111.248.29.124

Basic Info

City: Taoyuan District

Region: Taoyuan

Country: Taiwan, China

Internet Service Provider: Chunghwa Telecom Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt from IP address 111.248.29.124 on Port 445(SMB)	2020-09-18 01:22:17
attackbotsspam	Unauthorized connection attempt from IP address 111.248.29.124 on Port 445(SMB)	2020-09-17 17:23:38
attackspambots	Unauthorized connection attempt from IP address 111.248.29.124 on Port 445(SMB)	2020-09-17 08:30:06

Type

Details

Datetime

attackbots

Unauthorized connection attempt from IP address 111.248.29.124 on Port 445(SMB)

2020-09-18 01:22:17

attackbotsspam

Unauthorized connection attempt from IP address 111.248.29.124 on Port 445(SMB)

2020-09-17 17:23:38

attackspambots

Unauthorized connection attempt from IP address 111.248.29.124 on Port 445(SMB)

2020-09-17 08:30:06

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 111.248.29.124
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28378
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;111.248.29.124.			IN	A

;; AUTHORITY SECTION:
.			448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020091602 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 17 08:30:03 CST 2020
;; MSG SIZE  rcvd: 118

Host info

124.29.248.111.in-addr.arpa domain name pointer 111-248-29-124.dynamic-ip.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
124.29.248.111.in-addr.arpa	name = 111-248-29-124.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.92.95.10	attack	Oct 15 16:39:26 TORMINT sshd\[2692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.92.95.10 user=root Oct 15 16:39:28 TORMINT sshd\[2692\]: Failed password for root from 36.92.95.10 port 56718 ssh2 Oct 15 16:45:22 TORMINT sshd\[2997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.92.95.10 user=root ...	2019-10-16 05:08:49
176.230.74.185	attackspambots	Automatic report - Port Scan Attack	2019-10-16 05:00:09
5.135.182.84	attackspambots	fraudulent SSH attempt	2019-10-16 05:08:02
78.107.239.234	attack	ED meds spam	2019-10-16 05:02:13
186.90.189.255	attack	Unauthorised access (Oct 15) SRC=186.90.189.255 LEN=52 TTL=113 ID=8149 DF TCP DPT=445 WINDOW=63443 SYN	2019-10-16 04:43:40
194.84.17.10	attack	Oct 14 14:47:52 rb06 sshd[17992]: reveeclipse mapping checking getaddrinfo for ip10.sub17.equant.ru [194.84.17.10] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 14 14:47:52 rb06 sshd[17992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.84.17.10 user=r.r Oct 14 14:47:53 rb06 sshd[17992]: Failed password for r.r from 194.84.17.10 port 50300 ssh2 Oct 14 14:47:53 rb06 sshd[17992]: Received disconnect from 194.84.17.10: 11: Bye Bye [preauth] Oct 14 14:55:15 rb06 sshd[9320]: reveeclipse mapping checking getaddrinfo for ip10.sub17.equant.ru [194.84.17.10] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 14 14:55:15 rb06 sshd[9320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.84.17.10 user=r.r Oct 14 14:55:17 rb06 sshd[9320]: Failed password for r.r from 194.84.17.10 port 53158 ssh2 Oct 14 14:55:17 rb06 sshd[9320]: Received disconnect from 194.84.17.10: 11: Bye Bye [preauth] Oct 14 14:59:41 rb06 s........ -------------------------------	2019-10-16 05:14:20
118.24.114.192	attackspambots	Oct 15 21:54:48 MK-Soft-VM6 sshd[12428]: Failed password for root from 118.24.114.192 port 37306 ssh2 Oct 15 21:59:14 MK-Soft-VM6 sshd[12432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.114.192 ...	2019-10-16 04:42:12
185.209.0.45	attack	RDP Bruteforce	2019-10-16 05:15:39
37.139.21.75	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-10-16 04:58:35
151.80.144.39	attackbotsspam	Oct 15 22:45:06 SilenceServices sshd[2197]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.144.39 Oct 15 22:45:08 SilenceServices sshd[2197]: Failed password for invalid user ntop from 151.80.144.39 port 50094 ssh2 Oct 15 22:49:48 SilenceServices sshd[3412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.144.39	2019-10-16 05:12:14
117.34.66.245	attackbotsspam	Unauthorised access (Oct 15) SRC=117.34.66.245 LEN=44 TOS=0x10 PREC=0x40 TTL=240 ID=62738 TCP DPT=445 WINDOW=1024 SYN	2019-10-16 04:45:47
182.74.211.54	attack	445/tcp [2019-10-15]1pkt	2019-10-16 05:15:16
5.196.70.107	attack	fraudulent SSH attempt	2019-10-16 04:44:56
152.170.17.204	attack	2019-10-15T21:03:11.289004abusebot-8.cloudsearch.cf sshd\[28037\]: Invalid user root@ from 152.170.17.204 port 41118	2019-10-16 05:06:06
52.193.160.175	attackspambots	Excessive Port-Scanning	2019-10-16 04:54:55

Recently Reported IPs

41.76.193.158	68.38.181.89	69.110.52.205	113.39.207.136
34.99.163.171	223.85.200.196	176.195.139.130	149.11.45.127
200.27.79.240	87.48.103.213	101.94.93.102	186.45.15.108
137.52.12.251	69.7.128.8	222.143.255.139	206.45.156.93
195.120.63.137	154.91.229.215	123.60.6.252	49.95.61.60