117.0.111.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: ADSL HNI

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 117.0.111.138 on Port 445(SMB)	2020-05-12 03:16:42

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.0.111.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61363
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.0.111.138.			IN	A

;; AUTHORITY SECTION:
.			377	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051101 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue May 12 03:16:34 CST 2020
;; MSG SIZE  rcvd: 117

Host info

138.111.0.117.in-addr.arpa domain name pointer localhost.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.111.0.117.in-addr.arpa	name = localhost.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.154	attackbots	2020-09-01T09:26:11.556215vps751288.ovh.net sshd\[16848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root 2020-09-01T09:26:13.566693vps751288.ovh.net sshd\[16848\]: Failed password for root from 222.186.175.154 port 53478 ssh2 2020-09-01T09:26:15.912918vps751288.ovh.net sshd\[16848\]: Failed password for root from 222.186.175.154 port 53478 ssh2 2020-09-01T09:26:19.007159vps751288.ovh.net sshd\[16848\]: Failed password for root from 222.186.175.154 port 53478 ssh2 2020-09-01T09:26:21.844925vps751288.ovh.net sshd\[16848\]: Failed password for root from 222.186.175.154 port 53478 ssh2	2020-09-01 15:35:29
201.236.177.146	attackspam	SMB Server BruteForce Attack	2020-09-01 15:39:12
202.137.141.240	attackbotsspam	SMB Server BruteForce Attack	2020-09-01 15:42:03
118.69.176.26	attackspambots	Sep 1 08:22:56 server sshd[14821]: Invalid user deploy from 118.69.176.26 port 64994 ...	2020-09-01 16:00:30
196.52.43.104	attackbots	Unauthorized connection attempt detected from IP address 196.52.43.104 to port 3389 [T]	2020-09-01 15:33:42
180.76.160.220	attackbots	Sep 1 04:36:31 rush sshd[10974]: Failed password for root from 180.76.160.220 port 60182 ssh2 Sep 1 04:39:52 rush sshd[11013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.160.220 Sep 1 04:39:53 rush sshd[11013]: Failed password for invalid user hgrepo from 180.76.160.220 port 46884 ssh2 ...	2020-09-01 15:53:00
66.70.189.54	attack	Sep 1 09:23:59 jane sshd[6647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.189.54 Sep 1 09:24:01 jane sshd[6647]: Failed password for invalid user andres from 66.70.189.54 port 44358 ssh2 ...	2020-09-01 15:37:54
212.70.149.4	attackbotsspam	Unauthorized connection attempt detected from IP address 212.70.149.4 to port 25 [T]	2020-09-01 15:55:16
177.81.27.78	attackspam	2020-09-01T04:16:50.678472shield sshd\[6331\]: Invalid user test1 from 177.81.27.78 port 62043 2020-09-01T04:16:50.691253shield sshd\[6331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.81.27.78 2020-09-01T04:16:53.034542shield sshd\[6331\]: Failed password for invalid user test1 from 177.81.27.78 port 62043 ssh2 2020-09-01T04:20:24.269589shield sshd\[7346\]: Invalid user sergey from 177.81.27.78 port 26055 2020-09-01T04:20:24.281203shield sshd\[7346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.81.27.78	2020-09-01 15:26:19
49.235.153.54	attack	2020-09-01T04:18:08.516463shield sshd\[6653\]: Invalid user kelly from 49.235.153.54 port 60994 2020-09-01T04:18:08.528097shield sshd\[6653\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.153.54 2020-09-01T04:18:10.911751shield sshd\[6653\]: Failed password for invalid user kelly from 49.235.153.54 port 60994 ssh2 2020-09-01T04:22:05.869792shield sshd\[7843\]: Invalid user ftptest from 49.235.153.54 port 55012 2020-09-01T04:22:05.878083shield sshd\[7843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.153.54	2020-09-01 16:00:46
192.241.229.109	attack	port scan and connect, tcp 27017 (mongodb)	2020-09-01 15:22:59
197.35.141.116	attack	port scan and connect, tcp 23 (telnet)	2020-09-01 15:43:58
159.89.38.228	attackspambots	Port scanning [2 denied]	2020-09-01 16:03:08
118.163.101.205	attackspambots	Sep 1 07:49:11 ws26vmsma01 sshd[235173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.163.101.205 Sep 1 07:49:13 ws26vmsma01 sshd[235173]: Failed password for invalid user tvm from 118.163.101.205 port 53368 ssh2 ...	2020-09-01 15:59:14
184.179.216.149	attack	Unauthorized IMAP connection attempt	2020-09-01 15:31:57

Recently Reported IPs

210.152.6.202	196.59.202.142	175.105.135.64	162.1.173.200
251.233.97.128	37.220.158.209	152.4.10.20	222.128.117.39
219.124.91.230	79.55.114.55	219.246.105.47	189.1.175.30
39.33.233.36	14.227.63.207	52.123.111.4	121.54.140.96
208.247.3.120	94.23.33.22	175.101.102.87	31.42.24.150