124.78.252.242

Basic Info

City: Shanghai

Region: Shanghai

Country: China

Internet Service Provider: ChinaNet Shanghai Province Network

Hostname: unknown

Organization: China Telecom (Group)

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	" "	2019-07-18 20:17:49
attack	¯\_(ツ)_/¯	2019-06-21 23:27:33

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.78.252.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43449
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.78.252.242.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Jun 21 23:26:43 CST 2019
;; MSG SIZE  rcvd: 118

Host info

242.252.78.124.in-addr.arpa domain name pointer 242.252.78.124.broad.xw.sh.dynamic.163data.com.cn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
242.252.78.124.in-addr.arpa	name = 242.252.78.124.broad.xw.sh.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
101.89.197.232	attackbotsspam	Too many connections or unauthorized access detected from Arctic banned ip	2020-07-10 12:43:12
195.222.163.54	attackbots	Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 195.222.163.54, Reason:[(sshd) Failed SSH login from 195.222.163.54 (RU/Russia/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-07-10 12:28:02
188.217.181.18	attackspam	$f2bV_matches	2020-07-10 12:48:07
212.70.149.82	attackbots	Jul 10 06:52:19 relay postfix/smtpd\[4166\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:52:32 relay postfix/smtpd\[1978\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:52:46 relay postfix/smtpd\[28646\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:52:59 relay postfix/smtpd\[2428\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:53:14 relay postfix/smtpd\[28646\]: warning: unknown\[212.70.149.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-10 12:55:32
106.12.185.54	attackspam	Brute force attempt	2020-07-10 12:20:29
190.64.141.18	attackspam	Jul 9 22:22:28 server1 sshd\[25318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.64.141.18 user=teamspeak3 Jul 9 22:22:30 server1 sshd\[25318\]: Failed password for teamspeak3 from 190.64.141.18 port 45019 ssh2 Jul 9 22:25:41 server1 sshd\[26318\]: Invalid user cleopatra from 190.64.141.18 Jul 9 22:25:41 server1 sshd\[26318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.64.141.18 Jul 9 22:25:43 server1 sshd\[26318\]: Failed password for invalid user cleopatra from 190.64.141.18 port 38915 ssh2 ...	2020-07-10 12:51:09
60.220.247.89	attackspambots	Jul 10 06:01:15 abendstille sshd\[19819\]: Invalid user chantilly from 60.220.247.89 Jul 10 06:01:15 abendstille sshd\[19819\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.220.247.89 Jul 10 06:01:18 abendstille sshd\[19819\]: Failed password for invalid user chantilly from 60.220.247.89 port 39450 ssh2 Jul 10 06:03:02 abendstille sshd\[21926\]: Invalid user eulalia from 60.220.247.89 Jul 10 06:03:02 abendstille sshd\[21926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.220.247.89 ...	2020-07-10 12:25:23
180.76.152.32	attackbots	Jul 10 06:25:44 PorscheCustomer sshd[30440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.152.32 Jul 10 06:25:46 PorscheCustomer sshd[30440]: Failed password for invalid user sheba from 180.76.152.32 port 37100 ssh2 Jul 10 06:27:59 PorscheCustomer sshd[30535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.152.32 ...	2020-07-10 12:51:29
185.153.199.135	botsattack	Suspect Bot	2020-07-10 12:26:50
116.105.199.26	attackspam	Total attacks: 2	2020-07-10 12:39:01
185.143.73.93	attackspam	Jul 10 06:37:30 srv01 postfix/smtpd\[9451\]: warning: unknown\[185.143.73.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:38:10 srv01 postfix/smtpd\[15662\]: warning: unknown\[185.143.73.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:38:47 srv01 postfix/smtpd\[15502\]: warning: unknown\[185.143.73.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:39:25 srv01 postfix/smtpd\[9451\]: warning: unknown\[185.143.73.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 10 06:40:02 srv01 postfix/smtpd\[8811\]: warning: unknown\[185.143.73.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-10 12:42:23
82.64.153.14	attackbotsspam	$f2bV_matches	2020-07-10 12:19:12
103.86.180.10	attack	SSH auth scanning - multiple failed logins	2020-07-10 12:49:22
47.108.150.129	attackbotsspam	Jul 10 05:57:18 debian-2gb-nbg1-2 kernel: \[16612029.461577\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=47.108.150.129 DST=195.201.40.59 LEN=52 TOS=0x14 PREC=0x00 TTL=102 ID=8658 DF PROTO=TCP SPT=55351 DPT=21 WINDOW=8192 RES=0x00 SYN URGP=0	2020-07-10 12:38:37
186.215.130.242	attack	Dovecot Invalid User Login Attempt.	2020-07-10 12:37:08

Recently Reported IPs

85.96.199.31	109.99.33.249	133.26.159.196	184.242.248.59
137.42.161.239	219.175.192.20	168.61.23.169	178.164.241.51
61.134.133.159	203.22.41.82	40.2.225.219	222.35.118.217
175.151.201.69	45.75.61.155	219.51.239.188	204.255.224.61
102.62.245.168	157.51.252.127	36.78.248.84	158.36.249.54