124.90.52.211 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.90.52.214	attackspambots	Web Server Scan. RayID: 58f1c6a568b293c4, UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36, Country: CN	2020-05-21 03:59:29
124.90.52.158	attackbots	Fail2Ban Ban Triggered	2020-04-16 14:48:59
124.90.52.243	attackspam	Unauthorized connection attempt detected from IP address 124.90.52.243 to port 8081 [J]	2020-01-26 05:00:54
124.90.52.189	attack	Unauthorized connection attempt detected from IP address 124.90.52.189 to port 82 [T]	2020-01-10 08:46:03
124.90.52.114	attackspambots	Unauthorized connection attempt detected from IP address 124.90.52.114 to port 3128	2019-12-31 07:33:14
124.90.52.137	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5414e5dd78c695f3 \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:31:03
124.90.52.118	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5416098bfab493ac \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.082584686 Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:09:19
124.90.52.86	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541380e48a61ed3b \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:54:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.90.52.211
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16147
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.90.52.211.			IN	A

;; AUTHORITY SECTION:
.			307	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 06:13:41 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 211.52.90.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 211.52.90.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
175.45.180.38	attack	2019-10-17T12:01:55.485056 sshd[13755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.45.180.38 user=root 2019-10-17T12:01:56.733172 sshd[13755]: Failed password for root from 175.45.180.38 port 17868 ssh2 2019-10-17T12:05:25.872139 sshd[13790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.45.180.38 user=root 2019-10-17T12:05:27.948002 sshd[13790]: Failed password for root from 175.45.180.38 port 32647 ssh2 2019-10-17T12:08:59.805630 sshd[13823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.45.180.38 user=root 2019-10-17T12:09:01.595625 sshd[13823]: Failed password for root from 175.45.180.38 port 47430 ssh2 ...	2019-10-17 19:10:20
8.9.15.143	attack	Oct 17 07:41:52 localhost sshd\[14721\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=8.9.15.143 user=root Oct 17 07:41:54 localhost sshd\[14721\]: Failed password for root from 8.9.15.143 port 51104 ssh2 Oct 17 07:50:06 localhost sshd\[14869\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=8.9.15.143 user=root ...	2019-10-17 19:18:32
51.38.232.52	attackspambots	$f2bV_matches	2019-10-17 19:21:29
177.136.212.69	attack	email spam	2019-10-17 19:02:54
148.72.203.65	attack	Website hacking attempt: Improper php file access [php file]	2019-10-17 18:53:55
49.73.61.65	attackbotsspam	Oct 17 07:22:26 vmd17057 sshd\[11017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.73.61.65 user=root Oct 17 07:22:28 vmd17057 sshd\[11017\]: Failed password for root from 49.73.61.65 port 48766 ssh2 Oct 17 07:26:44 vmd17057 sshd\[11305\]: Invalid user barberry from 49.73.61.65 port 57822 ...	2019-10-17 18:57:59
222.186.190.2	attackbots	Oct 17 13:03:24 dcd-gentoo sshd[13193]: User root from 222.186.190.2 not allowed because none of user's groups are listed in AllowGroups Oct 17 13:03:28 dcd-gentoo sshd[13193]: error: PAM: Authentication failure for illegal user root from 222.186.190.2 Oct 17 13:03:24 dcd-gentoo sshd[13193]: User root from 222.186.190.2 not allowed because none of user's groups are listed in AllowGroups Oct 17 13:03:28 dcd-gentoo sshd[13193]: error: PAM: Authentication failure for illegal user root from 222.186.190.2 Oct 17 13:03:24 dcd-gentoo sshd[13193]: User root from 222.186.190.2 not allowed because none of user's groups are listed in AllowGroups Oct 17 13:03:28 dcd-gentoo sshd[13193]: error: PAM: Authentication failure for illegal user root from 222.186.190.2 Oct 17 13:03:28 dcd-gentoo sshd[13193]: Failed keyboard-interactive/pam for invalid user root from 222.186.190.2 port 38372 ssh2 ...	2019-10-17 19:05:38
142.93.149.34	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-10-17 19:19:24
5.135.214.131	attackspam	Automatic report - SSH Brute-Force Attack	2019-10-17 18:57:32
49.249.237.226	attackspam	Oct 16 19:09:32 php1 sshd\[24556\]: Invalid user broadcast from 49.249.237.226 Oct 16 19:09:32 php1 sshd\[24556\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.249.237.226 Oct 16 19:09:33 php1 sshd\[24556\]: Failed password for invalid user broadcast from 49.249.237.226 port 42976 ssh2 Oct 16 19:14:01 php1 sshd\[24941\]: Invalid user keypos from 49.249.237.226 Oct 16 19:14:01 php1 sshd\[24941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.249.237.226	2019-10-17 18:50:15
191.248.195.184	attackspam	Automatic report - Port Scan Attack	2019-10-17 19:05:05
49.232.57.79	attackbotsspam	Oct 17 12:01:19 MK-Soft-VM3 sshd[25347]: Failed password for root from 49.232.57.79 port 39686 ssh2 ...	2019-10-17 19:03:21
167.99.158.136	attack	Oct 17 11:13:22 *** sshd[8196]: User root from 167.99.158.136 not allowed because not listed in AllowUsers	2019-10-17 19:19:00
222.221.248.242	attackspam	Oct 17 12:05:13 MK-Soft-VM7 sshd[466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.221.248.242 Oct 17 12:05:15 MK-Soft-VM7 sshd[466]: Failed password for invalid user musikbot from 222.221.248.242 port 60486 ssh2 ...	2019-10-17 19:02:31
157.230.235.24	attackbots	" "	2019-10-17 19:16:38

Recently Reported IPs

124.90.52.159	124.90.53.114	124.90.53.111	124.90.53.145
124.90.53.216	124.90.53.247	124.90.53.29	124.90.54.165
124.90.55.172	124.90.54.20	124.90.55.231	124.92.182.204
124.94.50.3	124.95.244.153	125.105.186.171	125.105.63.43
125.106.133.133	125.106.133.97	125.106.252.35	125.106.199.114