124.6.2.143 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: TFN Media Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	port scan and connect, tcp 23 (telnet)	2019-10-06 22:23:11

Comments on same subnet:

IP	Type	Details	Datetime
124.6.2.183	attackbotsspam	Unauthorized connection attempt detected from IP address 124.6.2.183 to port 83 [T]	2020-05-20 10:14:42
124.6.27.201	attackspam	Unauthorized connection attempt detected from IP address 124.6.27.201 to port 9090	2019-12-31 20:04:32
124.6.235.238	attack	1577285405 - 12/25/2019 15:50:05 Host: 124.6.235.238/124.6.235.238 Port: 445 TCP Blocked	2019-12-26 03:54:58

Type

Details

Datetime

124.6.2.183

attackbotsspam

Unauthorized connection attempt detected from IP address 124.6.2.183 to port 83 [T]

2020-05-20 10:14:42

124.6.27.201

attackspam

Unauthorized connection attempt detected from IP address 124.6.27.201 to port 9090

2019-12-31 20:04:32

124.6.235.238

attack

1577285405 - 12/25/2019 15:50:05 Host: 124.6.235.238/124.6.235.238 Port: 445 TCP Blocked

2019-12-26 03:54:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.6.2.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30071
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.6.2.143.			IN	A

;; AUTHORITY SECTION:
.			401	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100600 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 06 22:23:07 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 143.2.6.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 143.2.6.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.159.63.178	attackspambots	$f2bV_matches	2020-09-19 14:53:15
187.62.193.14	attack	Sep 18 17:00:49 ssh2 sshd[28623]: Connection from 187.62.193.14 port 55942 on 192.240.101.3 port 22 Sep 18 17:00:51 ssh2 sshd[28623]: Invalid user admin from 187.62.193.14 port 55942 Sep 18 17:00:51 ssh2 sshd[28623]: Failed password for invalid user admin from 187.62.193.14 port 55942 ssh2 ...	2020-09-19 15:27:54
95.82.113.164	attackbotsspam	Email rejected due to spam filtering	2020-09-19 15:24:45
14.235.254.120	attack	Unauthorized connection attempt from IP address 14.235.254.120 on Port 445(SMB)	2020-09-19 15:04:38
104.131.97.47	attackbotsspam	Sep 18 21:17:29 er4gw sshd[31847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.97.47 user=root	2020-09-19 15:04:09
49.233.183.15	attackspam	Sep 19 03:41:56 fhem-rasp sshd[7981]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.183.15 user=root Sep 19 03:41:59 fhem-rasp sshd[7981]: Failed password for root from 49.233.183.15 port 49904 ssh2 ...	2020-09-19 15:13:47
60.48.190.199	attack	Sep 18 17:01:11 localhost sshd\[13178\]: Invalid user service from 60.48.190.199 port 50963 Sep 18 17:01:11 localhost sshd\[13178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.48.190.199 Sep 18 17:01:13 localhost sshd\[13178\]: Failed password for invalid user service from 60.48.190.199 port 50963 ssh2 ...	2020-09-19 15:02:15
60.172.4.136	attack	Unauthorized connection attempt from IP address 60.172.4.136 on Port 445(SMB)	2020-09-19 15:31:24
80.82.70.162	attackspam	vps:sshd-InvalidUser	2020-09-19 15:15:38
176.240.225.248	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-19 15:11:24
115.221.117.79	attackspambots	Brute forcing email accounts	2020-09-19 15:09:05
203.195.144.114	attack	Sep 18 21:09:11 web-main sshd[3183552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.144.114 user=root Sep 18 21:09:13 web-main sshd[3183552]: Failed password for root from 203.195.144.114 port 46728 ssh2 Sep 18 21:11:08 web-main sshd[3183840]: Invalid user test from 203.195.144.114 port 43538	2020-09-19 14:56:02
123.241.194.29	attackbots	Sep 18 17:01:04 ssh2 sshd[28672]: User root from 123.241.194.29 not allowed because not listed in AllowUsers Sep 18 17:01:04 ssh2 sshd[28672]: Failed password for invalid user root from 123.241.194.29 port 40608 ssh2 Sep 18 17:01:04 ssh2 sshd[28672]: Connection closed by invalid user root 123.241.194.29 port 40608 [preauth] ...	2020-09-19 15:12:19
167.71.93.165	attackbotsspam	2020-09-19T04:59:11.224243vps-d63064a2 sshd[25237]: User root from 167.71.93.165 not allowed because not listed in AllowUsers 2020-09-19T04:59:13.306771vps-d63064a2 sshd[25237]: Failed password for invalid user root from 167.71.93.165 port 43772 ssh2 2020-09-19T05:03:10.860203vps-d63064a2 sshd[25289]: User root from 167.71.93.165 not allowed because not listed in AllowUsers 2020-09-19T05:03:10.888278vps-d63064a2 sshd[25289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.93.165 user=root 2020-09-19T05:03:10.860203vps-d63064a2 sshd[25289]: User root from 167.71.93.165 not allowed because not listed in AllowUsers 2020-09-19T05:03:13.417690vps-d63064a2 sshd[25289]: Failed password for invalid user root from 167.71.93.165 port 56212 ssh2 ...	2020-09-19 15:28:25
103.146.63.44	attackbots	$f2bV_matches	2020-09-19 14:52:02

Recently Reported IPs

123.48.242.252	124.181.47.132	183.241.219.39	114.143.248.124
141.120.223.175	115.143.65.138	67.199.116.203	221.39.250.232
203.88.218.217	59.90.234.160	172.50.134.140	118.79.90.155
121.20.57.54	208.223.163.53	249.89.163.68	42.58.30.20
72.149.119.192	209.50.60.177	42.7.97.73	103.59.179.30