61.134.1.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
61.134.103.166	attackspambots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-02 04:19:02
61.134.102.202	attackbots	Attempted connection to port 5555.	2020-07-19 23:52:41
61.134.103.99	attackbotsspam	trying to access non-authorized port	2020-04-11 15:35:54
61.134.103.131	attackspam	Unauthorized connection attempt detected from IP address 61.134.103.131 to port 23 [T]	2020-03-24 18:00:12
61.134.142.109	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-18 03:39:01
61.134.113.195	attackbotsspam	Brute force blocker - service: proftpd1 - aantal: 54 - Wed May 2 01:35:12 2018	2020-02-25 07:19:01
61.134.133.159	attack	5500/tcp [2019-06-21]1pkt	2019-06-21 23:31:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 61.134.1.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38778
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;61.134.1.4.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025010702 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 08 09:41:13 CST 2025
;; MSG SIZE  rcvd: 103

Host info

Host 4.1.134.61.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 4.1.134.61.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.235.242.173	attackbotsspam	Oct 11 07:27:52 localhost sshd\[22952\]: Invalid user Test@2017 from 49.235.242.173 port 43734 Oct 11 07:27:52 localhost sshd\[22952\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.242.173 Oct 11 07:27:54 localhost sshd\[22952\]: Failed password for invalid user Test@2017 from 49.235.242.173 port 43734 ssh2	2019-10-11 15:34:35
128.199.88.188	attackspambots	Oct 11 06:45:43 web8 sshd\[10707\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.88.188 user=root Oct 11 06:45:45 web8 sshd\[10707\]: Failed password for root from 128.199.88.188 port 55610 ssh2 Oct 11 06:49:36 web8 sshd\[12501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.88.188 user=root Oct 11 06:49:38 web8 sshd\[12501\]: Failed password for root from 128.199.88.188 port 46053 ssh2 Oct 11 06:53:23 web8 sshd\[14394\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.88.188 user=root	2019-10-11 15:06:35
222.186.175.155	attack	Oct 11 09:00:23 MainVPS sshd[5727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root Oct 11 09:00:26 MainVPS sshd[5727]: Failed password for root from 222.186.175.155 port 12164 ssh2 Oct 11 09:00:44 MainVPS sshd[5727]: error: maximum authentication attempts exceeded for root from 222.186.175.155 port 12164 ssh2 [preauth] Oct 11 09:00:23 MainVPS sshd[5727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root Oct 11 09:00:26 MainVPS sshd[5727]: Failed password for root from 222.186.175.155 port 12164 ssh2 Oct 11 09:00:44 MainVPS sshd[5727]: error: maximum authentication attempts exceeded for root from 222.186.175.155 port 12164 ssh2 [preauth] Oct 11 09:00:52 MainVPS sshd[5759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.155 user=root Oct 11 09:00:55 MainVPS sshd[5759]: Failed password for root from 222.186.175.155 port 25834 ss	2019-10-11 15:06:56
113.246.129.138	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/113.246.129.138/ CN - 1H : (495) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4134 IP : 113.246.129.138 CIDR : 113.240.0.0/13 PREFIX COUNT : 5430 UNIQUE IP COUNT : 106919680 WYKRYTE ATAKI Z ASN4134 : 1H - 10 3H - 32 6H - 49 12H - 105 24H - 215 DateTime : 2019-10-11 05:54:29 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-11 15:04:39
120.92.102.121	attack	2019-10-11T10:54:07.488977enmeeting.mahidol.ac.th sshd\[12802\]: User root from 120.92.102.121 not allowed because not listed in AllowUsers 2019-10-11T10:54:07.610627enmeeting.mahidol.ac.th sshd\[12802\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.92.102.121 user=root 2019-10-11T10:54:09.683129enmeeting.mahidol.ac.th sshd\[12802\]: Failed password for invalid user root from 120.92.102.121 port 33570 ssh2 ...	2019-10-11 15:14:35
138.197.163.11	attack	Oct 10 20:49:48 wbs sshd\[7343\]: Invalid user P@ss!23\$ from 138.197.163.11 Oct 10 20:49:48 wbs sshd\[7343\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.163.11 Oct 10 20:49:50 wbs sshd\[7343\]: Failed password for invalid user P@ss!23\$ from 138.197.163.11 port 37374 ssh2 Oct 10 20:53:52 wbs sshd\[7697\]: Invalid user 1234Qwer from 138.197.163.11 Oct 10 20:53:52 wbs sshd\[7697\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.163.11	2019-10-11 15:15:38
206.189.62.7	attack	Oct 11 09:09:28 jane sshd[13436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.62.7 Oct 11 09:09:30 jane sshd[13436]: Failed password for invalid user test from 206.189.62.7 port 42448 ssh2 ...	2019-10-11 15:21:37
206.189.162.87	attackbots	Oct 10 21:17:42 friendsofhawaii sshd\[8297\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.162.87 user=root Oct 10 21:17:43 friendsofhawaii sshd\[8297\]: Failed password for root from 206.189.162.87 port 39342 ssh2 Oct 10 21:21:56 friendsofhawaii sshd\[8641\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.162.87 user=root Oct 10 21:21:58 friendsofhawaii sshd\[8641\]: Failed password for root from 206.189.162.87 port 50238 ssh2 Oct 10 21:26:06 friendsofhawaii sshd\[9008\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.162.87 user=root	2019-10-11 15:39:33
5.55.165.154	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/5.55.165.154/ GR - 1H : (118) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GR NAME ASN : ASN3329 IP : 5.55.165.154 CIDR : 5.55.160.0/19 PREFIX COUNT : 167 UNIQUE IP COUNT : 788480 WYKRYTE ATAKI Z ASN3329 : 1H - 9 3H - 14 6H - 27 12H - 37 24H - 72 DateTime : 2019-10-11 05:53:54 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-11 15:24:30
142.93.110.144	attack	\[2019-10-11 03:09:00\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-11T03:09:00.066-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146462607511",SessionID="0x7fc3ad578188",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/142.93.110.144/62551",ACLName="no_extension_match" \[2019-10-11 03:09:48\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-11T03:09:48.913-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011441519470402",SessionID="0x7fc3ac10df28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/142.93.110.144/61552",ACLName="no_extension_match" \[2019-10-11 03:11:08\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-11T03:11:08.541-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146462607511",SessionID="0x7fc3ac10df28",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/142.93.110.144/61176",ACLName="no_	2019-10-11 15:22:25
5.25.199.1	attackbotsspam	Automatic report - Port Scan	2019-10-11 15:16:20
58.47.177.161	attackspam	Oct 11 10:24:59 sauna sshd[101838]: Failed password for root from 58.47.177.161 port 56107 ssh2 ...	2019-10-11 15:35:36
51.77.193.213	attackspam	Oct 11 06:55:48 MK-Soft-VM6 sshd[1045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.193.213 Oct 11 06:55:50 MK-Soft-VM6 sshd[1045]: Failed password for invalid user 123Partial from 51.77.193.213 port 42044 ssh2 ...	2019-10-11 15:34:53
112.85.42.177	attack	Oct 11 07:12:03 localhost sshd\[38041\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.177 user=root Oct 11 07:12:05 localhost sshd\[38041\]: Failed password for root from 112.85.42.177 port 27928 ssh2 Oct 11 07:12:08 localhost sshd\[38041\]: Failed password for root from 112.85.42.177 port 27928 ssh2 Oct 11 07:12:11 localhost sshd\[38041\]: Failed password for root from 112.85.42.177 port 27928 ssh2 Oct 11 07:12:13 localhost sshd\[38041\]: Failed password for root from 112.85.42.177 port 27928 ssh2 ...	2019-10-11 15:36:57
89.216.124.253	attack	Automatic report - Banned IP Access	2019-10-11 15:18:36

Recently Reported IPs

82.32.184.177	91.149.142.229	224.94.238.99	143.7.11.186
10.35.98.11	210.101.131.232	211.201.35.21	250.197.43.166
117.253.6.62	134.122.46.86	227.215.253.42	20.20.31.1
127.97.32.31	61.216.14.45	176.88.100.28	176.89.120.96
159.20.206.151	10.10.204.124	10.10.204.105	160.238.72.142