124.121.92.142

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: True Internet Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 124.121.92.142 to port 81 [J]	2020-01-17 19:22:34

Comments on same subnet:

IP	Type	Details	Datetime
124.121.92.11	attackspambots	Honeypot attack, port: 81, PTR: ppp-124-121-92-11.revip2.asianet.co.th.	2020-01-13 18:20:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.121.92.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40412
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.121.92.142.			IN	A

;; AUTHORITY SECTION:
.			562	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011700 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 17 19:22:29 CST 2020
;; MSG SIZE  rcvd: 118

Host info

142.92.121.124.in-addr.arpa domain name pointer ppp-124-121-92-142.revip2.asianet.co.th.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.92.121.124.in-addr.arpa	name = ppp-124-121-92-142.revip2.asianet.co.th.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.230.33.207	attackspam	Aug 25 10:15:27 XXX sshd[12216]: Invalid user RPM from 157.230.33.207 port 39890	2019-08-25 18:58:37
213.55.92.50	attack	Unauthorized connection attempt from IP address 213.55.92.50 on Port 445(SMB)	2019-08-25 18:56:15
68.183.195.145	attackbotsspam	Aug 25 06:55:27 vps200512 sshd\[27999\]: Invalid user sm from 68.183.195.145 Aug 25 06:55:27 vps200512 sshd\[27999\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.195.145 Aug 25 06:55:29 vps200512 sshd\[27999\]: Failed password for invalid user sm from 68.183.195.145 port 43620 ssh2 Aug 25 06:59:41 vps200512 sshd\[28142\]: Invalid user style from 68.183.195.145 Aug 25 06:59:41 vps200512 sshd\[28142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.195.145	2019-08-25 19:14:45
174.138.20.87	attackbotsspam	Aug 25 01:10:45 friendsofhawaii sshd\[10642\]: Invalid user fabian from 174.138.20.87 Aug 25 01:10:45 friendsofhawaii sshd\[10642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.20.87 Aug 25 01:10:48 friendsofhawaii sshd\[10642\]: Failed password for invalid user fabian from 174.138.20.87 port 47990 ssh2 Aug 25 01:15:37 friendsofhawaii sshd\[11069\]: Invalid user xu from 174.138.20.87 Aug 25 01:15:37 friendsofhawaii sshd\[11069\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.20.87	2019-08-25 19:29:06
138.197.105.79	attack	Aug 25 11:55:48 yesfletchmain sshd\[13378\]: Invalid user clammy from 138.197.105.79 port 43756 Aug 25 11:55:48 yesfletchmain sshd\[13378\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.105.79 Aug 25 11:55:50 yesfletchmain sshd\[13378\]: Failed password for invalid user clammy from 138.197.105.79 port 43756 ssh2 Aug 25 12:00:56 yesfletchmain sshd\[13453\]: Invalid user singer from 138.197.105.79 port 59066 Aug 25 12:00:57 yesfletchmain sshd\[13453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.105.79 ...	2019-08-25 19:34:40
35.186.145.141	attackspam	Aug 25 10:24:40 vpn01 sshd\[29640\]: Invalid user cici from 35.186.145.141 Aug 25 10:24:40 vpn01 sshd\[29640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.186.145.141 Aug 25 10:24:43 vpn01 sshd\[29640\]: Failed password for invalid user cici from 35.186.145.141 port 45784 ssh2	2019-08-25 19:18:20
220.137.41.30	attack	Unauthorized connection attempt from IP address 220.137.41.30 on Port 445(SMB)	2019-08-25 19:13:09
42.159.87.69	attackbotsspam	Splunk® : Brute-Force login attempt on SSH: Aug 25 04:24:28 testbed sshd[27875]: Received disconnect from 42.159.87.69 port 52956:11: Bye Bye [preauth]	2019-08-25 19:05:42
211.253.10.96	attack	Aug 25 09:30:15 microserver sshd[5540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.10.96 user=root Aug 25 09:30:17 microserver sshd[5540]: Failed password for root from 211.253.10.96 port 35658 ssh2 Aug 25 09:35:20 microserver sshd[6272]: Invalid user brown from 211.253.10.96 port 54210 Aug 25 09:35:20 microserver sshd[6272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.10.96 Aug 25 09:35:22 microserver sshd[6272]: Failed password for invalid user brown from 211.253.10.96 port 54210 ssh2 Aug 25 09:49:59 microserver sshd[7822]: Invalid user gpadmin from 211.253.10.96 port 52314 Aug 25 09:49:59 microserver sshd[7822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.253.10.96 Aug 25 09:50:01 microserver sshd[7822]: Failed password for invalid user gpadmin from 211.253.10.96 port 52314 ssh2 Aug 25 09:55:04 microserver sshd[8497]: Invalid user yuan from 211.253.10.96	2019-08-25 19:33:10
185.176.27.94	attackbotsspam	Multiport scan : 6 ports scanned 3390 3393 3398 3839 3889 9833	2019-08-25 18:52:18
112.216.129.138	attackbotsspam	Aug 25 00:59:35 kapalua sshd\[8227\]: Invalid user dimitri from 112.216.129.138 Aug 25 00:59:35 kapalua sshd\[8227\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.129.138 Aug 25 00:59:37 kapalua sshd\[8227\]: Failed password for invalid user dimitri from 112.216.129.138 port 50882 ssh2 Aug 25 01:04:13 kapalua sshd\[8664\]: Invalid user titi from 112.216.129.138 Aug 25 01:04:13 kapalua sshd\[8664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.216.129.138	2019-08-25 19:16:25
185.176.27.98	attackspam	08/25/2019-05:16:27.051949 185.176.27.98 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-08-25 18:51:25
69.162.98.89	attackbotsspam	Unauthorized connection attempt from IP address 69.162.98.89 on Port 445(SMB)	2019-08-25 19:04:44
41.162.69.179	attackspam	Automatic report - Port Scan Attack	2019-08-25 18:54:02
42.104.97.227	attack	Repeated brute force against a port	2019-08-25 19:10:51

Recently Reported IPs

78.165.70.34	66.162.2.6	66.96.252.2	62.28.78.25
60.216.7.210	49.159.122.10	47.197.193.9	45.182.137.255
42.113.163.29	72.76.52.101	41.250.147.251	31.134.30.30
14.252.113.53	14.98.215.26	5.43.203.104	5.19.253.43
223.80.178.125	222.95.238.213	201.148.120.196	200.8.104.169