123.16.134.44 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Vietnam Posts and Telecommunications Group

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt from IP address 123.16.134.44 on Port 445(SMB)	2020-01-03 18:07:16

Comments on same subnet:

IP	Type	Details	Datetime
123.16.134.157	attack	2020-04-05 14:25:20 plain_virtual_exim authenticator failed for ([127.0.0.1]) [123.16.134.157]: 535 Incorrect authentication data ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=123.16.134.157	2020-04-06 00:59:05
123.16.134.192	attackspam	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-03-26 03:28:00
123.16.134.125	attack	1578373023 - 01/07/2020 05:57:03 Host: 123.16.134.125/123.16.134.125 Port: 445 TCP Blocked	2020-01-07 13:23:48

Type

Details

Datetime

123.16.134.157

attack

2020-04-05 14:25:20 plain_virtual_exim authenticator failed for ([127.0.0.1]) [123.16.134.157]: 535 Incorrect authentication data


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=123.16.134.157

2020-04-06 00:59:05

123.16.134.192

attackspam

Honeypot attack, port: 445, PTR: static.vnpt.vn.

2020-03-26 03:28:00

123.16.134.125

attack

1578373023 - 01/07/2020 05:57:03 Host: 123.16.134.125/123.16.134.125 Port: 445 TCP Blocked

2020-01-07 13:23:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 123.16.134.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7730
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;123.16.134.44.			IN	A

;; AUTHORITY SECTION:
.			483	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010300 1800 900 604800 86400

;; Query time: 265 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 18:07:12 CST 2020
;; MSG SIZE  rcvd: 117

Host info

44.134.16.123.in-addr.arpa domain name pointer static.vnpt.vn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
44.134.16.123.in-addr.arpa	name = static.vnpt.vn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
148.70.58.196	attackspam	ECShop Remote Code Execution Vulnerability, PTR: PTR record not found	2019-07-12 02:53:54
185.222.211.242	attack	Jul 11 17:45:38 relay postfix/smtpd\[26480\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.242\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 11 17:45:38 relay postfix/smtpd\[26480\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.242\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 11 17:45:38 relay postfix/smtpd\[26480\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.242\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.222.211.2\]\> Jul 11 17:45:38 relay postfix/smtpd\[26480\]: NOQUEUE: reject: RCPT from unknown\[185.222.211.242\]: 554 5.7.1 \: Relay access denied\; from=\	2019-07-12 02:35:06
153.161.228.43	attackspambots	May 10 19:40:16 server sshd\[68734\]: Invalid user sysadm from 153.161.228.43 May 10 19:40:16 server sshd\[68734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.161.228.43 May 10 19:40:17 server sshd\[68734\]: Failed password for invalid user sysadm from 153.161.228.43 port 59440 ssh2 ...	2019-07-12 02:46:17
189.211.142.184	attackspambots	Honeypot attack, port: 445, PTR: 189-211-142-184.static.axtel.net.	2019-07-12 02:12:45
191.240.85.65	attackspambots	Jul 11 11:09:33 web1 postfix/smtpd[12322]: warning: unknown[191.240.85.65]: SASL PLAIN authentication failed: authentication failure ...	2019-07-12 02:33:41
153.36.242.143	attackspambots	Jul 11 14:21:26 plusreed sshd[20334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.242.143 user=root Jul 11 14:21:28 plusreed sshd[20334]: Failed password for root from 153.36.242.143 port 24020 ssh2 ...	2019-07-12 02:23:57
177.73.104.68	attackspambots	Jul 8 04:20:57 web01 postfix/smtpd[32392]: connect from unknown[177.73.104.68] Jul 8 04:20:59 web01 policyd-spf[32393]: None; identhostnamey=helo; client-ip=177.73.104.68; helo=xxxxxxxpackaging-com.mail.protection.outlook.com; envelope-from=x@x Jul 8 04:20:59 web01 policyd-spf[32393]: Fail; identhostnamey=mailfrom; client-ip=177.73.104.68; helo=xxxxxxxpackaging-com.mail.protection.outlook.com; envelope-from=x@x Jul x@x Jul 8 04:21:01 web01 policyd-spf[32393]: None; identhostnamey=helo; client-ip=177.73.104.68; helo=xxxxxxxpackaging-com.mail.protection.outlook.com; envelope-from=x@x Jul 8 04:21:01 web01 policyd-spf[32393]: Softfail; identhostnamey=mailfrom; client-ip=177.73.104.68; helo=xxxxxxxpackaging-com.mail.protection.outlook.com; envelope-from=x@x Jul x@x Jul 8 04:21:03 web01 policyd-spf[32393]: None; identhostnamey=helo; client-ip=177.73.104.68; helo=xxxxxxxpackaging-com.mail.protection.outlook.com; envelope-from=x@x Jul 8 04:21:03 web01 policyd-spf[32393]:........ -------------------------------	2019-07-12 02:22:39
186.226.190.175	attack	CloudCIX Reconnaissance Scan Detected, PTR: 186-226-190-175.dedicado.ivitelecom.net.br.	2019-07-12 02:34:16
94.191.20.179	attack	Jul 11 18:58:02 fr01 sshd[3106]: Invalid user vanessa from 94.191.20.179 Jul 11 18:58:02 fr01 sshd[3106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.20.179 Jul 11 18:58:02 fr01 sshd[3106]: Invalid user vanessa from 94.191.20.179 Jul 11 18:58:04 fr01 sshd[3106]: Failed password for invalid user vanessa from 94.191.20.179 port 44958 ssh2 Jul 11 19:00:48 fr01 sshd[3588]: Invalid user minecraft from 94.191.20.179 ...	2019-07-12 02:35:42
222.72.135.177	attackspambots	Jul 11 16:11:01 giegler sshd[14626]: Invalid user alfresco from 222.72.135.177 port 45318 Jul 11 16:11:01 giegler sshd[14626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.72.135.177 Jul 11 16:11:01 giegler sshd[14626]: Invalid user alfresco from 222.72.135.177 port 45318 Jul 11 16:11:03 giegler sshd[14626]: Failed password for invalid user alfresco from 222.72.135.177 port 45318 ssh2 Jul 11 16:13:13 giegler sshd[14637]: Invalid user mycat from 222.72.135.177 port 53524	2019-07-12 02:23:33
154.125.253.188	attackspambots	Jul 10 00:17:55 server sshd\[229861\]: Invalid user pi from 154.125.253.188 Jul 10 00:17:55 server sshd\[229861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.125.253.188 Jul 10 00:17:55 server sshd\[229863\]: Invalid user pi from 154.125.253.188 Jul 10 00:17:56 server sshd\[229863\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.125.253.188 Jul 10 00:17:57 server sshd\[229861\]: Failed password for invalid user pi from 154.125.253.188 port 37394 ssh2 Jul 10 00:17:58 server sshd\[229863\]: Failed password for invalid user pi from 154.125.253.188 port 37402 ssh2 ...	2019-07-12 02:14:40
152.204.24.19	attack	Apr 15 06:40:53 server sshd\[8795\]: Invalid user usuario from 152.204.24.19 Apr 15 06:40:53 server sshd\[8795\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.204.24.19 Apr 15 06:40:55 server sshd\[8795\]: Failed password for invalid user usuario from 152.204.24.19 port 53929 ssh2 ...	2019-07-12 02:51:52
152.249.121.124	attack	Jun 21 04:57:53 server sshd\[135773\]: Invalid user cu from 152.249.121.124 Jun 21 04:57:53 server sshd\[135773\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.249.121.124 Jun 21 04:57:55 server sshd\[135773\]: Failed password for invalid user cu from 152.249.121.124 port 53730 ssh2 ...	2019-07-12 02:51:28
152.0.238.70	attack	Apr 16 02:40:08 server sshd\[44771\]: Invalid user joshua from 152.0.238.70 Apr 16 02:40:08 server sshd\[44771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.0.238.70 Apr 16 02:40:10 server sshd\[44771\]: Failed password for invalid user joshua from 152.0.238.70 port 48046 ssh2 ...	2019-07-12 02:54:48
221.193.253.111	attackbotsspam	Jul 11 16:12:28 www sshd\[27953\]: Invalid user postgres from 221.193.253.111 port 52089 ...	2019-07-12 02:50:11

Recently Reported IPs

172.44.120.50	23.108.23.217	68.5.15.248	107.177.34.141
14.185.199.52	158.180.3.28	3.190.178.149	152.131.168.245
125.160.64.14	88.205.246.25	118.99.96.178	223.155.162.173
71.176.249.53	39.53.104.68	74.199.123.130	1.2.148.66
41.129.131.118	113.160.227.49	110.137.103.6	14.173.240.253