1.1.214.116 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.1.214.95	attackspam	2020-05-21T13:57:22.777218suse-nuc sshd[6015]: Invalid user admin from 1.1.214.95 port 43183 ...	2020-09-27 05:58:43
1.1.214.95	attack	2020-05-21T13:57:22.777218suse-nuc sshd[6015]: Invalid user admin from 1.1.214.95 port 43183 ...	2020-09-26 22:18:37
1.1.214.95	attackbotsspam	2020-05-21T13:57:22.777218suse-nuc sshd[6015]: Invalid user admin from 1.1.214.95 port 43183 ...	2020-09-26 14:03:10
1.1.214.80	attackbots	Unauthorized connection attempt from IP address 1.1.214.80 on Port 445(SMB)	2020-05-06 00:29:33
1.1.214.119	attackspam	1586231183 - 04/07/2020 05:46:23 Host: 1.1.214.119/1.1.214.119 Port: 445 TCP Blocked	2020-04-07 19:36:21
1.1.214.100	attackbotsspam	Unauthorized connection attempt from IP address 1.1.214.100 on Port 445(SMB)	2020-03-17 12:07:19
1.1.214.172	attack	Nov 24 17:13:08 mail sshd[31569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.1.214.172 Nov 24 17:13:10 mail sshd[31569]: Failed password for invalid user mpeg from 1.1.214.172 port 46524 ssh2 Nov 24 17:18:47 mail sshd[32371]: Failed password for root from 1.1.214.172 port 54550 ssh2	2019-11-25 00:43:50
1.1.214.172	attack	Nov 24 08:14:42 heissa sshd\[1603\]: Invalid user buster from 1.1.214.172 port 40912 Nov 24 08:14:42 heissa sshd\[1603\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.1.214.172 Nov 24 08:14:44 heissa sshd\[1603\]: Failed password for invalid user buster from 1.1.214.172 port 40912 ssh2 Nov 24 08:21:14 heissa sshd\[5401\]: Invalid user admin from 1.1.214.172 port 49416 Nov 24 08:21:14 heissa sshd\[5401\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.1.214.172	2019-11-24 17:22:26
1.1.214.212	attack	Sat, 20 Jul 2019 21:55:20 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 10:48:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.1.214.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56703
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.1.214.116.			IN	A

;; AUTHORITY SECTION:
.			54	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100602 1800 900 604800 86400

;; Query time: 30 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 05:06:24 CST 2022
;; MSG SIZE  rcvd: 104

Host info

116.214.1.1.in-addr.arpa domain name pointer node-h2s.pool-1-1.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
116.214.1.1.in-addr.arpa	name = node-h2s.pool-1-1.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
47.62.113.54	attackspam	Telnetd brute force attack detected by fail2ban	2019-09-21 20:55:31
202.169.62.187	attack	Sep 21 02:54:53 lcdev sshd\[7018\]: Invalid user oracle from 202.169.62.187 Sep 21 02:54:53 lcdev sshd\[7018\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.62.187 Sep 21 02:54:55 lcdev sshd\[7018\]: Failed password for invalid user oracle from 202.169.62.187 port 33020 ssh2 Sep 21 02:59:31 lcdev sshd\[7451\]: Invalid user ds from 202.169.62.187 Sep 21 02:59:31 lcdev sshd\[7451\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.169.62.187	2019-09-21 21:12:51
178.128.215.16	attack	Sep 21 13:37:30 server sshd\[26343\]: Invalid user antonella from 178.128.215.16 port 35948 Sep 21 13:37:30 server sshd\[26343\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.215.16 Sep 21 13:37:32 server sshd\[26343\]: Failed password for invalid user antonella from 178.128.215.16 port 35948 ssh2 Sep 21 13:41:44 server sshd\[19333\]: Invalid user webserver from 178.128.215.16 port 48346 Sep 21 13:41:44 server sshd\[19333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.215.16	2019-09-21 20:54:13
142.93.116.168	attackbotsspam	Sep 21 02:55:08 friendsofhawaii sshd\[30043\]: Invalid user ervin from 142.93.116.168 Sep 21 02:55:08 friendsofhawaii sshd\[30043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.116.168 Sep 21 02:55:10 friendsofhawaii sshd\[30043\]: Failed password for invalid user ervin from 142.93.116.168 port 54550 ssh2 Sep 21 02:59:39 friendsofhawaii sshd\[30387\]: Invalid user user1 from 142.93.116.168 Sep 21 02:59:39 friendsofhawaii sshd\[30387\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.116.168	2019-09-21 21:02:55
188.166.228.244	attackbots	Invalid user helpdesk from 188.166.228.244 port 54763	2019-09-21 20:39:02
211.64.67.48	attackbots	Sep 21 14:59:37 plex sshd[7282]: Invalid user mqm from 211.64.67.48 port 37456	2019-09-21 21:07:19
92.118.37.74	attackbots	Sep 21 12:47:19 mail kernel: [446579.146756] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=52353 PROTO=TCP SPT=46525 DPT=15147 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 21 12:48:07 mail kernel: [446626.739064] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=47642 PROTO=TCP SPT=46525 DPT=44380 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 21 12:48:40 mail kernel: [446660.046256] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=35152 PROTO=TCP SPT=46525 DPT=22804 WINDOW=1024 RES=0x00 SYN URGP=0 Sep 21 12:50:01 mail kernel: [446740.360535] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=29696 PROTO=TCP SPT=46525 DPT=32907 WINDOW=1024 RES=0x00 SYN URGP	2019-09-21 21:04:03
116.203.186.144	attackspambots	Sep 21 10:46:27 fr01 sshd[25725]: Invalid user bogdan from 116.203.186.144 ...	2019-09-21 20:55:54
186.71.57.18	attackbotsspam	2019-09-21T12:59:34.233881abusebot-8.cloudsearch.cf sshd\[31240\]: Invalid user sesh from 186.71.57.18 port 45608	2019-09-21 21:10:03
106.12.89.171	attackbotsspam	Sep 21 02:39:45 wbs sshd\[30175\]: Invalid user oracle from 106.12.89.171 Sep 21 02:39:45 wbs sshd\[30175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.171 Sep 21 02:39:46 wbs sshd\[30175\]: Failed password for invalid user oracle from 106.12.89.171 port 58768 ssh2 Sep 21 02:44:08 wbs sshd\[30591\]: Invalid user dirsrv from 106.12.89.171 Sep 21 02:44:08 wbs sshd\[30591\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.171	2019-09-21 20:51:56
218.92.0.163	attack	SSH-bruteforce attempts	2019-09-21 20:59:19
222.186.31.144	attackspambots	Sep 21 09:07:07 TORMINT sshd\[15434\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.144 user=root Sep 21 09:07:09 TORMINT sshd\[15434\]: Failed password for root from 222.186.31.144 port 37755 ssh2 Sep 21 09:07:12 TORMINT sshd\[15434\]: Failed password for root from 222.186.31.144 port 37755 ssh2 ...	2019-09-21 21:19:55
162.241.193.116	attack	2019-09-21T07:59:43.8903291495-001 sshd\[41758\]: Invalid user teamspeak from 162.241.193.116 port 58842 2019-09-21T07:59:43.8939251495-001 sshd\[41758\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.193.116 2019-09-21T07:59:45.5266791495-001 sshd\[41758\]: Failed password for invalid user teamspeak from 162.241.193.116 port 58842 ssh2 2019-09-21T08:24:36.1201351495-001 sshd\[43453\]: Invalid user cdc from 162.241.193.116 port 36456 2019-09-21T08:24:36.1233631495-001 sshd\[43453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.193.116 2019-09-21T08:24:38.7194501495-001 sshd\[43453\]: Failed password for invalid user cdc from 162.241.193.116 port 36456 ssh2 ...	2019-09-21 20:51:35
62.210.215.92	attack	Sep 21 02:55:57 auw2 sshd\[25287\]: Invalid user hadoop from 62.210.215.92 Sep 21 02:55:57 auw2 sshd\[25287\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62-210-215-92.rev.poneytelecom.eu Sep 21 02:55:59 auw2 sshd\[25287\]: Failed password for invalid user hadoop from 62.210.215.92 port 57654 ssh2 Sep 21 02:59:27 auw2 sshd\[25641\]: Invalid user godzila from 62.210.215.92 Sep 21 02:59:27 auw2 sshd\[25641\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62-210-215-92.rev.poneytelecom.eu	2019-09-21 21:15:29
193.112.91.90	attackspam	Sep 21 08:53:30 ny01 sshd[26227]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.91.90 Sep 21 08:53:32 ny01 sshd[26227]: Failed password for invalid user ubuntu from 193.112.91.90 port 35876 ssh2 Sep 21 08:59:29 ny01 sshd[27834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.91.90	2019-09-21 21:14:51

Recently Reported IPs

62.197.194.60	37.44.197.160	95.80.89.150	45.145.129.67
185.164.56.165	109.244.72.235	124.40.29.22	1.117.30.93
175.115.231.167	221.230.161.17	179.217.106.36	77.53.26.108
20.25.181.35	201.137.60.96	91.246.194.8	104.248.130.54
182.34.205.65	37.44.252.220	24.143.127.201	20.226.93.44