124.90.52.90 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.90.52.214	attackspambots	Web Server Scan. RayID: 58f1c6a568b293c4, UA: Mozilla/5.0 (Macintosh; Intel Mac OS X 10_15_0) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/77.0.3865.90 Safari/537.36, Country: CN	2020-05-21 03:59:29
124.90.52.158	attackbots	Fail2Ban Ban Triggered	2020-04-16 14:48:59
124.90.52.243	attackspam	Unauthorized connection attempt detected from IP address 124.90.52.243 to port 8081 [J]	2020-01-26 05:00:54
124.90.52.189	attack	Unauthorized connection attempt detected from IP address 124.90.52.189 to port 82 [T]	2020-01-10 08:46:03
124.90.52.114	attackspambots	Unauthorized connection attempt detected from IP address 124.90.52.114 to port 3128	2019-12-31 07:33:14
124.90.52.137	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5414e5dd78c695f3 \| WAF_Rule_ID: 1112824 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; U; Android 4.3; en-us; SM-N900T Build/JSS15J) AppleWebKit/534.30 (KHTML, like Gecko) Version/4.0 Mobile Safari/534.30 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:31:03
124.90.52.118	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5416098bfab493ac \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: d.skk.moe \| User-Agent: Mozilla/5.082584686 Mozilla/5.0 (iPhone; CPU iPhone OS 11_4_1 like Mac OS X) AppleWebKit/605.1.15 (KHTML, like Gecko) Version/11.0 Mobile/15E148 Safari/604.1 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 04:09:19
124.90.52.86	attackbotsspam	The IP has triggered Cloudflare WAF. CF-Ray: 541380e48a61ed3b \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: disqus.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 01:54:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.90.52.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 342
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.90.52.90.			IN	A

;; AUTHORITY SECTION:
.			389	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022701 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 28 03:34:31 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 90.52.90.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 90.52.90.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
151.31.28.40	attackspambots	Aug 16 19:35:53 site1 sshd\[51687\]: Invalid user naomi from 151.31.28.40Aug 16 19:35:55 site1 sshd\[51687\]: Failed password for invalid user naomi from 151.31.28.40 port 36722 ssh2Aug 16 19:40:26 site1 sshd\[52500\]: Invalid user sftp from 151.31.28.40Aug 16 19:40:28 site1 sshd\[52500\]: Failed password for invalid user sftp from 151.31.28.40 port 57846 ssh2Aug 16 19:45:05 site1 sshd\[53292\]: Invalid user admindb from 151.31.28.40Aug 16 19:45:07 site1 sshd\[53292\]: Failed password for invalid user admindb from 151.31.28.40 port 50734 ssh2 ...	2019-08-17 00:47:29
104.199.174.199	attackspambots	2019-08-16T16:17:44.719264abusebot-2.cloudsearch.cf sshd\[3271\]: Invalid user hbxctz from 104.199.174.199 port 38561	2019-08-17 00:37:20
114.91.68.29	attackbotsspam	Aug 15 23:11:55 GIZ-Server-02 sshd[13238]: Invalid user developer from 114.91.68.29 Aug 15 23:11:55 GIZ-Server-02 sshd[13238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.91.68.29 Aug 15 23:11:56 GIZ-Server-02 sshd[13238]: Failed password for invalid user developer from 114.91.68.29 port 40096 ssh2 Aug 15 23:11:57 GIZ-Server-02 sshd[13238]: Received disconnect from 114.91.68.29: 11: Bye Bye [preauth] Aug 15 23:20:17 GIZ-Server-02 sshd[18230]: User r.r from 114.91.68.29 not allowed because not listed in AllowUsers Aug 15 23:20:17 GIZ-Server-02 sshd[18230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.91.68.29 user=r.r Aug 15 23:20:19 GIZ-Server-02 sshd[18230]: Failed password for invalid user r.r from 114.91.68.29 port 35668 ssh2 Aug 15 23:20:20 GIZ-Server-02 sshd[18230]: Received disconnect from 114.91.68.29: 11: Bye Bye [preauth] Aug 15 23:28:30 GIZ-Server-02 sshd[22021]: I........ -------------------------------	2019-08-17 01:12:40
198.199.122.234	attack	Aug 16 18:42:18 plex sshd[3036]: Invalid user jace from 198.199.122.234 port 44652	2019-08-17 01:02:29
206.189.239.103	attackspam	2019-08-16T16:50:35.266890abusebot-5.cloudsearch.cf sshd\[16755\]: Invalid user media from 206.189.239.103 port 39470	2019-08-17 01:17:15
106.13.109.19	attackbotsspam	SSH/22 MH Probe, BF, Hack -	2019-08-17 01:11:09
42.51.12.20	attackbots	Attempts to probe for or exploit a Drupal site on url: /wp-login.php. Reported by the module https://www.drupal.org/project/abuseipdb.	2019-08-17 01:29:50
185.195.237.25	attack	k+ssh-bruteforce	2019-08-17 01:05:52
183.238.193.227	attack	Aug 16 12:50:55 xtremcommunity sshd\[21047\]: Invalid user rsync from 183.238.193.227 port 21627 Aug 16 12:50:55 xtremcommunity sshd\[21047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.238.193.227 Aug 16 12:50:57 xtremcommunity sshd\[21047\]: Failed password for invalid user rsync from 183.238.193.227 port 21627 ssh2 Aug 16 12:57:16 xtremcommunity sshd\[21297\]: Invalid user ec2-user from 183.238.193.227 port 45316 Aug 16 12:57:16 xtremcommunity sshd\[21297\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.238.193.227 ...	2019-08-17 01:03:33
212.64.39.109	attack	Aug 16 12:24:16 TORMINT sshd\[904\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.39.109 user=root Aug 16 12:24:18 TORMINT sshd\[904\]: Failed password for root from 212.64.39.109 port 57514 ssh2 Aug 16 12:27:44 TORMINT sshd\[1117\]: Invalid user logan from 212.64.39.109 Aug 16 12:27:44 TORMINT sshd\[1117\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.39.109 ...	2019-08-17 00:39:24
89.163.140.76	attack	Aug 16 18:30:31 meumeu sshd[11541]: Failed password for invalid user applmgr from 89.163.140.76 port 54462 ssh2 Aug 16 18:34:45 meumeu sshd[12006]: Failed password for invalid user marivic from 89.163.140.76 port 46788 ssh2 Aug 16 18:38:54 meumeu sshd[12574]: Failed password for invalid user postfix from 89.163.140.76 port 39110 ssh2 ...	2019-08-17 00:40:39
62.202.183.192	attackbots	Aug1618:16:58server2kernel:Firewall:\PortFlood\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=62.202.183.192DST=136.243.224.50LEN=52TOS=0x00PREC=0x00TTL=49ID=63422DFPROTO=TCPSPT=27035DPT=80WINDOW=64240RES=0x00SYNURGP=0Aug1618:16:58server2kernel:Firewall:\PortFlood\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=62.202.183.192DST=136.243.224.50LEN=52TOS=0x00PREC=0x00TTL=51ID=63430DFPROTO=TCPSPT=35026DPT=80WINDOW=64240RES=0x00SYNURGP=0Aug1618:16:58server2kernel:Firewall:\PortFlood\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=62.202.183.192DST=136.243.224.50LEN=52TOS=0x00PREC=0x00TTL=49ID=63452DFPROTO=TCPSPT=43214DPT=80WINDOW=64240RES=0x00SYNURGP=0Aug1618:16:58server2kernel:Firewall:\PortFlood\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a2:7f:43:08:00SRC=62.202.183.192DST=136.243.224.50LEN=52TOS=0x00PREC=0x00TTL=51ID=63655DFPROTO=TCPSPT=51393DPT=80WINDOW=64240RES=0x00SYNURGP=0Aug1618:16:58server2kernel:Firewall:\PortFlood\IN=eth0OUT=MAC=00:16:3e:3f:7a:43:52:54:00:a	2019-08-17 00:49:30
54.37.64.101	attackspambots	Aug 16 19:55:54 server sshd\[7066\]: Invalid user admin from 54.37.64.101 port 55826 Aug 16 19:55:54 server sshd\[7066\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.64.101 Aug 16 19:55:56 server sshd\[7066\]: Failed password for invalid user admin from 54.37.64.101 port 55826 ssh2 Aug 16 20:00:21 server sshd\[8049\]: User root from 54.37.64.101 not allowed because listed in DenyUsers Aug 16 20:00:21 server sshd\[8049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.64.101 user=root	2019-08-17 01:13:54
148.70.249.72	attackbotsspam	Automatic report - Banned IP Access	2019-08-17 00:46:48
118.25.208.97	attackbots	Aug 16 12:42:34 TORMINT sshd\[4129\]: Invalid user test from 118.25.208.97 Aug 16 12:42:34 TORMINT sshd\[4129\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.208.97 Aug 16 12:42:36 TORMINT sshd\[4129\]: Failed password for invalid user test from 118.25.208.97 port 42034 ssh2 ...	2019-08-17 00:52:21

Recently Reported IPs

124.90.54.102	124.90.54.16	124.90.54.208	124.90.54.215
124.90.54.246	124.90.54.255	124.90.54.49	124.90.55.15
124.90.55.144	124.90.55.17	124.90.54.222	125.1.53.242
125.143.149.45	125.16.143.231	125.141.139.87	227.107.106.75
125.16.144.130	125.16.181.120	125.16.21.122	125.16.9.163