123.145.1.68 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
123.145.14.18	attackspam	Unauthorized connection attempt detected from IP address 123.145.14.18 to port 21	2020-05-31 03:37:45
123.145.107.63	attack	Invalid user postgres from 123.145.107.63 port 57537	2020-05-13 20:08:40
123.145.10.114	attackbotsspam	20 attempts against mh-ssh on field	2020-05-05 08:50:25
123.145.113.199	attackbots	Mar 27 04:53:07 [host] sshd[32010]: Invalid user k Mar 27 04:53:07 [host] sshd[32010]: pam_unix(sshd: Mar 27 04:53:10 [host] sshd[32010]: Failed passwor	2020-03-27 13:55:06
123.145.18.10	attackbots	123.145.18.10 - - \[27/Feb/2020:16:27:08 +0200\] "CONNECT www.baidu.com:443 HTTP/1.1" 403 202 "-" "PycURL/7.43.0 libcurl/7.47.0 GnuTLS/3.4.10 zlib/1.2.8 libidn/1.32 librtmp/2.3"	2020-02-27 23:17:54
123.145.11.89	attackbots	Unauthorized connection attempt detected from IP address 123.145.11.89 to port 8888 [J]	2020-01-29 10:03:12
123.145.17.240	attackbots	Unauthorized connection attempt detected from IP address 123.145.17.240 to port 81 [T]	2020-01-22 07:44:51
123.145.19.183	attackspam	Unauthorized connection attempt detected from IP address 123.145.19.183 to port 9999 [T]	2020-01-10 09:18:30
123.145.17.197	attack	Unauthorized connection attempt detected from IP address 123.145.17.197 to port 8090	2020-01-01 21:26:29
123.145.18.8	attackspam	Unauthorized connection attempt detected from IP address 123.145.18.8 to port 995	2020-01-01 19:02:52
123.145.14.230	attack	Unauthorized connection attempt detected from IP address 123.145.14.230 to port 8080	2019-12-29 17:11:26
123.145.11.119	attack	The IP has triggered Cloudflare WAF. CF-Ray: 543263d3f950d38e \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.096783921 Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 06:44:26
123.145.11.238	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54311a6a881dd35e \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: drop \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: api.skk.moe \| User-Agent: Mozilla/5.0 (Linux; Android 6.0; Nexus 5 Build/MRA58N) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/55.0.2883.87 Mobile Safari/537.36 \| CF_DC: LAX. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-12 05:39:19
123.145.12.196	attack	The IP has triggered Cloudflare WAF. CF-Ray: 54160d140d7fed33 \| WAF_Rule_ID: 3b40188685924a32bf11d40edea05a27 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: blog.skk.moe \| User-Agent: Mozilla/5.064213590 Mozilla/5.0 (Windows NT 6.1) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/68.0.3440.106 Safari/537.36 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 07:09:06
123.145.12.212	attack	The IP has triggered Cloudflare WAF. CF-Ray: 541104d0ae0c5120 \| WAF_Rule_ID: 1025440 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CN \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: theme-suka.skk.moe \| User-Agent: Mozilla/5.0 (iPad; CPU OS 9_1 like Mac OS X) AppleWebKit/601.1.46 (KHTML, like Gecko) Version/9.0 Mobile/13B143 Safari/601.1 \| CF_DC: SJC. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2019-12-08 06:40:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.145.1.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29432
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;123.145.1.68.			IN	A

;; AUTHORITY SECTION:
.			518	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 83 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 14:17:39 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 68.1.145.123.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 68.1.145.123.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.133.99.7	attack	Apr 9 22:28:50 relay postfix/smtpd\[1069\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 9 22:33:35 relay postfix/smtpd\[789\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 9 22:33:46 relay postfix/smtpd\[6004\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 9 22:34:04 relay postfix/smtpd\[11627\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 9 22:34:14 relay postfix/smtpd\[6004\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-10 04:51:56
67.205.31.136	attackbotsspam	67.205.31.136 - - [09/Apr/2020:17:20:40 +0200] "GET /wp-login.php HTTP/1.1" 200 5702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 67.205.31.136 - - [09/Apr/2020:17:20:41 +0200] "POST /wp-login.php HTTP/1.1" 200 6601 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 67.205.31.136 - - [09/Apr/2020:17:20:42 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-10 04:19:23
200.122.249.203	attackbotsspam	Apr 9 16:40:09 firewall sshd[21988]: Invalid user randy from 200.122.249.203 Apr 9 16:40:11 firewall sshd[21988]: Failed password for invalid user randy from 200.122.249.203 port 36492 ssh2 Apr 9 16:44:05 firewall sshd[22201]: Invalid user sam from 200.122.249.203 ...	2020-04-10 04:53:30
213.32.67.160	attackspam	Apr 9 22:27:05 OPSO sshd\[18698\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.67.160 user=admin Apr 9 22:27:07 OPSO sshd\[18698\]: Failed password for admin from 213.32.67.160 port 58656 ssh2 Apr 9 22:33:02 OPSO sshd\[19715\]: Invalid user postgres from 213.32.67.160 port 45580 Apr 9 22:33:02 OPSO sshd\[19715\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.67.160 Apr 9 22:33:05 OPSO sshd\[19715\]: Failed password for invalid user postgres from 213.32.67.160 port 45580 ssh2	2020-04-10 04:37:31
118.185.230.89	attack	NOQUEUE: reject: RCPT from mail.ewrealty.in[118.185.230.89]: 554 5.7.1 : Relay access denied; from= to= proto=ESMTP helo=	2020-04-10 04:30:31
181.55.94.22	attackbotsspam	Apr 9 22:02:24 ns382633 sshd\[19043\]: Invalid user test from 181.55.94.22 port 50460 Apr 9 22:02:24 ns382633 sshd\[19043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.55.94.22 Apr 9 22:02:26 ns382633 sshd\[19043\]: Failed password for invalid user test from 181.55.94.22 port 50460 ssh2 Apr 9 22:09:14 ns382633 sshd\[20496\]: Invalid user guest from 181.55.94.22 port 38476 Apr 9 22:09:14 ns382633 sshd\[20496\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.55.94.22	2020-04-10 04:11:39
125.163.235.189	attack	1586437018 - 04/09/2020 14:56:58 Host: 125.163.235.189/125.163.235.189 Port: 445 TCP Blocked	2020-04-10 04:42:25
134.175.124.221	attackbotsspam	5x Failed Password	2020-04-10 04:31:23
118.70.46.227	attackspam	1586437012 - 04/09/2020 14:56:52 Host: 118.70.46.227/118.70.46.227 Port: 445 TCP Blocked	2020-04-10 04:45:20
159.65.137.23	attackspambots	Apr 9 15:40:19 www_kotimaassa_fi sshd[21609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.137.23 Apr 9 15:40:21 www_kotimaassa_fi sshd[21609]: Failed password for invalid user ubuntu from 159.65.137.23 port 33114 ssh2 ...	2020-04-10 04:18:47
191.31.18.153	attackspam	(sshd) Failed SSH login from 191.31.18.153 (BR/Brazil/191.31.18.153.dynamic.adsl.gvt.net.br): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 9 21:48:15 ubnt-55d23 sshd[31538]: Invalid user teamspeak3 from 191.31.18.153 port 52599 Apr 9 21:48:17 ubnt-55d23 sshd[31538]: Failed password for invalid user teamspeak3 from 191.31.18.153 port 52599 ssh2	2020-04-10 04:27:56
125.91.104.136	attack	Apr 9 18:44:43 ewelt sshd[16404]: Invalid user deploy from 125.91.104.136 port 52138 Apr 9 18:44:43 ewelt sshd[16404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.91.104.136 Apr 9 18:44:43 ewelt sshd[16404]: Invalid user deploy from 125.91.104.136 port 52138 Apr 9 18:44:46 ewelt sshd[16404]: Failed password for invalid user deploy from 125.91.104.136 port 52138 ssh2 ...	2020-04-10 04:17:47
14.29.165.173	attackbots	Apr 9 19:41:35 ns382633 sshd\[22861\]: Invalid user mis from 14.29.165.173 port 38782 Apr 9 19:41:35 ns382633 sshd\[22861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.165.173 Apr 9 19:41:37 ns382633 sshd\[22861\]: Failed password for invalid user mis from 14.29.165.173 port 38782 ssh2 Apr 9 20:06:48 ns382633 sshd\[28152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.165.173 user=root Apr 9 20:06:50 ns382633 sshd\[28152\]: Failed password for root from 14.29.165.173 port 32928 ssh2	2020-04-10 04:21:10
120.92.114.71	attack	B: Abusive ssh attack	2020-04-10 04:34:13
182.61.21.155	attack	Apr 9 15:19:56 lock-38 sshd[782574]: Invalid user research from 182.61.21.155 port 42516 Apr 9 15:19:56 lock-38 sshd[782574]: Failed password for invalid user research from 182.61.21.155 port 42516 ssh2 Apr 9 15:23:20 lock-38 sshd[782692]: Invalid user deploy from 182.61.21.155 port 54674 Apr 9 15:23:20 lock-38 sshd[782692]: Invalid user deploy from 182.61.21.155 port 54674 Apr 9 15:23:20 lock-38 sshd[782692]: Failed password for invalid user deploy from 182.61.21.155 port 54674 ssh2 ...	2020-04-10 04:19:10

Recently Reported IPs

123.145.1.200	123.144.31.37	123.145.0.255	123.145.1.45
123.145.0.30	123.145.11.113	123.145.10.130	123.145.10.214
123.145.12.117	123.145.1.91	123.145.11.229	123.145.16.102
123.145.15.47	123.145.16.65	123.145.15.23	123.145.12.155
123.145.17.161	123.145.16.116	123.145.17.184	123.145.17.59