1.1.134.116 - IPInfo

Basic Info

City: Ban Chan

Region: Sakon Nakhon

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.1.134.79	attack	Unauthorized connection attempt detected from IP address 1.1.134.79 to port 4567 [T]	2020-01-17 06:50:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.1.134.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20865
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.1.134.116.			IN	A

;; AUTHORITY SECTION:
.			556	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022302 1800 900 604800 86400

;; Query time: 81 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 08:38:54 CST 2022
;; MSG SIZE  rcvd: 104

Host info

116.134.1.1.in-addr.arpa domain name pointer node-19w.pool-1-1.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
116.134.1.1.in-addr.arpa	name = node-19w.pool-1-1.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.83.217	attack	$f2bV_matches	2020-09-18 22:20:58
190.4.215.170	attackbots	Unauthorized connection attempt from IP address 190.4.215.170 on Port 445(SMB)	2020-09-18 22:30:11
41.237.206.136	attackspambots	Unauthorized connection attempt from IP address 41.237.206.136 on Port 445(SMB)	2020-09-18 22:12:19
201.46.29.30	attackbotsspam	20/9/17@13:00:31: FAIL: Alarm-Network address from=201.46.29.30 20/9/17@13:00:31: FAIL: Alarm-Network address from=201.46.29.30 ...	2020-09-18 22:24:47
39.100.28.79	attackspambots	2020-09-17T12:35:38.9340671495-001 sshd[16648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.100.28.79 user=root 2020-09-17T12:35:41.5142471495-001 sshd[16648]: Failed password for root from 39.100.28.79 port 35398 ssh2 2020-09-17T12:36:53.9926961495-001 sshd[16666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.100.28.79 user=root 2020-09-17T12:36:55.8698451495-001 sshd[16666]: Failed password for root from 39.100.28.79 port 44826 ssh2 2020-09-17T12:38:08.4537581495-001 sshd[16756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.100.28.79 user=root 2020-09-17T12:38:10.6272171495-001 sshd[16756]: Failed password for root from 39.100.28.79 port 54252 ssh2 ...	2020-09-18 22:11:39
202.188.20.123	attackbots	2020-09-18 08:55:44.632214-0500 localhost sshd[87008]: Failed password for root from 202.188.20.123 port 54556 ssh2	2020-09-18 22:16:52
177.222.16.85	attack	Unauthorized connection attempt from IP address 177.222.16.85 on Port 445(SMB)	2020-09-18 22:20:08
154.209.8.13	attackbotsspam	Sep 18 13:07:27 ssh2 sshd[73044]: User root from 154.209.8.13 not allowed because not listed in AllowUsers Sep 18 13:07:27 ssh2 sshd[73044]: Failed password for invalid user root from 154.209.8.13 port 47284 ssh2 Sep 18 13:07:27 ssh2 sshd[73044]: Connection closed by invalid user root 154.209.8.13 port 47284 [preauth] ...	2020-09-18 21:53:55
46.242.241.82	attack	Phishing	2020-09-18 22:01:52
129.126.244.51	attack	(sshd) Failed SSH login from 129.126.244.51 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 18 08:42:06 server sshd[4848]: Invalid user tom from 129.126.244.51 port 58120 Sep 18 08:42:08 server sshd[4848]: Failed password for invalid user tom from 129.126.244.51 port 58120 ssh2 Sep 18 08:43:44 server sshd[5236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.126.244.51 user=root Sep 18 08:43:46 server sshd[5236]: Failed password for root from 129.126.244.51 port 37622 ssh2 Sep 18 08:44:33 server sshd[5376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.126.244.51 user=root	2020-09-18 22:34:22
120.133.136.191	attackbotsspam	Lines containing failures of 120.133.136.191 Sep 17 08:04:45 hgb10502 sshd[27465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.133.136.191 user=r.r Sep 17 08:04:46 hgb10502 sshd[27465]: Failed password for r.r from 120.133.136.191 port 48393 ssh2 Sep 17 08:04:47 hgb10502 sshd[27465]: Received disconnect from 120.133.136.191 port 48393:11: Bye Bye [preauth] Sep 17 08:04:47 hgb10502 sshd[27465]: Disconnected from authenticating user r.r 120.133.136.191 port 48393 [preauth] Sep 17 08:26:01 hgb10502 sshd[30512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.133.136.191 user=r.r Sep 17 08:26:03 hgb10502 sshd[30512]: Failed password for r.r from 120.133.136.191 port 44689 ssh2 Sep 17 08:26:06 hgb10502 sshd[30512]: Received disconnect from 120.133.136.191 port 44689:11: Bye Bye [preauth] Sep 17 08:26:06 hgb10502 sshd[30512]: Disconnected from authenticating user r.r 120.133.136.191 p........ ------------------------------	2020-09-18 22:31:32
223.17.4.215	attack	firewall-block, port(s): 445/tcp	2020-09-18 22:19:42
182.61.59.163	attack	DATE:2020-09-18 15:38:56, IP:182.61.59.163, PORT:ssh SSH brute force auth (docker-dc)	2020-09-18 22:07:17
27.111.44.196	attackspambots	Sep 18 10:08:22 prox sshd[10231]: Failed password for root from 27.111.44.196 port 53552 ssh2	2020-09-18 22:26:08
89.205.0.64	attack	Unauthorized access to SSH at 17/Sep/2020:19:53:13 +0000.	2020-09-18 22:06:12

Recently Reported IPs

1.1.134.1	1.1.134.121	1.1.134.124	1.1.134.136
1.1.134.138	226.28.221.252	1.1.134.155	1.1.134.165
1.1.134.171	1.1.134.178	1.1.134.206	1.1.134.29
1.1.134.33	1.1.134.38	1.1.134.41	1.1.134.46
1.1.134.53	1.1.134.58	1.1.134.63	1.1.134.65