1.1.130.99 - IPInfo

Basic Info

City: Udon Thani

Region: Udon Thani

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.1.130.70	attack	Lines containing failures of 1.1.130.70 May 20 09:23:44 MAKserver05 sshd[25383]: Did not receive identification string from 1.1.130.70 port 50508 May 20 09:23:47 MAKserver05 sshd[25384]: Invalid user sniffer from 1.1.130.70 port 50945 May 20 09:23:48 MAKserver05 sshd[25384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.1.130.70 May 20 09:23:49 MAKserver05 sshd[25384]: Failed password for invalid user sniffer from 1.1.130.70 port 50945 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=1.1.130.70	2020-05-20 20:52:51

Type

Details

Datetime

1.1.130.70

attack

Lines containing failures of 1.1.130.70
May 20 09:23:44 MAKserver05 sshd[25383]: Did not receive identification string from 1.1.130.70 port 50508
May 20 09:23:47 MAKserver05 sshd[25384]: Invalid user sniffer from 1.1.130.70 port 50945
May 20 09:23:48 MAKserver05 sshd[25384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.1.130.70 
May 20 09:23:49 MAKserver05 sshd[25384]: Failed password for invalid user sniffer from 1.1.130.70 port 50945 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=1.1.130.70

2020-05-20 20:52:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.1.130.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25133
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.1.130.99.			IN	A

;; AUTHORITY SECTION:
.			584	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022302 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 08:34:57 CST 2022
;; MSG SIZE  rcvd: 103

Host info

99.130.1.1.in-addr.arpa domain name pointer node-gz.pool-1-1.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
99.130.1.1.in-addr.arpa	name = node-gz.pool-1-1.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.89.56.241	attackspambots	SSH-BRUTEFORCE	2019-06-24 00:10:05
58.215.198.2	attack	Jun 23 12:52:45 diego dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 9 secs\): user=\, method=PLAIN, rip=58.215.198.2, lip=172.104.242.163, TLS, session=\<0DrJp/qL3sU618YC\> ...	2019-06-24 00:10:29
78.40.220.197	attackbotsspam	20 attempts against mh-ssh on mist.magehost.pro	2019-06-24 00:15:30
58.242.83.37	attack	2019-06-23T11:52:29.486807Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 58.242.83.37:51519 \(107.175.91.48:22\) \[session: c865e1d267dd\] 2019-06-23T11:53:22.495652Z \[cowrie.ssh.factory.CowrieSSHFactory\] New connection: 58.242.83.37:41734 \(107.175.91.48:22\) \[session: a3a4be7e7ae9\] ...	2019-06-23 23:40:19
80.48.183.178	attackbotsspam	Automatic report - Web App Attack	2019-06-24 00:15:06
46.101.101.66	attack	Jun 23 11:53:57 [munged] sshd[30477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.101.66 user=root Jun 23 11:53:57 [munged] sshd[30476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.101.66 user=root	2019-06-24 00:01:59
77.229.62.219	attackbotsspam	Jun 23 16:53:07 plesk sshd[25230]: Bad protocol version identification '' from 77.229.62.219 port 47544 Jun 23 16:54:43 plesk sshd[25231]: Invalid user support from 77.229.62.219 Jun 23 16:54:52 plesk sshd[25231]: Failed password for invalid user support from 77.229.62.219 port 49276 ssh2 Jun 23 16:56:38 plesk sshd[25296]: Invalid user ubnt from 77.229.62.219 Jun 23 16:56:44 plesk sshd[25296]: Failed password for invalid user ubnt from 77.229.62.219 port 41434 ssh2 Jun 23 16:56:52 plesk sshd[25296]: Connection closed by 77.229.62.219 [preauth] Jun 23 16:58:31 plesk sshd[25341]: Invalid user cisco from 77.229.62.219 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=77.229.62.219	2019-06-23 23:45:11
159.203.77.51	attackspam	Jun 23 15:28:39 MK-Soft-VM3 sshd\[24098\]: Invalid user lturpin from 159.203.77.51 port 44686 Jun 23 15:28:40 MK-Soft-VM3 sshd\[24098\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.77.51 Jun 23 15:28:41 MK-Soft-VM3 sshd\[24098\]: Failed password for invalid user lturpin from 159.203.77.51 port 44686 ssh2 ...	2019-06-24 00:07:09
192.241.226.241	attackbotsspam	23.06.2019 15:47:54 Connection to port 17185 blocked by firewall	2019-06-24 00:04:43
193.112.48.249	attackbotsspam	xmlrpc attack	2019-06-24 00:27:59
107.170.204.28	attackspam	3389/tcp 389/tcp 5903/tcp... [2019-04-22/06-23]55pkt,43pt.(tcp),2pt.(udp)	2019-06-24 00:05:20
1.249.111.138	attackbotsspam	Mail sent to address hacked/leaked from atari.st	2019-06-24 00:06:39
185.176.27.174	attack	firewall-block, port(s): 15409/tcp, 30322/tcp, 30323/tcp, 30324/tcp	2019-06-24 00:30:32
36.110.78.62	attack	Jun 23 11:54:24 lnxmail61 sshd[30427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.110.78.62	2019-06-23 23:46:52
87.241.162.56	attackbots	" "	2019-06-24 00:24:59

Recently Reported IPs

1.1.130.96	1.1.131.107	1.1.131.111	1.1.131.117
205.123.59.154	1.1.131.118	1.1.131.143	1.1.131.156
1.1.131.16	1.1.131.164	1.1.131.166	1.1.131.177
1.1.131.196	1.1.131.198	1.1.131.2	1.1.131.202
1.1.131.207	1.1.131.208	1.1.131.212	1.1.131.237