112.134.160.34

Basic Info

City: unknown

Region: unknown

Country: Sri Lanka

Internet Service Provider: Sri Lanka Telecom PLC

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	445/tcp [2019-12-27]1pkt	2019-12-27 15:46:40

Comments on same subnet:

IP	Type	Details	Datetime
112.134.160.174	attackspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-03 13:17:35
112.134.160.174	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2020-01-03 09:10:29
112.134.160.106	attackbots	Port 1433 Scan	2019-12-15 05:38:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 112.134.160.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 903
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;112.134.160.34.			IN	A

;; AUTHORITY SECTION:
.			443	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122700 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 27 15:46:36 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 34.160.134.112.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 34.160.134.112.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
31.3.152.178	attackbots	Unauthorized access detected from banned ip	2019-07-01 17:58:31
159.65.148.241	attackspam	Tried sshing with brute force.	2019-07-01 18:21:57
209.141.40.86	attack	DATE:2019-07-01_05:48:13, IP:209.141.40.86, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-07-01 18:02:42
200.44.50.155	attack	Jul 1 09:36:08 icinga sshd[4203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.44.50.155 Jul 1 09:36:10 icinga sshd[4203]: Failed password for invalid user guest2 from 200.44.50.155 port 39054 ssh2 ...	2019-07-01 18:23:40
107.175.68.101	attack	Automatic report - Web App Attack	2019-07-01 17:50:54
202.40.188.94	attack	Jul 1 08:26:05 our-server-hostname postfix/smtpd[653]: connect from unknown[202.40.188.94] Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul 1 08:26:10 our-server-hostname postfix/smtpd[653]: lost connection after RCPT from unknown[202.40.188.94] Jul 1 08:26:10 our-server-hostname postfix/smtpd[653]: disconnect from unknown[202.40.188.94] Jul 1 09:33:23 our-server-hostname postfix/smtpd[26654]: connect from unknown[202.40.188.94] Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul 1 09:33:32 our-server-hostname postfix/smtpd[26654]: lost connection after RCPT from unknown[202.40.188.94] Jul 1 09:33:32 our-server-hostname postfix/smtpd[26654]: disconnect from unknown[202.40.188.94] Jul 1 10:19:31 our-server-hostname postfix/smtpd[29684]: connect from unknown[202.40.188.94] Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x ........ -------------------------------	2019-07-01 17:37:49
125.141.139.23	attackspambots	Jul 1 11:11:13 lnxmail61 sshd[5515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.141.139.23 Jul 1 11:11:13 lnxmail61 sshd[5515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.141.139.23	2019-07-01 18:03:58
80.232.251.114	attackspam	\[2019-07-01 03:02:01\] NOTICE\[5148\] chan_sip.c: Registration from '"90" \' failed for '80.232.251.114:5078' - Wrong password \[2019-07-01 03:02:01\] SECURITY\[5156\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-01T03:02:01.370-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="90",SessionID="0x7f13a82dbdd8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/80.232.251.114/5078",Challenge="5264f654",ReceivedChallenge="5264f654",ReceivedHash="f2850afbd6ed734c54d98ea8b9039926" \[2019-07-01 03:02:01\] NOTICE\[5148\] chan_sip.c: Registration from '"90" \' failed for '80.232.251.114:5078' - Wrong password \[2019-07-01 03:02:01\] SECURITY\[5156\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-01T03:02:01.510-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="90",SessionID="0x7f13a8259b68",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/80.232.	2019-07-01 17:36:27
104.248.117.10	attackspambots	Jul 1 05:49:04 tuxlinux sshd[28078]: Invalid user sm from 104.248.117.10 port 55470 Jul 1 05:49:04 tuxlinux sshd[28078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.117.10 Jul 1 05:49:04 tuxlinux sshd[28078]: Invalid user sm from 104.248.117.10 port 55470 Jul 1 05:49:04 tuxlinux sshd[28078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.117.10 Jul 1 05:49:04 tuxlinux sshd[28078]: Invalid user sm from 104.248.117.10 port 55470 Jul 1 05:49:04 tuxlinux sshd[28078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.117.10 Jul 1 05:49:07 tuxlinux sshd[28078]: Failed password for invalid user sm from 104.248.117.10 port 55470 ssh2 ...	2019-07-01 17:36:48
118.71.250.227	attackbotsspam	Portscanning on different or same port(s).	2019-07-01 17:36:05
36.79.218.181	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-01 02:22:48,964 INFO [amun_request_handler] PortScan Detected on Port: 445 (36.79.218.181)	2019-07-01 17:38:11
177.67.38.131	attack	Jul 1 11:08:59 our-server-hostname postfix/smtpd[26876]: connect from unknown[177.67.38.131] Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul x@x Jul 1 11:09:26 our-server-hostname postfix/smtpd[26876]: lost connection after RCPT from unknown[177.67.38.131] Jul 1 11:09:26 our-server-hostname postfix/smtpd[26876]: disconnect from unknown[177.67.38.131] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=177.67.38.131	2019-07-01 18:17:19
116.203.82.19	attackspambots	Jul 1 18:04:17 martinbaileyphotography sshd\[21428\]: Failed password for root from 116.203.82.19 port 36724 ssh2 Jul 1 18:04:22 martinbaileyphotography sshd\[21430\]: Failed password for root from 116.203.82.19 port 39632 ssh2 Jul 1 18:04:27 martinbaileyphotography sshd\[21433\]: Failed password for root from 116.203.82.19 port 41854 ssh2 Jul 1 18:04:32 martinbaileyphotography sshd\[21435\]: Failed password for root from 116.203.82.19 port 45384 ssh2 Jul 1 18:04:37 martinbaileyphotography sshd\[21437\]: Failed password for root from 116.203.82.19 port 47888 ssh2 ...	2019-07-01 18:26:27
43.239.157.210	attack	Jul 1 07:30:56 *** sshd[17137]: Invalid user fernando from 43.239.157.210	2019-07-01 18:30:58
109.251.68.112	attack	Jul 1 09:33:17 mail sshd\[12866\]: Invalid user testuser from 109.251.68.112 Jul 1 09:33:17 mail sshd\[12866\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.251.68.112 Jul 1 09:33:18 mail sshd\[12866\]: Failed password for invalid user testuser from 109.251.68.112 port 53776 ssh2 ...	2019-07-01 18:19:18

Recently Reported IPs

121.229.0.50	144.132.166.70	123.207.229.184	103.67.152.212
47.103.3.18	201.220.130.238	113.53.16.40	183.158.138.123
178.176.167.195	121.229.1.13	185.172.110.204	42.114.191.63
175.4.250.44	114.237.134.247	58.21.66.21	34.76.139.67
14.163.136.227	121.229.49.33	116.206.8.16	103.255.7.8