1.4.199.142 - IPInfo

Basic Info

City: Bangkok

Region: Bangkok

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.4.199.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19602
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.4.199.142.			IN	A

;; AUTHORITY SECTION:
.			569	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022092501 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 26 03:55:09 CST 2022
;; MSG SIZE  rcvd: 104

Host info

142.199.4.1.in-addr.arpa domain name pointer node-e4u.pool-1-4.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.199.4.1.in-addr.arpa	name = node-e4u.pool-1-4.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.99.231.118	attack	fail2ban	2020-04-06 01:02:22
96.70.41.109	attack	2020-04-05T15:24:33.266117homeassistant sshd[26731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.70.41.109 user=root 2020-04-05T15:24:35.497391homeassistant sshd[26731]: Failed password for root from 96.70.41.109 port 53650 ssh2 ...	2020-04-06 01:10:45
45.143.220.107	attack	Triggered: repeated knocking on closed ports.	2020-04-06 00:58:46
123.16.134.157	attack	2020-04-05 14:25:20 plain_virtual_exim authenticator failed for ([127.0.0.1]) [123.16.134.157]: 535 Incorrect authentication data ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=123.16.134.157	2020-04-06 00:59:05
106.12.26.167	attack	Apr 5 07:39:34 server1 sshd\[27200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.26.167 user=root Apr 5 07:39:37 server1 sshd\[27200\]: Failed password for root from 106.12.26.167 port 45892 ssh2 Apr 5 07:44:10 server1 sshd\[28443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.26.167 user=root Apr 5 07:44:12 server1 sshd\[28443\]: Failed password for root from 106.12.26.167 port 39764 ssh2 Apr 5 07:49:05 server1 sshd\[29754\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.26.167 user=root ...	2020-04-06 01:07:05
54.39.147.2	attack	(sshd) Failed SSH login from 54.39.147.2 (CA/Canada/2.ip-54-39-147.net): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 5 17:06:44 ubnt-55d23 sshd[3255]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.147.2 user=root Apr 5 17:06:45 ubnt-55d23 sshd[3255]: Failed password for root from 54.39.147.2 port 50555 ssh2	2020-04-06 01:34:57
119.207.126.86	attack	frenzy	2020-04-06 01:29:08
163.172.230.4	attackspambots	[2020-04-05 13:28:01] NOTICE[12114][C-00001bf0] chan_sip.c: Call from '' (163.172.230.4:60178) to extension '000000000000011972592277524' rejected because extension not found in context 'public'. [2020-04-05 13:28:01] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-05T13:28:01.579-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="000000000000011972592277524",SessionID="0x7f020c088288",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.230.4/60178",ACLName="no_extension_match" [2020-04-05 13:31:53] NOTICE[12114][C-00001bf3] chan_sip.c: Call from '' (163.172.230.4:55480) to extension '0000000000000011972592277524' rejected because extension not found in context 'public'. [2020-04-05 13:31:53] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-05T13:31:53.587-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0000000000000011972592277524",SessionID="0x7f020c04b958",LocalAddress= ...	2020-04-06 01:37:52
14.227.131.160	attack	Lines containing failures of 14.227.131.160 Apr 5 14:33:42 shared04 sshd[9501]: Invalid user admin from 14.227.131.160 port 57365 Apr 5 14:33:42 shared04 sshd[9501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.227.131.160 Apr 5 14:33:44 shared04 sshd[9501]: Failed password for invalid user admin from 14.227.131.160 port 57365 ssh2 Apr 5 14:33:45 shared04 sshd[9501]: Connection closed by invalid user admin 14.227.131.160 port 57365 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.227.131.160	2020-04-06 01:43:08
107.173.140.167	attackspam	Apr 3 11:46:30 host2 sshd[10087]: reveeclipse mapping checking getaddrinfo for 107-173-140-167-host.colocrossing.com [107.173.140.167] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 3 11:46:30 host2 sshd[10087]: Invalid user weizeding from 107.173.140.167 Apr 3 11:46:30 host2 sshd[10087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.140.167 Apr 3 11:46:31 host2 sshd[10087]: Failed password for invalid user weizeding from 107.173.140.167 port 33954 ssh2 Apr 3 11:46:32 host2 sshd[10087]: Received disconnect from 107.173.140.167: 11: Bye Bye [preauth] Apr 3 11:52:26 host2 sshd[30610]: reveeclipse mapping checking getaddrinfo for 107-173-140-167-host.colocrossing.com [107.173.140.167] failed - POSSIBLE BREAK-IN ATTEMPT! Apr 3 11:52:26 host2 sshd[30610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.140.167 user=r.r Apr 3 11:52:28 host2 sshd[30610]: Failed password for r.r........ -------------------------------	2020-04-06 01:09:02
192.241.211.94	attack	Apr 5 17:30:41 host5 sshd[2204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.211.94 user=root Apr 5 17:30:42 host5 sshd[2204]: Failed password for root from 192.241.211.94 port 53986 ssh2 ...	2020-04-06 01:34:33
201.55.199.143	attack	$f2bV_matches	2020-04-06 01:35:52
103.74.239.110	attack	Apr 5 14:37:54 game-panel sshd[3303]: Failed password for root from 103.74.239.110 port 44582 ssh2 Apr 5 14:41:31 game-panel sshd[3565]: Failed password for root from 103.74.239.110 port 34832 ssh2	2020-04-06 01:11:39
49.88.112.67	attack	Apr 5 18:58:23 v22018053744266470 sshd[16593]: Failed password for root from 49.88.112.67 port 27223 ssh2 Apr 5 19:04:07 v22018053744266470 sshd[16972]: Failed password for root from 49.88.112.67 port 45993 ssh2 ...	2020-04-06 01:14:26
128.199.44.102	attackspambots	(sshd) Failed SSH login from 128.199.44.102 (NL/Netherlands/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 5 18:03:31 s1 sshd[26606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.44.102 user=root Apr 5 18:03:33 s1 sshd[26606]: Failed password for root from 128.199.44.102 port 37616 ssh2 Apr 5 18:15:33 s1 sshd[26908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.44.102 user=root Apr 5 18:15:34 s1 sshd[26908]: Failed password for root from 128.199.44.102 port 35541 ssh2 Apr 5 18:19:59 s1 sshd[27059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.44.102 user=root	2020-04-06 01:26:29

Recently Reported IPs

1.4.202.158	1.4.181.181	1.4.17.87	1.4.160.250
1.4.16.205	1.4.156.195	1.39.253.115	1.39.47.113
1.39.30.126	1.39.41.25	1.39.243.149	1.4.102.118
1.39.221.27	1.39.66.207	1.39.250.21	1.4.123.200
1.39.29.119	1.39.248.87	1.39.223.63	1.39.42.93