Go
123.207.145.66
is a
Hacker
100 %
China
Report Abuse
1016attacks reported
828Brute-ForceSSH
77Brute-Force
52SSH
13Port ScanBrute-ForceSSH
13HackingBrute-ForceSSH
7Hacking
7uncategorized
6Port ScanHackingBrute-ForceWeb App AttackSSH
2DDoS Attack
2Port ScanBrute-Force
...
from 159 distinct reporters
and 7 distinct sources : BadIPs.com, Blocklist.de, darklist.de, FireHOL, NormShield.com, Charles Haley, AbuseIPDB
123.207.145.66 was first signaled at 2017-12-03 04:15 and last record was at 2019-09-20 09:15.
IP

123.207.145.66

Organization
Shenzhen Tencent Computer Systems Company Limited
Localisation
China
Beijing, Beijing
NetRange : First & Last IP
123.206.0.0 - 123.207.255.255
Network CIDR
123.206.0.0/15

Cybercrime IP Feeds

Date UTC Category Sub Categories Source List Source Logs
2019-04-06 11:37 attacks Brute-ForceSSH AbuseIPDB  
2019-04-06 09:14 attacks Brute-ForceSSH AbuseIPDB Apr 6 20:10:21 lnxweb61 sshd[10714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Apr 6 20:1
2019-04-06 06:36 attacks Brute-ForceSSH AbuseIPDB SSH Brute-Force reported by Fail2Ban
2019-04-06 05:06 attacks Brute-ForceSSH AbuseIPDB  
2019-04-06 04:32 attacks Brute-ForceSSH AbuseIPDB Apr 6 15:32:00 cvbmail sshd\[1430\]: Invalid user xgridagent from 123.207.145.66 Apr 6 15:32:00 cvbmail sshd\[1430\]: pam_unix\(sshd:auth\): authentic
2019-04-06 01:51 attacks Brute-ForceSSH AbuseIPDB ssh failed login
2019-04-06 01:12 attacks Brute-ForceSSH AbuseIPDB SSH bruteforce (Triggered fail2ban)
2019-04-05 20:42 attacks Brute-ForceSSH AbuseIPDB Triggered by Fail2Ban
2019-04-05 20:37 attacks Brute-ForceSSH AbuseIPDB  
2019-04-05 17:34 attacks Brute-ForceSSH AbuseIPDB Apr 6 02:33:58 MK-Soft-VM4 sshd\[9260\]: Invalid user jack from 123.207.145.66 port 58320 Apr 6 02:33:58 MK-Soft-VM4 sshd\[9260\]: pam_unix\(sshd:auth
2019-04-05 13:20 attacks Brute-ForceSSH AbuseIPDB Apr 6 00:20:15 tuxlinux sshd[29045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Apr 6 00:
2019-04-05 11:59 attacks Brute-ForceSSH AbuseIPDB Tried sshing with brute force.
2019-04-05 08:56 attacks Brute-ForceSSH AbuseIPDB Apr 5 18:54:55 debian sshd\[4931\]: Invalid user postgres from 123.207.145.66 port 44036 Apr 5 18:54:55 debian sshd\[4931\]: pam_unix\(sshd:auth\): au
2019-04-05 02:10 attacks SSH AbuseIPDB 2019-04-05T18:10:19.471759enmeeting.mahidol.ac.th sshd\[27327\]: Invalid user ident from 123.207.145.66 port 43482 2019-04-05T18:10:19.485320enmeeting
2019-04-05 02:07 attacks Brute-ForceSSH AbuseIPDB Apr 5 06:17:49 myvps sshd\[19600\]: Invalid user zabbix from 123.207.145.66 Apr 5 13:07:20 myvps sshd\[21286\]: Invalid user ident from 123.207.145.66
2019-04-04 21:18 attacks Brute-ForceSSH AbuseIPDB Apr 5 08:18:15 MK-Soft-Root2 sshd\[11377\]: Invalid user flw from 123.207.145.66 port 49274 Apr 5 08:18:15 MK-Soft-Root2 sshd\[11377\]: pam_unix\(sshd
2019-04-04 19:21 attacks SSH AbuseIPDB 2019-04-05T11:21:04.111089enmeeting.mahidol.ac.th sshd\[16450\]: Invalid user zabbix from 123.207.145.66 port 48546 2019-04-05T11:21:04.124999enmeetin
2019-04-04 18:04 attacks Brute-ForceSSH AbuseIPDB Apr 5 03:04:30 MK-Soft-VM3 sshd\[25502\]: Invalid user log from 123.207.145.66 port 56462 Apr 5 03:04:30 MK-Soft-VM3 sshd\[25502\]: pam_unix\(sshd:aut
2019-04-04 12:17 attacks Brute-ForceSSH AbuseIPDB Apr 4 17:17:48 debian sshd\[31558\]: Invalid user sales from 123.207.145.66 port 49628 Apr 4 17:17:48 debian sshd\[31558\]: pam_unix\(sshd:auth\): aut
2019-04-04 11:05 attacks Brute-ForceSSH AbuseIPDB Apr 4 08:04:10 *** sshd[11840]: Failed password for invalid user appowner from 123.207.145.66 port 42082 ssh2
2019-04-04 06:33 attacks Brute-ForceSSH AbuseIPDB SSH Brute-Force reported by Fail2Ban
2019-04-03 23:52 attacks Brute-ForceSSH AbuseIPDB 2019-04-04T10:52:32.470560scmdmz1 sshd\[2922\]: Invalid user search from 123.207.145.66 port 57514 2019-04-04T10:52:32.474677scmdmz1 sshd\[2922\]: pam
2019-04-03 19:48 attacks Brute-ForceSSH AbuseIPDB Apr 4 04:48:02 MK-Soft-VM5 sshd\[16431\]: Invalid user fadl from 123.207.145.66 port 43232 Apr 4 04:48:02 MK-Soft-VM5 sshd\[16431\]: pam_unix\(sshd:au
2019-04-03 18:27 attacks Brute-ForceSSH AbuseIPDB Apr 4 03:27:28 MK-Soft-VM5 sshd\[15980\]: Invalid user wordpress from 123.207.145.66 port 50456 Apr 4 03:27:28 MK-Soft-VM5 sshd\[15980\]: pam_unix\(ss
2019-04-03 15:49 attacks Brute-ForceSSH AbuseIPDB SSH-BruteForce
2019-04-03 13:45 attacks Brute-ForceSSH AbuseIPDB Apr 4 01:45:12 srv-4 sshd\[1190\]: Invalid user hcat from 123.207.145.66 Apr 4 01:45:12 srv-4 sshd\[1190\]: pam_unix\(sshd:auth\): authentication fail
2019-04-03 13:43 attacks Brute-ForceSSH AbuseIPDB Apr 4 00:43:08 vpn01 sshd\[1366\]: Invalid user hcat from 123.207.145.66 Apr 4 00:43:08 vpn01 sshd\[1366\]: pam_unix\(sshd:auth\): authentication fail
2019-04-03 13:10 attacks Brute-ForceSSH AbuseIPDB Apr 3 15:10:01 cac1d2 sshd\[31726\]: Invalid user dasusr1 from 123.207.145.66 port 40516 Apr 3 15:10:01 cac1d2 sshd\[31726\]: pam_unix\(sshd:auth\): a
2019-04-03 13:09 attacks Brute-ForceSSH AbuseIPDB  
2019-04-03 12:58 attacks SSH AbuseIPDB Apr 3 21:56:38 sshgateway sshd\[20886\]: Invalid user info from 123.207.145.66 Apr 3 21:56:38 sshgateway sshd\[20886\]: pam_unix\(sshd:auth\): authent
2019-04-03 06:57 attacks Brute-ForceSSH AbuseIPDB Apr 3 17:57:15 server sshd[22612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66
2019-04-03 05:14 attacks DDoS AttackSSH AbuseIPDB Apr 3 15:14:04 l02a sshd\[14182\]: Invalid user db1inst1 from 123.207.145.66 Apr 3 15:14:04 l02a sshd\[14182\]: pam_unix\(sshd:auth\): authentication
2019-04-03 05:10 attacks Brute-ForceSSH AbuseIPDB Apr 3 16:10:32 tuxlinux sshd[33737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Apr 3 16:
2019-04-02 19:36 attacks Brute-ForceSSH AbuseIPDB Apr 3 06:31:10 v22018086721571380 sshd[7604]: Invalid user fen from 123.207.145.66 Apr 3 06:31:10 v22018086721571380 sshd[7604]: pam_unix(sshd:auth):
2019-04-02 19:07 attacks Brute-ForceSSH AbuseIPDB Apr 3 05:07:44 debian sshd\[5260\]: Invalid user nz from 123.207.145.66 port 41408 Apr 3 05:07:44 debian sshd\[5260\]: pam_unix\(sshd:auth\): authenti
2019-04-02 16:08 attacks Brute-ForceSSH AbuseIPDB 2019-04-02T20:59:23.243360cse sshd[13234]: Invalid user history from 123.207.145.66 port 59814 2019-04-02T20:59:23.247245cse sshd[13234]: pam_unix(ssh
2019-04-01 23:06 attacks Brute-ForceSSH AbuseIPDB  
2019-04-01 20:51 attacks Brute-ForceSSH AbuseIPDB Attempted SSH login
2019-04-01 19:25 attacks Brute-ForceSSH AbuseIPDB Triggered by Fail2Ban at Ares web server
2019-04-01 12:35 attacks Brute-ForceSSH AbuseIPDB SSH-Bruteforce
2019-04-01 05:52 attacks DDoS Attack AbuseIPDB $f2bV_matches
2019-03-31 20:56 attacks Brute-Force AbuseIPDB Apr 1 05:56:37 localhost sshd\[13295\]: Invalid user cz from 123.207.145.66 port 45734 Apr 1 05:56:37 localhost sshd\[13295\]: pam_unix\(sshd:auth\):
2019-03-31 20:11 attacks Brute-ForceSSH AbuseIPDB  
2019-03-31 15:32 attacks Brute-ForceSSH AbuseIPDB Brute-Force attack detected (85) and blocked by Fail2Ban.
2019-03-31 15:31 attacks Brute-Force AbuseIPDB Apr 1 02:25:40 mysql sshd\[1048\]: Invalid user ge from 123.207.145.66\ Apr 1 02:25:41 mysql sshd\[1048\]: Failed password for invalid user ge from 12
2019-03-31 14:02 attacks Brute-ForceSSH AbuseIPDB Apr 1 00:54:39 lnxded63 sshd[7100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Apr 1 00:54
2019-03-31 13:02 attacks Brute-ForceSSH AbuseIPDB Mar 31 21:11:17 XXXXXX sshd[38418]: Invalid user alarm from 123.207.145.66 port 48634
2019-03-31 11:02 attacks Brute-Force AbuseIPDB Mar 31 20:02:49 work-partkepr sshd\[20409\]: Invalid user ux from 123.207.145.66 port 34230 Mar 31 20:02:49 work-partkepr sshd\[20409\]: pam_unix\(ssh
2019-03-31 07:33 attacks Brute-ForceSSH AbuseIPDB Triggered by Fail2Ban at Ares web server
2019-03-31 07:03 attacks Brute-ForceSSH AbuseIPDB Mar 31 18:03:15 icinga sshd[16645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Mar 31 18:0
2017-12-03 04:15 attacks Port ScanBrute-Force AbuseIPDB Firewall-block on port: 1433
2017-12-03 04:17 attacks Port ScanHacking AbuseIPDB Portscan or hack attempt detected by psad/fwsnort
2018-12-18 12:07 attacks Brute-ForceSSH AbuseIPDB Dec 18 22:01:41 marquez sshd[14136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Dec 18 22:
2018-12-18 14:23 attacks Brute-ForceSSH AbuseIPDB SSH Bruteforce @ SigaVPN honeypot
2018-12-18 15:24 attacks SSH AbuseIPDB scan ssh-px1
2018-12-18 15:56 attacks Brute-ForceSSH AbuseIPDB Dec 18 20:43:09 debian sshd[4261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Dec 18 20:43
2018-12-18 18:28 attacks Brute-ForceSSH AbuseIPDB Dec 19 05:22:16 lnxweb62 sshd[13921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.145.66 Dec 19 05
2018-12-18 19:13 attacks FTP Brute-ForceHacking AbuseIPDB Dec 18 22:55:41 xb3 sshd[19830]: Failed password for invalid user cyrus from 123.207.145.66 port 49940 ssh2 Dec 18 22:55:41 xb3 sshd[19830]: Received
2018-12-18 20:02 attacks Brute-ForceSSH AbuseIPDB Dec 18 16:13:45 ceres sshd[15639]: Failed password for invalid user cloud from 123.207.145.66 port 52988 ssh2 Dec 18 19:39:11 ceres sshd[16985]: Faile
2019-01-03 13:33 attacks Brute-ForceSSH AbuseIPDB SSH-BruteForce
2019-03-29 18:18 attacks bi_any_0_1d BadIPs.com  
2019-03-29 18:20 attacks SSH bi_sshd_0_1d BadIPs.com  
2019-03-29 18:20 attacks SSH bi_ssh_0_1d BadIPs.com  
2019-03-29 18:21 attacks blocklist_de Blocklist.de  
2019-03-29 18:21 attacks SSH blocklist_de_ssh Blocklist.de  
2019-03-29 18:23 attacks darklist_de darklist.de  
2019-03-29 18:27 attacks firehol_level2 FireHOL  
2019-05-30 09:29 attacks Bad Web Bot bi_badbots_0_1d BadIPs.com  
2019-05-30 09:29 attacks Brute-Force bi_bruteforce_0_1d BadIPs.com  
2019-06-10 16:01 attacks Fraud VoIP blocklist_de_sip Blocklist.de  
2019-06-27 22:18 attacks bi_default_0_1d BadIPs.com  
2019-06-27 22:19 attacks bi_unknown_0_1d BadIPs.com  
2019-06-30 19:29 attacks Brute-Force normshield_all_bruteforce NormShield.com  
2019-06-30 19:29 attacks Brute-Force normshield_high_bruteforce NormShield.com  
2019-09-20 09:10 attacks firehol_level4 FireHOL  
2019-09-20 09:15 attacks SSH haley_ssh Charles Haley  
only last 50 and first 10 AbuseIPDB logs are shown

Threats Categories :

abuse
IPs used to spam forum, boards, blogs or smtp servers, automated web scripts or scrappers (bad bots)
anonymizer
Onion Router IP addresses. TOR network IPs, TOR exit points, socks or ssl proxy.
attacks
bruteforce ssh/ftp/system account, IPs that have been detected by fail2ban, ports scan, vulnerabilities scan, DDoS.
malware
Addresses that have been identified distributing malware, form-grabber and stealer, Viruses, Worms, Trojans, Ransomware, Adware, Spyware

Whois

inetnum: 123.206.0.0 - 123.207.255.255
netname: TencentCloud
descr: Tencent cloud computing (Beijing) Co., Ltd.
descr: Floor 6, Yinke Building,38 Haidian St,
descr: Haidian District Beijing
admin-c: JT1125-AP
tech-c: JX1747-AP
country: CN
mnt-by: MAINT-CNNIC-AP
mnt-lower: MAINT-CNNIC-AP
mnt-routes: MAINT-CNNIC-AP
mnt-irt: IRT-CNNIC-CN
status: ALLOCATED PORTABLE
last-modified: 2015-01-29T06:14:03Z
source: APNIC

irt: IRT-CNNIC-CN
address: Beijing, China
e-mail: ipas@cnnic.cn
abuse-mailbox: ipas@cnnic.cn
admin-c: IP50-AP
tech-c: IP50-AP
auth: # Filtered
remarks: Please note that CNNIC is not an ISP and is not
remarks: empowered to investigate complaints of network abuse.
remarks: Please contact the tech-c or admin-c of the network.
mnt-by: MAINT-CNNIC-AP
last-modified: 2017-11-01T08:57:39Z
source: APNIC

person: James Tian
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-84952
e-mail: harveyduan@tencent.com
nic-hdl: JT1125-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2016-10-31T07:10:47Z
source: APNIC

person: Jimmy Xiao
address: 9F, FIYTA Building, Gaoxinnanyi Road,Southern
address: District of Hi-tech Park, Shenzhen
country: CN
phone: +86-755-86013388-80224
e-mail: harveyduan@tencent.com
nic-hdl: JX1747-AP
mnt-by: MAINT-CNNIC-AP
last-modified: 2016-11-04T05:51:38Z
source: APNIC

route: 123.206.0.0/15
descr: TencentCloud
descr: Tencent cloud computing (Beijing) Co., Ltd.
country: CN
origin: AS45090
notify: jimmyxiao@tencent.com
mnt-by: MAINT-CNNIC-AP
last-modified: 2016-01-21T09:24:01Z
source: APNIC
most specific ip range is highlighted
Updated : 2019-07-07