1.1.139.112 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: TOT Public Company Limited

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	" "	2020-04-18 12:18:44

Comments on same subnet:

IP	Type	Details	Datetime
1.1.139.54	attackbots	TCP (SYN) 1.1.139.54:58126 -> port 22, len 52	2020-05-20 07:41:38
1.1.139.223	attackspambots	Unauthorized connection attempt from IP address 1.1.139.223 on Port 445(SMB)	2020-04-30 20:17:07
1.1.139.37	attack	Honeypot attack, port: 81, PTR: node-279.pool-1-1.dynamic.totinternet.net.	2020-02-11 08:08:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.1.139.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12894
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;1.1.139.112.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041702 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 18 12:18:39 CST 2020
;; MSG SIZE  rcvd: 115

Host info

112.139.1.1.in-addr.arpa domain name pointer node-29c.pool-1-1.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
112.139.1.1.in-addr.arpa	name = node-29c.pool-1-1.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
216.243.31.2	attack	Port 80 (HTTP) access denied	2020-02-11 19:15:12
113.22.102.55	attack	fell into ViewStateTrap:wien2018	2020-02-11 19:02:28
206.72.198.132	attackspam	Feb 10 10:59:51 mail postfix/smtpd[10138]: warning: unknown[206.72.198.132]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 10 11:00:03 mail postfix/smtpd[10933]: warning: unknown[206.72.198.132]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 10 11:00:17 mail postfix/smtpd[10990]: warning: unknown[206.72.198.132]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 10 11:00:38 mail postfix/smtpd[9925]: warning: unknown[206.72.198.132]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 10 11:00:49 mail postfix/smtpd[11290]: warning: unknown[206.72.198.132]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 10 11:01:03 mail postfix/smtpd[10470]: warning: unknown[206.72.198.132]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-02-11 19:24:40
111.248.57.112	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 11-02-2020 04:50:09.	2020-02-11 19:32:12
178.159.44.221	attackspambots	2020-02-11T05:31:35.8308011495-001 sshd[36524]: Invalid user bhr from 178.159.44.221 port 56944 2020-02-11T05:31:35.8381371495-001 sshd[36524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.159.44.221 2020-02-11T05:31:35.8308011495-001 sshd[36524]: Invalid user bhr from 178.159.44.221 port 56944 2020-02-11T05:31:37.6286261495-001 sshd[36524]: Failed password for invalid user bhr from 178.159.44.221 port 56944 ssh2 2020-02-11T05:33:26.6219591495-001 sshd[36590]: Invalid user pkv from 178.159.44.221 port 46290 2020-02-11T05:33:26.6301991495-001 sshd[36590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.159.44.221 2020-02-11T05:33:26.6219591495-001 sshd[36590]: Invalid user pkv from 178.159.44.221 port 46290 2020-02-11T05:33:28.3254231495-001 sshd[36590]: Failed password for invalid user pkv from 178.159.44.221 port 46290 ssh2 2020-02-11T05:35:11.9843561495-001 sshd[36668]: Invalid user dxa from 17 ...	2020-02-11 19:40:13
5.236.164.226	attackbots	firewall-block, port(s): 23/tcp	2020-02-11 19:42:45
198.245.69.149	attack	(From AubreySweeney0160@gmail.com) Hi there! Have you considered making some improvements on your website's user-interface? Newer websites can do just about anything for their clients. It also gives your potential clients a good-user experience, making them trust your company more. I guarantee you that an update on your site's look and feel will deliver positive results on how your business profits from the website. I'm a freelance web designer, and I have an outstanding portfolio of my past work ready to be viewed. Whether if you're looking to incorporate helpful features on your site, to give it a brand-new look, or to fix some issues that you already have, I can do all of those for you at an affordable cost. I'm offering you a free consultation, so I can share some expert advice and design ideas that best fits your business needs. If you're interested, kindly reply to inform me. Talk to you soon! Best regards, Aubrey Sweeney	2020-02-11 19:42:57
112.198.144.141	attackbots	invalid login attempt (Administrator)	2020-02-11 19:33:38
139.155.45.196	attack	Feb 11 05:50:22 pornomens sshd\[24460\]: Invalid user qr from 139.155.45.196 port 33868 Feb 11 05:50:22 pornomens sshd\[24460\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.45.196 Feb 11 05:50:24 pornomens sshd\[24460\]: Failed password for invalid user qr from 139.155.45.196 port 33868 ssh2 ...	2020-02-11 19:07:42
218.39.206.99	attackspam	Honeypot attack, port: 5555, PTR: PTR record not found	2020-02-11 19:23:00
198.143.158.83	attack	firewall-block, port(s): 3128/tcp	2020-02-11 19:23:13
117.254.184.43	attackspambots	1581413042 - 02/11/2020 10:24:02 Host: 117.254.184.43/117.254.184.43 Port: 445 TCP Blocked	2020-02-11 19:30:16
59.102.253.191	attackspam	SSH login attempts	2020-02-11 19:37:37
14.21.36.84	attackspambots	Feb 11 08:52:47 sshd\[8786\]: Invalid user hcl from 14.21.36.84Feb 11 08:52:49 sshd\[8786\]: Failed password for invalid user hcl from 14.21.36.84 port 55494 ssh2 ...	2020-02-11 19:10:56
78.128.113.166	attack	20 attempts against mh_ha-misbehave-ban on cold	2020-02-11 19:20:28

Recently Reported IPs

123.206.204.70	167.99.72.73	162.158.38.63	162.158.38.57
59.61.83.118	31.24.145.41	49.81.31.15	191.31.18.84
188.254.110.205	183.89.211.51	162.158.111.27	117.187.230.91
122.224.155.227	92.112.37.137	67.171.12.139	117.198.144.130
27.72.29.155	187.189.87.72	112.134.112.206	160.122.6.176