124.121.92.142

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: True Internet Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 124.121.92.142 to port 81 [J]	2020-01-17 19:22:34

Comments on same subnet:

IP	Type	Details	Datetime
124.121.92.11	attackspambots	Honeypot attack, port: 81, PTR: ppp-124-121-92-11.revip2.asianet.co.th.	2020-01-13 18:20:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.121.92.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40412
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.121.92.142.			IN	A

;; AUTHORITY SECTION:
.			562	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011700 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 17 19:22:29 CST 2020
;; MSG SIZE  rcvd: 118

Host info

142.92.121.124.in-addr.arpa domain name pointer ppp-124-121-92-142.revip2.asianet.co.th.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.92.121.124.in-addr.arpa	name = ppp-124-121-92-142.revip2.asianet.co.th.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
119.196.83.26	attackspam	Jul 31 20:47:03 [munged] sshd[30817]: Invalid user pd from 119.196.83.26 port 38462 Jul 31 20:47:03 [munged] sshd[30817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.196.83.26	2019-08-01 05:25:44
113.17.19.163	attackbots	20 attempts against mh-ssh on comet.magehost.pro	2019-08-01 05:33:07
216.245.192.242	attackbotsspam	k+ssh-bruteforce	2019-08-01 05:56:54
47.91.40.136	attackbots	$f2bV_matches	2019-08-01 05:56:32
85.50.116.141	attackspam	Jul 31 23:13:35 [munged] sshd[3384]: Invalid user zabbix from 85.50.116.141 port 48934 Jul 31 23:13:36 [munged] sshd[3384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.50.116.141	2019-08-01 05:49:05
178.128.158.199	attack	Jul 31 17:44:50 ghostname-secure sshd[4775]: Failed password for invalid user wangyi from 178.128.158.199 port 37040 ssh2 Jul 31 17:44:50 ghostname-secure sshd[4775]: Received disconnect from 178.128.158.199: 11: Bye Bye [preauth] Jul 31 17:50:15 ghostname-secure sshd[4821]: Failed password for invalid user bj from 178.128.158.199 port 48076 ssh2 Jul 31 17:50:15 ghostname-secure sshd[4821]: Received disconnect from 178.128.158.199: 11: Bye Bye [preauth] Jul 31 17:54:25 ghostname-secure sshd[4870]: Failed password for daemon from 178.128.158.199 port 44886 ssh2 Jul 31 17:54:25 ghostname-secure sshd[4870]: Received disconnect from 178.128.158.199: 11: Bye Bye [preauth] Jul 31 17:58:35 ghostname-secure sshd[4914]: Failed password for invalid user ct from 178.128.158.199 port 41918 ssh2 Jul 31 17:58:35 ghostname-secure sshd[4914]: Received disconnect from 178.128.158.199: 11: Bye Bye [preauth] Jul 31 18:02:44 ghostname-secure sshd[4936]: Failed password for invalid user web........ -------------------------------	2019-08-01 05:23:29
213.79.0.170	attackbots	[portscan] Port scan	2019-08-01 05:53:24
185.175.93.105	attackspam	31.07.2019 21:20:08 Connection to port 40800 blocked by firewall	2019-08-01 05:44:21
49.207.33.2	attackspam	Jul 31 20:47:15 lnxded63 sshd[21883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.33.2	2019-08-01 05:19:31
190.129.163.78	attackspam	Jun 8 19:09:30 server sshd\[85618\]: Invalid user toor from 190.129.163.78 Jun 8 19:09:30 server sshd\[85618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.129.163.78 Jun 8 19:09:32 server sshd\[85618\]: Failed password for invalid user toor from 190.129.163.78 port 54050 ssh2 ...	2019-08-01 05:19:56
190.116.41.227	attack	Jun 25 07:25:19 dallas01 sshd[25970]: Failed password for invalid user wpyan from 190.116.41.227 port 55392 ssh2 Jun 25 07:27:21 dallas01 sshd[26214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.116.41.227 Jun 25 07:27:23 dallas01 sshd[26214]: Failed password for invalid user mie from 190.116.41.227 port 42840 ssh2	2019-08-01 05:58:14
172.104.92.209	attack	" "	2019-08-01 05:55:30
36.237.215.134	attack	Jul 30 02:28:11 localhost kernel: [15712284.575027] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=36.237.215.134 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29496 PROTO=TCP SPT=17213 DPT=37215 WINDOW=13123 RES=0x00 SYN URGP=0 Jul 30 02:28:11 localhost kernel: [15712284.575060] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=36.237.215.134 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29496 PROTO=TCP SPT=17213 DPT=37215 SEQ=758669438 ACK=0 WINDOW=13123 RES=0x00 SYN URGP=0 Jul 31 14:46:39 localhost kernel: [15842992.754662] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.237.215.134 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=9683 PROTO=TCP SPT=13018 DPT=37215 WINDOW=10945 RES=0x00 SYN URGP=0 Jul 31 14:46:39 localhost kernel: [15842992.754698] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.237.215.134 DST=[mungedIP2] LEN=40 TOS=	2019-08-01 05:42:08
211.106.110.49	attackbots	Aug 1 02:50:48 vibhu-HP-Z238-Microtower-Workstation sshd\[1173\]: Invalid user sylvain from 211.106.110.49 Aug 1 02:50:48 vibhu-HP-Z238-Microtower-Workstation sshd\[1173\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.106.110.49 Aug 1 02:50:49 vibhu-HP-Z238-Microtower-Workstation sshd\[1173\]: Failed password for invalid user sylvain from 211.106.110.49 port 52551 ssh2 Aug 1 02:55:52 vibhu-HP-Z238-Microtower-Workstation sshd\[1401\]: Invalid user pjtas from 211.106.110.49 Aug 1 02:55:52 vibhu-HP-Z238-Microtower-Workstation sshd\[1401\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.106.110.49 ...	2019-08-01 05:45:44
45.114.118.136	attackspam	Jul 31 17:27:07 vps200512 sshd\[31630\]: Invalid user cst from 45.114.118.136 Jul 31 17:27:07 vps200512 sshd\[31630\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.114.118.136 Jul 31 17:27:09 vps200512 sshd\[31630\]: Failed password for invalid user cst from 45.114.118.136 port 52298 ssh2 Jul 31 17:35:42 vps200512 sshd\[31760\]: Invalid user hadoop from 45.114.118.136 Jul 31 17:35:42 vps200512 sshd\[31760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.114.118.136	2019-08-01 05:43:32

Recently Reported IPs

78.165.70.34	66.162.2.6	66.96.252.2	62.28.78.25
60.216.7.210	49.159.122.10	47.197.193.9	45.182.137.255
42.113.163.29	72.76.52.101	41.250.147.251	31.134.30.30
14.252.113.53	14.98.215.26	5.43.203.104	5.19.253.43
223.80.178.125	222.95.238.213	201.148.120.196	200.8.104.169