134.119.1.117 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: domainfactory GmbH

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	$f2bV_matches	2020-04-05 06:52:09
attack	$f2bV_matches	2020-04-05 05:39:42

Comments on same subnet:

IP	Type	Details	Datetime
134.119.189.180	attack	137 packets to port 21	2020-09-14 22:29:10
134.119.189.180	attackbots	[HOST2] Port Scan detected	2020-09-14 14:20:46
134.119.189.180	attackbotsspam	[HOST2] Port Scan detected	2020-09-14 06:18:49
134.119.192.229	attack	Aug 3 14:05:44 rocket sshd[27279]: Failed password for root from 134.119.192.229 port 59440 ssh2 Aug 3 14:09:49 rocket sshd[27779]: Failed password for root from 134.119.192.229 port 43178 ssh2 ...	2020-08-04 01:33:30
134.119.192.244	attackbots	TCP (SYN) 134.119.192.244:60777 -> port 445, len 52	2020-07-25 05:06:25
134.119.192.227	attackspambots	Invalid user trial from 134.119.192.227 port 39762	2020-07-23 03:08:14
134.119.191.9	attackbots	Jul 9 14:05:34 debian-2gb-nbg1-2 kernel: \[16554928.161685\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=134.119.191.9 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=43965 PROTO=TCP SPT=43890 DPT=17408 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-10 00:58:52
134.119.180.47	attackspambots	port scan and connect, tcp 80 (http)	2020-07-02 04:16:21
134.119.191.9	attackbots	TCP (SYN) 134.119.191.9:44218 -> port 29496, len 44	2020-06-30 22:21:46
134.119.192.227	attackspam	2020-06-29T19:49:37.089953abusebot-3.cloudsearch.cf sshd[29674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.119.192.227 user=root 2020-06-29T19:49:39.286243abusebot-3.cloudsearch.cf sshd[29674]: Failed password for root from 134.119.192.227 port 44272 ssh2 2020-06-29T19:49:41.643459abusebot-3.cloudsearch.cf sshd[29678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.119.192.227 user=root 2020-06-29T19:49:43.724209abusebot-3.cloudsearch.cf sshd[29678]: Failed password for root from 134.119.192.227 port 38766 ssh2 2020-06-29T19:49:46.471138abusebot-3.cloudsearch.cf sshd[29680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.119.192.227 user=root 2020-06-29T19:49:48.235959abusebot-3.cloudsearch.cf sshd[29680]: Failed password for root from 134.119.192.227 port 33266 ssh2 2020-06-29T19:49:51.398056abusebot-3.cloudsearch.cf sshd[29682]: pam_unix(sshd: ...	2020-06-30 04:10:07
134.119.184.170	attackspambots	proto=tcp . spt=53393 . dpt=465 . src=134.119.184.170 . dst=xx.xx.4.1 . Found on Blocklist de (144)	2020-06-29 20:46:39
134.119.192.227	attackspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-06-29T03:59:27Z and 2020-06-29T04:00:20Z	2020-06-29 12:40:12
134.119.192.230	attack	" "	2020-06-25 16:04:30
134.119.192.227	attackspam	Jun 23 22:54:11 vpn01 sshd[7019]: Failed password for root from 134.119.192.227 port 52504 ssh2 ...	2020-06-24 05:17:55
134.119.192.227	attackbots	Auto Fail2Ban report, multiple SSH login attempts.	2020-06-21 18:24:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.119.1.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37185
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;134.119.1.117.			IN	A

;; AUTHORITY SECTION:
.			442	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040402 1800 900 604800 86400

;; Query time: 149 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 05 05:39:39 CST 2020
;; MSG SIZE  rcvd: 117

Host info

117.1.119.134.in-addr.arpa domain name pointer j333290.servers.jiffybox.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
117.1.119.134.in-addr.arpa	name = j333290.servers.jiffybox.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
198.199.77.16	attackbotsspam	ssh intrusion attempt	2020-09-02 01:03:38
106.12.5.137	attack	Sep 1 14:41:17 rocket sshd[32407]: Failed password for root from 106.12.5.137 port 39360 ssh2 Sep 1 14:46:17 rocket sshd[687]: Failed password for root from 106.12.5.137 port 36804 ssh2 ...	2020-09-02 00:42:42
117.223.68.209	attackbotsspam	Unauthorized connection attempt from IP address 117.223.68.209 on Port 445(SMB)	2020-09-02 00:38:25
167.71.38.104	attackbots	TCP (SYN) 167.71.38.104:45261 -> port 14221, len 44	2020-09-02 01:02:37
35.197.150.181	attack	Time: Tue Sep 1 12:29:59 2020 +0000 IP: 35.197.150.181 (181.150.197.35.bc.googleusercontent.com) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 1 12:27:00 vps1 sshd[1112]: Invalid user carlos from 35.197.150.181 port 34784 Sep 1 12:27:01 vps1 sshd[1112]: Failed password for invalid user carlos from 35.197.150.181 port 34784 ssh2 Sep 1 12:29:11 vps1 sshd[1182]: Invalid user server from 35.197.150.181 port 52426 Sep 1 12:29:13 vps1 sshd[1182]: Failed password for invalid user server from 35.197.150.181 port 52426 ssh2 Sep 1 12:29:57 vps1 sshd[1198]: Invalid user anton from 35.197.150.181 port 58406	2020-09-02 00:47:25
162.243.129.46	attackbotsspam	firewall-block, port(s): 45000/tcp	2020-09-02 01:02:51
191.97.14.122	attackbotsspam	Sep 1 13:30:44 shivevps sshd[30118]: Did not receive identification string from 191.97.14.122 port 39089 ...	2020-09-02 01:07:29
202.43.183.210	attack	Sep 1 13:30:43 shivevps sshd[30080]: Did not receive identification string from 202.43.183.210 port 54694 ...	2020-09-02 01:08:59
203.193.214.74	attackbots	Unauthorized connection attempt from IP address 203.193.214.74 on Port 445(SMB)	2020-09-02 00:56:39
49.88.112.68	attack	Sep 1 12:10:57 firewall sshd[17751]: Failed password for root from 49.88.112.68 port 36455 ssh2 Sep 1 12:10:59 firewall sshd[17751]: Failed password for root from 49.88.112.68 port 36455 ssh2 Sep 1 12:11:01 firewall sshd[17751]: Failed password for root from 49.88.112.68 port 36455 ssh2 ...	2020-09-02 00:53:04
84.33.119.193	attackbotsspam	Automatic report - Banned IP Access	2020-09-02 01:17:50
49.205.248.253	attackbots	Unauthorized connection attempt from IP address 49.205.248.253 on Port 445(SMB)	2020-09-02 01:11:38
122.176.103.115	attackbots	Unauthorized connection attempt from IP address 122.176.103.115 on Port 445(SMB)	2020-09-02 00:46:48
152.136.149.160	attack	Triggered by Fail2Ban at Ares web server	2020-09-02 01:28:41
222.252.21.30	attackbotsspam	2020-09-01T14:28:35.346338galaxy.wi.uni-potsdam.de sshd[20970]: Invalid user andres from 222.252.21.30 port 65237 2020-09-01T14:28:35.350960galaxy.wi.uni-potsdam.de sshd[20970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30 2020-09-01T14:28:35.346338galaxy.wi.uni-potsdam.de sshd[20970]: Invalid user andres from 222.252.21.30 port 65237 2020-09-01T14:28:37.549820galaxy.wi.uni-potsdam.de sshd[20970]: Failed password for invalid user andres from 222.252.21.30 port 65237 ssh2 2020-09-01T14:31:07.603941galaxy.wi.uni-potsdam.de sshd[21265]: Invalid user anurag from 222.252.21.30 port 33467 2020-09-01T14:31:07.606392galaxy.wi.uni-potsdam.de sshd[21265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.252.21.30 2020-09-01T14:31:07.603941galaxy.wi.uni-potsdam.de sshd[21265]: Invalid user anurag from 222.252.21.30 port 33467 2020-09-01T14:31:09.338507galaxy.wi.uni-potsdam.de sshd[21265]: Failed pa ...	2020-09-02 00:41:49

Recently Reported IPs

168.16.222.240	69.121.82.86	95.107.45.174	70.167.79.99
177.162.8.159	54.145.16.148	86.233.239.114	42.2.34.147
80.234.50.75	200.80.207.122	72.248.74.0	79.92.18.1
110.151.211.236	44.211.38.117	177.53.40.132	204.149.86.101
37.84.151.142	183.212.166.95	208.255.100.175	37.182.51.224