul 18 08:51:23 microserver sshd[14327]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.24.102.106 Jul 18 09:03:21 microserver sshd[16681]: Invalid user doudou from 62.24.102.106 port 36138 Jul 18 09:03:21 microserver sshd[16681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.24.102.106 Jul 18 09:03:23 microserver sshd[16681]: Failed password for invalid user doudou from 62.24.102.106 port 36138 ssh2 Jul 18 09:09:12 microserver sshd[17474]: Invalid user yuriy from 62.24.102.106 port 37860 Jul 1	2019-07-18 15:43:16
177.158.40.186	attackbotsspam	Automatic report - Port Scan Attack	2019-07-18 15:58:54
79.17.32.183	attackbotsspam	2019-07-18T01:18:47.870647abusebot.cloudsearch.cf sshd\[28390\]: Invalid user pi from 79.17.32.183 port 34630	2019-07-18 15:28:26
128.199.216.250	attackspambots	Jul 18 09:38:37 vps691689 sshd[31600]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Jul 18 09:38:40 vps691689 sshd[31600]: Failed password for invalid user video from 128.199.216.250 port 42632 ssh2 ...	2019-07-18 15:57:06
139.59.17.118	attack	2019-07-18T07:28:18.193743abusebot-4.cloudsearch.cf sshd\[7372\]: Invalid user admin from 139.59.17.118 port 54376	2019-07-18 15:31:03
41.222.227.98	attack	WordPress login Brute force / Web App Attack on client site.	2019-07-18 15:28:49
138.255.14.165	attackspam	email spam	2019-07-18 15:48:28
173.12.157.141	attackbotsspam	Jul 18 09:37:19 s64-1 sshd[31234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.12.157.141 Jul 18 09:37:22 s64-1 sshd[31234]: Failed password for invalid user test1 from 173.12.157.141 port 56562 ssh2 Jul 18 09:44:41 s64-1 sshd[31321]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.12.157.141 ...	2019-07-18 15:54:32
186.206.134.122	attackspam	Jul 18 09:35:14 s64-1 sshd[31226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.134.122 Jul 18 09:35:16 s64-1 sshd[31226]: Failed password for invalid user ts3 from 186.206.134.122 port 39556 ssh2 Jul 18 09:41:36 s64-1 sshd[31290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.206.134.122 ...	2019-07-18 15:44:36
168.181.48.17	attack	Jul 18 09:29:30 localhost sshd\[15714\]: Invalid user tam from 168.181.48.17 port 5582 Jul 18 09:29:30 localhost sshd\[15714\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.181.48.17 Jul 18 09:29:32 localhost sshd\[15714\]: Failed password for invalid user tam from 168.181.48.17 port 5582 ssh2	2019-07-18 15:51:25
117.211.160.77	attackbots	Brute force SMTP login attempted. ...	2019-07-18 15:12:58
49.146.24.223	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-17 02:50:29,733 INFO [shellcode_manager] (49.146.24.223) no match, writing hexdump (ca0ffed3a52e69e303be046da1e021d6 :2111952) - MS17010 (EternalBlue)	2019-07-18 15:40:11
1.168.82.128	attack	[portscan] Port scan	2019-07-18 15:32:27
50.227.195.3	attackspambots	2019-07-18T06:37:33.057136abusebot-4.cloudsearch.cf sshd\[7197\]: Invalid user nagios from 50.227.195.3 port 39616	2019-07-18 15:18:58

Recently Reported IPs

32.32.115.104	84.208.62.38	98.51.181.21	77.40.2.103
44.63.152.38	67.244.15.235	200.105.190.144	62.150.131.191
130.93.131.120	178.210.25.111	119.201.88.112	69.43.55.126
84.198.103.41	43.224.212.59	170.78.107.248	131.61.68.162
42.237.26.166	201.218.214.226	5.107.94.47	194.234.227.94