123.189.104.45

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom Liaoning Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	$f2bV_matches	2019-08-29 11:47:05

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.189.104.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19457
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.189.104.45.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082802 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 29 11:46:58 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 45.104.189.123.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 45.104.189.123.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.80.36.34	attack	40. On Jun 15 2020 experienced a Brute Force SSH login attempt -> 48 unique times by 103.80.36.34.	2020-06-16 07:15:33
103.228.162.122	attack	Jun 16 00:36:56 cosmoit sshd[9630]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.228.162.122	2020-06-16 07:16:44
200.194.36.54	attack	Automatic report - Port Scan Attack	2020-06-16 07:37:25
218.92.0.212	attackspambots	Jun 15 23:41:24 localhost sshd[62469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Jun 15 23:41:26 localhost sshd[62469]: Failed password for root from 218.92.0.212 port 45322 ssh2 Jun 15 23:41:29 localhost sshd[62469]: Failed password for root from 218.92.0.212 port 45322 ssh2 Jun 15 23:41:24 localhost sshd[62469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Jun 15 23:41:26 localhost sshd[62469]: Failed password for root from 218.92.0.212 port 45322 ssh2 Jun 15 23:41:29 localhost sshd[62469]: Failed password for root from 218.92.0.212 port 45322 ssh2 Jun 15 23:41:24 localhost sshd[62469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Jun 15 23:41:26 localhost sshd[62469]: Failed password for root from 218.92.0.212 port 45322 ssh2 Jun 15 23:41:29 localhost sshd[62469]: Failed password fo ...	2020-06-16 07:51:31
103.238.69.138	attack	Jun 16 01:05:39 vps639187 sshd\[29014\]: Invalid user wur from 103.238.69.138 port 41752 Jun 16 01:05:39 vps639187 sshd\[29014\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.238.69.138 Jun 16 01:05:42 vps639187 sshd\[29014\]: Failed password for invalid user wur from 103.238.69.138 port 41752 ssh2 ...	2020-06-16 07:36:17
111.229.137.13	attackbotsspam	2020-06-15T17:27:27.7383271495-001 sshd[19919]: Failed password for root from 111.229.137.13 port 33028 ssh2 2020-06-15T17:30:34.5555731495-001 sshd[20012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.137.13 user=root 2020-06-15T17:30:36.9291171495-001 sshd[20012]: Failed password for root from 111.229.137.13 port 54954 ssh2 2020-06-15T17:33:40.4654251495-001 sshd[20175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.137.13 user=root 2020-06-15T17:33:42.3724211495-001 sshd[20175]: Failed password for root from 111.229.137.13 port 48652 ssh2 2020-06-15T17:36:57.9781371495-001 sshd[20293]: Invalid user riley from 111.229.137.13 port 42344 ...	2020-06-16 07:39:48
172.104.143.207	attackspambots	F2B blocked SSH BF	2020-06-16 07:49:48
144.172.73.42	attack	Unauthorized SSH connection attempt	2020-06-16 07:44:41
159.89.199.182	attackbots	Jun 16 02:53:03 dhoomketu sshd[776508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.199.182 Jun 16 02:53:03 dhoomketu sshd[776508]: Invalid user samir from 159.89.199.182 port 46000 Jun 16 02:53:05 dhoomketu sshd[776508]: Failed password for invalid user samir from 159.89.199.182 port 46000 ssh2 Jun 16 02:55:31 dhoomketu sshd[776536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.199.182 user=root Jun 16 02:55:33 dhoomketu sshd[776536]: Failed password for root from 159.89.199.182 port 57516 ssh2 ...	2020-06-16 07:24:35
185.137.233.121	attack	Port scan: Attack repeated for 24 hours	2020-06-16 07:47:56
103.79.90.72	attackspambots	Jun 16 01:24:45 tuxlinux sshd[43337]: Invalid user hfsql from 103.79.90.72 port 47445 Jun 16 01:24:45 tuxlinux sshd[43337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.79.90.72 Jun 16 01:24:45 tuxlinux sshd[43337]: Invalid user hfsql from 103.79.90.72 port 47445 Jun 16 01:24:45 tuxlinux sshd[43337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.79.90.72 ...	2020-06-16 07:52:59
114.67.76.166	attackbots	Jun 16 01:12:53 ift sshd\[52737\]: Invalid user jdebruin from 114.67.76.166Jun 16 01:12:56 ift sshd\[52737\]: Failed password for invalid user jdebruin from 114.67.76.166 port 33774 ssh2Jun 16 01:18:25 ift sshd\[54253\]: Invalid user dps from 114.67.76.166Jun 16 01:18:27 ift sshd\[54253\]: Failed password for invalid user dps from 114.67.76.166 port 41542 ssh2Jun 16 01:21:22 ift sshd\[54877\]: Invalid user juliana from 114.67.76.166 ...	2020-06-16 07:23:20
197.62.204.3	attackbots	Jun 16 03:33:43 itv-usvr-01 sshd[13586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.62.204.3 user=root Jun 16 03:33:45 itv-usvr-01 sshd[13586]: Failed password for root from 197.62.204.3 port 44339 ssh2 Jun 16 03:42:07 itv-usvr-01 sshd[14032]: Invalid user dio from 197.62.204.3 Jun 16 03:42:07 itv-usvr-01 sshd[14032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.62.204.3 Jun 16 03:42:07 itv-usvr-01 sshd[14032]: Invalid user dio from 197.62.204.3 Jun 16 03:42:09 itv-usvr-01 sshd[14032]: Failed password for invalid user dio from 197.62.204.3 port 28097 ssh2	2020-06-16 07:23:47
140.255.57.1	attackbots	spam (f2b h2)	2020-06-16 07:16:19
103.145.12.176	attackspambots	[2020-06-15 19:08:51] NOTICE[1273] chan_sip.c: Registration from '376 ' failed for '103.145.12.176:54384' - Wrong password [2020-06-15 19:08:51] SECURITY[1288] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-06-15T19:08:51.984-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="376",SessionID="0x7f31c018ea98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.145.12.176/54384",Challenge="1e5a7863",ReceivedChallenge="1e5a7863",ReceivedHash="f928398a5bf84bb312b5d93191be1f2d" [2020-06-15 19:09:09] NOTICE[1273] chan_sip.c: Registration from '177 ' failed for '103.145.12.176:58060' - Wrong password [2020-06-15 19:09:09] SECURITY[1288] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-06-15T19:09:09.589-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="177",SessionID="0x7f31c02f7128",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.14 ...	2020-06-16 07:38:39

Recently Reported IPs

172.69.68.72	132.148.134.246	197.248.119.140	225.118.218.145
218.24.167.204	115.79.27.219	118.96.190.163	185.104.184.214
213.85.40.90	125.161.135.228	203.66.178.29	189.101.63.90
185.23.65.7	118.83.160.28	218.201.214.177	203.145.9.3
97.178.165.1	184.96.143.118	34.139.45.102	139.212.4.80