Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: True Internet Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Type Details Datetime
attack
Unauthorized connection attempt detected from IP address 124.121.92.142 to port 81 [J]
2020-01-17 19:22:34
Comments on same subnet:
IP Type Details Datetime
124.121.92.11 attackspambots
Honeypot attack, port: 81, PTR: ppp-124-121-92-11.revip2.asianet.co.th.
2020-01-13 18:20:30
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.121.92.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40412
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.121.92.142.			IN	A

;; AUTHORITY SECTION:
.			562	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011700 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 17 19:22:29 CST 2020
;; MSG SIZE  rcvd: 118
Host info
142.92.121.124.in-addr.arpa domain name pointer ppp-124-121-92-142.revip2.asianet.co.th.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.92.121.124.in-addr.arpa	name = ppp-124-121-92-142.revip2.asianet.co.th.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
119.196.83.26 attackspam
Jul 31 20:47:03 [munged] sshd[30817]: Invalid user pd from 119.196.83.26 port 38462
Jul 31 20:47:03 [munged] sshd[30817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.196.83.26
2019-08-01 05:25:44
113.17.19.163 attackbots
20 attempts against mh-ssh on comet.magehost.pro
2019-08-01 05:33:07
216.245.192.242 attackbotsspam
k+ssh-bruteforce
2019-08-01 05:56:54
47.91.40.136 attackbots
$f2bV_matches
2019-08-01 05:56:32
85.50.116.141 attackspam
Jul 31 23:13:35 [munged] sshd[3384]: Invalid user zabbix from 85.50.116.141 port 48934
Jul 31 23:13:36 [munged] sshd[3384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.50.116.141
2019-08-01 05:49:05
178.128.158.199 attack
Jul 31 17:44:50 ghostname-secure sshd[4775]: Failed password for invalid user wangyi from 178.128.158.199 port 37040 ssh2
Jul 31 17:44:50 ghostname-secure sshd[4775]: Received disconnect from 178.128.158.199: 11: Bye Bye [preauth]
Jul 31 17:50:15 ghostname-secure sshd[4821]: Failed password for invalid user bj from 178.128.158.199 port 48076 ssh2
Jul 31 17:50:15 ghostname-secure sshd[4821]: Received disconnect from 178.128.158.199: 11: Bye Bye [preauth]
Jul 31 17:54:25 ghostname-secure sshd[4870]: Failed password for daemon from 178.128.158.199 port 44886 ssh2
Jul 31 17:54:25 ghostname-secure sshd[4870]: Received disconnect from 178.128.158.199: 11: Bye Bye [preauth]
Jul 31 17:58:35 ghostname-secure sshd[4914]: Failed password for invalid user ct from 178.128.158.199 port 41918 ssh2
Jul 31 17:58:35 ghostname-secure sshd[4914]: Received disconnect from 178.128.158.199: 11: Bye Bye [preauth]
Jul 31 18:02:44 ghostname-secure sshd[4936]: Failed password for invalid user web........
-------------------------------
2019-08-01 05:23:29
213.79.0.170 attackbots
[portscan] Port scan
2019-08-01 05:53:24
185.175.93.105 attackspam
31.07.2019 21:20:08 Connection to port 40800 blocked by firewall
2019-08-01 05:44:21
49.207.33.2 attackspam
Jul 31 20:47:15 lnxded63 sshd[21883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.33.2
2019-08-01 05:19:31
190.129.163.78 attackspam
Jun  8 19:09:30 server sshd\[85618\]: Invalid user toor from 190.129.163.78
Jun  8 19:09:30 server sshd\[85618\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.129.163.78
Jun  8 19:09:32 server sshd\[85618\]: Failed password for invalid user toor from 190.129.163.78 port 54050 ssh2
...
2019-08-01 05:19:56
190.116.41.227 attack
Jun 25 07:25:19 dallas01 sshd[25970]: Failed password for invalid user wpyan from 190.116.41.227 port 55392 ssh2
Jun 25 07:27:21 dallas01 sshd[26214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.116.41.227
Jun 25 07:27:23 dallas01 sshd[26214]: Failed password for invalid user mie from 190.116.41.227 port 42840 ssh2
2019-08-01 05:58:14
172.104.92.209 attack
" "
2019-08-01 05:55:30
36.237.215.134 attack
Jul 30 02:28:11 localhost kernel: [15712284.575027] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=36.237.215.134 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29496 PROTO=TCP SPT=17213 DPT=37215 WINDOW=13123 RES=0x00 SYN URGP=0 
Jul 30 02:28:11 localhost kernel: [15712284.575060] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=36.237.215.134 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=29496 PROTO=TCP SPT=17213 DPT=37215 SEQ=758669438 ACK=0 WINDOW=13123 RES=0x00 SYN URGP=0 
Jul 31 14:46:39 localhost kernel: [15842992.754662] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.237.215.134 DST=[mungedIP2] LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=9683 PROTO=TCP SPT=13018 DPT=37215 WINDOW=10945 RES=0x00 SYN URGP=0 
Jul 31 14:46:39 localhost kernel: [15842992.754698] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=36.237.215.134 DST=[mungedIP2] LEN=40 TOS=
2019-08-01 05:42:08
211.106.110.49 attackbots
Aug  1 02:50:48 vibhu-HP-Z238-Microtower-Workstation sshd\[1173\]: Invalid user sylvain from 211.106.110.49
Aug  1 02:50:48 vibhu-HP-Z238-Microtower-Workstation sshd\[1173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.106.110.49
Aug  1 02:50:49 vibhu-HP-Z238-Microtower-Workstation sshd\[1173\]: Failed password for invalid user sylvain from 211.106.110.49 port 52551 ssh2
Aug  1 02:55:52 vibhu-HP-Z238-Microtower-Workstation sshd\[1401\]: Invalid user pjtas from 211.106.110.49
Aug  1 02:55:52 vibhu-HP-Z238-Microtower-Workstation sshd\[1401\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.106.110.49
...
2019-08-01 05:45:44
45.114.118.136 attackspam
Jul 31 17:27:07 vps200512 sshd\[31630\]: Invalid user cst from 45.114.118.136
Jul 31 17:27:07 vps200512 sshd\[31630\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.114.118.136
Jul 31 17:27:09 vps200512 sshd\[31630\]: Failed password for invalid user cst from 45.114.118.136 port 52298 ssh2
Jul 31 17:35:42 vps200512 sshd\[31760\]: Invalid user hadoop from 45.114.118.136
Jul 31 17:35:42 vps200512 sshd\[31760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.114.118.136
2019-08-01 05:43:32

Recently Reported IPs

78.165.70.34 66.162.2.6 66.96.252.2 62.28.78.25
60.216.7.210 49.159.122.10 47.197.193.9 45.182.137.255
42.113.163.29 72.76.52.101 41.250.147.251 31.134.30.30
14.252.113.53 14.98.215.26 5.43.203.104 5.19.253.43
223.80.178.125 222.95.238.213 201.148.120.196 200.8.104.169