1.0.134.129 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.0.134.110	attackbots	Unauthorized connection attempt detected from IP address 1.0.134.110 to port 80 [J]	2020-01-21 02:29:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.0.134.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21756
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.0.134.129.			IN	A

;; AUTHORITY SECTION:
.			452	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022301 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 05:48:06 CST 2022
;; MSG SIZE  rcvd: 104

Host info

129.134.0.1.in-addr.arpa domain name pointer node-1a9.pool-1-0.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
129.134.0.1.in-addr.arpa	name = node-1a9.pool-1-0.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
93.28.128.108	attack	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-04-05 07:33:59
222.186.190.14	attack	Apr 5 01:26:49 plex sshd[25942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.14 user=root Apr 5 01:26:50 plex sshd[25942]: Failed password for root from 222.186.190.14 port 13643 ssh2	2020-04-05 07:27:44
92.118.38.82	attackbots	Apr 5 01:35:14 relay postfix/smtpd\[7283\]: warning: unknown\[92.118.38.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 01:35:38 relay postfix/smtpd\[25023\]: warning: unknown\[92.118.38.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 01:35:48 relay postfix/smtpd\[6256\]: warning: unknown\[92.118.38.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 01:36:12 relay postfix/smtpd\[1602\]: warning: unknown\[92.118.38.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 5 01:36:22 relay postfix/smtpd\[6255\]: warning: unknown\[92.118.38.82\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-05 07:40:48
32.216.93.43	attack	Automatic report - Port Scan Attack	2020-04-05 07:44:28
188.166.150.230	attackbots	April 04 2020, 18:51:56 [sshd] - Banned from the Mad Pony WordPress hosting platform by Fail2ban.	2020-04-05 07:02:14
35.231.211.161	attack	Apr 4 22:51:09 *** sshd[17231]: User root from 35.231.211.161 not allowed because not listed in AllowUsers	2020-04-05 07:46:32
218.4.72.146	attack	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-04-05 07:13:42
37.192.189.53	attack	web attacking	2020-04-05 07:16:20
183.134.217.162	attackspam	Apr 4 17:00:39 server1 sshd\[1101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.134.217.162 user=root Apr 4 17:00:41 server1 sshd\[1101\]: Failed password for root from 183.134.217.162 port 42350 ssh2 Apr 4 17:03:42 server1 sshd\[2047\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.134.217.162 user=root Apr 4 17:03:44 server1 sshd\[2047\]: Failed password for root from 183.134.217.162 port 38038 ssh2 Apr 4 17:06:41 server1 sshd\[2976\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.134.217.162 user=root ...	2020-04-05 07:18:27
180.169.124.178	attack	Apr 4 18:16:35 UTC__SANYALnet-Labs__lste sshd[9903]: Connection from 180.169.124.178 port 49774 on 192.168.1.10 port 22 Apr 4 18:16:36 UTC__SANYALnet-Labs__lste sshd[9903]: Invalid user clamav from 180.169.124.178 port 49774 Apr 4 18:16:37 UTC__SANYALnet-Labs__lste sshd[9903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.169.124.178 Apr 4 18:16:39 UTC__SANYALnet-Labs__lste sshd[9903]: Failed password for invalid user clamav from 180.169.124.178 port 49774 ssh2 Apr 4 18:16:40 UTC__SANYALnet-Labs__lste sshd[9903]: Received disconnect from 180.169.124.178 port 49774:11: Normal Shutdown [preauth] Apr 4 18:16:40 UTC__SANYALnet-Labs__lste sshd[9903]: Disconnected from 180.169.124.178 port 49774 [preauth] Apr 4 18:18:56 UTC__SANYALnet-Labs__lste sshd[10018]: Connection from 180.169.124.178 port 14687 on 192.168.1.10 port 22 Apr 4 18:18:58 UTC__SANYALnet-Labs__lste sshd[10018]: Invalid user squid from 180.169.124.178 port 1........ -------------------------------	2020-04-05 07:13:12
138.128.202.250	attackbots	Apr 5 00:24:26 ns382633 sshd\[20370\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.128.202.250 user=root Apr 5 00:24:28 ns382633 sshd\[20370\]: Failed password for root from 138.128.202.250 port 49545 ssh2 Apr 5 00:43:19 ns382633 sshd\[24788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.128.202.250 user=root Apr 5 00:43:20 ns382633 sshd\[24788\]: Failed password for root from 138.128.202.250 port 53534 ssh2 Apr 5 00:56:39 ns382633 sshd\[27985\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.128.202.250 user=root	2020-04-05 07:03:29
109.70.100.29	attackspam	[Sat Apr 04 23:51:29.290913 2020] [authz_core:error] [pid 10209] [client 109.70.100.29:21037] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/, referer: http://wwww.rncbc.org/drupal/node/92 [Sat Apr 04 23:51:30.688878 2020] [authz_core:error] [pid 10481] [client 109.70.100.29:27837] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/, referer: http://wwww.rncbc.org/ [Sat Apr 04 23:51:32.999135 2020] [authz_core:error] [pid 10530] [client 109.70.100.29:34071] AH01630: client denied by server configuration: /srv/www/vhosts/rncbc/, referer: http://wwww.rncbc.org/ ...	2020-04-05 07:25:35
139.180.197.134	attack	xmlrpc attack	2020-04-05 07:33:43
165.22.79.210	attackspambots	Apr 4 19:33:47 ihweb003 sshd[15401]: Connection from 165.22.79.210 port 33742 on 139.59.173.177 port 22 Apr 4 19:33:47 ihweb003 sshd[15401]: Did not receive identification string from 165.22.79.210 port 33742 Apr 4 19:34:38 ihweb003 sshd[15585]: Connection from 165.22.79.210 port 46212 on 139.59.173.177 port 22 Apr 4 19:34:38 ihweb003 sshd[15585]: Did not receive identification string from 165.22.79.210 port 46212 Apr 4 19:36:09 ihweb003 sshd[15976]: Connection from 165.22.79.210 port 60696 on 139.59.173.177 port 22 Apr 4 19:36:09 ihweb003 sshd[15976]: User r.r from 165.22.79.210 not allowed because none of user's groups are listed in AllowGroups Apr 4 19:36:09 ihweb003 sshd[15976]: Received disconnect from 165.22.79.210 port 60696:11: Normal Shutdown, Thank you for playing [preauth] Apr 4 19:36:09 ihweb003 sshd[15976]: Disconnected from 165.22.79.210 port 60696 [preauth] Apr 4 19:37:31 ihweb003 sshd[16136]: Connection from 165.22.79.210 port 46902 on 139.59.17........ -------------------------------	2020-04-05 07:47:37
46.101.26.21	attackspam	Apr 5 00:40:31 ns382633 sshd\[24449\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.26.21 user=root Apr 5 00:40:33 ns382633 sshd\[24449\]: Failed password for root from 46.101.26.21 port 39162 ssh2 Apr 5 00:50:58 ns382633 sshd\[26648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.26.21 user=root Apr 5 00:51:00 ns382633 sshd\[26648\]: Failed password for root from 46.101.26.21 port 25567 ssh2 Apr 5 00:54:13 ns382633 sshd\[27241\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.26.21 user=root	2020-04-05 07:15:25

Recently Reported IPs

1.0.134.127	1.0.134.130	1.0.134.134	1.0.134.138
1.0.134.14	1.0.134.145	1.0.134.147	1.0.134.148
1.0.134.152	1.0.134.154	1.0.134.156	1.0.134.158
1.0.134.161	1.0.134.162	1.0.134.164	1.0.134.167
1.0.134.168	1.0.134.171	1.0.134.173	1.0.134.175