124.220.42.101

Basic Info

City: Shanghai

Region: Shanghai

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '124.220.0.0 - 124.223.255.255'

% Abuse contact for '124.220.0.0 - 124.223.255.255' is 'abuse@tencent.com'

inetnum:        124.220.0.0 - 124.223.255.255
netname:        TencentCloud
descr:          Tencent cloud computing (Beijing) Co., Ltd.
descr:          Floor 6, Yinke Building, 38 Haidian St, Haidian District Beijing
country:        CN
admin-c:        JT1125-AP
tech-c:         JX1747-AP
abuse-c:        AC1601-AP
status:         ALLOCATED PORTABLE
mnt-by:         MAINT-CNNIC-AP
mnt-irt:        IRT-TENCENTCLOUD-CN
last-modified:  2023-11-28T00:57:04Z
source:         APNIC

irt:            IRT-TencentCloud-CN
address:        9F, FIYTA Building, Gaoxinnanyi Road, Southern
address:        District of Hi-tech Park, Shenzhen
e-mail:         tencent_noc@tencent.com
admin-c:        JT1125-AP
tech-c:         JX1747-AP
abuse-mailbox:  abuse@tencent.com
auth:           # Filtered
remarks:        abuse@tencent.com was validated on 2026-05-15
remarks:        tencent_noc@tencent.com is invalid
mnt-by:         MAINT-CNNIC-AP
last-modified:  2026-05-20T13:09:45Z
source:         APNIC

role:           ABUSE CNNICCN
country:        ZZ
address:        Beijing, China
phone:          +000000000
e-mail:         ipas@cnnic.cn
admin-c:        IP50-AP
tech-c:         IP50-AP
nic-hdl:        AC1601-AP
remarks:        Generated from irt object IRT-CNNIC-CN
remarks:        ipas@cnnic.cn is invalid
abuse-mailbox:  ipas@cnnic.cn
mnt-by:         APNIC-ABUSE
last-modified:  2025-09-19T17:20:32Z
source:         APNIC

person:         James Tian
address:        9F, FIYTA Building, Gaoxinnanyi Road,Southern
address:        District of Hi-tech Park, Shenzhen
country:        CN
phone:          +86-755-86013388-84952
e-mail:         johnsonqu@tencent.com
nic-hdl:        JT1125-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2024-03-19T08:21:31Z
source:         APNIC

person:         Jimmy Xiao
address:        9F, FIYTA Building, Gaoxinnanyi Road,Southern
address:        District of Hi-tech Park, Shenzhen
country:        CN
phone:          +86-755-86013388-80224
e-mail:         klayliang@tencent.com
nic-hdl:        JX1747-AP
mnt-by:         MAINT-CNNIC-AP
last-modified:  2021-09-17T00:38:09Z
source:         APNIC

% Information related to '124.220.0.0/14AS45090'

route:          124.220.0.0/14
origin:         AS45090
descr:          China Internet Network Information Center
                Floor1, Building No.1 C/-Chinese Academy of Sciences
                4, South 4th Street
                Haidian District,
mnt-by:         MAINT-CNNIC-AP
last-modified:  2021-10-11T01:50:32Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.48 (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.220.42.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30316
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.220.42.101.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026060302 1800 900 604800 86400

;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 04 10:30:21 CST 2026
;; MSG SIZE  rcvd: 107

Host info

Host 101.42.220.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 101.42.220.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
173.44.154.61	attackbotsspam	WordPress XMLRPC scan :: 173.44.154.61 0.124 BYPASS [23/Jul/2019:19:21:14 1000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 200 382 "https://www.[censored_1]/" "PHP/6.2.14"	2019-07-23 18:45:37
159.203.167.32	attackspam	masters-of-media.de 159.203.167.32 \[23/Jul/2019:11:21:28 +0200\] "POST /wp-login.php HTTP/1.1" 200 5855 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" masters-of-media.de 159.203.167.32 \[23/Jul/2019:11:21:30 +0200\] "POST /wp-login.php HTTP/1.1" 200 5854 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-23 18:35:38
185.176.222.37	attack	[Tue Jul 23 16:20:34.190777 2019] [:error] [pid 11523:tid 140230380140288] [client 185.176.222.37:44100] [client 185.176.222.37] ModSecurity: Access denied with code 403 (phase 2). Match of "within %{tx.allowed_methods}" against "REQUEST_METHOD" required. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-911-METHOD-ENFORCEMENT.conf"] [line "46"] [id "911100"] [msg "Method is not allowed by policy"] [data "CONNECT"] [severity "CRITICAL"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [tag "OWASP_CRS/POLICY/METHOD_NOT_ALLOWED"] [tag "WASCTC/WASC-15"] [tag "OWASP_TOP_10/A6"] [tag "OWASP_AppSensor/RE1"] [tag "PCI/12.1"] [hostname "www.drom.ru"] [uri "/"] [unique_id "XTbRYg2C4Znz8gBBmLoONwAAAFU"] ...	2019-07-23 19:02:47
211.253.10.96	attackbotsspam	Jul 23 12:05:01 legacy sshd[21417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.10.96 Jul 23 12:05:02 legacy sshd[21417]: Failed password for invalid user alejo from 211.253.10.96 port 34808 ssh2 Jul 23 12:10:26 legacy sshd[21513]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.10.96 ...	2019-07-23 18:18:51
151.84.222.52	attack	2019-07-23T10:33:18.184793abusebot-3.cloudsearch.cf sshd\[4284\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.84.222.52 user=root	2019-07-23 18:47:02
103.243.252.244	attackbotsspam	Jul 23 10:23:05 MK-Soft-VM6 sshd\[5175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.243.252.244 user=root Jul 23 10:23:07 MK-Soft-VM6 sshd\[5175\]: Failed password for root from 103.243.252.244 port 52685 ssh2 Jul 23 10:25:55 MK-Soft-VM6 sshd\[5179\]: Invalid user mathew from 103.243.252.244 port 37748 ...	2019-07-23 18:58:44
59.94.157.77	attackbots	Automatic report - Port Scan Attack	2019-07-23 18:39:54
35.163.172.93	attackspam	xmlrpc attack	2019-07-23 18:10:20
196.190.95.21	attackspam	Unauthorised access (Jul 23) SRC=196.190.95.21 LEN=52 TTL=111 ID=11177 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-23 18:57:02
185.137.111.132	attackbots	Jul 23 11:53:34 mail postfix/smtpd\[5146\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 23 12:24:34 mail postfix/smtpd\[7158\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 23 12:26:19 mail postfix/smtpd\[7443\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 23 12:28:13 mail postfix/smtpd\[7163\]: warning: unknown\[185.137.111.132\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-23 18:56:36
213.147.111.187	attack	213.147.111.187 - - \[23/Jul/2019:11:21:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 2110 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 213.147.111.187 - - \[23/Jul/2019:11:21:43 +0200\] "POST /wp-login.php HTTP/1.1" 200 2113 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-07-23 18:28:47
80.216.95.195	attackbots	80.216.95.195 - - \[23/Jul/2019:10:19:24 +0000\] "POST /xmlrpc.php HTTP/1.1" 301 603 "-" "Mozilla/5.0 \(X11\; Linux i686\; rv:2.0.1\) Gecko/20100101 Firefox/4.0.1" 80.216.95.195 - - \[23/Jul/2019:10:20:25 +0000\] "POST /xmlrpc.php HTTP/1.1" 301 603 "-" "Mozilla/5.0 \(X11\; Linux i686\; rv:2.0.1\) Gecko/20100101 Firefox/4.0.1" 80.216.95.195 - - \[23/Jul/2019:10:21:26 +0000\] "POST /xmlrpc.php HTTP/1.1" 301 603 "-" "Mozilla/5.0 \(X11\; Linux i686\; rv:2.0.1\) Gecko/20100101 Firefox/4.0.1" 80.216.95.195 - - \[23/Jul/2019:10:22:27 +0000\] "POST /xmlrpc.php HTTP/1.1" 301 603 "-" "Mozilla/5.0 \(X11\; Linux i686\; rv:2.0.1\) Gecko/20100101 Firefox/4.0.1" 80.216.95.195 - - \[23/Jul/2019:10:23:28 +0000\] "POST /xmlrpc.php HTTP/1.1" 301 603 "-" "Mozilla/5.0 \(X11\; Linux i686\; rv:2.0.1\) Gecko/20100101 Firefox/4.0.1"	2019-07-23 18:37:56
151.80.155.98	attack	Jul 23 16:00:19 areeb-Workstation sshd\[18849\]: Invalid user carolina from 151.80.155.98 Jul 23 16:00:19 areeb-Workstation sshd\[18849\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.155.98 Jul 23 16:00:21 areeb-Workstation sshd\[18849\]: Failed password for invalid user carolina from 151.80.155.98 port 42906 ssh2 ...	2019-07-23 18:35:02
188.213.166.163	attackspam	Jul 23 11:32:01 mail sshd\[26737\]: Invalid user unmesh from 188.213.166.163 port 44726 Jul 23 11:32:01 mail sshd\[26737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.213.166.163 ...	2019-07-23 18:46:07
182.50.132.1	attack	182.50.132.1 - - [23/Jul/2019:05:22:03 -0400] "GET /?page=products&action=view&manufacturerID=120&productID=D6.202&linkID=17868999999.1%20union%20select%20unhex(hex(version()))%20--%20and%201%3D1 HTTP/1.1" 200 66772 "-" "-" ...	2019-07-23 18:20:16

Recently Reported IPs

13.217.169.169	2607:f130:0000:0198:0000:0000:46c1:d057	203.24.88.250	121.154.168.204
61.79.214.106	45.142.193.221	59.1.147.223	59.1.135.55
139.159.170.86	2606:4700:10::6814:5958	2606:4700:10::ac43:1046	2606:4700:10::6816:154
2606:4700:10::6814:9333	2606:4700:10::6814:5343	190.143.240.10	146.190.228.2
109.162.246.137	68.183.91.82	120.29.89.93	108.66.217.49