124.131.112.56

Basic Info

City: Yantai

Region: Shandong

Country: China

Internet Service Provider: China Unicom Shandong Province Network

Hostname: unknown

Organization: CHINA UNICOM China169 Backbone

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 6 11:15:15 DDOS Attack: SRC=124.131.112.56 DST=[Masked] LEN=40 TOS=0x00 PREC=0x00 TTL=48 DF PROTO=TCP SPT=29285 DPT=80 WINDOW=0 RES=0x00 RST URGP=0	2019-08-07 02:50:40

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.131.112.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7175
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.131.112.56.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080601 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 07 02:50:34 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 56.112.131.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 56.112.131.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.89.35.251	attack	Dec 7 05:48:05 cp sshd[30249]: Failed password for root from 118.89.35.251 port 35730 ssh2 Dec 7 05:48:05 cp sshd[30249]: Failed password for root from 118.89.35.251 port 35730 ssh2 Dec 7 05:55:03 cp sshd[1603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.35.251	2019-12-07 13:11:05
69.229.6.52	attackbotsspam	2019-12-06T23:26:04.768857abusebot-8.cloudsearch.cf sshd\[20127\]: Invalid user aaaaaa from 69.229.6.52 port 41062	2019-12-07 09:19:25
59.149.237.145	attackbots	Dec 7 05:45:14 vps666546 sshd\[10454\]: Invalid user zhou from 59.149.237.145 port 36813 Dec 7 05:45:14 vps666546 sshd\[10454\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Dec 7 05:45:17 vps666546 sshd\[10454\]: Failed password for invalid user zhou from 59.149.237.145 port 36813 ssh2 Dec 7 05:55:03 vps666546 sshd\[10786\]: Invalid user evelynp from 59.149.237.145 port 42455 Dec 7 05:55:03 vps666546 sshd\[10786\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 ...	2019-12-07 13:11:38
182.73.123.118	attackbots	$f2bV_matches	2019-12-07 13:08:57
185.143.223.145	attackbotsspam	Multiport scan : 37 ports scanned 441 577 678 765 774 949 1116 3773 3883 4344 5051 9339 10819 11408 13123 14536 15824 16412 19195 20203 22338 22744 32322 32393 32927 34346 36060 37076 37158 37543 41713 44441 46465 54544 56503 60131 63670	2019-12-07 09:03:53
79.192.229.159	attack	Chat Spam	2019-12-07 09:10:00
138.68.92.121	attack	Dec 6 23:29:05 pi sshd\[22323\]: Failed password for invalid user sandige from 138.68.92.121 port 47878 ssh2 Dec 6 23:44:41 pi sshd\[22983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121 user=mysql Dec 6 23:44:43 pi sshd\[22983\]: Failed password for mysql from 138.68.92.121 port 57418 ssh2 Dec 6 23:59:58 pi sshd\[23658\]: Invalid user nentwich from 138.68.92.121 port 38736 Dec 6 23:59:58 pi sshd\[23658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121 ...	2019-12-07 09:12:17
163.172.187.30	attackspam	Invalid user host from 163.172.187.30 port 45950 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.187.30 Failed password for invalid user host from 163.172.187.30 port 45950 ssh2 Invalid user www from 163.172.187.30 port 38514 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.187.30	2019-12-07 13:13:23
218.89.134.71	attackbotsspam	Dec 6 23:01:08 localhost sshd\[3824\]: Invalid user marhta from 218.89.134.71 port 18690 Dec 6 23:01:08 localhost sshd\[3824\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.89.134.71 Dec 6 23:01:10 localhost sshd\[3824\]: Failed password for invalid user marhta from 218.89.134.71 port 18690 ssh2 ...	2019-12-07 09:12:45
118.24.158.42	attack	2019-12-07T00:55:09.625219abusebot-3.cloudsearch.cf sshd\[5320\]: Invalid user smotherman from 118.24.158.42 port 35224	2019-12-07 09:11:05
185.143.223.146	attackbots	Multiport scan : 13 ports scanned 90 100 888 2000 3381 3397 5555 7000 9999 23389 33389 40000 55555	2019-12-07 09:03:31
106.13.22.60	attack	$f2bV_matches	2019-12-07 09:19:09
185.143.223.130	attackspambots	Port scan on 5 port(s): 12167 12250 12257 12293 12324	2019-12-07 09:05:31
164.39.36.50	attack	fail2ban	2019-12-07 09:18:22
103.28.121.26	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-07 13:14:44

Recently Reported IPs

32.32.115.104	84.208.62.38	98.51.181.21	77.40.2.103
44.63.152.38	67.244.15.235	200.105.190.144	62.150.131.191
130.93.131.120	178.210.25.111	119.201.88.112	69.43.55.126
84.198.103.41	43.224.212.59	170.78.107.248	131.61.68.162
42.237.26.166	201.218.214.226	5.107.94.47	194.234.227.94