1.2.134.161 - IPInfo

Basic Info

City: Ban Phan Don

Region: Udon Thani

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.134.99	attackbotsspam	Unauthorized connection attempt detected from IP address 1.2.134.99 to port 23 [J]	2020-03-02 15:53:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.134.161
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31457
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.134.161.			IN	A

;; AUTHORITY SECTION:
.			395	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 08:37:22 CST 2022
;; MSG SIZE  rcvd: 104

Host info

161.134.2.1.in-addr.arpa domain name pointer node-1b5.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
161.134.2.1.in-addr.arpa	name = node-1b5.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
140.238.248.52	attack	140.238.248.52 was recorded 7 times by 7 hosts attempting to connect to the following ports: 30121. Incident counter (4h, 24h, all-time): 7, 23, 23	2020-04-23 01:47:47
27.50.63.6	attackspam	SSH Brute-Force Attack	2020-04-23 01:12:59
111.231.33.135	attack	Apr 22 15:37:20 mail sshd[861]: Failed password for root from 111.231.33.135 port 38730 ssh2 Apr 22 15:40:43 mail sshd[1465]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.33.135 Apr 22 15:40:46 mail sshd[1465]: Failed password for invalid user tp from 111.231.33.135 port 46352 ssh2	2020-04-23 01:12:24
90.143.33.51	attack	Honeypot attack, port: 445, PTR: m90-143-33-51.cust.tele2.kz.	2020-04-23 01:20:17
54.38.55.52	attack	Apr 22 19:09:35 santamaria sshd\[15049\]: Invalid user ih from 54.38.55.52 Apr 22 19:09:35 santamaria sshd\[15049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.55.52 Apr 22 19:09:37 santamaria sshd\[15049\]: Failed password for invalid user ih from 54.38.55.52 port 59750 ssh2 ...	2020-04-23 01:36:02
45.179.86.11	attack	Unauthorised access (Apr 22) SRC=45.179.86.11 LEN=48 TTL=106 ID=21649 DF TCP DPT=445 WINDOW=8192 SYN	2020-04-23 01:39:37
78.177.59.222	attackbotsspam	HTTP Request	2020-04-23 01:29:00
119.226.11.100	attackbots	Apr 22 14:34:27 [host] sshd[19931]: Invalid user j Apr 22 14:34:27 [host] sshd[19931]: pam_unix(sshd: Apr 22 14:34:28 [host] sshd[19931]: Failed passwor	2020-04-23 01:41:24
58.210.96.156	attackbotsspam	2020-04-22T16:24:19.390117shield sshd\[30988\]: Invalid user admin from 58.210.96.156 port 59497 2020-04-22T16:24:19.393684shield sshd\[30988\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.210.96.156 2020-04-22T16:24:20.575223shield sshd\[30988\]: Failed password for invalid user admin from 58.210.96.156 port 59497 ssh2 2020-04-22T16:28:35.680262shield sshd\[31671\]: Invalid user s from 58.210.96.156 port 54920 2020-04-22T16:28:35.683839shield sshd\[31671\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.210.96.156	2020-04-23 01:08:18
195.24.202.149	attack	2020-04-22T08:16:04.161969linuxbox-skyline sshd[983]: Invalid user adriana from 195.24.202.149 port 55816 ...	2020-04-23 01:11:39
114.237.156.56	attack	Email rejected due to spam filtering	2020-04-23 01:09:21
185.123.164.52	attack	Apr 22 19:30:23 mail sshd[13622]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.123.164.52 Apr 22 19:30:26 mail sshd[13622]: Failed password for invalid user uc from 185.123.164.52 port 41216 ssh2 Apr 22 19:34:35 mail sshd[14289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.123.164.52	2020-04-23 01:37:27
184.162.45.52	attack	Draytek Vigor Remote Command Execution Vulnerability	2020-04-23 01:43:50
62.60.135.76	attackbotsspam	Apr 22 15:20:04 work-partkepr sshd\[23200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.60.135.76 user=root Apr 22 15:20:06 work-partkepr sshd\[23200\]: Failed password for root from 62.60.135.76 port 38456 ssh2 ...	2020-04-23 01:35:36
171.103.35.182	attackbots	Brute-force attempt banned	2020-04-23 01:33:40

Recently Reported IPs

1.199.31.90	83.207.223.58	1.2.134.176	1.2.134.184
1.2.134.20	1.2.134.212	1.2.134.214	1.2.134.221
1.2.134.225	1.2.134.230	1.2.134.3	1.2.134.35
1.2.134.37	1.2.134.55	170.35.207.211	1.2.134.58
1.2.134.63	1.2.134.87	1.2.134.89	1.2.135.140