1.2.139.178 - IPInfo

Basic Info

City: Ban Phan Don

Region: Udon Thani

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.139.97	attackspambots	Icarus honeypot on github	2020-07-16 17:34:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.139.178
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60095
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.139.178.			IN	A

;; AUTHORITY SECTION:
.			104	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 08:41:06 CST 2022
;; MSG SIZE  rcvd: 104

Host info

178.139.2.1.in-addr.arpa domain name pointer node-2b6.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
178.139.2.1.in-addr.arpa	name = node-2b6.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
67.205.135.188	attack	Aug 30 03:36:38 dedicated sshd[20459]: Invalid user facturacion from 67.205.135.188 port 34146	2019-08-30 09:39:05
181.28.94.205	attackbotsspam	2019-08-30T02:48:52.430869 sshd[6213]: Invalid user compras from 181.28.94.205 port 39722 2019-08-30T02:48:52.446076 sshd[6213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.28.94.205 2019-08-30T02:48:52.430869 sshd[6213]: Invalid user compras from 181.28.94.205 port 39722 2019-08-30T02:48:54.583033 sshd[6213]: Failed password for invalid user compras from 181.28.94.205 port 39722 ssh2 2019-08-30T02:54:11.610601 sshd[6254]: Invalid user midnight from 181.28.94.205 port 54836 ...	2019-08-30 09:15:22
211.64.67.48	attack	web-1 [ssh] SSH Attack	2019-08-30 09:16:49
117.50.92.160	attackbotsspam	Aug 30 03:33:39 ns3110291 sshd\[25429\]: Invalid user utnet from 117.50.92.160 Aug 30 03:33:39 ns3110291 sshd\[25429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.92.160 Aug 30 03:33:41 ns3110291 sshd\[25429\]: Failed password for invalid user utnet from 117.50.92.160 port 55200 ssh2 Aug 30 03:36:30 ns3110291 sshd\[25693\]: Invalid user user from 117.50.92.160 Aug 30 03:36:30 ns3110291 sshd\[25693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.92.160 ...	2019-08-30 09:39:56
114.237.188.66	attackspambots	Aug 30 00:24:34 elektron postfix/smtpd\[5216\]: NOQUEUE: reject: RCPT from unknown\[114.237.188.66\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.188.66\]\; from=\ to=\ proto=ESMTP helo=\ Aug 30 00:25:02 elektron postfix/smtpd\[5216\]: NOQUEUE: reject: RCPT from unknown\[114.237.188.66\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.188.66\]\; from=\ to=\ proto=ESMTP helo=\ Aug 30 00:25:38 elektron postfix/smtpd\[4644\]: NOQUEUE: reject: RCPT from unknown\[114.237.188.66\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.237.188.66\]\; from=\ to=\ proto=ESMTP helo=\	2019-08-30 09:49:26
222.128.11.26	attack	Aug 30 03:07:57 bouncer sshd\[28217\]: Invalid user test from 222.128.11.26 port 50582 Aug 30 03:07:57 bouncer sshd\[28217\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.128.11.26 Aug 30 03:07:59 bouncer sshd\[28217\]: Failed password for invalid user test from 222.128.11.26 port 50582 ssh2 ...	2019-08-30 09:09:01
146.148.107.113	attackspam	Aug 30 02:30:59 nextcloud sshd\[16201\]: Invalid user visitation from 146.148.107.113 Aug 30 02:30:59 nextcloud sshd\[16201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.148.107.113 Aug 30 02:31:01 nextcloud sshd\[16201\]: Failed password for invalid user visitation from 146.148.107.113 port 46732 ssh2 ...	2019-08-30 09:13:34
65.48.129.185	attackspam	Automatic report - Port Scan Attack	2019-08-30 09:20:53
189.252.170.66	attackspambots	scan z	2019-08-30 09:19:50
123.214.186.186	attack	2019-08-21T13:59:25.665780wiz-ks3 sshd[17728]: Invalid user cola from 123.214.186.186 port 44726 2019-08-21T13:59:25.667898wiz-ks3 sshd[17728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.214.186.186 2019-08-21T13:59:25.665780wiz-ks3 sshd[17728]: Invalid user cola from 123.214.186.186 port 44726 2019-08-21T13:59:27.157231wiz-ks3 sshd[17728]: Failed password for invalid user cola from 123.214.186.186 port 44726 ssh2 2019-08-21T14:06:38.168820wiz-ks3 sshd[17764]: Invalid user terry from 123.214.186.186 port 60036 2019-08-21T14:06:38.170880wiz-ks3 sshd[17764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.214.186.186 2019-08-21T14:06:38.168820wiz-ks3 sshd[17764]: Invalid user terry from 123.214.186.186 port 60036 2019-08-21T14:06:40.106385wiz-ks3 sshd[17764]: Failed password for invalid user terry from 123.214.186.186 port 60036 ssh2 2019-08-21T14:13:41.490365wiz-ks3 sshd[17795]: Invalid user art1 from 123.214.186.186 p	2019-08-30 09:51:53
185.234.218.238	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-30 00:22:53,201 INFO [amun_request_handler] PortScan Detected on Port: 25 (185.234.218.238)	2019-08-30 09:33:16
46.101.43.224	attackbotsspam	2019-08-29T23:38:54.981355abusebot-6.cloudsearch.cf sshd\[11321\]: Invalid user 123456 from 46.101.43.224 port 56561	2019-08-30 09:49:55
139.99.219.208	attack	Aug 30 02:07:58 debian sshd\[28921\]: Invalid user website from 139.99.219.208 port 36189 Aug 30 02:07:58 debian sshd\[28921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.99.219.208 ...	2019-08-30 09:17:22
141.98.9.67	attackspam	Aug 30 03:46:00 relay postfix/smtpd\[20335\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 03:46:31 relay postfix/smtpd\[18267\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 03:46:43 relay postfix/smtpd\[23825\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 03:47:14 relay postfix/smtpd\[17507\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 30 03:47:26 relay postfix/smtpd\[23828\]: warning: unknown\[141.98.9.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-30 09:50:37
106.248.41.245	attack	Aug 30 03:34:59 MK-Soft-Root2 sshd\[26291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.41.245 user=root Aug 30 03:35:01 MK-Soft-Root2 sshd\[26291\]: Failed password for root from 106.248.41.245 port 49170 ssh2 Aug 30 03:39:36 MK-Soft-Root2 sshd\[26905\]: Invalid user user from 106.248.41.245 port 37516 Aug 30 03:39:36 MK-Soft-Root2 sshd\[26905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.248.41.245 ...	2019-08-30 09:45:31

Recently Reported IPs

1.2.139.16	1.2.139.203	1.2.139.204	196.169.139.119
1.2.139.233	1.2.139.51	247.181.212.221	1.2.139.54
1.2.139.69	1.2.140.104	1.2.140.109	12.196.142.123
1.2.140.126	1.2.140.136	1.2.140.174	1.2.140.183
1.2.140.213	1.2.140.214	1.2.140.220	1.2.140.222