124.90.53.172 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.90.53.117	attack	Unauthorized connection attempt detected from IP address 124.90.53.117 to port 8123 [J]	2020-03-02 14:58:23
124.90.53.192	attackbots	The IP has triggered Cloudflare WAF. CF-Ray: 5433b18c5dbc9406 \| WAF_Rule_ID: 1112825 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: img.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 03:52:16
124.90.53.53	attack	The IP has triggered Cloudflare WAF. CF-Ray: 5410570a3a7a9629 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ip.skk.moe \| User-Agent: Mozilla/5.081397758 Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.1; WOW64; Trident/6.0) \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 03:49:39
124.90.53.173	attack	The IP has triggered Cloudflare WAF. CF-Ray: 540fa701ee9a2808 \| WAF_Rule_ID: 53b8357af6d244d3a132bcf913c3a388 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/4.049897920 Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.1; SV1; .NET CLR 2.0.50727; .NET CLR 3.0.04506.648; .NET CLR 3.5.21022; .NET CLR 3.0.4506.2152; .NET CLR 3.5.30729) \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 02:15:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.90.53.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42322
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.90.53.172.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030801 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 00:37:14 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 172.53.90.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 172.53.90.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.225.100.82	attackbotsspam	Aug 31 03:39:15 ns341937 sshd[29790]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.225.100.82 Aug 31 03:39:17 ns341937 sshd[29790]: Failed password for invalid user pritesh from 122.225.100.82 port 33590 ssh2 Aug 31 04:00:18 ns341937 sshd[1695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.225.100.82 ...	2019-08-31 14:45:45
35.224.43.9	attackbots	Port Scan: TCP/443	2019-08-31 15:09:51
139.198.191.217	attackbotsspam	Aug 30 19:17:38 lcdev sshd\[10544\]: Invalid user corrina from 139.198.191.217 Aug 30 19:17:38 lcdev sshd\[10544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.191.217 Aug 30 19:17:39 lcdev sshd\[10544\]: Failed password for invalid user corrina from 139.198.191.217 port 43886 ssh2 Aug 30 19:23:19 lcdev sshd\[11031\]: Invalid user ftp from 139.198.191.217 Aug 30 19:23:19 lcdev sshd\[11031\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.191.217	2019-08-31 14:26:30
77.247.110.127	attackspambots	\[2019-08-31 02:12:52\] NOTICE\[1829\] chan_sip.c: Registration from '"990" \' failed for '77.247.110.127:5109' - Wrong password \[2019-08-31 02:12:52\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-31T02:12:52.930-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="990",SessionID="0x7f7b30db7498",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.127/5109",Challenge="307ca0a4",ReceivedChallenge="307ca0a4",ReceivedHash="8bd32e9e9b82110524f8971e388ca704" \[2019-08-31 02:12:53\] NOTICE\[1829\] chan_sip.c: Registration from '"990" \' failed for '77.247.110.127:5109' - Wrong password \[2019-08-31 02:12:53\] SECURITY\[1837\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-08-31T02:12:53.048-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="990",SessionID="0x7f7b30606748",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/7	2019-08-31 15:16:07
52.231.64.178	attackspambots	Aug 30 20:48:53 hanapaa sshd\[30855\]: Invalid user y from 52.231.64.178 Aug 30 20:48:53 hanapaa sshd\[30855\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.231.64.178 Aug 30 20:48:56 hanapaa sshd\[30855\]: Failed password for invalid user y from 52.231.64.178 port 51850 ssh2 Aug 30 20:54:00 hanapaa sshd\[31857\]: Invalid user dtogroup.com from 52.231.64.178 Aug 30 20:54:00 hanapaa sshd\[31857\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.231.64.178	2019-08-31 15:04:35
77.83.1.226	attackbots	Chat Spam	2019-08-31 15:06:34
209.97.167.131	attack	Aug 31 09:31:26 server sshd\[13417\]: Invalid user roxana from 209.97.167.131 port 50976 Aug 31 09:31:26 server sshd\[13417\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.167.131 Aug 31 09:31:29 server sshd\[13417\]: Failed password for invalid user roxana from 209.97.167.131 port 50976 ssh2 Aug 31 09:36:12 server sshd\[7704\]: Invalid user ren from 209.97.167.131 port 54208 Aug 31 09:36:12 server sshd\[7704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.167.131	2019-08-31 14:55:55
1.55.238.90	attack	Unauthorized connection attempt from IP address 1.55.238.90 on Port 445(SMB)	2019-08-31 15:17:26
77.247.110.151	attack	" "	2019-08-31 14:51:51
115.78.15.159	attack	Unauthorized connection attempt from IP address 115.78.15.159 on Port 445(SMB)	2019-08-31 15:01:45
80.82.77.33	attack	08/31/2019-00:07:23.629876 80.82.77.33 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 84	2019-08-31 14:35:03
113.161.1.111	attackspambots	Invalid user jayden from 113.161.1.111 port 36056	2019-08-31 15:09:00
188.214.104.146	attackbotsspam	Automated report - ssh fail2ban: Aug 31 08:04:31 wrong password, user=root, port=52067, ssh2 Aug 31 08:04:34 wrong password, user=root, port=52067, ssh2 Aug 31 08:04:37 wrong password, user=root, port=52067, ssh2 Aug 31 08:04:42 wrong password, user=root, port=52067, ssh2	2019-08-31 14:44:19
51.38.39.182	attackbots	Aug 31 06:43:06 vps691689 sshd[12760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.39.182 Aug 31 06:43:08 vps691689 sshd[12760]: Failed password for invalid user tigrou from 51.38.39.182 port 44904 ssh2 ...	2019-08-31 15:09:25
187.216.61.215	attackspambots	Unauthorized connection attempt from IP address 187.216.61.215 on Port 445(SMB)	2019-08-31 15:18:48

Recently Reported IPs

124.90.53.197	124.90.53.199	124.90.53.204	124.90.53.206
124.90.53.229	124.90.53.243	124.90.53.251	124.90.53.235
117.64.228.184	124.90.53.24	124.90.53.38	124.90.53.44
124.90.53.46	124.90.53.34	124.90.53.78	124.90.53.5
124.90.53.47	124.90.53.8	124.90.53.96	124.90.53.97