123.244.107.0 - IPInfo

Basic Info

City: unknown

Region: Liaoning

Country: China

Internet Service Provider: ChinaNet Liaoning Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Time: Sat Sep 28 09:16:54 2019 -0300 IP: 123.244.107.0 (CN/China/0.107.244.123.broad.cy.ln.dynamic.163data.com.cn) Failures: 15 (ftpd) Interval: 3600 seconds Blocked: Permanent Block	2019-09-29 01:56:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.244.107.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14210
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.244.107.0.			IN	A

;; AUTHORITY SECTION:
.			254	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092800 1800 900 604800 86400

;; Query time: 120 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 29 01:56:16 CST 2019
;; MSG SIZE  rcvd: 117

Host info

0.107.244.123.in-addr.arpa domain name pointer 0.107.244.123.broad.cy.ln.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
0.107.244.123.in-addr.arpa	name = 0.107.244.123.broad.cy.ln.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.245.53.242	attackspam	$f2bV_matches	2020-04-02 20:06:04
124.156.50.52	attack	Unauthorized connection attempt detected from IP address 124.156.50.52 to port 3689	2020-04-02 20:04:17
222.186.30.248	attackspam	DATE:2020-04-02 14:44:34, IP:222.186.30.248, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-04-02 20:45:01
185.53.88.36	attackbots	[2020-04-02 08:37:01] NOTICE[12114][C-00000248] chan_sip.c: Call from '' (185.53.88.36:62689) to extension '011442037698349' rejected because extension not found in context 'public'. [2020-04-02 08:37:01] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-02T08:37:01.638-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442037698349",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.36/62689",ACLName="no_extension_match" [2020-04-02 08:37:17] NOTICE[12114][C-00000249] chan_sip.c: Call from '' (185.53.88.36:50913) to extension '9011442037698349' rejected because extension not found in context 'public'. [2020-04-02 08:37:17] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-02T08:37:17.250-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442037698349",SessionID="0x7f020c04de18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U ...	2020-04-02 20:40:33
120.70.103.239	attackbotsspam	Apr 2 11:13:38 ift sshd\[2734\]: Failed password for root from 120.70.103.239 port 36120 ssh2Apr 2 11:15:35 ift sshd\[3320\]: Failed password for root from 120.70.103.239 port 44414 ssh2Apr 2 11:17:31 ift sshd\[3405\]: Failed password for root from 120.70.103.239 port 52713 ssh2Apr 2 11:19:20 ift sshd\[3587\]: Invalid user bw from 120.70.103.239Apr 2 11:19:22 ift sshd\[3587\]: Failed password for invalid user bw from 120.70.103.239 port 32773 ssh2 ...	2020-04-02 20:14:33
37.187.74.109	attackbots	[2020-04-02 05:16:07] GET wp-login.php	2020-04-02 20:16:17
153.246.16.157	attackspam	Apr 2 07:35:54 host sshd[2772]: Invalid user admin from 153.246.16.157 port 41906 ...	2020-04-02 19:57:40
106.53.20.179	attackspambots	SSH Brute Force	2020-04-02 20:46:49
49.233.197.193	attackspambots	(sshd) Failed SSH login from 49.233.197.193 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 2 14:30:28 ubnt-55d23 sshd[23639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.197.193 user=root Apr 2 14:30:30 ubnt-55d23 sshd[23639]: Failed password for root from 49.233.197.193 port 52538 ssh2	2020-04-02 20:47:27
106.13.23.105	attackspam	(sshd) Failed SSH login from 106.13.23.105 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 2 12:28:09 ubnt-55d23 sshd[30025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.23.105 user=root Apr 2 12:28:12 ubnt-55d23 sshd[30025]: Failed password for root from 106.13.23.105 port 54448 ssh2	2020-04-02 20:41:15
222.186.175.182	attack	Apr 2 14:01:53 silence02 sshd[8828]: Failed password for root from 222.186.175.182 port 18682 ssh2 Apr 2 14:02:02 silence02 sshd[8828]: Failed password for root from 222.186.175.182 port 18682 ssh2 Apr 2 14:02:06 silence02 sshd[8828]: Failed password for root from 222.186.175.182 port 18682 ssh2 Apr 2 14:02:06 silence02 sshd[8828]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 18682 ssh2 [preauth]	2020-04-02 20:02:31
62.168.63.202	attackspambots	RDPBruteGSL24	2020-04-02 20:28:29
39.53.149.255	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 02-04-2020 04:50:20.	2020-04-02 20:29:20
138.197.118.32	attackbotsspam	SSH Authentication Attempts Exceeded	2020-04-02 20:12:31
159.138.230.22	attack	trying to access non-authorized port	2020-04-02 20:10:35

Recently Reported IPs

86.24.34.127	45.173.104.23	200.139.118.226	138.9.247.97
162.244.12.93	139.186.216.81	78.45.176.140	77.152.53.158
83.99.185.37	102.165.48.63	176.83.78.34	113.219.252.185
50.209.21.10	141.252.37.46	175.61.111.175	24.173.172.92
51.83.234.52	180.107.151.33	199.124.68.38	70.107.49.24