124.244.82.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Hong Kong Broadband Network Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Sep 22 12:06:58 roki-contabo sshd\[16614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.244.82.52 user=root Sep 22 12:07:00 roki-contabo sshd\[16614\]: Failed password for root from 124.244.82.52 port 41808 ssh2 Sep 23 01:01:24 roki-contabo sshd\[24153\]: Invalid user admin from 124.244.82.52 Sep 23 01:01:24 roki-contabo sshd\[24153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.244.82.52 Sep 23 01:01:27 roki-contabo sshd\[24153\]: Failed password for invalid user admin from 124.244.82.52 port 53251 ssh2 ...	2020-09-23 19:49:51
attackbots	Sep 22 12:06:58 roki-contabo sshd\[16614\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.244.82.52 user=root Sep 22 12:07:00 roki-contabo sshd\[16614\]: Failed password for root from 124.244.82.52 port 41808 ssh2 Sep 23 01:01:24 roki-contabo sshd\[24153\]: Invalid user admin from 124.244.82.52 Sep 23 01:01:24 roki-contabo sshd\[24153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.244.82.52 Sep 23 01:01:27 roki-contabo sshd\[24153\]: Failed password for invalid user admin from 124.244.82.52 port 53251 ssh2 ...	2020-09-23 12:09:42
attack	Brute-force attempt banned	2020-09-23 03:54:47
attackspambots	Sep 20 01:03:45 ssh2 sshd[42285]: User root from 124244082052.ctinets.com not allowed because not listed in AllowUsers Sep 20 01:03:45 ssh2 sshd[42285]: Failed password for invalid user root from 124.244.82.52 port 32860 ssh2 Sep 20 01:03:45 ssh2 sshd[42285]: Connection closed by invalid user root 124.244.82.52 port 32860 [preauth] ...	2020-09-20 23:12:24
attackbots	Sep 20 01:03:45 ssh2 sshd[42285]: User root from 124244082052.ctinets.com not allowed because not listed in AllowUsers Sep 20 01:03:45 ssh2 sshd[42285]: Failed password for invalid user root from 124.244.82.52 port 32860 ssh2 Sep 20 01:03:45 ssh2 sshd[42285]: Connection closed by invalid user root 124.244.82.52 port 32860 [preauth] ...	2020-09-20 15:00:47
attack	Brute-force attempt banned	2020-09-20 07:00:14
attackbotsspam	Sep 17 09:09:02 vps639187 sshd\[16899\]: Invalid user pi from 124.244.82.52 port 40922 Sep 17 09:09:02 vps639187 sshd\[16899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.244.82.52 Sep 17 09:09:04 vps639187 sshd\[16899\]: Failed password for invalid user pi from 124.244.82.52 port 40922 ssh2 ...	2020-09-17 19:51:19
attackbots	Sep 16 17:01:39 ssh2 sshd[64164]: User root from 124244082052.ctinets.com not allowed because not listed in AllowUsers Sep 16 17:01:39 ssh2 sshd[64164]: Failed password for invalid user root from 124.244.82.52 port 47191 ssh2 Sep 16 17:01:39 ssh2 sshd[64164]: Connection closed by invalid user root 124.244.82.52 port 47191 [preauth] ...	2020-09-17 12:01:41
attackbots	Sep 16 17:01:39 ssh2 sshd[64164]: User root from 124244082052.ctinets.com not allowed because not listed in AllowUsers Sep 16 17:01:39 ssh2 sshd[64164]: Failed password for invalid user root from 124.244.82.52 port 47191 ssh2 Sep 16 17:01:39 ssh2 sshd[64164]: Connection closed by invalid user root 124.244.82.52 port 47191 [preauth] ...	2020-09-17 03:18:01

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.244.82.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23366
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.244.82.52.			IN	A

;; AUTHORITY SECTION:
.			311	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091601 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 17 03:17:57 CST 2020
;; MSG SIZE  rcvd: 117

Host info

52.82.244.124.in-addr.arpa domain name pointer 124244082052.ctinets.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.82.244.124.in-addr.arpa	name = 124244082052.ctinets.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.166.227.27	attackspam	Jan 23 03:02:29 ns382633 sshd\[9703\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.166.227.27 user=root Jan 23 03:02:31 ns382633 sshd\[9703\]: Failed password for root from 122.166.227.27 port 50262 ssh2 Jan 23 03:05:20 ns382633 sshd\[10681\]: Invalid user hotline from 122.166.227.27 port 38544 Jan 23 03:05:20 ns382633 sshd\[10681\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.166.227.27 Jan 23 03:05:22 ns382633 sshd\[10681\]: Failed password for invalid user hotline from 122.166.227.27 port 38544 ssh2	2020-01-23 10:51:19
123.207.5.190	attackspam	Jan 23 03:10:41 * sshd[19355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.5.190 Jan 23 03:10:44 * sshd[19355]: Failed password for invalid user www from 123.207.5.190 port 35828 ssh2	2020-01-23 10:32:10
222.186.30.57	attackspam	SSH Brute-Force attacks	2020-01-23 10:26:24
89.248.160.193	attackspambots	Jan 23 03:14:37 debian-2gb-nbg1-2 kernel: \[2004957.340980\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=89.248.160.193 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=6405 PROTO=TCP SPT=53086 DPT=11026 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-23 10:41:43
3.6.93.32	attackspam	2020-01-23T01:34:21.177003shield sshd\[14179\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-3-6-93-32.ap-south-1.compute.amazonaws.com user=root 2020-01-23T01:34:22.718652shield sshd\[14179\]: Failed password for root from 3.6.93.32 port 39586 ssh2 2020-01-23T01:40:46.170652shield sshd\[16495\]: Invalid user anto from 3.6.93.32 port 60036 2020-01-23T01:40:46.174308shield sshd\[16495\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-3-6-93-32.ap-south-1.compute.amazonaws.com 2020-01-23T01:40:48.562932shield sshd\[16495\]: Failed password for invalid user anto from 3.6.93.32 port 60036 ssh2	2020-01-23 10:34:57
159.89.160.91	attackbots	Unauthorized connection attempt detected from IP address 159.89.160.91 to port 3914 [J]	2020-01-23 10:50:48
67.230.183.193	attackspam	Unauthorized connection attempt detected from IP address 67.230.183.193 to port 2220 [J]	2020-01-23 10:50:26
217.61.5.122	attack	Jan 23 02:07:54 www sshd\[58311\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.5.122 user=root Jan 23 02:07:56 www sshd\[58311\]: Failed password for root from 217.61.5.122 port 51496 ssh2 Jan 23 02:10:46 www sshd\[58779\]: Invalid user felix from 217.61.5.122 ...	2020-01-23 10:17:20
60.182.178.119	attackspambots	Automatic report - SSH Brute-Force Attack	2020-01-23 10:20:42
50.67.178.164	attackspambots	$f2bV_matches	2020-01-23 10:26:57
134.175.39.108	attack	Jan 23 04:42:21 hosting sshd[4690]: Invalid user haproxy from 134.175.39.108 port 36716 ...	2020-01-23 10:08:36
111.231.202.159	attackspambots	Jan 22 15:26:16 eddieflores sshd\[3900\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.202.159 user=root Jan 22 15:26:19 eddieflores sshd\[3900\]: Failed password for root from 111.231.202.159 port 38368 ssh2 Jan 22 15:29:36 eddieflores sshd\[4310\]: Invalid user elizabeth from 111.231.202.159 Jan 22 15:29:36 eddieflores sshd\[4310\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.202.159 Jan 22 15:29:38 eddieflores sshd\[4310\]: Failed password for invalid user elizabeth from 111.231.202.159 port 37492 ssh2	2020-01-23 10:12:40
167.172.132.25	attackspam	Jan 23 03:19:06 www4 sshd\[27317\]: Invalid user in from 167.172.132.25 Jan 23 03:19:06 www4 sshd\[27317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.132.25 Jan 23 03:19:08 www4 sshd\[27317\]: Failed password for invalid user in from 167.172.132.25 port 41680 ssh2 ...	2020-01-23 10:44:25
182.61.149.96	attackspambots	Jan 23 02:58:13 localhost sshd\[12873\]: Invalid user leon from 182.61.149.96 port 53278 Jan 23 02:58:13 localhost sshd\[12873\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.149.96 Jan 23 02:58:15 localhost sshd\[12873\]: Failed password for invalid user leon from 182.61.149.96 port 53278 ssh2	2020-01-23 10:07:06
185.53.88.78	attackspambots	5060	2020-01-23 10:35:15

Recently Reported IPs

89.107.195.138	66.249.64.18	24.214.246.113	193.169.252.206
113.89.33.178	103.211.20.205	171.96.239.116	118.89.48.148
62.180.122.54	5.79.135.91	121.12.104.124	178.44.130.175
154.160.14.38	45.77.57.254	180.242.182.29	210.103.96.156
113.252.189.174	61.2.195.11	189.152.5.160	61.81.101.248