124.6.2.143 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Taiwan, Province of China

Internet Service Provider: TFN Media Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	port scan and connect, tcp 23 (telnet)	2019-10-06 22:23:11

Comments on same subnet:

IP	Type	Details	Datetime
124.6.2.183	attackbotsspam	Unauthorized connection attempt detected from IP address 124.6.2.183 to port 83 [T]	2020-05-20 10:14:42
124.6.27.201	attackspam	Unauthorized connection attempt detected from IP address 124.6.27.201 to port 9090	2019-12-31 20:04:32
124.6.235.238	attack	1577285405 - 12/25/2019 15:50:05 Host: 124.6.235.238/124.6.235.238 Port: 445 TCP Blocked	2019-12-26 03:54:58

Type

Details

Datetime

124.6.2.183

attackbotsspam

Unauthorized connection attempt detected from IP address 124.6.2.183 to port 83 [T]

2020-05-20 10:14:42

124.6.27.201

attackspam

Unauthorized connection attempt detected from IP address 124.6.27.201 to port 9090

2019-12-31 20:04:32

124.6.235.238

attack

1577285405 - 12/25/2019 15:50:05 Host: 124.6.235.238/124.6.235.238 Port: 445 TCP Blocked

2019-12-26 03:54:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 124.6.2.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30071
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;124.6.2.143.			IN	A

;; AUTHORITY SECTION:
.			401	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100600 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 06 22:23:07 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 143.2.6.124.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 143.2.6.124.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.243.106.213	attack	xmlrpc attack	2019-07-20 19:17:05
139.99.144.191	attack	Jul 20 13:16:12 SilenceServices sshd[7013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.144.191 Jul 20 13:16:14 SilenceServices sshd[7013]: Failed password for invalid user tempo from 139.99.144.191 port 51330 ssh2 Jul 20 13:21:59 SilenceServices sshd[10246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.144.191	2019-07-20 19:36:40
51.68.230.54	attackspambots	Jul 20 11:40:18 cvbmail sshd\[24889\]: Invalid user terri from 51.68.230.54 Jul 20 11:40:18 cvbmail sshd\[24889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.230.54 Jul 20 11:40:20 cvbmail sshd\[24889\]: Failed password for invalid user terri from 51.68.230.54 port 58750 ssh2	2019-07-20 19:27:15
41.128.178.58	attackspambots	445/tcp 445/tcp 445/tcp... [2019-06-14/07-20]6pkt,1pt.(tcp)	2019-07-20 19:56:45
185.19.214.68	attackspam	SPF Fail sender not permitted to send mail for @lithosplus.it	2019-07-20 19:54:51
67.191.194.94	attackbots	frenzy	2019-07-20 19:39:41
143.0.140.217	attack	failed_logins	2019-07-20 19:21:32
201.244.94.189	attackbotsspam	SSH Brute Force, server-1 sshd[15938]: Failed password for mysql from 201.244.94.189 port 61878 ssh2	2019-07-20 19:31:53
185.137.111.123	attackbots	Jul 20 12:26:15 mail postfix/smtpd\[22553\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 20 12:57:24 mail postfix/smtpd\[23246\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 20 12:58:31 mail postfix/smtpd\[23296\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 20 12:59:43 mail postfix/smtpd\[23118\]: warning: unknown\[185.137.111.123\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-20 19:23:51
124.158.5.112	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2019-07-20 19:57:55
153.36.232.139	attack	Jul 20 07:43:48 plusreed sshd[27318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.139 user=root Jul 20 07:43:50 plusreed sshd[27318]: Failed password for root from 153.36.232.139 port 14749 ssh2 ...	2019-07-20 19:53:43
171.244.51.114	attackspambots	SSH Brute Force, server-1 sshd[15906]: Failed password for invalid user soc from 171.244.51.114 port 41740 ssh2	2019-07-20 19:33:04
125.130.208.158	attack	5555/tcp 9527/tcp [2019-07-07/20]2pkt	2019-07-20 20:01:59
175.124.43.123	attackspam	Jul 20 10:52:12 MK-Soft-VM7 sshd\[14329\]: Invalid user sanchez from 175.124.43.123 port 41832 Jul 20 10:52:12 MK-Soft-VM7 sshd\[14329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.124.43.123 Jul 20 10:52:15 MK-Soft-VM7 sshd\[14329\]: Failed password for invalid user sanchez from 175.124.43.123 port 41832 ssh2 ...	2019-07-20 19:29:41
121.177.106.243	attackspam	Caught in portsentry honeypot	2019-07-20 19:12:07

Recently Reported IPs

123.48.242.252	124.181.47.132	183.241.219.39	114.143.248.124
141.120.223.175	115.143.65.138	67.199.116.203	221.39.250.232
203.88.218.217	59.90.234.160	172.50.134.140	118.79.90.155
121.20.57.54	208.223.163.53	249.89.163.68	42.58.30.20
72.149.119.192	209.50.60.177	42.7.97.73	103.59.179.30