118.69.134.245

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: FPT Telecom Company

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	1582865392 - 02/28/2020 05:49:52 Host: 118.69.134.245/118.69.134.245 Port: 445 TCP Blocked	2020-02-28 19:54:30

Comments on same subnet:

IP	Type	Details	Datetime
118.69.134.213	attack	Dec 6 07:23:47 our-server-hostname postfix/smtpd[13928]: connect from unknown[118.69.134.213] Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x Dec x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=118.69.134.213	2019-12-06 06:03:58

Type

Details

Datetime

118.69.134.213

attack

Dec  6 07:23:47 our-server-hostname postfix/smtpd[13928]: connect from unknown[118.69.134.213]
Dec x@x
Dec x@x
Dec x@x
Dec x@x
Dec x@x
Dec x@x
Dec x@x
Dec x@x
Dec x@x
Dec x@x
Dec x@x
Dec x@x


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=118.69.134.213

2019-12-06 06:03:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 118.69.134.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45521
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;118.69.134.245.			IN	A

;; AUTHORITY SECTION:
.			498	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022800 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 19:54:25 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 245.134.69.118.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.134.69.118.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
3.16.44.23	attackspambots	bulk spam link IP - http://02c.elkufeir.agency	2019-11-03 01:24:22
61.223.14.23	attackbots	Unauthorised access (Nov 2) SRC=61.223.14.23 LEN=44 PREC=0x20 TTL=241 ID=50402 TCP DPT=1433 WINDOW=1024 SYN	2019-11-03 00:55:54
151.80.254.73	attack	Nov 2 15:55:50 vserver sshd\[11906\]: Invalid user test from 151.80.254.73Nov 2 15:55:53 vserver sshd\[11906\]: Failed password for invalid user test from 151.80.254.73 port 60678 ssh2Nov 2 15:59:40 vserver sshd\[11948\]: Invalid user VTech from 151.80.254.73Nov 2 15:59:42 vserver sshd\[11948\]: Failed password for invalid user VTech from 151.80.254.73 port 43182 ssh2 ...	2019-11-03 00:52:49
68.183.65.165	attack	Nov 2 19:08:01 server sshd\[24719\]: Invalid user pms from 68.183.65.165 port 54394 Nov 2 19:08:01 server sshd\[24719\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.65.165 Nov 2 19:08:03 server sshd\[24719\]: Failed password for invalid user pms from 68.183.65.165 port 54394 ssh2 Nov 2 19:11:49 server sshd\[5551\]: Invalid user student from 68.183.65.165 port 37012 Nov 2 19:11:49 server sshd\[5551\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.65.165	2019-11-03 01:17:51
152.44.38.37	attackbots	Nov 2 11:15:29 indra sshd[393272]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152-44-38-37.us-chi1.upcloud.host user=r.r Nov 2 11:15:31 indra sshd[393272]: Failed password for r.r from 152.44.38.37 port 36802 ssh2 Nov 2 11:15:31 indra sshd[393272]: Received disconnect from 152.44.38.37: 11: Bye Bye [preauth] Nov 2 11:33:27 indra sshd[396814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152-44-38-37.us-chi1.upcloud.host user=r.r Nov 2 11:33:29 indra sshd[396814]: Failed password for r.r from 152.44.38.37 port 40156 ssh2 Nov 2 11:33:29 indra sshd[396814]: Received disconnect from 152.44.38.37: 11: Bye Bye [preauth] Nov 2 11:37:18 indra sshd[397883]: Invalid user webadm from 152.44.38.37 Nov 2 11:37:18 indra sshd[397883]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152-44-38-37.us-chi1.upcloud.host Nov 2 11:37:20 indra sshd[397883........ -------------------------------	2019-11-03 01:03:39
203.160.174.214	attackbots	Invalid user jukebox from 203.160.174.214 port 43026	2019-11-03 00:58:16
158.69.63.43	attackspam	Postfix RBL failed	2019-11-03 01:01:38
107.180.68.110	attackbotsspam	Nov 2 14:08:43 hcbbdb sshd\[4387\]: Invalid user xyzpdq from 107.180.68.110 Nov 2 14:08:43 hcbbdb sshd\[4387\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-107-180-68-110.ip.secureserver.net Nov 2 14:08:45 hcbbdb sshd\[4387\]: Failed password for invalid user xyzpdq from 107.180.68.110 port 42359 ssh2 Nov 2 14:12:29 hcbbdb sshd\[4739\]: Invalid user gp from 107.180.68.110 Nov 2 14:12:29 hcbbdb sshd\[4739\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-107-180-68-110.ip.secureserver.net	2019-11-03 00:42:59
185.232.67.5	attackspambots	Nov 2 17:33:01 dedicated sshd[6518]: Invalid user admin from 185.232.67.5 port 34511	2019-11-03 01:03:09
91.224.182.202	attack	Unauthorised access (Nov 2) SRC=91.224.182.202 LEN=52 TTL=118 ID=18889 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-03 00:54:55
156.204.230.202	attack	Lines containing failures of 156.204.230.202 Nov 2 04:41:44 Tosca sshd[28188]: Invalid user admin from 156.204.230.202 port 56388 Nov 2 04:41:44 Tosca sshd[28188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.204.230.202 Nov 2 04:41:46 Tosca sshd[28188]: Failed password for invalid user admin from 156.204.230.202 port 56388 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=156.204.230.202	2019-11-03 00:50:57
178.45.21.140	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/178.45.21.140/ RU - 1H : (153) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN12389 IP : 178.45.21.140 CIDR : 178.45.16.0/20 PREFIX COUNT : 2741 UNIQUE IP COUNT : 8699648 ATTACKS DETECTED ASN12389 : 1H - 3 3H - 10 6H - 25 12H - 42 24H - 74 DateTime : 2019-11-02 12:53:06 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-03 00:51:28
80.82.64.214	attackbots	Auto reported by IDS	2019-11-03 00:40:23
172.105.213.140	attackbotsspam	SMB Server BruteForce Attack	2019-11-03 01:00:34
180.148.1.218	attackbots	Invalid user age from 180.148.1.218 port 58328	2019-11-03 01:14:59

Recently Reported IPs

92.185.167.201	93.159.197.195	45.59.21.46	43.230.196.78
2.89.1.48	39.69.49.123	18.106.136.28	121.38.235.111
103.253.239.172	117.67.219.192	217.101.184.106	158.222.82.26
151.2.186.79	18.127.251.74	124.107.77.5	121.126.118.30
108.221.124.232	58.194.229.187	2.138.156.200	62.192.178.74