211.142.118.34

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Mobile Communications Corporation

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	firewall-block, port(s): 20038/tcp	2020-09-25 11:13:51
attackbotsspam	Port Scan ...	2020-08-13 14:13:45
attackspam	Jul 23 15:25:22 Tower sshd[4190]: refused connect from 112.85.42.185 (112.85.42.185) Jul 24 02:08:21 Tower sshd[4190]: Connection from 211.142.118.34 port 52594 on 192.168.10.220 port 22 rdomain "" Jul 24 02:08:25 Tower sshd[4190]: Invalid user debian from 211.142.118.34 port 52594 Jul 24 02:08:25 Tower sshd[4190]: error: Could not get shadow information for NOUSER Jul 24 02:08:25 Tower sshd[4190]: Failed password for invalid user debian from 211.142.118.34 port 52594 ssh2 Jul 24 02:08:25 Tower sshd[4190]: Received disconnect from 211.142.118.34 port 52594:11: Bye Bye [preauth] Jul 24 02:08:25 Tower sshd[4190]: Disconnected from invalid user debian 211.142.118.34 port 52594 [preauth]	2020-07-24 14:25:11
attackspam	Jun 25 23:16:35 abendstille sshd\[8885\]: Invalid user vbox from 211.142.118.34 Jun 25 23:16:35 abendstille sshd\[8885\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.34 Jun 25 23:16:37 abendstille sshd\[8885\]: Failed password for invalid user vbox from 211.142.118.34 port 33132 ssh2 Jun 25 23:19:44 abendstille sshd\[12114\]: Invalid user ucpss from 211.142.118.34 Jun 25 23:19:44 abendstille sshd\[12114\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.34 ...	2020-06-26 07:41:23
attackspambots	Jun 23 14:49:25 lnxded64 sshd[21829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.34	2020-06-23 22:16:56
attackbotsspam	Invalid user layer from 211.142.118.34 port 40870	2020-05-26 00:29:23
attackspam	Dec 18 00:12:24 microserver sshd[8899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.34 user=mysql Dec 18 00:12:27 microserver sshd[8899]: Failed password for mysql from 211.142.118.34 port 33292 ssh2 Dec 18 00:19:22 microserver sshd[9837]: Invalid user tognetti from 211.142.118.34 port 56032 Dec 18 00:19:22 microserver sshd[9837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.34 Dec 18 00:19:23 microserver sshd[9837]: Failed password for invalid user tognetti from 211.142.118.34 port 56032 ssh2 Dec 18 00:40:05 microserver sshd[13110]: Invalid user sekig from 211.142.118.34 port 39525 Dec 18 00:40:05 microserver sshd[13110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.34 Dec 18 00:40:08 microserver sshd[13110]: Failed password for invalid user sekig from 211.142.118.34 port 39525 ssh2 Dec 18 00:46:07 microserver sshd[14373]: pam_unix(sshd:auth):	2019-12-18 09:35:14

Comments on same subnet:

IP	Type	Details	Datetime
211.142.118.38	attack	Invalid user rzaleski from 211.142.118.38 port 41733	2020-04-15 07:01:06
211.142.118.38	attackbots	Apr 9 14:04:30 ourumov-web sshd\[24000\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.38 user=root Apr 9 14:04:33 ourumov-web sshd\[24000\]: Failed password for root from 211.142.118.38 port 54050 ssh2 Apr 9 14:18:31 ourumov-web sshd\[24882\]: Invalid user student from 211.142.118.38 port 52651 ...	2020-04-09 20:31:27
211.142.118.38	attack	Mar 28 06:47:47 ncomp sshd[30447]: Invalid user ejb from 211.142.118.38 Mar 28 06:47:47 ncomp sshd[30447]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.38 Mar 28 06:47:47 ncomp sshd[30447]: Invalid user ejb from 211.142.118.38 Mar 28 06:47:48 ncomp sshd[30447]: Failed password for invalid user ejb from 211.142.118.38 port 35083 ssh2	2020-03-28 13:21:33
211.142.118.38	attackbots	Invalid user thomson from 211.142.118.38 port 45418	2020-03-22 01:31:49
211.142.118.38	attack	Invalid user sandor from 211.142.118.38 port 51362	2020-03-20 07:58:51
211.142.118.38	attackbotsspam	Mar 19 14:30:52 srv-ubuntu-dev3 sshd[14403]: Invalid user bruno from 211.142.118.38 Mar 19 14:30:52 srv-ubuntu-dev3 sshd[14403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.38 Mar 19 14:30:52 srv-ubuntu-dev3 sshd[14403]: Invalid user bruno from 211.142.118.38 Mar 19 14:30:54 srv-ubuntu-dev3 sshd[14403]: Failed password for invalid user bruno from 211.142.118.38 port 45173 ssh2 Mar 19 14:33:43 srv-ubuntu-dev3 sshd[14831]: Invalid user sinusbot from 211.142.118.38 Mar 19 14:33:43 srv-ubuntu-dev3 sshd[14831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.38 Mar 19 14:33:43 srv-ubuntu-dev3 sshd[14831]: Invalid user sinusbot from 211.142.118.38 Mar 19 14:33:44 srv-ubuntu-dev3 sshd[14831]: Failed password for invalid user sinusbot from 211.142.118.38 port 55807 ssh2 Mar 19 14:36:33 srv-ubuntu-dev3 sshd[15410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ...	2020-03-20 02:47:09
211.142.118.38	attackbotsspam	fail2ban	2020-03-09 13:03:16
211.142.118.38	attackspambots	$f2bV_matches	2020-02-27 02:39:16
211.142.118.38	attackbots	Feb 22 15:14:54 MK-Soft-Root1 sshd[20728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.38 Feb 22 15:14:55 MK-Soft-Root1 sshd[20728]: Failed password for invalid user postgres from 211.142.118.38 port 56350 ssh2 ...	2020-02-22 22:26:41
211.142.118.38	attackspambots	Dec 2 19:49:41 ms-srv sshd[1308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.38 Dec 2 19:49:42 ms-srv sshd[1308]: Failed password for invalid user treier from 211.142.118.38 port 53844 ssh2	2020-02-16 03:38:39
211.142.118.38	attack	Unauthorized connection attempt detected from IP address 211.142.118.38 to port 2220 [J]	2020-02-05 03:42:04
211.142.118.38	attackbots	Unauthorized connection attempt detected from IP address 211.142.118.38 to port 2220 [J]	2020-01-19 04:20:35
211.142.118.38	attackspambots	Jan 18 07:09:04 localhost sshd\[29256\]: Invalid user ef from 211.142.118.38 Jan 18 07:09:04 localhost sshd\[29256\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.38 Jan 18 07:09:07 localhost sshd\[29256\]: Failed password for invalid user ef from 211.142.118.38 port 59221 ssh2 Jan 18 07:12:19 localhost sshd\[29429\]: Invalid user gmodserver from 211.142.118.38 Jan 18 07:12:19 localhost sshd\[29429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.142.118.38 ...	2020-01-18 15:34:57
211.142.118.38	attackbots	Jan 16 18:52:13 mout sshd[11805]: Invalid user tep from 211.142.118.38 port 33388	2020-01-17 02:12:30
211.142.118.38	attackbotsspam	Unauthorized connection attempt detected from IP address 211.142.118.38 to port 2220 [J]	2020-01-15 16:07:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 211.142.118.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29097
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;211.142.118.34.			IN	A

;; AUTHORITY SECTION:
.			412	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121702 1800 900 604800 86400

;; Query time: 143 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 18 09:35:09 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 34.118.142.211.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 34.118.142.211.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.41.150.206	attackbots	2020-03-01T13:15:00.829592abusebot-6.cloudsearch.cf sshd[20494]: Invalid user ghost from 46.41.150.206 port 48298 2020-03-01T13:15:00.837610abusebot-6.cloudsearch.cf sshd[20494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.41.150.206 2020-03-01T13:15:00.829592abusebot-6.cloudsearch.cf sshd[20494]: Invalid user ghost from 46.41.150.206 port 48298 2020-03-01T13:15:02.771756abusebot-6.cloudsearch.cf sshd[20494]: Failed password for invalid user ghost from 46.41.150.206 port 48298 ssh2 2020-03-01T13:24:26.616680abusebot-6.cloudsearch.cf sshd[21103]: Invalid user kristof from 46.41.150.206 port 36836 2020-03-01T13:24:26.623768abusebot-6.cloudsearch.cf sshd[21103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.41.150.206 2020-03-01T13:24:26.616680abusebot-6.cloudsearch.cf sshd[21103]: Invalid user kristof from 46.41.150.206 port 36836 2020-03-01T13:24:28.592941abusebot-6.cloudsearch.cf sshd[21103]: Fa ...	2020-03-01 23:42:28
194.6.233.219	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-01 23:31:34
218.92.0.201	attack	Mar 1 15:27:27 server sshd[3827693]: Failed password for root from 218.92.0.201 port 48425 ssh2 Mar 1 16:27:30 server sshd[3923838]: Failed password for root from 218.92.0.201 port 25848 ssh2 Mar 1 16:27:35 server sshd[3923838]: Failed password for root from 218.92.0.201 port 25848 ssh2	2020-03-01 23:40:01
180.250.108.133	attack	Mar 1 10:37:29 plusreed sshd[31436]: Invalid user b from 180.250.108.133 ...	2020-03-01 23:52:23
185.202.1.81	attackbots	3389BruteforceStormFW23	2020-03-01 23:45:21
45.125.65.42	attackbotsspam	2020-03-01 16:50:24 dovecot_login authenticator failed for $User$ \[45.125.65.42\]: 535 Incorrect authentication data $set_id=147852369$ 2020-03-01 16:50:34 dovecot_login authenticator failed for $User$ \[45.125.65.42\]: 535 Incorrect authentication data $set_id=contact@no-server.de$ 2020-03-01 16:51:44 dovecot_login authenticator failed for $User$ \[45.125.65.42\]: 535 Incorrect authentication data $set_id=contact@no-server.de$ 2020-03-01 16:51:59 dovecot_login authenticator failed for $User$ \[45.125.65.42\]: 535 Incorrect authentication data $set_id=147852369$ 2020-03-01 16:52:03 dovecot_login authenticator failed for $User$ \[45.125.65.42\]: 535 Incorrect authentication data $set_id=147852369$ ...	2020-03-01 23:57:18
78.189.151.208	attackbots	Unauthorized connection attempt detected from IP address 78.189.151.208 to port 81 [J]	2020-03-01 23:35:55
106.12.38.175	attack	Feb 28 19:59:58 fwweb01 sshd[22645]: Invalid user user from 106.12.38.175 Feb 28 19:59:58 fwweb01 sshd[22645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.175 Feb 28 20:00:00 fwweb01 sshd[22645]: Failed password for invalid user user from 106.12.38.175 port 54584 ssh2 Feb 28 20:00:00 fwweb01 sshd[22645]: Received disconnect from 106.12.38.175: 11: Bye Bye [preauth] Feb 28 20:03:47 fwweb01 sshd[22824]: Invalid user loyal from 106.12.38.175 Feb 28 20:03:47 fwweb01 sshd[22824]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.38.175 Feb 28 20:03:49 fwweb01 sshd[22824]: Failed password for invalid user loyal from 106.12.38.175 port 43888 ssh2 Feb 28 20:03:49 fwweb01 sshd[22824]: Received disconnect from 106.12.38.175: 11: Bye Bye [preauth] Feb 28 20:07:11 fwweb01 sshd[22948]: Invalid user Ronald from 106.12.38.175 Feb 28 20:07:11 fwweb01 sshd[22948]: pam_unix(sshd:auth): au........ -------------------------------	2020-03-02 00:10:30
117.6.149.162	attackbots	Unauthorised access (Mar 1) SRC=117.6.149.162 LEN=52 TTL=110 ID=12755 DF TCP DPT=445 WINDOW=8192 SYN	2020-03-02 00:07:30
95.14.134.10	attackbotsspam	Unauthorized connection attempt detected from IP address 95.14.134.10 to port 23 [J]	2020-03-01 23:33:53
123.201.226.18	attack	Honeypot attack, port: 445, PTR: 18-226-201-123.static.youbroadband.in.	2020-03-01 23:45:51
167.114.144.96	attackspam	Mar 1 14:24:00 * sshd[30689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.144.96 Mar 1 14:24:01 * sshd[30689]: Failed password for invalid user ftpadmin from 167.114.144.96 port 58292 ssh2	2020-03-02 00:05:51
159.65.175.37	attackspambots	Mar 1 15:21:02 lukav-desktop sshd\[29728\]: Invalid user test from 159.65.175.37 Mar 1 15:21:02 lukav-desktop sshd\[29728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.175.37 Mar 1 15:21:04 lukav-desktop sshd\[29728\]: Failed password for invalid user test from 159.65.175.37 port 50848 ssh2 Mar 1 15:24:29 lukav-desktop sshd\[29783\]: Invalid user test from 159.65.175.37 Mar 1 15:24:29 lukav-desktop sshd\[29783\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.175.37	2020-03-01 23:40:30
219.73.47.69	attackspambots	Honeypot attack, port: 5555, PTR: n219073047069.netvigator.com.	2020-03-01 23:33:33
189.182.187.38	attackbotsspam	port scan and connect, tcp 1433 (ms-sql-s)	2020-03-02 00:02:57

Recently Reported IPs

123.148.242.134	120.8.81.94	182.111.252.105	182.75.176.110
114.88.96.182	149.56.110.112	101.109.195.31	1.32.48.245
187.35.191.21	5.39.61.223	176.38.136.127	49.37.139.223
40.92.75.14	27.59.105.211	40.92.74.21	190.226.48.142
31.54.78.174	5.62.34.22	196.65.22.13	159.138.155.155