1.4.134.5 - IPInfo

Basic Info

City: Udon Thani

Region: Udon Thani

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '1.4.128.0 - 1.4.191.255'

% Abuse contact for '1.4.128.0 - 1.4.191.255' is 'abuse@totisp.net'

inetnum:        1.4.128.0 - 1.4.191.255
netname:        TOTNET
descr:          Dynamic IP Address for residential Broadband Customers
country:        TH
admin-c:        AG100-AP
tech-c:         AG100-AP
abuse-c:        AT950-AP
status:         ASSIGNED NON-PORTABLE
mnt-by:         MAINT-TH-TOT
mnt-lower:      MAINT-TH-TOT
mnt-routes:     MAINT-TH-TOT
mnt-routes:     MAINT-TH-TOT-ISP
mnt-irt:        IRT-TOT-TH
last-modified:  2021-01-27T13:30:18Z
source:         APNIC

irt:            IRT-TOT-TH
address:        TOT Public Company Limited
address:        89/2 Moo 3 Chaengwattana Rd, Laksi,Bangkok 10210 THAILAND
e-mail:         apipolg@nt.ntplc.co.th
abuse-mailbox:  abuse@totisp.net
admin-c:        ira3-ap
tech-c:         ira3-ap
auth:           # Filtered
remarks:        apipolg@nt.ntplc.co.th was validated on 2025-11-17
remarks:        abuse@totisp.net was validated on 2026-01-22
mnt-by:         MAINT-TH-TOT
last-modified:  2026-01-22T04:00:58Z
source:         APNIC

role:           ABUSE TOTTH
country:        ZZ
address:        TOT Public Company Limited
address:        89/2 Moo 3 Chaengwattana Rd, Laksi,Bangkok 10210 THAILAND
phone:          +000000000
e-mail:         apipolg@nt.ntplc.co.th
admin-c:        ira3-ap
tech-c:         ira3-ap
nic-hdl:        AT950-AP
remarks:        Generated from irt object IRT-TOT-TH
remarks:        apipolg@nt.ntplc.co.th was validated on 2025-11-17
remarks:        abuse@totisp.net was validated on 2026-01-22
abuse-mailbox:  abuse@totisp.net
mnt-by:         APNIC-ABUSE
last-modified:  2026-01-22T04:01:40Z
source:         APNIC

person:         Apipol Gunabhibal
nic-hdl:        AG100-AP
e-mail:         abuse@totidc.net
address:        TOT Public Company Limited
address:        89/2 Moo 3 Chaengwattana Rd, Laksi, Bangkok 10210 THAILAND
phone:          +66-2574-9178
country:        TH
mnt-by:         MAINT-TH-TOT
last-modified:  2022-08-29T04:23:40Z
source:         APNIC

% Information related to '1.4.128.0/21AS23969'

route:          1.4.128.0/21
origin:         AS23969
descr:          TOT Public Company Limited
                National Telecom Public Company Limited
                Chaengwattana Office
                89/2 Chaengwatthana Road
                Thoongsonghong
mnt-by:         MAINT-TH-TOT
last-modified:  2025-12-09T07:23:30Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.36-SNAPSHOT (WHOIS-AU5)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.4.134.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37916
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.4.134.5.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026020600 1800 900 604800 86400

;; Query time: 7 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 06 17:36:24 CST 2026
;; MSG SIZE  rcvd: 102

Host info

b'5.134.4.1.in-addr.arpa domain name pointer node-16t.pool-1-4.dynamic.nt-isp.net.
'

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
5.134.4.1.in-addr.arpa	name = node-16t.pool-1-4.dynamic.nt-isp.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.21.194.122	attackbots	Nov 8 07:33:34 XXX sshd[22540]: Invalid user admin from 201.21.194.122 port 35126	2019-11-08 18:38:34
37.17.182.107	attackspam	Nov 8 07:21:41 mxgate1 postfix/postscreen[2829]: CONNECT from [37.17.182.107]:53747 to [176.31.12.44]:25 Nov 8 07:21:41 mxgate1 postfix/dnsblog[2831]: addr 37.17.182.107 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 8 07:21:41 mxgate1 postfix/dnsblog[2835]: addr 37.17.182.107 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 8 07:21:41 mxgate1 postfix/dnsblog[2835]: addr 37.17.182.107 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 8 07:21:41 mxgate1 postfix/dnsblog[2832]: addr 37.17.182.107 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 8 07:21:42 mxgate1 postfix/postscreen[2829]: PREGREET 22 after 0.11 from [37.17.182.107]:53747: EHLO [37.17.182.107] Nov 8 07:21:42 mxgate1 postfix/postscreen[2829]: DNSBL rank 4 for [37.17.182.107]:53747 Nov x@x Nov 8 07:21:42 mxgate1 postfix/postscreen[2829]: HANGUP after 0.34 from [37.17.182.107]:53747 in tests after SMTP handshake Nov 8 07:21:42 mxgate1 postfix/postscreen[2829]: DISCONNECT [37.17.182.107........ -------------------------------	2019-11-08 18:02:46
186.4.184.218	attack	Nov 8 06:19:42 ws19vmsma01 sshd[188255]: Failed password for root from 186.4.184.218 port 53522 ssh2 ...	2019-11-08 18:20:19
142.93.225.20	attackspam	2019-11-08T10:21:20.620860abusebot.cloudsearch.cf sshd\[2823\]: Invalid user admin from 142.93.225.20 port 38409	2019-11-08 18:34:58
118.21.111.124	attack	2019-11-08T06:26:16.020726abusebot-5.cloudsearch.cf sshd\[28603\]: Invalid user robert from 118.21.111.124 port 60492	2019-11-08 18:15:46
72.48.214.68	attackspambots	Nov 5 07:17:28 olgosrv01 sshd[3483]: Invalid user sansao from 72.48.214.68 Nov 5 07:17:30 olgosrv01 sshd[3483]: Failed password for invalid user sansao from 72.48.214.68 port 53340 ssh2 Nov 5 07:17:30 olgosrv01 sshd[3483]: Received disconnect from 72.48.214.68: 11: Bye Bye [preauth] Nov 5 07:31:52 olgosrv01 sshd[4586]: Failed password for r.r from 72.48.214.68 port 35456 ssh2 Nov 5 07:31:52 olgosrv01 sshd[4586]: Received disconnect from 72.48.214.68: 11: Bye Bye [preauth] Nov 5 07:35:33 olgosrv01 sshd[4898]: Failed password for r.r from 72.48.214.68 port 47702 ssh2 Nov 5 07:35:33 olgosrv01 sshd[4898]: Received disconnect from 72.48.214.68: 11: Bye Bye [preauth] Nov 5 07:39:00 olgosrv01 sshd[5139]: Invalid user admin from 72.48.214.68 Nov 5 07:39:02 olgosrv01 sshd[5139]: Failed password for invalid user admin from 72.48.214.68 port 59922 ssh2 Nov 5 07:39:02 olgosrv01 sshd[5139]: Received disconnect from 72.48.214.68: 11: Bye Bye [preauth] Nov 5 07:42:39 olgosr........ -------------------------------	2019-11-08 18:12:25
112.215.141.101	attack	2019-11-08T07:58:58.865199abusebot-8.cloudsearch.cf sshd\[6678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.215.141.101 user=root	2019-11-08 18:25:30
164.39.207.132	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/164.39.207.132/ GB - 1H : (74) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN31655 IP : 164.39.207.132 CIDR : 164.39.128.0/17 PREFIX COUNT : 25 UNIQUE IP COUNT : 363776 ATTACKS DETECTED ASN31655 : 1H - 2 3H - 2 6H - 2 12H - 2 24H - 2 DateTime : 2019-11-08 07:25:57 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-08 18:25:11
217.107.219.154	attack	WP_xmlrpc_attack	2019-11-08 18:11:22
222.186.180.8	attackspambots	Nov 8 11:40:38 MainVPS sshd[3709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Nov 8 11:40:40 MainVPS sshd[3709]: Failed password for root from 222.186.180.8 port 49046 ssh2 Nov 8 11:40:57 MainVPS sshd[3709]: error: maximum authentication attempts exceeded for root from 222.186.180.8 port 49046 ssh2 [preauth] Nov 8 11:40:38 MainVPS sshd[3709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Nov 8 11:40:40 MainVPS sshd[3709]: Failed password for root from 222.186.180.8 port 49046 ssh2 Nov 8 11:40:57 MainVPS sshd[3709]: error: maximum authentication attempts exceeded for root from 222.186.180.8 port 49046 ssh2 [preauth] Nov 8 11:41:06 MainVPS sshd[3740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Nov 8 11:41:08 MainVPS sshd[3740]: Failed password for root from 222.186.180.8 port 52446 ssh2 ...	2019-11-08 18:41:57
194.190.129.18	attack	[portscan] Port scan	2019-11-08 18:10:12
157.245.135.74	attack	WordPress login Brute force / Web App Attack on client site.	2019-11-08 18:21:02
218.76.158.162	attack	Nov 8 07:26:14 MK-Soft-VM6 sshd[22372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.76.158.162 Nov 8 07:26:16 MK-Soft-VM6 sshd[22372]: Failed password for invalid user liuyanyun@521 from 218.76.158.162 port 37507 ssh2 ...	2019-11-08 18:14:09
89.45.17.11	attackspambots	3x Failed Password	2019-11-08 18:17:47
196.32.194.90	attackbotsspam	2019-11-08T10:15:41.094387abusebot.cloudsearch.cf sshd\[2800\]: Invalid user rafaeledu from 196.32.194.90 port 9224	2019-11-08 18:31:30

Recently Reported IPs

167.71.248.1	159.223.71.126	66.90.98.106	162.216.149.65
49.153.165.66	217.168.244.241	20.65.110.35	157.238.154.183
198.235.24.179	8.215.41.147	106.54.176.158	8.129.86.52
211.175.22.22	57.135.128.105	46.201.41.112	106.11.31.25
52.146.21.82	103.208.70.212	94.231.206.4	94.231.206.35