1.1.164.2 - IPInfo

Basic Info

City: Chiang Mai

Region: Chiang Mai

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.1.164.101	attackspambots	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-05-20 18:42:55
1.1.164.51	attackbots	Unauthorized connection attempt from IP address 1.1.164.51 on Port 445(SMB)	2020-01-15 20:25:01
1.1.164.50	attackspam	Chat Spam	2019-11-07 01:44:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.1.164.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22249
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.1.164.2.			IN	A

;; AUTHORITY SECTION:
.			241	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022302 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 08:54:48 CST 2022
;; MSG SIZE  rcvd: 102

Host info

2.164.1.1.in-addr.arpa domain name pointer node-742.pool-1-1.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.164.1.1.in-addr.arpa	name = node-742.pool-1-1.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.191.53	attackspam	Sep 22 22:18:45 yesfletchmain sshd\[5532\]: Invalid user master from 167.71.191.53 port 35768 Sep 22 22:18:45 yesfletchmain sshd\[5532\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.191.53 Sep 22 22:18:46 yesfletchmain sshd\[5532\]: Failed password for invalid user master from 167.71.191.53 port 35768 ssh2 Sep 22 22:22:11 yesfletchmain sshd\[5582\]: Invalid user unsubscribe from 167.71.191.53 port 49092 Sep 22 22:22:11 yesfletchmain sshd\[5582\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.191.53 ...	2019-10-14 08:10:32
88.149.149.107	attack	Automatic report - Port Scan Attack	2019-10-14 07:45:40
185.90.118.20	attackspam	10/13/2019-20:09:01.914534 185.90.118.20 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-14 08:12:44
36.36.200.181	attackspambots	Automatic report - Banned IP Access	2019-10-14 07:49:15
185.90.118.19	attackspambots	10/13/2019-19:47:35.767036 185.90.118.19 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-14 07:55:49
167.71.223.191	attack	Oct 2 22:54:32 yesfletchmain sshd\[6398\]: Invalid user vivek from 167.71.223.191 port 52938 Oct 2 22:54:32 yesfletchmain sshd\[6398\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.223.191 Oct 2 22:54:35 yesfletchmain sshd\[6398\]: Failed password for invalid user vivek from 167.71.223.191 port 52938 ssh2 Oct 2 22:58:50 yesfletchmain sshd\[6485\]: User root from 167.71.223.191 not allowed because not listed in AllowUsers Oct 2 22:58:50 yesfletchmain sshd\[6485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.223.191 user=root ...	2019-10-14 07:56:41
167.71.40.112	attack	Sep 21 15:40:03 yesfletchmain sshd\[29258\]: Invalid user deploy from 167.71.40.112 port 45248 Sep 21 15:40:03 yesfletchmain sshd\[29258\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.40.112 Sep 21 15:40:05 yesfletchmain sshd\[29258\]: Failed password for invalid user deploy from 167.71.40.112 port 45248 ssh2 Sep 21 15:44:02 yesfletchmain sshd\[29361\]: Invalid user uw from 167.71.40.112 port 58968 Sep 21 15:44:02 yesfletchmain sshd\[29361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.40.112 ...	2019-10-14 07:53:24
167.71.43.127	attackbots	Sep 16 14:07:52 yesfletchmain sshd\[13843\]: Invalid user deadlysw from 167.71.43.127 port 60340 Sep 16 14:07:52 yesfletchmain sshd\[13843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.43.127 Sep 16 14:07:55 yesfletchmain sshd\[13843\]: Failed password for invalid user deadlysw from 167.71.43.127 port 60340 ssh2 Sep 16 14:11:26 yesfletchmain sshd\[14029\]: Invalid user nagios from 167.71.43.127 port 45508 Sep 16 14:11:26 yesfletchmain sshd\[14029\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.43.127 ...	2019-10-14 07:51:49
178.128.215.16	attack	2019-10-13T23:32:25.836696abusebot-3.cloudsearch.cf sshd\[16229\]: Invalid user ABC123 from 178.128.215.16 port 39036	2019-10-14 07:53:01
61.133.232.249	attack	2019-10-13T22:27:29.773142abusebot-5.cloudsearch.cf sshd\[12750\]: Invalid user solr from 61.133.232.249 port 26716	2019-10-14 08:00:56
167.71.167.253	attack	Aug 7 10:46:12 yesfletchmain sshd\[366\]: Invalid user abby from 167.71.167.253 port 53626 Aug 7 10:46:12 yesfletchmain sshd\[366\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.167.253 Aug 7 10:46:14 yesfletchmain sshd\[366\]: Failed password for invalid user abby from 167.71.167.253 port 53626 ssh2 Aug 7 10:53:24 yesfletchmain sshd\[474\]: User root from 167.71.167.253 not allowed because not listed in AllowUsers Aug 7 10:53:24 yesfletchmain sshd\[474\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.167.253 user=root ...	2019-10-14 08:11:38
167.71.199.22	attackbotsspam	Sep 27 08:11:31 yesfletchmain sshd\[24108\]: Invalid user demo from 167.71.199.22 port 40568 Sep 27 08:11:31 yesfletchmain sshd\[24108\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.199.22 Sep 27 08:11:34 yesfletchmain sshd\[24108\]: Failed password for invalid user demo from 167.71.199.22 port 40568 ssh2 Sep 27 08:16:07 yesfletchmain sshd\[24387\]: Invalid user ll from 167.71.199.22 port 54184 Sep 27 08:16:07 yesfletchmain sshd\[24387\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.199.22 ...	2019-10-14 08:07:31
40.73.76.102	attackbots	Oct 14 01:45:13 localhost sshd\[15053\]: Invalid user Automation from 40.73.76.102 port 43390 Oct 14 01:45:13 localhost sshd\[15053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.76.102 Oct 14 01:45:15 localhost sshd\[15053\]: Failed password for invalid user Automation from 40.73.76.102 port 43390 ssh2	2019-10-14 07:48:44
5.39.163.224	attack	Oct 13 23:15:51 root sshd[29272]: Failed password for root from 5.39.163.224 port 38600 ssh2 Oct 13 23:19:43 root sshd[29304]: Failed password for root from 5.39.163.224 port 49172 ssh2 Oct 13 23:23:39 root sshd[29359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.163.224 ...	2019-10-14 07:49:40
51.75.202.120	attackspam	Oct 14 01:24:37 bouncer sshd\[5986\]: Invalid user 2019Admin from 51.75.202.120 port 33164 Oct 14 01:24:37 bouncer sshd\[5986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.202.120 Oct 14 01:24:40 bouncer sshd\[5986\]: Failed password for invalid user 2019Admin from 51.75.202.120 port 33164 ssh2 ...	2019-10-14 07:48:10

Recently Reported IPs

1.1.164.196	1.1.164.214	1.1.164.217	1.1.164.219
1.1.164.221	1.1.164.222	1.1.164.226	1.1.164.230
1.1.164.232	1.1.164.234	1.1.164.237	193.116.217.74
1.1.164.239	1.1.164.24	10.107.140.10	1.1.164.246
1.1.164.251	1.1.164.254	1.1.164.31	1.1.164.32