1.1.145.90 - IPInfo

Basic Info

City: Kantang

Region: Trang

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.1.145.3	attackbots	Unauthorized connection attempt detected from IP address 1.1.145.3 to port 82 [T]	2020-01-07 02:55:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.1.145.90
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13248
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.1.145.90.			IN	A

;; AUTHORITY SECTION:
.			347	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022302 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 08:40:45 CST 2022
;; MSG SIZE  rcvd: 103

Host info

90.145.1.1.in-addr.arpa domain name pointer node-3fe.pool-1-1.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
90.145.1.1.in-addr.arpa	name = node-3fe.pool-1-1.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
161.35.238.241	attack	Fail2Ban Ban Triggered	2020-08-09 19:17:45
167.99.131.243	attack	Brute-force attempt banned	2020-08-09 19:15:30
132.148.28.20	attackbotsspam	Automatic report generated by Wazuh	2020-08-09 19:00:36
27.75.184.105	attack	SMB Server BruteForce Attack	2020-08-09 18:49:57
145.239.11.166	attackspambots	[2020-08-09 07:07:33] NOTICE[1248][C-00005105] chan_sip.c: Call from '' (145.239.11.166:43426) to extension '00447441399590' rejected because extension not found in context 'public'. [2020-08-09 07:07:33] SECURITY[1275] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-09T07:07:33.712-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="00447441399590",SessionID="0x7f27203c7888",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/145.239.11.166/5060",ACLName="no_extension_match" [2020-08-09 07:08:03] NOTICE[1248][C-00005107] chan_sip.c: Call from '' (145.239.11.166:34149) to extension '00447441399590' rejected because extension not found in context 'public'. ...	2020-08-09 19:26:13
75.157.30.43	attack	Automatic report - Banned IP Access	2020-08-09 19:10:17
82.99.206.18	attack	2020-08-09T09:29:27.926237+02:00 sshd[29580]: Failed password for root from 82.99.206.18 port 54162 ssh2	2020-08-09 19:18:06
54.71.115.235	attack	54.71.115.235 - - [09/Aug/2020:11:41:33 +0100] "POST /wp-login.php HTTP/1.1" 200 1969 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.71.115.235 - - [09/Aug/2020:11:41:35 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 54.71.115.235 - - [09/Aug/2020:11:41:36 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-09 19:06:00
121.157.82.202	attackbotsspam	Multiple SSH authentication failures from 121.157.82.202	2020-08-09 19:07:19
192.35.169.36	attackbotsspam	TCP (SYN) 192.35.169.36:44082 -> port 139, len 44	2020-08-09 19:18:55
90.92.60.112	attackspam	W 31101,/var/log/nginx/access.log,-,-	2020-08-09 19:10:03
171.221.148.154	attack	Aug 4 14:36:20 server770 sshd[16276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.221.148.154 user=r.r Aug 4 14:36:23 server770 sshd[16276]: Failed password for r.r from 171.221.148.154 port 13644 ssh2 Aug 4 14:36:23 server770 sshd[16276]: Received disconnect from 171.221.148.154 port 13644:11: Bye Bye [preauth] Aug 4 14:36:23 server770 sshd[16276]: Disconnected from 171.221.148.154 port 13644 [preauth] Aug 4 14:52:47 server770 sshd[16809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.221.148.154 user=r.r Aug 4 14:52:49 server770 sshd[16809]: Failed password for r.r from 171.221.148.154 port 13569 ssh2 Aug 4 14:52:50 server770 sshd[16809]: Received disconnect from 171.221.148.154 port 13569:11: Bye Bye [preauth] Aug 4 14:52:50 server770 sshd[16809]: Disconnected from 171.221.148.154 port 13569 [preauth] Aug 4 14:56:39 server770 sshd[16881]: pam_unix(sshd:auth): auth........ -------------------------------	2020-08-09 18:57:19
144.34.236.202	attackbots	2020-08-08 UTC: (25x) - !#$123,!@#QWE12345,!qaz3wsx,123@QWEA,qwerty_!@#$%^,root(18x),sync,~#$%^&*(),.;	2020-08-09 19:10:32
91.232.162.31	attackbotsspam	Automatic report - Banned IP Access	2020-08-09 19:03:52
49.69.158.156	attackbotsspam	(sshd) Failed SSH login from 49.69.158.156 (CN/China/-): 5 in the last 300 secs	2020-08-09 19:21:34

Recently Reported IPs

1.1.145.52	1.1.145.94	1.1.146.133	1.1.146.192
1.1.146.196	1.1.146.203	1.1.146.209	1.1.146.43
54.207.101.246	1.1.146.46	1.1.146.59	1.1.146.63
1.1.146.99	1.1.147.102	1.1.147.13	1.1.147.140
1.1.147.144	1.1.147.149	1.1.147.16	1.1.147.167