124.90.52.241 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.90.52.214	attackspambots	Web Server Scan. RayID: 58f1c6a568b293c4, UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36, Country: CN	2020-05-21 03:59:29
124.90.52.158	attackbots	Fail2Ban Ban Triggered	2020-04-16 14:48:59
124.90.52.243	attackspam	Unauthorized connection attempt detected from IP address 124.90.52.243 to port 8081 [J]	2020-01-26 05:00:54
124.90.52.189	attack	Unauthorized connection attempt detected from IP address 124.90.52.189 to port 82 [T]	2020-01-10 08:46:03
124.90.52.114	attackspambots	Unauthorized connection attempt detected from IP address 124.90.52.114 to port 3128	2019-12-31 07:33:14
124.90.52.137	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5414e5dd78c695f3 \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:31:03
124.90.52.118	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5416098bfab493ac \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.082584686 Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:09:19
124.90.52.86	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541380e48a61ed3b \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:54:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.90.52.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4609
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.90.52.241.			IN	A

;; AUTHORITY SECTION:
.			322	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 11:01:09 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 241.52.90.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 241.52.90.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.24.175.42	attack	Apr 5 14:41:47 ns382633 sshd\[3164\]: Invalid user admin from 123.24.175.42 port 45130 Apr 5 14:41:47 ns382633 sshd\[3164\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.24.175.42 Apr 5 14:41:49 ns382633 sshd\[3164\]: Failed password for invalid user admin from 123.24.175.42 port 45130 ssh2 Apr 5 14:41:53 ns382633 sshd\[3187\]: Invalid user admin from 123.24.175.42 port 45147 Apr 5 14:41:53 ns382633 sshd\[3187\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.24.175.42	2020-04-06 01:01:29
87.236.212.51	attack	firewall-block, port(s): 33289/tcp	2020-04-06 00:57:04
159.89.82.79	attackspambots	Automatic report - WordPress Brute Force	2020-04-06 00:25:02
113.176.213.64	attackbotsspam	xmlrpc attack	2020-04-06 00:28:27
139.59.32.156	attack	Apr 5 14:30:57 pornomens sshd\[5746\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.32.156 user=root Apr 5 14:30:59 pornomens sshd\[5746\]: Failed password for root from 139.59.32.156 port 39094 ssh2 Apr 5 14:42:14 pornomens sshd\[5899\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.32.156 user=root ...	2020-04-06 00:41:06
96.70.41.109	attack	2020-04-05T15:24:33.266117homeassistant sshd[26731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.70.41.109 user=root 2020-04-05T15:24:35.497391homeassistant sshd[26731]: Failed password for root from 96.70.41.109 port 53650 ssh2 ...	2020-04-06 01:10:45
188.254.0.182	attack	2020-04-05T14:30:20.747770vps773228.ovh.net sshd[30095]: Failed password for root from 188.254.0.182 port 45068 ssh2 2020-04-05T14:36:09.979950vps773228.ovh.net sshd[32202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182 user=root 2020-04-05T14:36:11.774424vps773228.ovh.net sshd[32202]: Failed password for root from 188.254.0.182 port 53786 ssh2 2020-04-05T14:41:47.722946vps773228.ovh.net sshd[1849]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.182 user=root 2020-04-05T14:41:49.919034vps773228.ovh.net sshd[1849]: Failed password for root from 188.254.0.182 port 34272 ssh2 ...	2020-04-06 01:08:32
112.172.147.34	attackbots	$f2bV_matches	2020-04-06 00:53:48
185.156.73.54	attack	Apr 5 19:00:18 debian-2gb-nbg1-2 kernel: \[8365048.146952\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.54 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=44099 PROTO=TCP SPT=42698 DPT=4112 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-06 01:00:38
222.186.31.204	attackbots	Apr 5 18:59:00 plex sshd[19316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.204 user=root Apr 5 18:59:02 plex sshd[19316]: Failed password for root from 222.186.31.204 port 24994 ssh2	2020-04-06 01:08:00
167.99.231.118	attack	fail2ban	2020-04-06 01:02:22
106.12.26.167	attack	Apr 5 07:39:34 server1 sshd\[27200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.26.167 user=root Apr 5 07:39:37 server1 sshd\[27200\]: Failed password for root from 106.12.26.167 port 45892 ssh2 Apr 5 07:44:10 server1 sshd\[28443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.26.167 user=root Apr 5 07:44:12 server1 sshd\[28443\]: Failed password for root from 106.12.26.167 port 39764 ssh2 Apr 5 07:49:05 server1 sshd\[29754\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.26.167 user=root ...	2020-04-06 01:07:05
165.227.182.180	attackspambots	WordPress wp-login brute force :: 165.227.182.180 0.108 - [05/Apr/2020:12:42:23 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1804 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-04-06 00:35:18
115.159.194.34	attack	Apr 5 14:42:28 host5 sshd[22559]: Invalid user root1 from 115.159.194.34 port 38442 ...	2020-04-06 00:30:52
49.234.130.91	attackspam	Apr 5 13:39:46 xxxxxxx sshd[9342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.130.91 user=r.r Apr 5 13:39:48 xxxxxxx sshd[9342]: Failed password for r.r from 49.234.130.91 port 35998 ssh2 Apr 5 13:39:48 xxxxxxx sshd[9342]: Received disconnect from 49.234.130.91: 11: Bye Bye [preauth] Apr 5 13:51:48 xxxxxxx sshd[13556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.130.91 user=r.r Apr 5 13:51:51 xxxxxxx sshd[13556]: Failed password for r.r from 49.234.130.91 port 35406 ssh2 Apr 5 13:51:51 xxxxxxx sshd[13556]: Received disconnect from 49.234.130.91: 11: Bye Bye [preauth] Apr 5 13:57:41 xxxxxxx sshd[15443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.130.91 user=r.r Apr 5 13:57:43 xxxxxxx sshd[15443]: Failed password for r.r from 49.234.130.91 port 52662 ssh2 Apr 5 13:57:43 xxxxxxx sshd[15443]: Received disconne........ -------------------------------	2020-04-06 00:45:55

Recently Reported IPs

76.108.80.17	197.246.171.18	195.158.106.190	118.79.136.139
80.71.112.108	81.103.206.108	202.183.22.195	93.62.73.206
103.203.72.114	189.91.5.166	202.104.42.119	14.228.241.147
179.98.123.23	188.92.243.82	179.109.172.164	156.241.175.20
20.68.126.124	123.112.64.169	27.215.50.47	191.5.103.81