134.84.1.201 - IPInfo

Basic Info

City: Minneapolis

Region: Minnesota

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
134.84.196.209	attackbotsspam	SSH login attempts.	2020-06-19 16:35:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.84.1.201
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15301
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.84.1.201.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025011700 1800 900 604800 86400

;; Query time: 35 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 17 18:29:21 CST 2025
;; MSG SIZE  rcvd: 105

Host info

201.1.84.134.in-addr.arpa domain name pointer infra06-wg009.vpn.umn.edu.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
201.1.84.134.in-addr.arpa	name = infra06-wg009.vpn.umn.edu.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.4.102.98	attack	Brute force attempt	2020-07-28 20:20:47
159.192.143.249	attackbots	(sshd) Failed SSH login from 159.192.143.249 (TH/Thailand/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 28 14:52:29 s1 sshd[4743]: Invalid user ql from 159.192.143.249 port 43410 Jul 28 14:52:31 s1 sshd[4743]: Failed password for invalid user ql from 159.192.143.249 port 43410 ssh2 Jul 28 15:04:54 s1 sshd[5588]: Invalid user lauca from 159.192.143.249 port 45068 Jul 28 15:04:56 s1 sshd[5588]: Failed password for invalid user lauca from 159.192.143.249 port 45068 ssh2 Jul 28 15:08:19 s1 sshd[6041]: Invalid user saul from 159.192.143.249 port 40176	2020-07-28 20:09:42
122.51.27.69	attackbots	Jul 28 09:01:13 lukav-desktop sshd\[1235\]: Invalid user yangwenhao from 122.51.27.69 Jul 28 09:01:13 lukav-desktop sshd\[1235\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.27.69 Jul 28 09:01:16 lukav-desktop sshd\[1235\]: Failed password for invalid user yangwenhao from 122.51.27.69 port 52352 ssh2 Jul 28 09:06:14 lukav-desktop sshd\[16468\]: Invalid user hammad from 122.51.27.69 Jul 28 09:06:14 lukav-desktop sshd\[16468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.27.69	2020-07-28 19:55:12
111.72.195.52	attackbots	Jul 28 09:06:22 srv01 postfix/smtpd\[3490\]: warning: unknown\[111.72.195.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 09:09:50 srv01 postfix/smtpd\[10705\]: warning: unknown\[111.72.195.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 09:16:47 srv01 postfix/smtpd\[3490\]: warning: unknown\[111.72.195.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 09:16:59 srv01 postfix/smtpd\[3490\]: warning: unknown\[111.72.195.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 09:17:15 srv01 postfix/smtpd\[3490\]: warning: unknown\[111.72.195.52\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-28 19:54:22
107.170.249.243	attackspambots	Repeated brute force against a port	2020-07-28 20:21:39
2.48.3.18	attackspam	Invalid user esh from 2.48.3.18 port 34764	2020-07-28 19:48:20
140.246.84.46	attackbotsspam	2020-07-28T12:50:32.667976ns386461 sshd\[15415\]: Invalid user zhijun from 140.246.84.46 port 33922 2020-07-28T12:50:32.672345ns386461 sshd\[15415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.84.46 2020-07-28T12:50:34.705260ns386461 sshd\[15415\]: Failed password for invalid user zhijun from 140.246.84.46 port 33922 ssh2 2020-07-28T12:59:06.586757ns386461 sshd\[23656\]: Invalid user yanwei from 140.246.84.46 port 38674 2020-07-28T12:59:06.591358ns386461 sshd\[23656\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.246.84.46 ...	2020-07-28 20:08:36
162.241.193.129	attack	This IOC was found in a paste: https://pastebin.com/xLKF7Z5x with the title "Emotet_Doc_out_2020-07-28_11_57.txt" by paladin316 For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-07-28 20:24:07
41.144.147.247	attack	Jul 28 13:21:20 vserver sshd\[18995\]: Invalid user christopher from 41.144.147.247Jul 28 13:21:21 vserver sshd\[18995\]: Failed password for invalid user christopher from 41.144.147.247 port 58243 ssh2Jul 28 13:25:15 vserver sshd\[19025\]: Invalid user eswar from 41.144.147.247Jul 28 13:25:17 vserver sshd\[19025\]: Failed password for invalid user eswar from 41.144.147.247 port 42204 ssh2 ...	2020-07-28 19:41:30
89.248.167.141	attackspambots	TCP (SYN) 89.248.167.141:8080 -> port 2022, len 44	2020-07-28 19:42:33
183.13.205.236	attackbots	Invalid user vitaly from 183.13.205.236 port 38430	2020-07-28 19:42:53
34.68.157.122	attackspam	xmlrpc attack	2020-07-28 20:21:24
103.236.201.88	attackbots	Bruteforce detected by fail2ban	2020-07-28 19:53:10
49.235.156.47	attackbotsspam	Invalid user wxm from 49.235.156.47 port 57382	2020-07-28 20:06:55
129.204.105.130	attackbotsspam	(sshd) Failed SSH login from 129.204.105.130 (CN/China/-): 5 in the last 3600 secs	2020-07-28 19:51:46

Recently Reported IPs

33.15.185.216	179.80.35.88	173.153.156.216	178.250.165.113
161.101.137.179	241.104.77.250	22.71.79.52	108.63.91.116
82.91.133.34	88.172.23.55	85.105.34.205	229.148.167.156
8.140.254.159	241.219.103.142	167.246.120.124	186.223.209.139
239.110.46.226	201.78.38.131	70.171.25.130	202.20.189.140