Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Australia

Internet Service Provider: iiNET Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Type Details Datetime
attack
fail2ban
2019-11-30 20:00:11
attackspam
Sep  8 16:13:09 localhost sshd[10043]: Invalid user test from 124.149.253.83 port 58554
Sep  8 16:13:09 localhost sshd[10043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.253.83
Sep  8 16:13:09 localhost sshd[10043]: Invalid user test from 124.149.253.83 port 58554
Sep  8 16:13:11 localhost sshd[10043]: Failed password for invalid user test from 124.149.253.83 port 58554 ssh2
...
2019-09-08 21:26:29
attackspambots
Aug 31 01:29:47 web8 sshd\[701\]: Invalid user santosh from 124.149.253.83
Aug 31 01:29:47 web8 sshd\[701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.253.83
Aug 31 01:29:49 web8 sshd\[701\]: Failed password for invalid user santosh from 124.149.253.83 port 59314 ssh2
Aug 31 01:35:07 web8 sshd\[3783\]: Invalid user service from 124.149.253.83
Aug 31 01:35:07 web8 sshd\[3783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.253.83
2019-08-31 09:39:15
attackspambots
Aug 28 15:22:58 wbs sshd\[13887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.253.83  user=root
Aug 28 15:23:00 wbs sshd\[13887\]: Failed password for root from 124.149.253.83 port 48630 ssh2
Aug 28 15:28:21 wbs sshd\[14634\]: Invalid user ahavi from 124.149.253.83
Aug 28 15:28:21 wbs sshd\[14634\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.253.83
Aug 28 15:28:23 wbs sshd\[14634\]: Failed password for invalid user ahavi from 124.149.253.83 port 36344 ssh2
2019-08-29 09:38:54
attackbotsspam
Aug 27 04:01:09 ks10 sshd[29535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.253.83 
Aug 27 04:01:12 ks10 sshd[29535]: Failed password for invalid user test9 from 124.149.253.83 port 35652 ssh2
...
2019-08-27 14:27:33
attack
Aug 23 14:24:44 plusreed sshd[17281]: Invalid user julia from 124.149.253.83
...
2019-08-24 02:35:43
attackbots
Aug 19 11:26:12 estefan sshd[29539]: Invalid user xrdp from 124.149.253.83
Aug 19 11:26:12 estefan sshd[29539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.253.83 
Aug 19 11:26:14 estefan sshd[29539]: Failed password for invalid user xrdp from 124.149.253.83 port 43990 ssh2
Aug 19 11:26:15 estefan sshd[29540]: Received disconnect from 124.149.253.83: 11: Bye Bye
Aug 19 11:39:11 estefan sshd[29575]: Invalid user rakhi from 124.149.253.83
Aug 19 11:39:11 estefan sshd[29575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.149.253.83 
Aug 19 11:39:13 estefan sshd[29575]: Failed password for invalid user rakhi from 124.149.253.83 port 36384 ssh2
Aug 19 11:39:13 estefan sshd[29576]: Received disconnect from 124.149.253.83: 11: Bye Bye
Aug 19 11:44:46 estefan sshd[29594]: Invalid user joe from 124.149.253.83
Aug 19 11:44:46 estefan sshd[29594]: pam_unix(sshd:auth): authentication f........
-------------------------------
2019-08-19 19:55:59
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.149.253.83
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52739
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.149.253.83.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081900 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 19 19:55:47 CST 2019
;; MSG SIZE  rcvd: 118
Host info
Host 83.253.149.124.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 83.253.149.124.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
83.97.20.140 attackspam
45454/tcp 60001/tcp...
[2020-04-19/27]4pkt,2pt.(tcp)
2020-04-27 17:26:33
106.53.75.42 attackbots
Apr 27 06:14:03 vps46666688 sshd[13006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.75.42
Apr 27 06:14:04 vps46666688 sshd[13006]: Failed password for invalid user pos from 106.53.75.42 port 42392 ssh2
...
2020-04-27 17:28:57
67.205.31.136 attackspambots
67.205.31.136 - - \[27/Apr/2020:08:24:04 +0200\] "POST /wp-login.php HTTP/1.0" 200 6809 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
67.205.31.136 - - \[27/Apr/2020:08:24:06 +0200\] "POST /wp-login.php HTTP/1.0" 200 6805 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
67.205.31.136 - - \[27/Apr/2020:08:24:08 +0200\] "POST /wp-login.php HTTP/1.0" 200 6821 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"
2020-04-27 17:03:30
181.48.155.149 attack
Apr 27 10:26:38 vps333114 sshd[9203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.155.149
Apr 27 10:26:40 vps333114 sshd[9203]: Failed password for invalid user sleeper from 181.48.155.149 port 40644 ssh2
...
2020-04-27 17:19:43
85.109.182.37 attack
Automatic report - Port Scan Attack
2020-04-27 17:02:34
106.12.193.96 attackspam
Apr 27 06:09:49 haigwepa sshd[26522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.193.96 
Apr 27 06:09:52 haigwepa sshd[26522]: Failed password for invalid user harshini from 106.12.193.96 port 40254 ssh2
...
2020-04-27 17:06:05
222.232.29.235 attack
2020-04-27T06:37:04.879935randservbullet-proofcloud-66.localdomain sshd[20810]: Invalid user andes from 222.232.29.235 port 36286
2020-04-27T06:37:04.883748randservbullet-proofcloud-66.localdomain sshd[20810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.232.29.235
2020-04-27T06:37:04.879935randservbullet-proofcloud-66.localdomain sshd[20810]: Invalid user andes from 222.232.29.235 port 36286
2020-04-27T06:37:06.322778randservbullet-proofcloud-66.localdomain sshd[20810]: Failed password for invalid user andes from 222.232.29.235 port 36286 ssh2
...
2020-04-27 17:05:02
106.54.242.239 attackbots
SSH Brute-Force. Ports scanning.
2020-04-27 17:04:20
140.143.192.35 attack
Port scan detected on ports: 1433[TCP], 1433[TCP], 65529[TCP]
2020-04-27 17:27:19
177.194.40.41 attackspam
2020-04-27T05:53:06.934559  sshd[22893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.194.40.41
2020-04-27T05:53:06.920892  sshd[22893]: Invalid user nhansen from 177.194.40.41 port 60716
2020-04-27T05:53:09.122631  sshd[22893]: Failed password for invalid user nhansen from 177.194.40.41 port 60716 ssh2
2020-04-27T07:57:44.801036  sshd[24603]: Invalid user teamspeak3 from 177.194.40.41 port 38024
...
2020-04-27 17:11:27
198.199.107.239 attack
Honeypot hit.
2020-04-27 17:15:34
1.234.13.176 attackspambots
Apr 27 05:19:12 firewall sshd[5076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.234.13.176
Apr 27 05:19:12 firewall sshd[5076]: Invalid user mars from 1.234.13.176
Apr 27 05:19:14 firewall sshd[5076]: Failed password for invalid user mars from 1.234.13.176 port 56086 ssh2
...
2020-04-27 17:17:26
192.81.135.222 attackbotsspam
scanner
2020-04-27 17:30:17
45.191.104.35 attackspam
2020-04-27T07:51:39.609056  sshd[24515]: Invalid user sa from 45.191.104.35 port 55184
2020-04-27T07:51:39.623667  sshd[24515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.191.104.35
2020-04-27T07:51:39.609056  sshd[24515]: Invalid user sa from 45.191.104.35 port 55184
2020-04-27T07:51:40.968029  sshd[24515]: Failed password for invalid user sa from 45.191.104.35 port 55184 ssh2
...
2020-04-27 17:00:13
93.186.254.22 attack
$f2bV_matches
2020-04-27 16:55:48

Recently Reported IPs

114.34.39.123 36.106.167.107 106.154.88.11 117.92.26.90
176.57.116.173 154.221.24.225 197.247.50.131 159.65.226.184
76.68.131.24 125.133.229.62 191.53.57.96 190.45.14.116
69.16.201.246 238.171.12.194 60.176.232.97 35.189.244.251
186.251.208.120 132.232.82.244 120.0.139.225 41.230.23.169