124.90.48.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.90.48.120	attackspambots	Unauthorized connection attempt detected from IP address 124.90.48.120 to port 123	2020-06-13 07:48:09
124.90.48.182	attackbots	Unauthorized connection attempt detected from IP address 124.90.48.182 to port 8123	2020-01-04 08:56:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.90.48.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53392
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.90.48.85.			IN	A

;; AUTHORITY SECTION:
.			439	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 00:24:55 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 85.48.90.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.48.90.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.76.246.38	attackbotsspam	$f2bV_matches	2020-09-22 06:52:40
156.96.112.211	attack	"GET / HTTP/1.1"	2020-09-22 06:25:39
218.161.86.209	attackspam	Found on CINS badguys / proto=6 . srcport=17151 . dstport=62668 . (3224)	2020-09-22 06:21:24
50.227.195.3	attackbots	Fail2Ban Ban Triggered	2020-09-22 06:34:37
45.137.22.90	attackbotsspam	Subject: 答复: 答复: Revised Invoice Date: 21 Sep 2020 11:25:‪27 -0700‬ Message ID: <20200921112527.158DBCFBB65E469C@transwellogistic.com> Virus/Unauthorized code: >>> Possible MalWare 'AVE/Heur.AdvML.B!200' found in '‪25511069‬_3X_AR_PA2__INVOICE.exe'.	2020-09-22 06:39:39
189.33.175.6	attack	Sep 20 02:17:06 sip sshd[4141]: Failed password for root from 189.33.175.6 port 53590 ssh2 Sep 20 02:34:07 sip sshd[8660]: Failed password for root from 189.33.175.6 port 42464 ssh2	2020-09-22 06:35:57
218.92.0.165	attack	SSH Brute Force	2020-09-22 06:40:35
72.167.222.102	attackspam	72.167.222.102 - - \[22/Sep/2020:00:16:15 +0200\] "POST /wp-login.php HTTP/1.0" 200 8660 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 72.167.222.102 - - \[22/Sep/2020:00:16:17 +0200\] "POST /wp-login.php HTTP/1.0" 200 8527 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 72.167.222.102 - - \[22/Sep/2020:00:16:19 +0200\] "POST /wp-login.php HTTP/1.0" 200 8523 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-09-22 06:32:08
165.22.101.100	attackbotsspam	165.22.101.100 - - \[21/Sep/2020:23:20:09 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 165.22.101.100 - - \[21/Sep/2020:23:20:12 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 165.22.101.100 - - \[21/Sep/2020:23:20:13 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-09-22 06:17:53
49.234.99.246	attack	Sep 22 03:30:15 itv-usvr-01 sshd[11872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.99.246 user=root Sep 22 03:30:17 itv-usvr-01 sshd[11872]: Failed password for root from 49.234.99.246 port 54692 ssh2 Sep 22 03:34:14 itv-usvr-01 sshd[12049]: Invalid user administrator from 49.234.99.246 Sep 22 03:34:14 itv-usvr-01 sshd[12049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.99.246 Sep 22 03:34:14 itv-usvr-01 sshd[12049]: Invalid user administrator from 49.234.99.246 Sep 22 03:34:16 itv-usvr-01 sshd[12049]: Failed password for invalid user administrator from 49.234.99.246 port 57310 ssh2	2020-09-22 06:42:20
124.155.241.15	attack	DATE:2020-09-21 19:01:14, IP:124.155.241.15, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-09-22 06:28:28
156.236.70.79	attackbotsspam	Sep 21 17:49:56 ny01 sshd[9768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.236.70.79 Sep 21 17:49:58 ny01 sshd[9768]: Failed password for invalid user web from 156.236.70.79 port 38590 ssh2 Sep 21 17:53:17 ny01 sshd[10248]: Failed password for root from 156.236.70.79 port 34656 ssh2	2020-09-22 06:20:38
106.13.35.232	attackbots	Sep 21 15:05:01 firewall sshd[15022]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.35.232 Sep 21 15:05:01 firewall sshd[15022]: Invalid user demo from 106.13.35.232 Sep 21 15:05:03 firewall sshd[15022]: Failed password for invalid user demo from 106.13.35.232 port 38146 ssh2 ...	2020-09-22 06:32:58
5.62.143.204	attackspam	Sep 21 15:09:50 askasleikir sshd[13756]: Failed password for invalid user edo from 5.62.143.204 port 59480 ssh2	2020-09-22 06:24:06
64.225.70.10	attackbotsspam	2020-09-21T12:08:48.292572correo.[domain] sshd[9388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=64.225.70.10 2020-09-21T12:08:48.285266correo.[domain] sshd[9388]: Invalid user postgres from 64.225.70.10 port 56300 2020-09-21T12:08:49.738837correo.[domain] sshd[9388]: Failed password for invalid user postgres from 64.225.70.10 port 56300 ssh2 ...	2020-09-22 06:37:09

Recently Reported IPs

132.255.109.223	189.4.67.113	183.83.47.194	209.141.62.46
120.89.74.209	194.39.164.131	14.189.32.31	200.69.74.156
180.183.200.240	125.228.95.221	118.166.54.56	89.33.128.12
192.241.205.202	187.162.154.15	5.55.203.46	124.153.198.154
125.227.87.226	113.88.135.72	61.227.209.176	41.221.155.110