123.157.138.135

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Zhejiang Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 123.157.138.135 to port 1433 [T]	2020-04-15 03:51:43

Comments on same subnet:

IP	Type	Details	Datetime
123.157.138.136	attack	Unauthorized connection attempt detected from IP address 123.157.138.136 to port 1433 [T]	2020-04-15 04:24:05
123.157.138.139	attackbotsspam	Unauthorized connection attempt detected from IP address 123.157.138.139 to port 1433 [T]	2020-04-15 04:23:40
123.157.138.140	attack	Unauthorized connection attempt detected from IP address 123.157.138.140 to port 1433 [T]	2020-04-15 03:51:23
123.157.138.133	attack	Unauthorized connection attempt detected from IP address 123.157.138.133 to port 1433 [T]	2020-04-15 03:14:42
123.157.138.141	attackspambots	Unauthorized connection attempt detected from IP address 123.157.138.141 to port 1433 [T]	2020-04-15 03:14:12
123.157.138.132	attackbotsspam	Unauthorized connection attempt detected from IP address 123.157.138.132 to port 1433 [T]	2020-04-15 02:40:59
123.157.138.138	attackbots	Unauthorized connection attempt detected from IP address 123.157.138.138 to port 1433 [T]	2020-04-15 02:40:27
123.157.138.131	attack	Unauthorized connection attempt detected from IP address 123.157.138.131 to port 1433 [T]	2020-04-15 02:03:26
123.157.138.142	attackbots	Unauthorized connection attempt detected from IP address 123.157.138.142 to port 1433 [T]	2020-04-15 02:03:03
123.157.138.137	attackspambots	Unauthorized connection attempt detected from IP address 123.157.138.137 to port 1433 [T]	2020-04-15 01:19:21
123.157.138.134	attackbots	Unauthorized connection attempt detected from IP address 123.157.138.134 to port 1433 [T]	2020-04-15 00:27:24
123.157.138.133	attack	Unauthorized connection attempt detected from IP address 123.157.138.133 to port 1433 [J]	2020-01-22 22:28:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.157.138.135
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27480
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.157.138.135.		IN	A

;; AUTHORITY SECTION:
.			353	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041401 1800 900 604800 86400

;; Query time: 888 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 15 03:51:40 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 135.138.157.123.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 135.138.157.123.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.97.99.117	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-02 02:16:44
106.12.27.107	attack	5x Failed Password	2020-03-02 02:41:46
222.186.180.8	attackspambots	Mar 1 19:03:20 jane sshd[32029]: Failed password for root from 222.186.180.8 port 19506 ssh2 Mar 1 19:03:23 jane sshd[32029]: Failed password for root from 222.186.180.8 port 19506 ssh2 ...	2020-03-02 02:15:31
85.192.130.250	attack	Unauthorized connection attempt detected from IP address 85.192.130.250 to port 23 [J]	2020-03-02 02:13:25
140.136.210.146	attackbots	Unauthorized connection attempt detected from IP address 140.136.210.146 to port 81 [J]	2020-03-02 02:13:07
49.83.88.161	attackspambots	MVPower DVR TV Shell Unauthenticated Command Execution Vulnerability, PTR: PTR record not found	2020-03-02 02:35:54
165.16.6.54	attackbots	Mar 1 14:13:57 mxgate1 postfix/postscreen[14684]: CONNECT from [165.16.6.54]:42516 to [176.31.12.44]:25 Mar 1 14:13:57 mxgate1 postfix/dnsblog[14687]: addr 165.16.6.54 listed by domain zen.spamhaus.org as 127.0.0.4 Mar 1 14:13:57 mxgate1 postfix/dnsblog[14687]: addr 165.16.6.54 listed by domain zen.spamhaus.org as 127.0.0.11 Mar 1 14:13:57 mxgate1 postfix/dnsblog[14686]: addr 165.16.6.54 listed by domain cbl.abuseat.org as 127.0.0.2 Mar 1 14:13:57 mxgate1 postfix/dnsblog[14688]: addr 165.16.6.54 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Mar 1 14:13:57 mxgate1 postfix/dnsblog[14685]: addr 165.16.6.54 listed by domain bl.spamcop.net as 127.0.0.2 Mar 1 14:13:57 mxgate1 postfix/dnsblog[14696]: addr 165.16.6.54 listed by domain b.barracudacentral.org as 127.0.0.2 Mar 1 14:14:03 mxgate1 postfix/postscreen[14684]: DNSBL rank 6 for [165.16.6.54]:42516 Mar x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=165.16.6.54	2020-03-02 02:47:46
140.238.145.45	attack	Mar 1 19:01:37 sso sshd[15685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.238.145.45 Mar 1 19:01:39 sso sshd[15685]: Failed password for invalid user tf2server from 140.238.145.45 port 47816 ssh2 ...	2020-03-02 02:28:59
1.55.219.55	attackspambots	Port 1433 Scan	2020-03-02 02:43:29
200.24.78.37	attackspam	Brute-force attempt banned	2020-03-02 02:39:50
101.52.140.34	attackspam	Mar 1 19:15:57 server sshd[101906]: Failed password for invalid user sirius from 101.52.140.34 port 25165 ssh2 Mar 1 19:19:11 server sshd[102731]: Failed password for root from 101.52.140.34 port 56429 ssh2 Mar 1 19:24:19 server sshd[104182]: Failed password for invalid user zjcl from 101.52.140.34 port 31506 ssh2	2020-03-02 02:28:07
78.128.113.66	attackbotsspam	2020-03-01 19:11:28 dovecot_login authenticator failed for \(\[78.128.113.66\]\) \[78.128.113.66\]: 535 Incorrect authentication data \(set_id=harald.schueller@jugend-ohne-grenzen.net\) 2020-03-01 19:11:35 dovecot_login authenticator failed for \(\[78.128.113.66\]\) \[78.128.113.66\]: 535 Incorrect authentication data \(set_id=harald.schueller\) 2020-03-01 19:12:00 dovecot_login authenticator failed for \(\[78.128.113.66\]\) \[78.128.113.66\]: 535 Incorrect authentication data \(set_id=harald.schueller@jugend-ohne-grenzen.net\) 2020-03-01 19:12:07 dovecot_login authenticator failed for \(\[78.128.113.66\]\) \[78.128.113.66\]: 535 Incorrect authentication data \(set_id=harald.schueller\) 2020-03-01 19:21:09 dovecot_login authenticator failed for \(\[78.128.113.66\]\) \[78.128.113.66\]: 535 Incorrect authentication data \(set_id=harald.schueller@jugend-ohne-grenzen.net\) ...	2020-03-02 02:35:31
14.63.167.192	attackbots	SSH Brute Force	2020-03-02 02:31:09
41.218.195.184	attack	Mar 1 08:21:29 Tower sshd[7548]: Connection from 41.218.195.184 port 41194 on 192.168.10.220 port 22 rdomain "" Mar 1 08:21:32 Tower sshd[7548]: Invalid user admin from 41.218.195.184 port 41194 Mar 1 08:21:32 Tower sshd[7548]: error: Could not get shadow information for NOUSER Mar 1 08:21:32 Tower sshd[7548]: Failed password for invalid user admin from 41.218.195.184 port 41194 ssh2 Mar 1 08:21:33 Tower sshd[7548]: Connection closed by invalid user admin 41.218.195.184 port 41194 [preauth]	2020-03-02 02:14:57
148.102.17.19	attackspam	Mar 1 18:23:48 v22018076622670303 sshd\[18905\]: Invalid user mapred from 148.102.17.19 port 50303 Mar 1 18:23:48 v22018076622670303 sshd\[18905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.102.17.19 Mar 1 18:23:50 v22018076622670303 sshd\[18905\]: Failed password for invalid user mapred from 148.102.17.19 port 50303 ssh2 ...	2020-03-02 02:32:20

Recently Reported IPs

58.249.99.69	58.220.46.62	46.191.232.172	46.45.38.97
185.220.101.158	198.1.81.46	45.77.181.37	42.113.92.192
35.221.213.24	34.76.78.209	27.3.160.19	1.52.134.18
1.52.68.214	218.247.162.250	218.222.71.15	217.197.242.68
217.165.51.86	128.199.63.80	210.121.9.189	210.107.19.121