123.138.111.244

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: XianCity IPAddressPool

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SIP/5060 Probe, BF, Hack -	2019-12-28 00:07:37

Comments on same subnet:

IP	Type	Details	Datetime
123.138.111.247	attackbotsspam	SIP/5060 Probe, BF, Hack -	2019-12-28 00:05:18
123.138.111.246	attackspam	Automatic report - Port Scan	2019-12-25 20:18:08
123.138.111.247	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-25 18:05:29
123.138.111.239	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-24 06:03:36
123.138.111.240	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-24 05:56:59
123.138.111.247	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-24 05:39:55
123.138.111.241	attackspambots	Unauthorized connection attempt from IP address 123.138.111.241 on Port 3389(RDP)	2019-12-21 05:56:43
123.138.111.239	attackspam	Dec 20 16:17:32 vmd46246 kernel: [766436.039853] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=123.138.111.239 DST=144.91.112.181 LEN=52 TOS=0x00 PREC=0x00 TTL=239 ID=51931 PROTO=TCP SPT=3132 DPT=11211 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 20 16:17:33 vmd46246 kernel: [766436.693748] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=123.138.111.239 DST=144.91.112.181 LEN=52 TOS=0x00 PREC=0x00 TTL=239 ID=45865 PROTO=TCP SPT=3132 DPT=11211 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 20 16:17:33 vmd46246 kernel: [766437.344518] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=123.138.111.239 DST=144.91.112.181 LEN=52 TOS=0x00 PREC=0x00 TTL=239 ID=36648 PROTO=TCP SPT=3132 DPT=11211 WINDOW=8192 RES=0x00 SYN URGP=0 ...	2019-12-21 02:09:41
123.138.111.243	attackbots	Scanning	2019-12-20 18:01:43
123.138.111.249	attackbots	Scanning	2019-12-20 17:33:15
123.138.111.241	attackbots	Host Scan	2019-12-20 15:19:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.138.111.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60159
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.138.111.244.		IN	A

;; AUTHORITY SECTION:
.			446	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122700 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 28 00:07:29 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 244.111.138.123.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 244.111.138.123.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
143.137.239.178	attackbots	Scanning	2020-02-07 21:09:28
115.75.3.174	attackspam	1581051281 - 02/07/2020 05:54:41 Host: 115.75.3.174/115.75.3.174 Port: 445 TCP Blocked	2020-02-07 21:10:25
95.139.115.41	attack	unauthorized connection attempt	2020-02-07 20:31:52
104.32.150.30	attack	unauthorized connection attempt	2020-02-07 21:11:01
78.189.176.237	attack	unauthorized connection attempt	2020-02-07 20:49:44
115.73.208.174	attackbotsspam	DATE:2020-02-07 09:02:19, IP:115.73.208.174, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-07 20:30:15
41.129.131.118	attackbots	unauthorized connection attempt	2020-02-07 20:50:30
190.191.53.83	attackbots	unauthorized connection attempt	2020-02-07 20:45:50
94.231.130.172	attackbots	unauthorized connection attempt	2020-02-07 20:32:24
122.170.13.97	attackbots	unauthorized connection attempt	2020-02-07 20:52:10
89.122.96.52	attackbotsspam	unauthorized connection attempt	2020-02-07 20:32:55
176.205.12.57	attackbotsspam	unauthorized connection attempt	2020-02-07 21:17:39
182.68.160.167	attack	Fail2Ban - HTTP Auth Bruteforce Attempt	2020-02-07 21:17:04
217.58.61.49	attack	unauthorized connection attempt	2020-02-07 21:03:35
146.99.245.142	attackbotsspam	unauthorized connection attempt	2020-02-07 21:18:06

Recently Reported IPs

79.124.204.185	248.204.114.140	155.87.250.51	123.115.229.106
120.195.162.114	113.23.40.174	103.135.39.106	193.255.184.107
173.212.198.204	2409:4051:180:5a4c:6868:9162:34a3:9ac1	190.193.47.111	186.232.156.64
167.172.66.191	3.82.141.125	230.36.135.229	171.25.209.202
113.188.86.151	180.243.227.241	235.53.78.133	125.215.171.227