124.43.21.131 - IPInfo

Basic Info

City: Colombo

Region: Western

Country: Sri Lanka

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
124.43.21.123	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-28 13:49:05
124.43.21.114	attackbots	Unauthorized connection attempt from IP address 124.43.21.114 on Port 445(SMB)	2020-01-08 18:32:17
124.43.21.213	attack	Invalid user hadoop from 124.43.21.213 port 40536	2019-07-28 07:07:06
124.43.21.213	attackbotsspam	Invalid user hadoop from 124.43.21.213 port 40536	2019-07-24 17:05:13
124.43.21.213	attack	Jul 10 21:47:28 *** sshd[7582]: Invalid user bmedina from 124.43.21.213	2019-07-11 08:15:20
124.43.21.213	attackbots	Brute force SMTP login attempted. ...	2019-07-10 08:30:14
124.43.21.213	attack	Jun 30 14:46:05 XXXXXX sshd[62993]: Invalid user padoue from 124.43.21.213 port 46726	2019-07-01 02:17:40
124.43.21.213	attackspambots	Jun 30 04:59:10 gcems sshd\[19453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.43.21.213 user=root Jun 30 04:59:12 gcems sshd\[19453\]: Failed password for root from 124.43.21.213 port 34374 ssh2 Jun 30 05:03:23 gcems sshd\[20819\]: Invalid user aiswaria from 124.43.21.213 port 44864 Jun 30 05:03:24 gcems sshd\[20819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.43.21.213 Jun 30 05:03:26 gcems sshd\[20819\]: Failed password for invalid user aiswaria from 124.43.21.213 port 44864 ssh2 ...	2019-06-30 18:34:15
124.43.21.213	attack	Jun 26 17:49:00 cac1d2 sshd\[27762\]: Invalid user test from 124.43.21.213 port 41878 Jun 26 17:49:00 cac1d2 sshd\[27762\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.43.21.213 Jun 26 17:49:02 cac1d2 sshd\[27762\]: Failed password for invalid user test from 124.43.21.213 port 41878 ssh2 ...	2019-06-27 11:13:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.43.21.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 902
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;124.43.21.131.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025081102 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 12 02:44:52 CST 2025
;; MSG SIZE  rcvd: 106

Host info

b'Host 131.21.43.124.in-addr.arpa. not found: 3(NXDOMAIN)
'

Nslookup info:

server can't find 124.43.21.131.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.50.8.230	attack	Sep 13 18:00:36 hanapaa sshd\[20746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.8.230 user=root Sep 13 18:00:38 hanapaa sshd\[20746\]: Failed password for root from 117.50.8.230 port 58692 ssh2 Sep 13 18:05:55 hanapaa sshd\[21113\]: Invalid user ftpuser from 117.50.8.230 Sep 13 18:05:55 hanapaa sshd\[21113\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.8.230 Sep 13 18:05:57 hanapaa sshd\[21113\]: Failed password for invalid user ftpuser from 117.50.8.230 port 57906 ssh2	2020-09-14 16:05:36
186.90.177.238	attack	1600016080 - 09/13/2020 18:54:40 Host: 186.90.177.238/186.90.177.238 Port: 445 TCP Blocked	2020-09-14 16:19:41
193.29.15.132	attackspam	2020-09-13 19:18:53.016041-0500 localhost screensharingd[16681]: Authentication: FAILED :: User Name: N/A :: Viewer Address: 193.29.15.132 :: Type: VNC DES	2020-09-14 15:59:36
88.214.26.90	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-14T06:38:33Z	2020-09-14 15:46:54
118.189.74.228	attackspambots	2020-09-14T07:29:11.811179abusebot-7.cloudsearch.cf sshd[5538]: Invalid user admin from 118.189.74.228 port 32874 2020-09-14T07:29:11.816594abusebot-7.cloudsearch.cf sshd[5538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.189.74.228 2020-09-14T07:29:11.811179abusebot-7.cloudsearch.cf sshd[5538]: Invalid user admin from 118.189.74.228 port 32874 2020-09-14T07:29:14.000706abusebot-7.cloudsearch.cf sshd[5538]: Failed password for invalid user admin from 118.189.74.228 port 32874 ssh2 2020-09-14T07:33:43.415082abusebot-7.cloudsearch.cf sshd[5643]: Invalid user user from 118.189.74.228 port 45928 2020-09-14T07:33:43.421529abusebot-7.cloudsearch.cf sshd[5643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.189.74.228 2020-09-14T07:33:43.415082abusebot-7.cloudsearch.cf sshd[5643]: Invalid user user from 118.189.74.228 port 45928 2020-09-14T07:33:44.948038abusebot-7.cloudsearch.cf sshd[5643]: Failed pa ...	2020-09-14 15:55:42
139.155.35.47	attackbotsspam	Sep 14 07:50:21 rush sshd[25963]: Failed password for root from 139.155.35.47 port 36758 ssh2 Sep 14 07:53:50 rush sshd[26097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.35.47 Sep 14 07:53:52 rush sshd[26097]: Failed password for invalid user zev from 139.155.35.47 port 56970 ssh2 ...	2020-09-14 16:04:40
45.43.36.191	attackspambots	Brute force attempt	2020-09-14 15:45:53
120.131.14.125	attackbotsspam	k+ssh-bruteforce	2020-09-14 15:48:05
182.23.50.99	attack	Repeated brute force against a port	2020-09-14 15:47:43
94.102.51.78	attackspambots	Sep 14 09:38:19 vpn01 sshd[31716]: Failed password for root from 94.102.51.78 port 40398 ssh2 Sep 14 09:38:32 vpn01 sshd[31716]: Failed password for root from 94.102.51.78 port 40398 ssh2 ...	2020-09-14 15:44:20
124.236.22.12	attackbotsspam	bruteforce detected	2020-09-14 16:06:09
103.237.58.201	attackbotsspam	Attempted Brute Force (dovecot)	2020-09-14 15:48:54
104.45.88.60	attackbots	104.45.88.60 (IE/Ireland/-), 6 distributed sshd attacks on account [admin] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 14 01:08:31 server4 sshd[24595]: Invalid user admin from 159.89.115.108 Sep 14 01:06:03 server4 sshd[23307]: Invalid user admin from 119.96.120.113 Sep 14 01:06:06 server4 sshd[23307]: Failed password for invalid user admin from 119.96.120.113 port 35696 ssh2 Sep 14 01:17:51 server4 sshd[29062]: Invalid user admin from 104.45.88.60 Sep 14 01:08:33 server4 sshd[24595]: Failed password for invalid user admin from 159.89.115.108 port 43200 ssh2 Sep 14 00:46:57 server4 sshd[13693]: Invalid user admin from 45.55.53.46 IP Addresses Blocked: 159.89.115.108 (CA/Canada/-) 119.96.120.113 (CN/China/-)	2020-09-14 15:54:09
115.99.13.91	attackbotsspam	20/9/13@12:55:06: FAIL: IoT-Telnet address from=115.99.13.91 ...	2020-09-14 15:56:09
51.158.65.150	attackspam	Sep 14 04:45:35 firewall sshd[14950]: Failed password for root from 51.158.65.150 port 34214 ssh2 Sep 14 04:49:25 firewall sshd[15041]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.65.150 user=root Sep 14 04:49:27 firewall sshd[15041]: Failed password for root from 51.158.65.150 port 45394 ssh2 ...	2020-09-14 15:59:06

Recently Reported IPs

61.0.41.133	123.52.163.1	15.14.71.82	27.200.19.111
94.72.107.3	14.153.210.75	223.104.77.82	193.32.161.178
45.11.183.68	197.46.157.134	120.4.169.147	95.179.221.158
20.163.14.102	19.16.92.12	165.22.173.123	135.237.126.202
47.104.249.132	195.184.76.35	48.243.206.230	10.40.13.54