117.0.34.22 - IPInfo

Basic Info

City: Hanoi

Region: Hanoi

Country: Vietnam

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.0.34.168	attackspam	Unauthorized connection attempt from IP address 117.0.34.168 on Port 445(SMB)	2020-01-11 19:17:06
117.0.34.168	attack	Unauthorized connection attempt from IP address 117.0.34.168 on Port 445(SMB)	2019-12-22 02:15:10
117.0.34.158	attackbotsspam	Unauthorized connection attempt from IP address 117.0.34.158 on Port 445(SMB)	2019-08-13 20:10:45

Type

Details

Datetime

117.0.34.168

attackspam

Unauthorized connection attempt from IP address 117.0.34.168 on Port 445(SMB)

2020-01-11 19:17:06

117.0.34.168

attack

Unauthorized connection attempt from IP address 117.0.34.168 on Port 445(SMB)

2019-12-22 02:15:10

117.0.34.158

attackbotsspam

Unauthorized connection attempt from IP address 117.0.34.158 on Port 445(SMB)

2019-08-13 20:10:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.0.34.22
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6936
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.0.34.22.			IN	A

;; AUTHORITY SECTION:
.			136	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021091001 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Sep 11 11:40:44 CST 2021
;; MSG SIZE  rcvd: 104

Host info

22.34.0.117.in-addr.arpa domain name pointer localhost.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
22.34.0.117.in-addr.arpa	name = localhost.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.83.98.104	attackspambots	Sep 12 21:35:24 inter-technics sshd[32295]: Invalid user asterisk from 51.83.98.104 port 35896 Sep 12 21:35:24 inter-technics sshd[32295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.98.104 Sep 12 21:35:24 inter-technics sshd[32295]: Invalid user asterisk from 51.83.98.104 port 35896 Sep 12 21:35:27 inter-technics sshd[32295]: Failed password for invalid user asterisk from 51.83.98.104 port 35896 ssh2 Sep 12 21:39:57 inter-technics sshd[32578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.98.104 user=root Sep 12 21:39:58 inter-technics sshd[32578]: Failed password for root from 51.83.98.104 port 47162 ssh2 ...	2020-09-13 03:43:59
212.118.18.160	attackspam	Unauthorized connection attempt from IP address 212.118.18.160 on Port 445(SMB)	2020-09-13 03:57:01
222.186.175.183	attackspambots	Sep 12 21:37:53 host sshd\[15757\]: Unable to negotiate with 222.186.175.183 port 12986: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 \[preauth\]	2020-09-13 03:42:07
115.96.143.200	attackbotsspam	firewall-block, port(s): 1023/tcp	2020-09-13 03:57:35
45.145.67.171	attackbots	RDP Bruteforce	2020-09-13 04:04:09
46.101.211.196	attackbotsspam	fail2ban	2020-09-13 04:07:25
185.175.93.8	attackbots	RDP Bruteforce	2020-09-13 04:00:53
125.99.246.153	attackspam	404 NOT FOUND	2020-09-13 03:58:28
1.0.143.137	attack	Sep 7 12:33:34 mailserver sshd[6152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.0.143.137 user=r.r Sep 7 12:33:36 mailserver sshd[6152]: Failed password for r.r from 1.0.143.137 port 39820 ssh2 Sep 7 12:33:36 mailserver sshd[6152]: Received disconnect from 1.0.143.137 port 39820:11: Bye Bye [preauth] Sep 7 12:33:36 mailserver sshd[6152]: Disconnected from 1.0.143.137 port 39820 [preauth] Sep 7 12:47:38 mailserver sshd[7533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.0.143.137 user=r.r Sep 7 12:47:40 mailserver sshd[7533]: Failed password for r.r from 1.0.143.137 port 42706 ssh2 Sep 7 12:47:41 mailserver sshd[7533]: Received disconnect from 1.0.143.137 port 42706:11: Bye Bye [preauth] Sep 7 12:47:41 mailserver sshd[7533]: Disconnected from 1.0.143.137 port 42706 [preauth] Sep 7 13:10:04 mailserver sshd[9705]: pam_unix(sshd:auth): authentication failure; logname= uid........ -------------------------------	2020-09-13 03:46:50
163.44.169.18	attackbotsspam	Sep 12 20:42:57 haigwepa sshd[12164]: Failed password for root from 163.44.169.18 port 57146 ssh2 ...	2020-09-13 03:44:31
73.100.238.60	attackbots	TCP (SYN) 73.100.238.60:13915 -> port 8080, len 40	2020-09-13 03:47:33
185.234.218.39	attack	RDP Bruteforce	2020-09-13 03:59:32
190.1.200.197	attack	Sep 12 13:56:14 firewall sshd[19155]: Failed password for invalid user admin from 190.1.200.197 port 40840 ssh2 Sep 12 14:00:01 firewall sshd[19211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.1.200.197 user=root Sep 12 14:00:03 firewall sshd[19211]: Failed password for root from 190.1.200.197 port 41630 ssh2 ...	2020-09-13 04:11:31
104.206.128.50	attackspam	Honeypot hit.	2020-09-13 04:01:48
41.66.244.86	attackspambots	Sep 12 17:05:05 ip-172-31-42-142 sshd\[10962\]: Failed password for root from 41.66.244.86 port 59812 ssh2\ Sep 12 17:08:19 ip-172-31-42-142 sshd\[10974\]: Invalid user amanda from 41.66.244.86\ Sep 12 17:08:21 ip-172-31-42-142 sshd\[10974\]: Failed password for invalid user amanda from 41.66.244.86 port 45570 ssh2\ Sep 12 17:11:38 ip-172-31-42-142 sshd\[11068\]: Failed password for root from 41.66.244.86 port 59470 ssh2\ Sep 12 17:14:49 ip-172-31-42-142 sshd\[11086\]: Invalid user exploit from 41.66.244.86\	2020-09-13 03:39:16

Recently Reported IPs

180.148.4.193	113.160.245.20	14.0.17.184	113.161.36.24
113.161.238.58	203.210.235.87	42.112.213.59	118.70.129.145
113.161.79.156	113.161.88.204	116.118.105.98	103.17.88.54
118.70.216.2	203.113.143.245	124.158.9.40	118.70.216.3
118.70.186.91	113.176.70.37	113.161.69.143	14.160.26.174