124.235.138.54

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Changchun Beijingpuruofeite Corp

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt detected from IP address 124.235.138.54 to port 8081 [T]	2020-01-29 17:14:17

Comments on same subnet:

IP	Type	Details	Datetime
124.235.138.34	attackbots	user not found%3a http%3a%2f%2f123.125.114.144%2f	2020-10-12 20:36:32
124.235.138.34	attackbots	user not found%3a http%3a%2f%2f123.125.114.144%2f	2020-10-12 12:05:19
124.235.138.202	attackbotsspam	Unauthorized connection attempt detected from IP address 124.235.138.202 to port 80	2020-05-31 03:01:01
124.235.138.41	attack	Unauthorized connection attempt detected from IP address 124.235.138.41 to port 999	2020-05-30 03:39:05
124.235.138.245	attackspam	Unauthorized connection attempt detected from IP address 124.235.138.245 to port 999	2020-05-30 03:38:37
124.235.138.145	attack	Web Server Scan. RayID: 5957efee79dbeb00, UA: Mozilla/5.067805899 Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/63.0.3239.132 Safari/537.36, Country: CN	2020-05-21 03:58:23
124.235.138.197	attackspam	Fail2Ban Ban Triggered	2020-03-25 15:46:09
124.235.138.94	attackspam	Unauthorized connection attempt detected from IP address 124.235.138.94 to port 8082 [J]	2020-03-02 19:58:02
124.235.138.238	attackspam	Unauthorized connection attempt detected from IP address 124.235.138.238 to port 8118 [J]	2020-03-02 19:57:36
124.235.138.55	attackspam	Unauthorized connection attempt detected from IP address 124.235.138.55 to port 8443 [J]	2020-03-02 17:10:39
124.235.138.151	attackspambots	Unauthorized connection attempt detected from IP address 124.235.138.151 to port 8081 [J]	2020-03-02 17:10:02
124.235.138.178	attackbots	Unauthorized connection attempt detected from IP address 124.235.138.178 to port 8081 [J]	2020-03-02 17:09:40
124.235.138.152	attackspam	Unauthorized connection attempt detected from IP address 124.235.138.152 to port 22 [J]	2020-03-02 16:40:18
124.235.138.171	attackspam	Unauthorized connection attempt detected from IP address 124.235.138.171 to port 22 [J]	2020-03-02 14:58:00
124.235.138.65	attack	Unauthorized connection attempt detected from IP address 124.235.138.65 to port 8123 [J]	2020-03-02 14:27:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.235.138.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24849
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.235.138.54.			IN	A

;; AUTHORITY SECTION:
.			463	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012900 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 17:14:13 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 54.138.235.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 54.138.235.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.197.185.83	attack	fire	2019-11-17 02:31:35
107.6.183.162	attack	fire	2019-11-17 02:06:35
139.227.144.42	attackbotsspam	8082/udp [2019-11-16]1pkt	2019-11-17 02:24:58
222.184.232.220	attackbots	firewall-block, port(s): 1433/tcp	2019-11-17 01:57:40
200.196.249.170	attackbots	Nov 16 17:57:17 fr01 sshd[2350]: Invalid user dinis from 200.196.249.170 Nov 16 17:57:17 fr01 sshd[2350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.196.249.170 Nov 16 17:57:17 fr01 sshd[2350]: Invalid user dinis from 200.196.249.170 Nov 16 17:57:20 fr01 sshd[2350]: Failed password for invalid user dinis from 200.196.249.170 port 46290 ssh2 ...	2019-11-17 02:25:42
112.85.42.194	attackspambots	Nov 16 18:07:00 srv206 sshd[11303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.194 user=root Nov 16 18:07:02 srv206 sshd[11303]: Failed password for root from 112.85.42.194 port 28269 ssh2 ...	2019-11-17 01:56:03
222.186.180.6	attackspambots	Nov 16 19:03:59 icinga sshd[1082]: Failed password for root from 222.186.180.6 port 61284 ssh2 Nov 16 19:04:11 icinga sshd[1082]: error: maximum authentication attempts exceeded for root from 222.186.180.6 port 61284 ssh2 [preauth] ...	2019-11-17 02:04:42
104.237.144.22	attackspam	fire	2019-11-17 02:26:39
182.254.227.147	attack	Nov 16 18:47:26 minden010 sshd[23135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.227.147 Nov 16 18:47:28 minden010 sshd[23135]: Failed password for invalid user lturpin from 182.254.227.147 port 27077 ssh2 Nov 16 18:52:09 minden010 sshd[24691]: Failed password for root from 182.254.227.147 port 60373 ssh2 ...	2019-11-17 02:07:36
185.176.27.98	attackspam	11/16/2019-17:38:28.534846 185.176.27.98 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-17 02:15:43
189.51.120.98	attackbotsspam	SSH invalid-user multiple login try	2019-11-17 02:34:08
51.68.44.158	attackbots	Nov 16 19:20:03 meumeu sshd[26798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.44.158 Nov 16 19:20:06 meumeu sshd[26798]: Failed password for invalid user Viivi from 51.68.44.158 port 58926 ssh2 Nov 16 19:23:44 meumeu sshd[27456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.44.158 ...	2019-11-17 02:33:03
151.54.28.52	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/151.54.28.52/ IT - 1H : (117) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN1267 IP : 151.54.28.52 CIDR : 151.54.0.0/16 PREFIX COUNT : 161 UNIQUE IP COUNT : 6032640 ATTACKS DETECTED ASN1267 : 1H - 3 3H - 4 6H - 5 12H - 13 24H - 28 DateTime : 2019-11-16 15:49:58 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-17 02:35:33
200.115.150.210	attack	port scan and connect, tcp 23 (telnet)	2019-11-17 01:58:20
182.61.37.144	attack	SSH Bruteforce attempt	2019-11-17 02:30:49

Recently Reported IPs

113.78.65.236	112.194.67.89	237.207.124.48	222.195.208.147
37.30.79.123	111.75.117.194	207.255.166.144	111.21.200.185
89.112.152.138	106.57.161.135	106.6.233.225	106.6.233.94
180.1.34.46	106.6.233.24	60.188.33.171	60.19.171.21
59.62.215.107	58.252.200.228	49.86.180.211	49.84.54.209