123.118.1.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
123.118.125.78	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/123.118.125.78/ CN - 1H : (615) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4808 IP : 123.118.125.78 CIDR : 123.118.64.0/18 PREFIX COUNT : 1972 UNIQUE IP COUNT : 6728192 ATTACKS DETECTED ASN4808 : 1H - 5 3H - 6 6H - 10 12H - 19 24H - 33 DateTime : 2019-11-07 05:55:51 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-07 13:55:39

Type

Details

Datetime

123.118.125.78

attack

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/123.118.125.78/ 
 
 CN - 1H : (615)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : CN 
 NAME ASN : ASN4808 
 
 IP : 123.118.125.78 
 
 CIDR : 123.118.64.0/18 
 
 PREFIX COUNT : 1972 
 
 UNIQUE IP COUNT : 6728192 
 
 
 ATTACKS DETECTED ASN4808 :  
  1H - 5 
  3H - 6 
  6H - 10 
 12H - 19 
 24H - 33 
 
 DateTime : 2019-11-07 05:55:51 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery

2019-11-07 13:55:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.118.1.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39272
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;123.118.1.55.			IN	A

;; AUTHORITY SECTION:
.			448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 196 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 16:47:31 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 55.1.118.123.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 55.1.118.123.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.64.226.51	attackbots	Unauthorized connection attempt from IP address 218.64.226.51 on Port 445(SMB)	2019-10-03 02:39:17
45.55.47.128	attackbots	Automatic report - Banned IP Access	2019-10-03 02:48:31
87.253.47.142	attack	Unauthorized connection attempt from IP address 87.253.47.142 on Port 445(SMB)	2019-10-03 02:20:48
222.186.180.20	attackbotsspam	Fail2Ban - SSH Bruteforce Attempt	2019-10-03 02:28:26
117.91.232.206	attackbots	SASL broute force	2019-10-03 02:44:08
125.215.207.40	attack	Oct 2 05:52:04 web9 sshd\[23901\]: Invalid user bj from 125.215.207.40 Oct 2 05:52:04 web9 sshd\[23901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.40 Oct 2 05:52:06 web9 sshd\[23901\]: Failed password for invalid user bj from 125.215.207.40 port 37601 ssh2 Oct 2 06:00:53 web9 sshd\[25209\]: Invalid user mrx from 125.215.207.40 Oct 2 06:00:53 web9 sshd\[25209\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.40	2019-10-03 02:45:47
36.82.242.150	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 02-10-2019 19:25:49.	2019-10-03 02:29:41
220.180.238.9	attackbotsspam	Automated reporting of Malicious Activity	2019-10-03 02:34:20
200.7.120.42	attackbots	DATE:2019-10-02 14:30:54, IP:200.7.120.42, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-10-03 02:32:55
106.52.24.184	attackspam	Oct 2 17:10:51 ns41 sshd[28799]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.24.184	2019-10-03 01:58:48
123.16.250.30	attack	Unauthorized connection attempt from IP address 123.16.250.30 on Port 445(SMB)	2019-10-03 02:07:50
37.59.46.85	attack	Oct 2 19:42:12 meumeu sshd[500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.46.85 Oct 2 19:42:14 meumeu sshd[500]: Failed password for invalid user nb from 37.59.46.85 port 51296 ssh2 Oct 2 19:46:33 meumeu sshd[1063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.46.85 ...	2019-10-03 01:58:02
111.65.181.96	attack	" "	2019-10-03 02:22:18
175.143.127.73	attack	Oct 2 17:21:31 MK-Soft-VM4 sshd[14195]: Failed password for backup from 175.143.127.73 port 39199 ssh2 Oct 2 17:26:30 MK-Soft-VM4 sshd[14853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.143.127.73 ...	2019-10-03 02:07:31
106.13.56.45	attackbots	2019-10-02T19:30:52.742809enmeeting.mahidol.ac.th sshd\[25521\]: Invalid user dallen from 106.13.56.45 port 59682 2019-10-02T19:30:52.761482enmeeting.mahidol.ac.th sshd\[25521\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.56.45 2019-10-02T19:30:55.010870enmeeting.mahidol.ac.th sshd\[25521\]: Failed password for invalid user dallen from 106.13.56.45 port 59682 ssh2 ...	2019-10-03 02:31:07

Recently Reported IPs

123.10.57.33	123.10.33.99	123.118.1.90	123.118.1.245
123.118.12.195	123.118.13.110	123.118.13.137	123.118.14.221
123.118.107.58	123.118.14.51	123.118.11.108	123.118.15.30
123.118.13.72	123.118.3.97	123.118.2.138	123.118.5.138
123.118.3.126	123.118.6.143	123.118.15.37	123.118.6.150