124.90.52.241 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.90.52.214	attackspambots	Web Server Scan. RayID: 58f1c6a568b293c4, UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36, Country: CN	2020-05-21 03:59:29
124.90.52.158	attackbots	Fail2Ban Ban Triggered	2020-04-16 14:48:59
124.90.52.243	attackspam	Unauthorized connection attempt detected from IP address 124.90.52.243 to port 8081 [J]	2020-01-26 05:00:54
124.90.52.189	attack	Unauthorized connection attempt detected from IP address 124.90.52.189 to port 82 [T]	2020-01-10 08:46:03
124.90.52.114	attackspambots	Unauthorized connection attempt detected from IP address 124.90.52.114 to port 3128	2019-12-31 07:33:14
124.90.52.137	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5414e5dd78c695f3 \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:31:03
124.90.52.118	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5416098bfab493ac \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.082584686 Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:09:19
124.90.52.86	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541380e48a61ed3b \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:54:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.90.52.241
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4609
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.90.52.241.			IN	A

;; AUTHORITY SECTION:
.			322	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 11:01:09 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 241.52.90.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 241.52.90.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.233.4	attackbotsspam	Repeated brute force against a port	2020-07-04 22:05:48
5.53.124.239	attackspam	Jul 4 20:18:04 webhost01 sshd[31666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.53.124.239 Jul 4 20:18:06 webhost01 sshd[31666]: Failed password for invalid user cust from 5.53.124.239 port 52498 ssh2 ...	2020-07-04 21:24:37
192.241.147.249	attack	Jul 4 15:42:02 roki-contabo sshd\[13142\]: Invalid user ansible from 192.241.147.249 Jul 4 15:42:02 roki-contabo sshd\[13142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.147.249 Jul 4 15:42:04 roki-contabo sshd\[13142\]: Failed password for invalid user ansible from 192.241.147.249 port 35698 ssh2 Jul 4 15:42:08 roki-contabo sshd\[13145\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.147.249 user=root Jul 4 15:42:10 roki-contabo sshd\[13145\]: Failed password for root from 192.241.147.249 port 48588 ssh2 ...	2020-07-04 21:45:48
184.105.247.242	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-07-04 21:40:30
188.240.26.111	attackspambots	nft/Honeypot/22/73e86	2020-07-04 21:36:19
185.143.75.81	attackbots	2020-07-04 16:18:24 dovecot_login authenticator failed for \(User\) \[185.143.75.81\]: 535 Incorrect authentication data \(set_id=hass@org.ua\)2020-07-04 16:18:50 dovecot_login authenticator failed for \(User\) \[185.143.75.81\]: 535 Incorrect authentication data \(set_id=prueba@org.ua\)2020-07-04 16:19:16 dovecot_login authenticator failed for \(User\) \[185.143.75.81\]: 535 Incorrect authentication data \(set_id=nolimit@org.ua\) ...	2020-07-04 21:27:30
46.38.150.153	attackbotsspam	2020-07-04T07:31:40.113325linuxbox-skyline auth[560083]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=hip rhost=46.38.150.153 ...	2020-07-04 21:34:19
89.248.162.247	attackspam	Port Scan detected from 89.248.162.247 (NL/Netherlands/-). 11 hits in the last 125 seconds	2020-07-04 21:53:52
13.85.84.239	attack	"GET /wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /xmlrpc.php?rsd HTTP/1.1" 403 "GET /blog/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /web/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /wordpress/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /website/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /wp/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /news/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /2018/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /2019/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /shop/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /wp1/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /test/wp-includes/wlwmanifest.xml HTTP/1.1" 404 "GET /media/wp-includes/wlwmanifest.xml HTTP/1.1" 404	2020-07-04 21:25:55
150.129.8.11	attackbotsspam	WordPress user registration, really-simple-captcha js check bypass	2020-07-04 21:53:32
173.201.196.98	attackbotsspam	Automatic report - XMLRPC Attack	2020-07-04 21:31:42
106.75.222.121	attackbotsspam	failed root login	2020-07-04 22:07:13
109.169.86.112	attackbotsspam	21 attempts against mh-misbehave-ban on web	2020-07-04 21:23:20
142.44.218.192	attackspam	Jul 4 14:41:17 gestao sshd[7416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.218.192 Jul 4 14:41:19 gestao sshd[7416]: Failed password for invalid user uftp from 142.44.218.192 port 55392 ssh2 Jul 4 14:45:17 gestao sshd[7460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.218.192 ...	2020-07-04 21:55:25
34.65.60.133	attackspam	Money extortion attempts	2020-07-04 22:00:45

Recently Reported IPs

76.108.80.17	197.246.171.18	195.158.106.190	118.79.136.139
80.71.112.108	81.103.206.108	202.183.22.195	93.62.73.206
103.203.72.114	189.91.5.166	202.104.42.119	14.228.241.147
179.98.123.23	188.92.243.82	179.109.172.164	156.241.175.20
20.68.126.124	123.112.64.169	27.215.50.47	191.5.103.81