124.47.34.56 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Shanxi Network Intermediary Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	1596369857 - 08/02/2020 14:04:17 Host: 124.47.34.56/124.47.34.56 Port: 445 TCP Blocked	2020-08-03 03:35:02

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.47.34.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24153
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.47.34.56.			IN	A

;; AUTHORITY SECTION:
.			317	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080201 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Aug 03 03:34:59 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 56.34.47.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 56.34.47.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.85.42.237	attackspambots	Feb 3 13:25:22 localhost sshd\[36982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.237 user=root Feb 3 13:25:25 localhost sshd\[36982\]: Failed password for root from 112.85.42.237 port 43662 ssh2 Feb 3 13:25:27 localhost sshd\[36982\]: Failed password for root from 112.85.42.237 port 43662 ssh2 Feb 3 13:25:29 localhost sshd\[36982\]: Failed password for root from 112.85.42.237 port 43662 ssh2 Feb 3 13:30:06 localhost sshd\[37047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.237 user=root ...	2020-02-03 21:32:56
117.2.160.146	attack	Unauthorized connection attempt from IP address 117.2.160.146 on Port 445(SMB)	2020-02-03 21:24:08
142.93.113.182	attack	Automatic report - Banned IP Access	2020-02-03 21:20:41
45.239.119.110	attackbots	Automatic report - Port Scan Attack	2020-02-03 21:05:30
103.95.12.132	attackbots	Feb 3 02:51:00 web1 sshd\[9496\]: Invalid user log from 103.95.12.132 Feb 3 02:51:00 web1 sshd\[9496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.95.12.132 Feb 3 02:51:02 web1 sshd\[9496\]: Failed password for invalid user log from 103.95.12.132 port 39442 ssh2 Feb 3 02:53:00 web1 sshd\[9569\]: Invalid user cooperate from 103.95.12.132 Feb 3 02:53:00 web1 sshd\[9569\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.95.12.132	2020-02-03 21:07:36
188.166.23.215	attackspambots	Unauthorized connection attempt detected from IP address 188.166.23.215 to port 2220 [J]	2020-02-03 21:16:42
46.107.181.238	attackspam	Unauthorized connection attempt detected from IP address 46.107.181.238 to port 81 [J]	2020-02-03 21:09:27
106.13.82.54	attackspambots	Feb 3 14:29:55 mail sshd\[5401\]: Invalid user saminah from 106.13.82.54 Feb 3 14:29:55 mail sshd\[5401\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.82.54 Feb 3 14:29:57 mail sshd\[5401\]: Failed password for invalid user saminah from 106.13.82.54 port 41832 ssh2 ...	2020-02-03 21:49:00
92.118.37.61	attackspam	scans 5 times in preceeding hours on the ports (in chronological order) 3503 3554 3553 3538 3525 resulting in total of 36 scans from 92.118.37.0/24 block.	2020-02-03 21:12:31
222.186.30.248	attackbotsspam	03.02.2020 13:32:38 SSH access blocked by firewall	2020-02-03 21:44:11
144.217.18.84	attackspambots	...	2020-02-03 21:10:11
213.55.92.49	attackspambots	Unauthorized connection attempt from IP address 213.55.92.49 on Port 445(SMB)	2020-02-03 21:38:35
86.252.108.168	attackspambots	SSH invalid-user multiple login try	2020-02-03 21:45:44
31.23.207.142	attackspambots	20/2/2@23:45:31: FAIL: Alarm-Network address from=31.23.207.142 20/2/2@23:45:31: FAIL: Alarm-Network address from=31.23.207.142 ...	2020-02-03 21:03:57
92.246.76.253	attackbotsspam	Feb 3 11:38:37 debian-2gb-nbg1-2 kernel: \[2985569.240233\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.246.76.253 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=35394 PROTO=TCP SPT=49123 DPT=3387 WINDOW=1024 RES=0x00 SYN URGP=0	2020-02-03 21:28:32

Recently Reported IPs

202.78.140.69	211.159.199.21	175.50.106.45	95.141.142.156
184.82.231.113	96.74.211.7	131.100.26.139	82.146.65.162
173.75.35.91	113.66.255.82	176.226.228.104	185.29.54.23
50.88.95.245	223.218.15.29	103.17.178.205	73.222.211.89
212.42.120.94	70.169.1.80	113.88.166.242	167.213.23.87