189.134.242.117

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: Gestion de Direccionamiento Uninet

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port probing on unauthorized port 88	2020-04-04 08:10:55

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.134.242.117
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31572
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.134.242.117.		IN	A

;; AUTHORITY SECTION:
.			559	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040301 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 04 08:10:48 CST 2020
;; MSG SIZE  rcvd: 119

Host info

117.242.134.189.in-addr.arpa domain name pointer dsl-189-134-242-117-dyn.prod-infinitum.com.mx.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
117.242.134.189.in-addr.arpa	name = dsl-189-134-242-117-dyn.prod-infinitum.com.mx.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.118.30	attackbotsspam	Dec 8 08:32:47 lnxweb61 sshd[13892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.118.30 Dec 8 08:32:47 lnxweb61 sshd[13892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.118.30	2019-12-08 16:35:53
13.77.142.89	attackspambots	Dec 8 09:29:31 meumeu sshd[28254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.77.142.89 Dec 8 09:29:33 meumeu sshd[28254]: Failed password for invalid user ritch from 13.77.142.89 port 42736 ssh2 Dec 8 09:35:32 meumeu sshd[29122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.77.142.89 ...	2019-12-08 16:49:52
36.255.61.26	attackspambots	Dec 8 04:10:19 server sshd\[20924\]: Failed password for vcsa from 36.255.61.26 port 35288 ssh2 Dec 8 11:13:58 server sshd\[11869\]: Invalid user backup from 36.255.61.26 Dec 8 11:13:58 server sshd\[11869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.255.61.26 Dec 8 11:14:00 server sshd\[11869\]: Failed password for invalid user backup from 36.255.61.26 port 56980 ssh2 Dec 8 11:22:22 server sshd\[14336\]: Invalid user wenger from 36.255.61.26 Dec 8 11:22:22 server sshd\[14336\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.255.61.26 ...	2019-12-08 17:07:33
134.209.237.55	attack	[ssh] SSH attack	2019-12-08 16:58:57
106.12.156.160	attackspambots	2019-12-08T08:14:11.008483abusebot-7.cloudsearch.cf sshd\[22621\]: Invalid user orpheus from 106.12.156.160 port 57800	2019-12-08 16:46:16
222.186.175.183	attackspam	Dec 8 09:47:19 nextcloud sshd\[18448\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.183 user=root Dec 8 09:47:21 nextcloud sshd\[18448\]: Failed password for root from 222.186.175.183 port 5866 ssh2 Dec 8 09:47:25 nextcloud sshd\[18448\]: Failed password for root from 222.186.175.183 port 5866 ssh2 ...	2019-12-08 16:50:31
101.99.80.99	attack	Dec 7 22:41:26 wbs sshd\[20280\]: Invalid user ubnt from 101.99.80.99 Dec 7 22:41:26 wbs sshd\[20280\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.99.80.99 Dec 7 22:41:28 wbs sshd\[20280\]: Failed password for invalid user ubnt from 101.99.80.99 port 26664 ssh2 Dec 7 22:48:28 wbs sshd\[20974\]: Invalid user sysnet from 101.99.80.99 Dec 7 22:48:28 wbs sshd\[20974\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.99.80.99	2019-12-08 17:14:00
103.104.17.139	attackbots	Dec 8 04:21:56 ws12vmsma01 sshd[44378]: Invalid user jens from 103.104.17.139 Dec 8 04:21:58 ws12vmsma01 sshd[44378]: Failed password for invalid user jens from 103.104.17.139 port 35404 ssh2 Dec 8 04:28:15 ws12vmsma01 sshd[45293]: Invalid user prashant from 103.104.17.139 ...	2019-12-08 16:57:42
168.121.9.189	attack	Automatic report - Port Scan Attack	2019-12-08 17:12:44
222.186.175.155	attack	2019-12-08T09:36:36.751908stark.klein-stark.info sshd\[17258\]: Failed none for root from 222.186.175.155 port 33178 ssh2 2019-12-08T09:36:37.075019stark.klein-stark.info sshd\[17258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root 2019-12-08T09:36:39.238045stark.klein-stark.info sshd\[17258\]: Failed password for root from 222.186.175.155 port 33178 ssh2 ...	2019-12-08 16:37:00
187.115.76.161	attackspam	2019-12-08T07:36:44.696915abusebot-4.cloudsearch.cf sshd\[10528\]: Invalid user pasword888 from 187.115.76.161 port 56418	2019-12-08 16:51:04
107.170.204.148	attack	Dec 8 13:21:27 gw1 sshd[19505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.204.148 Dec 8 13:21:30 gw1 sshd[19505]: Failed password for invalid user vl from 107.170.204.148 port 49594 ssh2 ...	2019-12-08 16:53:47
218.92.0.180	attackspam	Dec 8 08:42:46 thevastnessof sshd[27216]: Failed password for root from 218.92.0.180 port 48603 ssh2 ...	2019-12-08 16:47:22
139.199.14.128	attackspam	Dec 8 07:03:36 ns382633 sshd\[3794\]: Invalid user scott from 139.199.14.128 port 49534 Dec 8 07:03:36 ns382633 sshd\[3794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.14.128 Dec 8 07:03:38 ns382633 sshd\[3794\]: Failed password for invalid user scott from 139.199.14.128 port 49534 ssh2 Dec 8 07:28:35 ns382633 sshd\[8970\]: Invalid user chris from 139.199.14.128 port 55638 Dec 8 07:28:35 ns382633 sshd\[8970\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.14.128	2019-12-08 17:05:21
193.31.24.113	attackspambots	12/08/2019-09:23:08.577119 193.31.24.113 Protocol: 6 SURICATA TLS invalid record/traffic	2019-12-08 16:37:56

Recently Reported IPs

57.6.125.22	152.103.240.151	163.44.149.235	209.56.208.229
202.198.226.48	42.114.158.142	49.169.198.150	235.178.136.103
139.244.107.182	104.176.57.219	141.205.129.230	154.3.6.167
46.173.184.26	150.180.227.246	142.93.107.82	111.229.128.9
189.174.201.234	109.162.126.124	49.247.193.105	45.248.71.69