124.121.2.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.121.232.153	attackspam	Automatic report - Port Scan Attack	2020-06-06 13:15:23
124.121.244.210	attack	Honeypot attack, port: 445, PTR: ppp-124-121-244-210.revip2.asianet.co.th.	2020-04-12 20:39:17
124.121.232.48	attackspambots	Honeypot attack, port: 81, PTR: ppp-124-121-232-48.revip2.asianet.co.th.	2020-01-14 14:04:31
124.121.216.35	attackspambots	1433/tcp [2019-10-26]1pkt	2019-10-26 17:23:27
124.121.26.244	attackspambots	[portscan] Port scan	2019-09-28 23:28:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.121.2.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54862
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.121.2.94.			IN	A

;; AUTHORITY SECTION:
.			566	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030901 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 10 10:35:36 CST 2022
;; MSG SIZE  rcvd: 105

Host info

94.2.121.124.in-addr.arpa domain name pointer ppp-124-121-2-94.revip2.asianet.co.th.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
94.2.121.124.in-addr.arpa	name = ppp-124-121-2-94.revip2.asianet.co.th.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.247.106.95	attackbotsspam	Unauthorized connection attempt from IP address 180.247.106.95 on Port 445(SMB)	2020-08-21 02:47:05
101.251.219.100	attack	Fail2Ban	2020-08-21 02:40:35
222.124.125.219	attackbots	Automatic report - Port Scan Attack	2020-08-21 03:11:45
52.171.198.169	attack	GET //wp2/wp-includes/wlwmanifest.xml HTTP/1.1 GET //site/wp-includes/wlwmanifest.xml HTTP/1.1 GET //2019/wp-includes/wlwmanifest.xml HTTP/1.1 GET //test/wp-includes/wlwmanifest.xml HTTP/1.1 GET //shop/wp-includes/wlwmanifest.xml HTTP/1.1 GET //wordpress/wp-includes/wlwmanifest.xml HTTP/1.1 GET //sito/wp-includes/wlwmanifest.xml HTTP/1.1 GET //2018/wp-includes/wlwmanifest.xml HTTP/1.1 GET //cms/wp-includes/wlwmanifest.xml HTTP/1.1 GET //website/wp-includes/wlwmanifest.xml HTTP/1.1 GET //web/wp-includes/wlwmanifest.xml HTTP/1.1 GET //media/wp-includes/wlwmanifest.xml HTTP/1.1 GET //wp1/wp-includes/wlwmanifest.xml HTTP/1.1 GET //wp/wp-includes/wlwmanifest.xml HTTP/1.1 GET //wp-includes/wlwmanifest.xml HTTP/1.1 GET //blog/wp-includes/wlwmanifest.xml HTTP/1.1 GET //news/wp-includes/wlwmanifest.xml HTTP/1.1 GET //xmlrpc.php?rsd HTTP/1.1	2020-08-21 02:51:56
102.250.5.134	attackbotsspam	102.250.5.134 - - \[20/Aug/2020:14:00:48 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 735 "-" "Mozilla/5.0 \(Windows NT 6.1\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/59.0.3071.109 Safari/537.36" 102.250.5.134 - - \[20/Aug/2020:14:00:59 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 735 "-" "Mozilla/5.0 \(Windows NT 6.1\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/59.0.3071.109 Safari/537.36" 102.250.5.134 - - \[20/Aug/2020:14:01:04 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 735 "-" "Mozilla/5.0 \(Windows NT 6.1\; Win64\; x64\) AppleWebKit/537.36 \(KHTML, like Gecko\) Chrome/59.0.3071.109 Safari/537.36"	2020-08-21 03:08:56
115.231.231.3	attack	Aug 20 09:59:49 Host-KEWR-E sshd[11965]: User root from 115.231.231.3 not allowed because not listed in AllowUsers ...	2020-08-21 02:59:46
106.55.195.243	attackspambots	Aug 20 15:57:50 cosmoit sshd[26038]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.195.243	2020-08-21 03:08:24
171.243.14.23	attack	Automatic report - Port Scan Attack	2020-08-21 02:42:17
118.232.65.38	attackspambots	Unauthorized connection attempt from IP address 118.232.65.38 on Port 445(SMB)	2020-08-21 03:13:20
24.92.187.245	attackspambots	Aug 20 17:32:20 rotator sshd\[31578\]: Invalid user max from 24.92.187.245Aug 20 17:32:21 rotator sshd\[31578\]: Failed password for invalid user max from 24.92.187.245 port 44915 ssh2Aug 20 17:35:58 rotator sshd\[32343\]: Invalid user userftp from 24.92.187.245Aug 20 17:36:00 rotator sshd\[32343\]: Failed password for invalid user userftp from 24.92.187.245 port 43139 ssh2Aug 20 17:39:44 rotator sshd\[32382\]: Invalid user phpuser from 24.92.187.245Aug 20 17:39:46 rotator sshd\[32382\]: Failed password for invalid user phpuser from 24.92.187.245 port 41360 ssh2 ...	2020-08-21 03:04:16
141.98.9.160	attackspam	5x Failed Password	2020-08-21 03:04:37
113.161.218.110	attackspambots	Unauthorized connection attempt from IP address 113.161.218.110 on Port 445(SMB)	2020-08-21 02:52:39
85.105.245.21	attack	Unauthorized connection attempt from IP address 85.105.245.21 on Port 445(SMB)	2020-08-21 03:02:44
49.233.192.22	attackbotsspam	Aug 20 22:06:51 journals sshd\[102823\]: Invalid user spark from 49.233.192.22 Aug 20 22:06:51 journals sshd\[102823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.192.22 Aug 20 22:06:52 journals sshd\[102823\]: Failed password for invalid user spark from 49.233.192.22 port 53944 ssh2 Aug 20 22:12:02 journals sshd\[103377\]: Invalid user gerry from 49.233.192.22 Aug 20 22:12:02 journals sshd\[103377\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.192.22 ...	2020-08-21 03:13:05
191.232.193.0	attackspam	Brute force attempt	2020-08-21 02:43:53

Recently Reported IPs

124.121.2.93	124.121.2.96	124.121.2.99	124.121.20.100
124.121.20.105	124.121.20.106	124.121.20.117	124.121.20.118
124.121.20.123	124.121.20.124	124.121.20.128	124.121.20.130
124.121.20.133	124.121.20.135	124.121.20.137	124.121.20.139
124.121.20.14	124.121.20.140	124.121.20.143	124.121.20.145