JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 124.43.27.106

124.43.27.106 was found in our database!

This IP was reported 177 times. Confidence of Abuse is 100%: ?

100%

ISP	Internet Service Provider in Sri Lanka.
Usage Type	Fixed Line ISP
ASN	AS9329
Domain Name	sltnet.lk
Country	🇱🇰 Sri Lanka
City	Colombo, Western Province

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 124.43.27.106

Whois 124.43.27.106

IP Abuse Reports for 124.43.27.106:

This IP address has been reported a total of 177 times from 65 distinct sources. 124.43.27.106 was first reported on March 4th 2025, and the most recent report was 17 hours ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇳🇱 knock	2026-06-04 09:46:10 (17 hours ago)	Knock-Knock honeypot brute-force: RDP (2 total hits)	Brute-Force
🇦🇺 dyln	2026-06-04 09:06:52 (18 hours ago)	Dyls honeypot brute-force: RDP (1 total hits)	Brute-Force
🇺🇸 sargetun	2026-06-04 08:55:48 (18 hours ago)	Honeypot: RDP probe on port 3389 at 2026-06-04 08:53:42.103001. Automated report from VPS honeypot.	Port Scan
🇺🇸 3rdKey	2026-06-04 08:30:02 (18 hours ago)	OpenCanary honeypot hit on port 3389 (no legitimate service runs there); logtype 14001. Automated re ... show more OpenCanary honeypot hit on port 3389 (no legitimate service runs there); logtype 14001. Automated report. show less	Port Scan Brute-Force Exploited Host
🇨🇦 Luhte	2026-05-31 19:38:13 (4 days ago)	Unsolicited TCP connection from 124.43.27.106 to port 0 at 2026-05-31T19:38:13Z. Source IP completed ... show more Unsolicited TCP connection from 124.43.27.106 to port 0 at 2026-05-31T19:38:13Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
🇺🇸 sargetun	2026-05-28 14:05:20 (1 week ago)	Honeypot: Auto-ban: 24 hour idle after honeypot interaction. Auto-reported from VPS honeypot.	Brute-Force SSH Hacking
🇳🇱 knock	2026-05-27 17:49:00 (1 week ago)	Knock-Knock honeypot brute-force: RDP (1 total hits)	Brute-Force
🇹🇷 Squearex	2026-05-27 17:46:56 (1 week ago)	Automated ban by SCUMUnified Shield. Honeypot Trap Triggered (Decoy Port 3389)	Brute-Force SSH
🇺🇸 Xarcotic	2026-05-27 17:31:58 (1 week ago)	SSH login on honeypot.	Brute-Force SSH
🇵🇱 nfsec.pl	2026-05-27 17:15:21 (1 week ago)	Detected: TCP scan on port: 3389 with flags: SYN	Port Scan
🇩🇪 Luhte	2026-05-27 17:11:20 (1 week ago)	Unsolicited TCP connection from 124.43.27.106 to port 0 at 2026-05-27T17:11:20Z. Source IP completed ... show more Unsolicited TCP connection from 124.43.27.106 to port 0 at 2026-05-27T17:11:20Z. Source IP completed three-way handshake to non-public service on this host. Detected by automated intrusion monitoring. show less	Port Scan Hacking
Anonymous	2026-05-27 17:06:26 (1 week ago)	Tried our host z.	Port Scan Hacking Exploited Host
Anonymous	2026-05-27 17:02:10 (1 week ago)	Trying ports that it shouldn't be.	Port Scan Hacking Exploited Host
🇫🇷 geeek	2026-05-27 15:23:08 (1 week ago)	Port scanning: 3389 TCP Blocked	Port Scan
🇺🇸 ShadowWhisperer	2026-05-27 15:18:54 (1 week ago)	RDP credential attempt.	Brute-Force Hacking

Showing 1 to 15 of 177 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇸 2a03:2880:7ff:47::

🇸🇬 212.73.148.39

🇸🇬 212.73.148.28

🇺🇸 162.240.171.12

🇵🇭 136.158.117.213

🇸🇬 103.134.154.138

🇦🇪 80.227.147.94

🇧🇪 34.140.47.203

🇩🇪 20.218.184.176

🇳🇱 5.255.127.96

🇬🇧 2a06:4880:4000::4f

🇺🇸 2a03:2880:7ff:46::

🇨🇭 179.43.168.58

🇩🇪 167.94.145.25

🇮🇩 165.154.150.65

🇯🇵 160.251.197.41

🇯🇵 160.251.169.213

🇮🇳 124.108.17.138

🇨🇳 123.160.221.182

🇨🇳 101.89.141.184