123.244.107.0 - IPInfo

Basic Info

City: unknown

Region: Liaoning

Country: China

Internet Service Provider: ChinaNet Liaoning Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Time: Sat Sep 28 09:16:54 2019 -0300 IP: 123.244.107.0 (CN/China/0.107.244.123.broad.cy.ln.dynamic.163data.com.cn) Failures: 15 (ftpd) Interval: 3600 seconds Blocked: Permanent Block	2019-09-29 01:56:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.244.107.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14210
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.244.107.0.			IN	A

;; AUTHORITY SECTION:
.			254	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092800 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 29 01:56:16 CST 2019
;; MSG SIZE  rcvd: 117

Host info

0.107.244.123.in-addr.arpa domain name pointer 0.107.244.123.broad.cy.ln.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
0.107.244.123.in-addr.arpa	name = 0.107.244.123.broad.cy.ln.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.68.82.217	attackbots	[portscan] Port scan	2019-12-12 18:53:10
163.172.176.130	attackbotsspam	Dec 11 23:51:37 php1 sshd\[2744\]: Invalid user haddock from 163.172.176.130 Dec 11 23:51:37 php1 sshd\[2744\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.176.130 Dec 11 23:51:39 php1 sshd\[2744\]: Failed password for invalid user haddock from 163.172.176.130 port 37622 ssh2 Dec 11 23:57:41 php1 sshd\[3325\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.176.130 user=mysql Dec 11 23:57:43 php1 sshd\[3325\]: Failed password for mysql from 163.172.176.130 port 45998 ssh2	2019-12-12 18:17:00
178.33.236.23	attack	--- report --- Dec 12 06:36:24 sshd: Connection from 178.33.236.23 port 51536 Dec 12 06:36:25 sshd: Invalid user harold from 178.33.236.23 Dec 12 06:36:27 sshd: Failed password for invalid user harold from 178.33.236.23 port 51536 ssh2 Dec 12 06:36:27 sshd: Received disconnect from 178.33.236.23: 11: Bye Bye [preauth]	2019-12-12 18:29:35
185.176.27.6	attack	Dec 12 11:28:20 mc1 kernel: \[305335.535147\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.6 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=24159 PROTO=TCP SPT=56500 DPT=33019 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 12 11:32:25 mc1 kernel: \[305579.884122\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.6 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=12056 PROTO=TCP SPT=56500 DPT=33037 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 12 11:36:41 mc1 kernel: \[305835.987439\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.6 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=58576 PROTO=TCP SPT=56500 DPT=33689 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-12 18:44:25
180.100.214.87	attackbots	$f2bV_matches	2019-12-12 18:23:28
111.75.149.221	attackbotsspam	2019-12-12 00:25:45 dovecot_login authenticator failed for (sienawx.net) [111.75.149.221]:51300 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=nologin@lerctr.org) 2019-12-12 00:26:15 dovecot_login authenticator failed for (sienawx.net) [111.75.149.221]:52686 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=alex@lerctr.org) 2019-12-12 00:26:40 dovecot_login authenticator failed for (sienawx.net) [111.75.149.221]:54536 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=alex@lerctr.org) ...	2019-12-12 18:15:55
91.210.224.213	attack	(sshd) Failed SSH login from 91.210.224.213 (DE/Germany/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Dec 12 06:18:23 andromeda sshd[4510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.210.224.213 user=root Dec 12 06:18:24 andromeda sshd[4510]: Failed password for root from 91.210.224.213 port 35910 ssh2 Dec 12 06:30:45 andromeda sshd[5949]: Invalid user nasagov from 91.210.224.213 port 46468	2019-12-12 18:44:56
118.217.216.100	attackspambots	Dec 12 10:51:06 MK-Soft-VM3 sshd[7276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.217.216.100 Dec 12 10:51:08 MK-Soft-VM3 sshd[7276]: Failed password for invalid user gubaucea from 118.217.216.100 port 29886 ssh2 ...	2019-12-12 18:24:15
180.183.103.214	attack	Dec 12 07:26:03 [munged] sshd[26684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.183.103.214	2019-12-12 18:47:21
112.133.229.64	attackspambots	Unauthorized connection attempt detected from IP address 112.133.229.64 to port 445	2019-12-12 18:22:44
146.0.142.68	attackbotsspam	Dec 12 12:21:01 ncomp sshd[18638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.0.142.68 user=root Dec 12 12:21:04 ncomp sshd[18638]: Failed password for root from 146.0.142.68 port 55720 ssh2 Dec 12 12:33:02 ncomp sshd[18777]: Invalid user not from 146.0.142.68	2019-12-12 18:48:42
221.132.17.81	attack	Dec 12 00:07:57 php1 sshd\[18410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.17.81 user=root Dec 12 00:08:00 php1 sshd\[18410\]: Failed password for root from 221.132.17.81 port 54618 ssh2 Dec 12 00:15:43 php1 sshd\[19547\]: Invalid user liv from 221.132.17.81 Dec 12 00:15:43 php1 sshd\[19547\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.132.17.81 Dec 12 00:15:45 php1 sshd\[19547\]: Failed password for invalid user liv from 221.132.17.81 port 36858 ssh2	2019-12-12 18:20:02
180.76.148.87	attackspambots	Automatic report: SSH brute force attempt	2019-12-12 18:39:23
46.100.56.222	attackspambots	Automatic report - Port Scan Attack	2019-12-12 18:45:18
157.245.243.4	attackbotsspam	Dec 12 09:28:47 minden010 sshd[13499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.243.4 Dec 12 09:28:49 minden010 sshd[13499]: Failed password for invalid user csserver from 157.245.243.4 port 36444 ssh2 Dec 12 09:34:30 minden010 sshd[15318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.243.4 ...	2019-12-12 18:23:56

Recently Reported IPs

86.24.34.127	45.173.104.23	200.139.118.226	138.9.247.97
162.244.12.93	139.186.216.81	78.45.176.140	77.152.53.158
83.99.185.37	102.165.48.63	176.83.78.34	113.219.252.185
50.209.21.10	141.252.37.46	175.61.111.175	24.173.172.92
51.83.234.52	180.107.151.33	199.124.68.38	70.107.49.24