124.90.53.141 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.90.53.117	attack	Unauthorized connection attempt detected from IP address 124.90.53.117 to port 8123 [J]	2020-03-02 14:58:23
124.90.53.192	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5433b18c5dbc9406 \| WAF_Rule_ID: 1112825 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:52:16
124.90.53.53	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410570a3a7a9629 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.081397758 Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:49:39
124.90.53.173	attack	The IP has triggered Cloudflare WAF. CF-Ray: 540fa701ee9a2808 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:15:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.90.53.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27997
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.90.53.141.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030801 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 00:37:15 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 141.53.90.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 141.53.90.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
210.245.92.204	attackbotsspam	Invalid user printer from 210.245.92.204 port 55760	2020-09-28 21:22:43
152.32.164.141	attack	sshd: Failed password for .... from 152.32.164.141 port 52728 ssh2 (3 attempts)	2020-09-28 21:32:34
106.12.38.133	attackspam	$f2bV_matches	2020-09-28 21:15:43
106.12.77.182	attackbots	Invalid user diego from 106.12.77.182 port 60750	2020-09-28 21:08:33
87.103.126.98	attack	Time: Sun Sep 27 02:08:15 2020 +0000 IP: 87.103.126.98 (PT/Portugal/98.126.103.87.rev.vodafone.pt) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 27 02:05:03 activeserver sshd[13053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.103.126.98 user=root Sep 27 02:05:06 activeserver sshd[13053]: Failed password for root from 87.103.126.98 port 47940 ssh2 Sep 27 02:06:40 activeserver sshd[16614]: Invalid user user from 87.103.126.98 port 58880 Sep 27 02:06:42 activeserver sshd[16614]: Failed password for invalid user user from 87.103.126.98 port 58880 ssh2 Sep 27 02:08:12 activeserver sshd[20371]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.103.126.98 user=root	2020-09-28 21:02:37
108.62.123.167	attackbotsspam	[2020-09-28 09:22:53] NOTICE[1159] chan_sip.c: Registration from '"115" ' failed for '108.62.123.167:5294' - Wrong password [2020-09-28 09:22:53] SECURITY[1198] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-28T09:22:53.653-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="115",SessionID="0x7fcaa00dd368",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/108.62.123.167/5294",Challenge="123f7983",ReceivedChallenge="123f7983",ReceivedHash="62ecea5006372c9923296086d210f608" [2020-09-28 09:22:53] NOTICE[1159] chan_sip.c: Registration from '"115" ' failed for '108.62.123.167:5294' - Wrong password [2020-09-28 09:22:53] SECURITY[1198] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-28T09:22:53.762-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="115",SessionID="0x7fcaa02d7a38",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/108.6 ...	2020-09-28 21:31:25
167.172.201.94	attackspam	(sshd) Failed SSH login from 167.172.201.94 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 28 12:44:03 server2 sshd[703]: Invalid user jeffrey from 167.172.201.94 port 54364 Sep 28 12:44:05 server2 sshd[703]: Failed password for invalid user jeffrey from 167.172.201.94 port 54364 ssh2 Sep 28 12:54:28 server2 sshd[2451]: Invalid user www-data from 167.172.201.94 port 43738 Sep 28 12:54:29 server2 sshd[2451]: Failed password for invalid user www-data from 167.172.201.94 port 43738 ssh2 Sep 28 12:57:30 server2 sshd[2959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.201.94 user=root	2020-09-28 21:14:50
112.85.42.231	attack	$f2bV_matches	2020-09-28 21:03:13
118.25.144.133	attack	SSH Bruteforce attack	2020-09-28 21:04:26
87.103.120.250	attack	2020-09-28T15:16:19+0200 Failed SSH Authentication/Brute Force Attack. (Server 5)	2020-09-28 21:32:50
218.92.0.175	attack	Sep 28 03:32:51 shivevps sshd[20534]: Failed password for root from 218.92.0.175 port 57276 ssh2 Sep 28 03:33:04 shivevps sshd[20534]: Failed password for root from 218.92.0.175 port 57276 ssh2 Sep 28 03:33:04 shivevps sshd[20534]: error: maximum authentication attempts exceeded for root from 218.92.0.175 port 57276 ssh2 [preauth] ...	2020-09-28 21:12:49
2.180.25.167	attack	Sep 27 19:52:42 pixelmemory sshd[1228380]: Failed password for root from 2.180.25.167 port 53420 ssh2 Sep 27 20:00:16 pixelmemory sshd[1230233]: Invalid user testing from 2.180.25.167 port 50748 Sep 27 20:00:16 pixelmemory sshd[1230233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.180.25.167 Sep 27 20:00:16 pixelmemory sshd[1230233]: Invalid user testing from 2.180.25.167 port 50748 Sep 27 20:00:18 pixelmemory sshd[1230233]: Failed password for invalid user testing from 2.180.25.167 port 50748 ssh2 ...	2020-09-28 21:07:50
54.37.14.3	attack	$f2bV_matches	2020-09-28 21:34:58
180.76.249.74	attack	Time: Sat Sep 26 20:02:15 2020 +0000 IP: 180.76.249.74 (CN/China/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 26 19:46:13 activeserver sshd[26581]: Failed password for invalid user prueba from 180.76.249.74 port 55300 ssh2 Sep 26 19:52:36 activeserver sshd[9974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.249.74 user=root Sep 26 19:52:38 activeserver sshd[9974]: Failed password for root from 180.76.249.74 port 56388 ssh2 Sep 26 20:02:07 activeserver sshd[2148]: Invalid user minecraft from 180.76.249.74 port 43876 Sep 26 20:02:09 activeserver sshd[2148]: Failed password for invalid user minecraft from 180.76.249.74 port 43876 ssh2	2020-09-28 21:06:42
220.186.188.205	attackspambots	Invalid user guest from 220.186.188.205 port 58728	2020-09-28 21:00:20

Recently Reported IPs

124.90.53.162	124.90.53.197	124.90.53.172	124.90.53.199
124.90.53.204	124.90.53.206	124.90.53.229	124.90.53.243
124.90.53.251	124.90.53.235	117.64.228.184	124.90.53.24
124.90.53.38	124.90.53.44	124.90.53.46	124.90.53.34
124.90.53.78	124.90.53.5	124.90.53.47	124.90.53.8