124.207.187.139

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Beijing Zhongbangyatong Telecom Technology Co Ltd

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	$f2bV_matches	2020-01-12 02:46:34
attack	Dec 25 04:58:05 unicornsoft sshd\[22578\]: Invalid user tiptop from 124.207.187.139 Dec 25 04:58:05 unicornsoft sshd\[22578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.187.139 Dec 25 04:58:07 unicornsoft sshd\[22578\]: Failed password for invalid user tiptop from 124.207.187.139 port 50170 ssh2	2019-12-25 13:17:00
attackspam	SSH bruteforce (Triggered fail2ban)	2019-12-15 08:57:25
attack	fail2ban	2019-12-11 14:47:19
attack	2019-11-22T22:56:21.918331abusebot-2.cloudsearch.cf sshd\[9670\]: Invalid user mysql from 124.207.187.139 port 48087	2019-11-23 07:09:41
attack	Nov 20 17:34:52 dedicated sshd[561]: Invalid user akyria from 124.207.187.139 port 40929	2019-11-21 03:31:24
attackbotsspam	Nov 15 07:19:36 vps647732 sshd[8539]: Failed password for lp from 124.207.187.139 port 52008 ssh2 ...	2019-11-15 18:20:48
attackspam	detected by Fail2Ban	2019-11-11 20:40:56
attack	Nov 10 08:01:34 dedicated sshd[15459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.187.139 user=root Nov 10 08:01:36 dedicated sshd[15459]: Failed password for root from 124.207.187.139 port 53874 ssh2	2019-11-10 16:46:12
attackbotsspam	Nov 7 00:07:47 MK-Soft-VM7 sshd[10300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.187.139 Nov 7 00:07:49 MK-Soft-VM7 sshd[10300]: Failed password for invalid user suresh from 124.207.187.139 port 50073 ssh2 ...	2019-11-07 07:57:47
attack	2019-08-08T04:26:24.860493 sshd[21716]: Invalid user deva from 124.207.187.139 port 58090 2019-08-08T04:26:24.875558 sshd[21716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.187.139 2019-08-08T04:26:24.860493 sshd[21716]: Invalid user deva from 124.207.187.139 port 58090 2019-08-08T04:26:27.324849 sshd[21716]: Failed password for invalid user deva from 124.207.187.139 port 58090 ssh2 2019-08-08T04:29:14.037967 sshd[21756]: Invalid user mcadmin from 124.207.187.139 port 42260 ...	2019-08-08 10:37:52
attackbots	Aug 7 10:18:49 lnxweb61 sshd[14990]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.187.139	2019-08-07 19:12:09
attack	Aug 2 13:04:22 MK-Soft-VM7 sshd\[13478\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.187.139 user=root Aug 2 13:04:24 MK-Soft-VM7 sshd\[13478\]: Failed password for root from 124.207.187.139 port 54981 ssh2 Aug 2 13:08:32 MK-Soft-VM7 sshd\[13637\]: Invalid user mara from 124.207.187.139 port 43742 ...	2019-08-02 21:50:03
attackbots	Jul 29 11:21:45 mout sshd[15370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.187.139 user=root Jul 29 11:21:47 mout sshd[15370]: Failed password for root from 124.207.187.139 port 50591 ssh2	2019-07-29 17:23:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.207.187.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19843
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.207.187.139.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070601 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 07 06:51:12 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 139.187.207.124.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.2, trying next server
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 139.187.207.124.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.222.2.227	attackbots	Port Scan: TCP/21	2019-10-17 16:28:17
122.166.237.117	attackbots	F2B jail: sshd. Time: 2019-10-17 05:50:03, Reported by: VKReport	2019-10-17 16:50:07
45.176.101.18	attackspam	Honeypot attack, port: 23, PTR: multnet-ipv4-as268988-18-101-176-45.multnet.net.br.	2019-10-17 16:38:34
23.94.133.81	attackspambots	Oct 15 13:38:17 fv15 sshd[15944]: reveeclipse mapping checking getaddrinfo for 23-94-133-81-host.colocrossing.com [23.94.133.81] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 15 13:38:19 fv15 sshd[15944]: Failed password for invalid user cladmin from 23.94.133.81 port 35684 ssh2 Oct 15 13:38:19 fv15 sshd[15944]: Received disconnect from 23.94.133.81: 11: Bye Bye [preauth] Oct 15 13:54:57 fv15 sshd[30476]: reveeclipse mapping checking getaddrinfo for 23-94-133-81-host.colocrossing.com [23.94.133.81] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 15 13:54:59 fv15 sshd[30476]: Failed password for invalid user gq from 23.94.133.81 port 43208 ssh2 Oct 15 13:54:59 fv15 sshd[30476]: Received disconnect from 23.94.133.81: 11: Bye Bye [preauth] Oct 15 13:58:50 fv15 sshd[1390]: reveeclipse mapping checking getaddrinfo for 23-94-133-81-host.colocrossing.com [23.94.133.81] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 15 13:58:50 fv15 sshd[1390]: pam_unix(sshd:auth): authentication failure; logname= ........ -------------------------------	2019-10-17 16:54:50
186.103.223.10	attack	2019-10-17T07:18:51.010256hub.schaetter.us sshd\[29156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.103.223.10 user=root 2019-10-17T07:18:53.283241hub.schaetter.us sshd\[29156\]: Failed password for root from 186.103.223.10 port 45234 ssh2 2019-10-17T07:24:11.242260hub.schaetter.us sshd\[29200\]: Invalid user webmaster from 186.103.223.10 port 36691 2019-10-17T07:24:11.251704hub.schaetter.us sshd\[29200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.103.223.10 2019-10-17T07:24:13.590037hub.schaetter.us sshd\[29200\]: Failed password for invalid user webmaster from 186.103.223.10 port 36691 ssh2 ...	2019-10-17 16:29:10
72.231.20.74	attack	Honeypot attack, port: 81, PTR: cpe-72-231-20-74.nyc.res.rr.com.	2019-10-17 16:55:12
185.176.27.94	attackspambots	10/17/2019-09:07:50.263154 185.176.27.94 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-17 16:24:53
178.128.254.163	attackbots	Oct 16 20:22:50 vm6 sshd[27027]: Did not receive identification string from 178.128.254.163 port 37660 Oct 16 20:24:18 vm6 sshd[27202]: Invalid user erajkot from 178.128.254.163 port 41518 Oct 16 20:24:18 vm6 sshd[27202]: Received disconnect from 178.128.254.163 port 41518:11: Normal Shutdown, Thank you for playing [preauth] Oct 16 20:24:18 vm6 sshd[27202]: Disconnected from 178.128.254.163 port 41518 [preauth] Oct 16 20:24:42 vm6 sshd[27244]: Invalid user abhinish from 178.128.254.163 port 36060 Oct 16 20:24:42 vm6 sshd[27244]: Received disconnect from 178.128.254.163 port 36060:11: Normal Shutdown, Thank you for playing [preauth] Oct 16 20:24:42 vm6 sshd[27244]: Disconnected from 178.128.254.163 port 36060 [preauth] Oct 16 20:25:05 vm6 sshd[27289]: Invalid user opusmonk from 178.128.254.163 port 58784 Oct 16 20:25:05 vm6 sshd[27289]: Received disconnect from 178.128.254.163 port 58784:11: Normal Shutdown, Thank you for playing [preauth] Oct 16 20:25:05 vm6 sshd[27289]........ -------------------------------	2019-10-17 16:37:25
23.129.64.187	attack	Oct 17 08:28:12 rotator sshd\[30211\]: Invalid user acid from 23.129.64.187Oct 17 08:28:13 rotator sshd\[30211\]: Failed password for invalid user acid from 23.129.64.187 port 12630 ssh2Oct 17 08:28:19 rotator sshd\[30213\]: Invalid user acitoolkit from 23.129.64.187Oct 17 08:28:21 rotator sshd\[30213\]: Failed password for invalid user acitoolkit from 23.129.64.187 port 38742 ssh2Oct 17 08:28:27 rotator sshd\[30218\]: Invalid user acoustic from 23.129.64.187Oct 17 08:28:29 rotator sshd\[30218\]: Failed password for invalid user acoustic from 23.129.64.187 port 63096 ssh2 ...	2019-10-17 16:27:53
37.187.113.144	attackspambots	Invalid user gos from 37.187.113.144 port 42098	2019-10-17 16:37:04
106.12.74.123	attack	Oct 17 05:42:21 herz-der-gamer sshd[9108]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.123 user=root Oct 17 05:42:23 herz-der-gamer sshd[9108]: Failed password for root from 106.12.74.123 port 48568 ssh2 Oct 17 05:50:44 herz-der-gamer sshd[9162]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.74.123 user=root Oct 17 05:50:46 herz-der-gamer sshd[9162]: Failed password for root from 106.12.74.123 port 46612 ssh2 ...	2019-10-17 16:22:00
40.136.196.34	attackbotsspam	Lines containing failures of 40.136.196.34 Oct 14 15:34:29 MAKserver05 sshd[2121]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.136.196.34 user=r.r Oct 14 15:34:31 MAKserver05 sshd[2121]: Failed password for r.r from 40.136.196.34 port 56576 ssh2 Oct 14 15:34:33 MAKserver05 sshd[2121]: Received disconnect from 40.136.196.34 port 56576:11: Bye Bye [preauth] Oct 14 15:34:33 MAKserver05 sshd[2121]: Disconnected from authenticating user r.r 40.136.196.34 port 56576 [preauth] Oct 14 15:59:57 MAKserver05 sshd[3355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.136.196.34 user=r.r Oct 14 15:59:59 MAKserver05 sshd[3355]: Failed password for r.r from 40.136.196.34 port 8986 ssh2 Oct 14 15:59:59 MAKserver05 sshd[3355]: Received disconnect from 40.136.196.34 port 8986:11: Bye Bye [preauth] Oct 14 15:59:59 MAKserver05 sshd[3355]: Disconnected from authenticating user r.r 40.136.196.34 port ........ ------------------------------	2019-10-17 16:22:17
62.234.156.120	attackbots	Oct 17 08:58:05 h2177944 sshd\[30225\]: Invalid user cn from 62.234.156.120 port 52629 Oct 17 08:58:05 h2177944 sshd\[30225\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.156.120 Oct 17 08:58:08 h2177944 sshd\[30225\]: Failed password for invalid user cn from 62.234.156.120 port 52629 ssh2 Oct 17 09:03:21 h2177944 sshd\[30811\]: Invalid user bonnie from 62.234.156.120 port 43334 Oct 17 09:03:21 h2177944 sshd\[30811\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.156.120 ...	2019-10-17 16:43:02
80.211.113.144	attackspambots	web-1 [ssh_2] SSH Attack	2019-10-17 16:35:10
80.82.65.74	attackbots	10/17/2019-09:34:43.228755 80.82.65.74 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-17 16:39:19

Recently Reported IPs

198.254.130.247	191.53.223.84	58.145.188.247	82.118.242.128
168.205.109.168	103.17.92.87	161.95.220.226	103.40.132.19
101.84.17.248	113.233.168.24	215.192.195.60	247.73.220.105
134.25.104.242	209.97.179.166	216.252.54.45	207.180.196.202
42.175.41.199	152.254.224.137	234.75.30.36	69.201.68.17