1.22.124.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: India

Internet Service Provider: Tikona Infinet Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	(sshd) Failed SSH login from 1.22.124.94 (IN/India/-): 4 in the last 900 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 22 03:43:25 Omitted sshd[24284]: Invalid user oracle from 1.22.124.94 port 34074 Sep 22 03:43:25 cloud sshd[24284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.22.124.94 Sep 22 03:43:27 cloud sshd[24284]: Failed password for invalid user oracle from 1.22.124.94 port 34074 ssh2 Sep 22 03:53:37 cloud sshd[24876]: Invalid user ca from 1.22.124.94 port 44520	2020-09-22 13:40:00
attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-21T21:06:50Z	2020-09-22 05:44:33
attackbots	May 31 14:05:13 sip sshd[479517]: Failed password for root from 1.22.124.94 port 54716 ssh2 May 31 14:08:53 sip sshd[479539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.22.124.94 user=root May 31 14:08:55 sip sshd[479539]: Failed password for root from 1.22.124.94 port 52700 ssh2 ...	2020-06-01 01:44:12
attack	<6 unauthorized SSH connections	2020-05-28 16:13:05
attackbotsspam	sshd login attampt	2020-04-26 20:45:24
attackspam	2020-04-18T14:34:10.999470abusebot-6.cloudsearch.cf sshd[16500]: Invalid user ia from 1.22.124.94 port 48022 2020-04-18T14:34:11.009625abusebot-6.cloudsearch.cf sshd[16500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.22.124.94 2020-04-18T14:34:10.999470abusebot-6.cloudsearch.cf sshd[16500]: Invalid user ia from 1.22.124.94 port 48022 2020-04-18T14:34:12.836246abusebot-6.cloudsearch.cf sshd[16500]: Failed password for invalid user ia from 1.22.124.94 port 48022 ssh2 2020-04-18T14:37:58.825935abusebot-6.cloudsearch.cf sshd[16693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.22.124.94 user=root 2020-04-18T14:38:00.482048abusebot-6.cloudsearch.cf sshd[16693]: Failed password for root from 1.22.124.94 port 44846 ssh2 2020-04-18T14:39:46.220747abusebot-6.cloudsearch.cf sshd[16831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.22.124.94 user=root 2020-04- ...	2020-04-19 01:03:21
attackspambots	Apr 10 04:05:00 ws22vmsma01 sshd[3643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.22.124.94 Apr 10 04:05:02 ws22vmsma01 sshd[3643]: Failed password for invalid user helpdesk from 1.22.124.94 port 60526 ssh2 ...	2020-04-10 17:44:18
attack	sshd jail - ssh hack attempt	2020-04-10 09:14:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.22.124.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4442
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.22.124.94.			IN	A

;; AUTHORITY SECTION:
.			448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020501 1800 900 604800 86400

;; Query time: 142 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 06 08:08:04 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 94.124.22.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 94.124.22.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.204.218.154	attack	2020-07-13T13:33:13.048436mail.csmailer.org sshd[4214]: Invalid user debbie from 114.204.218.154 port 40328 2020-07-13T13:33:13.051835mail.csmailer.org sshd[4214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.204.218.154 2020-07-13T13:33:13.048436mail.csmailer.org sshd[4214]: Invalid user debbie from 114.204.218.154 port 40328 2020-07-13T13:33:15.539024mail.csmailer.org sshd[4214]: Failed password for invalid user debbie from 114.204.218.154 port 40328 ssh2 2020-07-13T13:37:07.506042mail.csmailer.org sshd[4464]: Invalid user x from 114.204.218.154 port 35631 ...	2020-07-13 23:54:02
112.212.133.140	attack	Unauthorized connection attempt detected from IP address 112.212.133.140 to port 23	2020-07-14 00:06:57
162.214.97.24	attackspambots	Unauthorized connection attempt detected from IP address 162.214.97.24 to port 4815	2020-07-13 23:38:45
217.182.241.115	attackbots	TCP (SYN) 217.182.241.115:54686 -> port 16882, len 44	2020-07-13 23:33:25
159.65.142.103	attack	firewall-block, port(s): 25839/tcp	2020-07-13 23:28:23
103.252.196.150	attack	Fail2Ban Ban Triggered (2)	2020-07-13 23:52:13
114.35.219.16	attack	Port scan denied	2020-07-13 23:35:44
45.6.72.17	attackbots	Automatic report - Banned IP Access	2020-07-14 00:10:10
90.195.94.142	attackbotsspam	Email rejected due to spam filtering	2020-07-13 23:32:30
157.245.125.187	attackbotsspam	TCP (SYN) 157.245.125.187:44843 -> port 12864, len 44	2020-07-13 23:51:45
106.13.217.102	attackbots	Port Scan ...	2020-07-13 23:25:48
92.9.108.130	attackbotsspam	TCP (SYN) 92.9.108.130:43972 -> port 22, len 44	2020-07-13 23:42:04
84.1.30.70	attack	Jul 13 23:13:32 web1 sshd[6355]: Invalid user suzanne from 84.1.30.70 port 42286 Jul 13 23:13:32 web1 sshd[6355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.1.30.70 Jul 13 23:13:32 web1 sshd[6355]: Invalid user suzanne from 84.1.30.70 port 42286 Jul 13 23:13:33 web1 sshd[6355]: Failed password for invalid user suzanne from 84.1.30.70 port 42286 ssh2 Jul 13 23:18:22 web1 sshd[7480]: Invalid user opal from 84.1.30.70 port 52904 Jul 13 23:18:22 web1 sshd[7480]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.1.30.70 Jul 13 23:18:22 web1 sshd[7480]: Invalid user opal from 84.1.30.70 port 52904 Jul 13 23:18:24 web1 sshd[7480]: Failed password for invalid user opal from 84.1.30.70 port 52904 ssh2 Jul 13 23:21:07 web1 sshd[8217]: Invalid user dsadm from 84.1.30.70 port 40808 ...	2020-07-13 23:44:24
192.241.235.220	attack	[Mon Jul 13 02:24:25 2020] - DDoS Attack From IP: 192.241.235.220 Port: 48424	2020-07-13 23:27:17
106.12.185.161	attackbotsspam	Port scan denied	2020-07-14 00:11:02

Recently Reported IPs

132.232.241.187	213.176.35.81	123.140.114.196	77.22.38.11
150.136.174.222	246.196.141.95	71.12.130.67	5.16.10.166
90.61.166.205	85.173.200.246	3.87.201.98	78.49.27.10
187.39.35.85	35.182.38.96	103.21.117.88	45.148.164.125
78.187.138.207	15.188.204.51	190.39.221.67	49.68.254.193