117.6.94.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
117.6.94.132	attack	Unauthorized connection attempt detected from IP address 117.6.94.132 to port 445 [T]	2020-08-14 00:59:11
117.6.94.132	attackbots	Unauthorized connection attempt from IP address 117.6.94.132 on Port 445(SMB)	2020-07-15 19:11:02
117.6.94.35	attackspambots	Unauthorized connection attempt from IP address 117.6.94.35 on Port 445(SMB)	2020-04-11 19:55:29
117.6.94.210	attackspam	Unauthorized connection attempt from IP address 117.6.94.210 on Port 445(SMB)	2019-09-09 20:05:46
117.6.94.162	attackbotsspam	Unauthorized connection attempt from IP address 117.6.94.162 on Port 445(SMB)	2019-09-03 23:06:08
117.6.94.244	attackbotsspam	445/tcp [2019-08-16]1pkt	2019-08-16 20:24:41
117.6.94.132	attackspambots	Unauthorized connection attempt from IP address 117.6.94.132 on Port 445(SMB)	2019-07-31 18:39:11
117.6.94.132	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-06 03:32:28,163 INFO [amun_request_handler] PortScan Detected on Port: 445 (117.6.94.132)	2019-07-06 13:46:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 117.6.94.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30840
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;117.6.94.85.			IN	A

;; AUTHORITY SECTION:
.			458	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 11:19:51 CST 2022
;; MSG SIZE  rcvd: 104

Host info

85.94.6.117.in-addr.arpa has no PTR record

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 85.94.6.117.in-addr.arpa.: No answer

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.131.161	attackbotsspam	Apr 8 14:32:00 xeon sshd[36691]: Failed password for invalid user user from 106.12.131.161 port 42381 ssh2	2020-04-09 00:58:37
222.186.175.23	attackbotsspam	Apr 8 16:14:04 localhost sshd[102167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.23 user=root Apr 8 16:14:07 localhost sshd[102167]: Failed password for root from 222.186.175.23 port 47097 ssh2 Apr 8 16:14:09 localhost sshd[102167]: Failed password for root from 222.186.175.23 port 47097 ssh2 Apr 8 16:14:04 localhost sshd[102167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.23 user=root Apr 8 16:14:07 localhost sshd[102167]: Failed password for root from 222.186.175.23 port 47097 ssh2 Apr 8 16:14:09 localhost sshd[102167]: Failed password for root from 222.186.175.23 port 47097 ssh2 Apr 8 16:14:04 localhost sshd[102167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.23 user=root Apr 8 16:14:07 localhost sshd[102167]: Failed password for root from 222.186.175.23 port 47097 ssh2 Apr 8 16:14:09 localhost sshd[10 ...	2020-04-09 00:15:28
157.245.81.162	attackbots	" "	2020-04-09 00:42:41
114.88.124.107	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 08-04-2020 13:40:08.	2020-04-09 00:49:34
118.25.1.48	attackbotsspam	Apr 8 14:33:43 DAAP sshd[13087]: Invalid user nexus from 118.25.1.48 port 35506 Apr 8 14:33:43 DAAP sshd[13087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.1.48 Apr 8 14:33:43 DAAP sshd[13087]: Invalid user nexus from 118.25.1.48 port 35506 Apr 8 14:33:44 DAAP sshd[13087]: Failed password for invalid user nexus from 118.25.1.48 port 35506 ssh2 Apr 8 14:40:44 DAAP sshd[13278]: Invalid user postgres from 118.25.1.48 port 45610 ...	2020-04-09 00:12:22
222.186.190.14	attackspambots	Unauthorized connection attempt detected from IP address 222.186.190.14 to port 22	2020-04-09 00:10:11
106.13.138.3	attack	Apr 8 16:41:02 host01 sshd[22477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.3 Apr 8 16:41:04 host01 sshd[22477]: Failed password for invalid user sam from 106.13.138.3 port 53468 ssh2 Apr 8 16:47:04 host01 sshd[23525]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.138.3 ...	2020-04-09 00:31:26
80.211.199.46	attack	Apr 8 17:41:08 * sshd[29960]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.199.46 Apr 8 17:41:10 * sshd[29960]: Failed password for invalid user server from 80.211.199.46 port 59918 ssh2	2020-04-09 00:30:00
162.243.130.173	attack	firewall-block, port(s): 4369/tcp	2020-04-09 00:39:32
131.221.128.52	attackspambots	Apr 8 17:43:11 server sshd[5417]: Failed password for invalid user deploy from 131.221.128.52 port 49896 ssh2 Apr 8 17:47:48 server sshd[6734]: Failed password for invalid user deploy from 131.221.128.52 port 59500 ssh2 Apr 8 17:52:31 server sshd[8153]: Failed password for invalid user openvpn from 131.221.128.52 port 40876 ssh2	2020-04-09 00:11:32
27.158.124.185	attackbots	Lines containing failures of 27.158.124.185 Apr 8 14:39:13 mx-in-02 sshd[13518]: Invalid user admin from 27.158.124.185 port 56141 Apr 8 14:39:13 mx-in-02 sshd[13518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.158.124.185 Apr 8 14:39:15 mx-in-02 sshd[13518]: Failed password for invalid user admin from 27.158.124.185 port 56141 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=27.158.124.185	2020-04-09 00:18:32
49.235.146.76	attackbotsspam	scan z	2020-04-09 00:34:05
220.142.193.137	attack	20/4/8@08:40:33: FAIL: Alarm-Intrusion address from=220.142.193.137 ...	2020-04-09 00:25:18
198.98.61.24	attackspambots	Apr 8 17:25:28 debian-2gb-nbg1-2 kernel: \[8618544.845211\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=198.98.61.24 DST=195.201.40.59 LEN=44 TOS=0x08 PREC=0x00 TTL=240 ID=54321 PROTO=TCP SPT=44385 DPT=8080 WINDOW=65535 RES=0x00 SYN URGP=0	2020-04-09 00:35:04
106.75.7.111	attack	Lines containing failures of 106.75.7.111 Apr 8 12:50:08 ticdesk sshd[14401]: Did not receive identification string from 106.75.7.111 port 58622 Apr 8 13:50:08 commu-intern sshd[25451]: Did not receive identification string from 106.75.7.111 port 39640 Apr 8 13:50:08 cloud sshd[14491]: Did not receive identification string from 106.75.7.111 port 56502 Apr 8 13:50:08 www sshd[23880]: Did not receive identification string from 106.75.7.111 port 59392 Apr 8 13:50:08 commu sshd[19873]: Did not receive identification string from 106.75.7.111 port 41664 Apr 8 13:50:09 desktop sshd[6182]: Did not receive identification string from 106.75.7.111 port 47634 Apr 8 13:50:09 meet sshd[10984]: Did not receive identification string from 106.75.7.111 port 58630 Apr 8 13:55:48 edughostname sshd[739294]: Unable to negotiate whostnameh 106.75.7.111 port 41560: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-h........ ------------------------------	2020-04-09 00:49:52

Recently Reported IPs

117.6.230.184	117.6.3.70	117.60.233.237	117.60.220.85
117.60.199.2	117.61.242.129	117.61.244.23	117.61.102.11
117.61.244.194	117.61.4.71	117.61.27.79	117.61.3.105
117.61.98.40	117.62.109.206	117.61.85.112	117.63.134.60
117.63.115.122	117.63.136.86	117.63.138.54	117.63.137.191