117.6.134.114 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Viettel Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 117.6.134.114 on Port 445(SMB)	2020-09-22 00:35:21
attackspambots	Unauthorized connection attempt from IP address 117.6.134.114 on Port 445(SMB)	2020-09-21 16:16:11
attackspambots	1598858406 - 08/31/2020 09:20:06 Host: 117.6.134.114/117.6.134.114 Port: 445 TCP Blocked	2020-08-31 15:36:37
attack	Unauthorized connection attempt from IP address 117.6.134.114 on Port 445(SMB)	2020-08-19 23:11:43

Comments on same subnet:

IP	Type	Details	Datetime
117.6.134.210	attackspambots	Unauthorized connection attempt from IP address 117.6.134.210 on Port 445(SMB)	2020-01-17 01:30:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.6.134.114
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9359
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;117.6.134.114.			IN	A

;; AUTHORITY SECTION:
.			383	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081900 1800 900 604800 86400

;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 19 23:11:38 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 114.134.6.117.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 114.134.6.117.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.0.221.222	attackspambots	Feb 13 15:36:20 web8 sshd\[7354\]: Invalid user wrangler from 187.0.221.222 Feb 13 15:36:20 web8 sshd\[7354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.0.221.222 Feb 13 15:36:21 web8 sshd\[7354\]: Failed password for invalid user wrangler from 187.0.221.222 port 54647 ssh2 Feb 13 15:42:12 web8 sshd\[10235\]: Invalid user activimq from 187.0.221.222 Feb 13 15:42:12 web8 sshd\[10235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.0.221.222	2020-02-13 23:56:40
193.188.22.206	attackbotsspam	RDP Brute-Force (Grieskirchen RZ2)	2020-02-14 00:17:08
89.38.145.247	attackspam	Feb 13 10:25:12 mxgate1 postfix/postscreen[966]: CONNECT from [89.38.145.247]:55820 to [176.31.12.44]:25 Feb 13 10:25:12 mxgate1 postfix/dnsblog[1293]: addr 89.38.145.247 listed by domain zen.spamhaus.org as 127.0.0.3 Feb 13 10:25:12 mxgate1 postfix/dnsblog[1294]: addr 89.38.145.247 listed by domain b.barracudacentral.org as 127.0.0.2 Feb 13 10:25:18 mxgate1 postfix/postscreen[966]: DNSBL rank 3 for [89.38.145.247]:55820 Feb 13 10:25:18 mxgate1 postfix/postscreen[966]: NOQUEUE: reject: RCPT from [89.38.145.247]:55820: 550 5.7.1 Service unavailable; client [89.38.145.247] blocked using zen.spamhaus.org; from=x@x helo= Feb 13 10:25:18 mxgate1 postfix/postscreen[966]: DISCONNECT [89.38.145.247]:55820 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=89.38.145.247	2020-02-13 23:55:13
202.51.74.189	attackspambots	Feb 13 04:01:57 sachi sshd\[28453\]: Invalid user admin from 202.51.74.189 Feb 13 04:01:57 sachi sshd\[28453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.74.189 Feb 13 04:02:00 sachi sshd\[28453\]: Failed password for invalid user admin from 202.51.74.189 port 38178 ssh2 Feb 13 04:06:17 sachi sshd\[28885\]: Invalid user cguay from 202.51.74.189 Feb 13 04:06:17 sachi sshd\[28885\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.74.189	2020-02-13 23:44:45
204.12.102.38	spam	MARRE de ces ORDURES de FILS de PUTES, avec la complicité de SOUS MERDES comme tucows.com et hostmysite.com qui POLLUENT la Planète par DIX POURRIELS par jour pour du SEXE sur des listes VOLÉES on ne sait où mais SANS notre accord, à condamner selon la législation Européenne à 750 € par SPAM émis ! https://www.mywot.com/scorecard/automatedfiling.com https://www.mywot.com/scorecard/safesecureweb.com https://www.mywot.com/scorecard/quickdateloversfinder.com https://www.mywot.com/scorecard/quickdateladiesfinder.com https://www.mywot.com/scorecard/honeyadultsfinder.com https://www.mywot.com/scorecard/tucows.com https://www.mywot.com/scorecard/ntirety.com https://en.asytech.cn/check-ip/204.12.102.38 info@automatedfiling.com which send as usual to : https://quickdateloversfinder.com/mwoirzmytgwlwhw%3Ft%3Dsssh&sa=D&sntz=1&usg=AFQjCNGmyUXvyNHS-Zi5EZn1NbKHoi4HWg	2020-02-13 23:44:58
140.143.228.51	attack	Feb 13 06:18:03 hpm sshd\[9457\]: Invalid user emiliojose from 140.143.228.51 Feb 13 06:18:03 hpm sshd\[9457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.228.51 Feb 13 06:18:06 hpm sshd\[9457\]: Failed password for invalid user emiliojose from 140.143.228.51 port 47578 ssh2 Feb 13 06:22:40 hpm sshd\[9900\]: Invalid user simpsons from 140.143.228.51 Feb 13 06:22:40 hpm sshd\[9900\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.228.51	2020-02-14 00:26:11
105.73.80.91	attack	Feb 13 15:04:13 haigwepa sshd[4804]: Failed password for root from 105.73.80.91 port 27751 ssh2 ...	2020-02-14 00:12:02
109.49.167.167	attackbotsspam	Brute forcing RDP port 3389	2020-02-14 00:21:55
222.186.31.135	attackspambots	Feb 13 17:07:32 localhost sshd\[27314\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.135 user=root Feb 13 17:07:34 localhost sshd\[27314\]: Failed password for root from 222.186.31.135 port 45106 ssh2 Feb 13 17:07:36 localhost sshd\[27314\]: Failed password for root from 222.186.31.135 port 45106 ssh2	2020-02-14 00:09:16
45.143.223.148	attackbots	Feb 13 10:26:00 vbuntu postfix/smtpd[10117]: connect from unknown[45.143.223.148] Feb 13 10:26:00 vbuntu postfix/smtpd[10117]: NOQUEUE: reject: RCPT from unknown[45.143.223.148]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= Feb 13 10:26:00 vbuntu postfix/smtpd[10117]: disconnect from unknown[45.143.223.148] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.143.223.148	2020-02-14 00:01:15
119.75.238.24	attackbotsspam	Automatic report - XMLRPC Attack	2020-02-14 00:09:38
14.250.224.162	attack	1581601719 - 02/13/2020 14:48:39 Host: 14.250.224.162/14.250.224.162 Port: 445 TCP Blocked	2020-02-14 00:25:15
182.253.62.37	attack	Lines containing failures of 182.253.62.37 Feb 13 10:27:53 srv sshd[288920]: Invalid user admin from 182.253.62.37 port 3007 Feb 13 10:27:53 srv sshd[288920]: Connection closed by invalid user admin 182.253.62.37 port 3007 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=182.253.62.37	2020-02-14 00:21:16
222.186.175.163	attackspambots	Feb 13 16:48:29 silence02 sshd[32324]: Failed password for root from 222.186.175.163 port 37646 ssh2 Feb 13 16:48:32 silence02 sshd[32324]: Failed password for root from 222.186.175.163 port 37646 ssh2 Feb 13 16:48:42 silence02 sshd[32324]: error: maximum authentication attempts exceeded for root from 222.186.175.163 port 37646 ssh2 [preauth]	2020-02-13 23:50:24
62.149.179.207	spam	MARRE de ces ORDURES de FILS de PUTES, avec la complicité de SOUS MERDES qui POLLUENT la Planète par des POURRIELS tous les jours pour du SEXE sur des listes VOLÉES on ne sait où mais SANS notre accord, à condamner selon la législation Européenne à 750 € par SPAM émis !	2020-02-14 00:28:01

Recently Reported IPs

212.119.243.219	175.180.140.60	171.235.246.34	121.244.94.1
193.92.93.249	182.155.169.86	112.248.39.129	186.251.3.229
106.3.40.99	58.8.225.90	37.5.244.233	171.247.139.234
95.120.203.6	186.89.131.233	40.51.223.100	139.149.1.69
151.119.54.137	231.221.244.97	48.201.248.48	191.236.142.234