117.40.134.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Jiangxi Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	1583445437 - 03/05/2020 22:57:17 Host: 117.40.134.2/117.40.134.2 Port: 445 TCP Blocked	2020-03-06 08:21:53

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.40.134.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25005
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.40.134.2.			IN	A

;; AUTHORITY SECTION:
.			480	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030502 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 06 08:21:50 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 2.134.40.117.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 2.134.40.117.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.221.83	attackspambots	k+ssh-bruteforce	2020-04-11 01:56:34
14.229.150.177	attack	1586520357 - 04/10/2020 14:05:57 Host: 14.229.150.177/14.229.150.177 Port: 445 TCP Blocked	2020-04-11 02:14:45
213.195.120.166	attack	k+ssh-bruteforce	2020-04-11 02:29:32
218.94.23.132	attackspambots	Apr 10 15:30:47 pi sshd[15737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.94.23.132 Apr 10 15:30:48 pi sshd[15737]: Failed password for invalid user test from 218.94.23.132 port 50990 ssh2	2020-04-11 02:13:05
93.45.91.151	attack	Apr 10 12:05:20 hermescis postfix/smtpd[18012]: NOQUEUE: reject: RCPT from 93-45-91-151.ip101.fastwebnet.it[93.45.91.151]: 550 5.1.1 : Recipient address rejected:* from= to= proto=ESMTP helo=<93-45-91-151.ip101.fastwebnet.it>	2020-04-11 02:36:56
49.234.10.207	attack	Apr 10 11:09:41 mail sshd\[37070\]: Invalid user admin from 49.234.10.207 Apr 10 11:09:41 mail sshd\[37070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.10.207 ...	2020-04-11 02:24:02
178.128.41.102	attack	Apr 10 16:32:29 nextcloud sshd\[21442\]: Invalid user test from 178.128.41.102 Apr 10 16:32:29 nextcloud sshd\[21442\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.41.102 Apr 10 16:32:31 nextcloud sshd\[21442\]: Failed password for invalid user test from 178.128.41.102 port 34902 ssh2	2020-04-11 02:35:21
192.241.249.53	attackspambots	2020-04-10T15:34:34.544703dmca.cloudsearch.cf sshd[13137]: Invalid user deploy from 192.241.249.53 port 59087 2020-04-10T15:34:34.551801dmca.cloudsearch.cf sshd[13137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.249.53 2020-04-10T15:34:34.544703dmca.cloudsearch.cf sshd[13137]: Invalid user deploy from 192.241.249.53 port 59087 2020-04-10T15:34:36.362607dmca.cloudsearch.cf sshd[13137]: Failed password for invalid user deploy from 192.241.249.53 port 59087 ssh2 2020-04-10T15:44:04.572849dmca.cloudsearch.cf sshd[13933]: Invalid user test from 192.241.249.53 port 36174 2020-04-10T15:44:04.578572dmca.cloudsearch.cf sshd[13933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.249.53 2020-04-10T15:44:04.572849dmca.cloudsearch.cf sshd[13933]: Invalid user test from 192.241.249.53 port 36174 2020-04-10T15:44:07.312057dmca.cloudsearch.cf sshd[13933]: Failed password for invalid user test from 192 ...	2020-04-11 01:59:19
106.13.137.67	attackspambots	Apr 10 15:38:25 mail sshd[14498]: Invalid user user from 106.13.137.67 Apr 10 15:38:25 mail sshd[14498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.137.67 Apr 10 15:38:25 mail sshd[14498]: Invalid user user from 106.13.137.67 Apr 10 15:38:27 mail sshd[14498]: Failed password for invalid user user from 106.13.137.67 port 58710 ssh2 Apr 10 15:48:53 mail sshd[15976]: Invalid user ubuntu from 106.13.137.67 ...	2020-04-11 02:34:03
142.93.197.100	attackbotsspam	Brute force attack against VPN service	2020-04-11 02:05:32
89.248.168.112	attackspambots	Unauthorized connection attempt detected from IP address 89.248.168.112 to port 4000 [T]	2020-04-11 02:25:25
106.53.38.69	attackbotsspam	Apr 10 18:28:49 sshgateway sshd\[16156\]: Invalid user ubnt from 106.53.38.69 Apr 10 18:28:49 sshgateway sshd\[16156\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.53.38.69 Apr 10 18:28:51 sshgateway sshd\[16156\]: Failed password for invalid user ubnt from 106.53.38.69 port 43858 ssh2	2020-04-11 02:33:47
146.88.240.4	attackspam	IP: 146.88.240.4 Ports affected HTTP protocol over TLS/SSL (443) Abuse Confidence rating 100% Found in DNSBL('s) ASN Details AS20052 ARBOR United States (US) CIDR 146.88.240.0/24 Log Date: 10/04/2020 4:08:14 PM UTC	2020-04-11 02:21:05
106.12.93.251	attack	" "	2020-04-11 02:27:50
212.204.65.160	attackspam	5x Failed Password	2020-04-11 01:58:22

Recently Reported IPs

201.168.208.26	118.34.86.75	5.51.111.195	118.176.33.149
187.176.157.13	80.216.150.127	189.216.93.213	94.207.11.202
168.0.180.52	61.75.225.35	118.174.219.114	78.196.218.227
222.221.192.134	122.114.218.216	65.158.198.39	192.241.227.78
109.95.182.202	31.165.226.134	183.88.243.223	99.204.158.114