1.2.165.138 - IPInfo

Basic Info

City: Kamphaeng Phet

Region: Kamphaeng Phet

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.165.135	attackspambots	2020-07-01T01:24:55.516782suse-nuc sshd[22101]: Invalid user sniffer from 1.2.165.135 port 59723 ...	2020-09-27 05:21:50
1.2.165.135	attack	2020-07-01T01:24:55.516782suse-nuc sshd[22101]: Invalid user sniffer from 1.2.165.135 port 59723 ...	2020-09-26 21:36:34
1.2.165.135	attackspam	2020-07-01T01:24:55.516782suse-nuc sshd[22101]: Invalid user sniffer from 1.2.165.135 port 59723 ...	2020-09-26 13:18:17
1.2.165.180	attack	Unauthorized connection attempt from IP address 1.2.165.180 on Port 445(SMB)	2019-08-14 12:00:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.165.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 434
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.165.138.			IN	A

;; AUTHORITY SECTION:
.			310	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040201 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 03 03:56:22 CST 2022
;; MSG SIZE  rcvd: 104

Host info

138.165.2.1.in-addr.arpa domain name pointer node-7ey.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.165.2.1.in-addr.arpa	name = node-7ey.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
92.50.151.170	attackbots	Unauthorized connection attempt detected from IP address 92.50.151.170 to port 2220 [J]	2020-01-16 21:04:08
202.43.146.107	attackspambots	5x Failed Password	2020-01-16 21:07:24
159.203.201.53	attack	" "	2020-01-16 20:58:07
85.27.184.233	attackspambots	Jan 16 14:05:12 srv01 sshd[5590]: Invalid user pi from 85.27.184.233 port 50222 Jan 16 14:05:13 srv01 sshd[5592]: Invalid user pi from 85.27.184.233 port 50228 Jan 16 14:05:12 srv01 sshd[5590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.27.184.233 Jan 16 14:05:12 srv01 sshd[5590]: Invalid user pi from 85.27.184.233 port 50222 Jan 16 14:05:15 srv01 sshd[5590]: Failed password for invalid user pi from 85.27.184.233 port 50222 ssh2 Jan 16 14:05:12 srv01 sshd[5590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.27.184.233 Jan 16 14:05:12 srv01 sshd[5590]: Invalid user pi from 85.27.184.233 port 50222 Jan 16 14:05:15 srv01 sshd[5590]: Failed password for invalid user pi from 85.27.184.233 port 50222 ssh2 Jan 16 14:05:13 srv01 sshd[5592]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.27.184.233 Jan 16 14:05:13 srv01 sshd[5592]: Invalid user pi from 85.27.1 ...	2020-01-16 21:26:11
158.69.197.113	attackbotsspam	Nov 25 06:07:40 vtv3 sshd[8242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.197.113 Nov 25 06:07:41 vtv3 sshd[8242]: Failed password for invalid user yaccob from 158.69.197.113 port 42686 ssh2 Nov 25 06:13:53 vtv3 sshd[10927]: Failed password for uucp from 158.69.197.113 port 51848 ssh2 Nov 25 06:38:09 vtv3 sshd[22861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.197.113 Nov 25 06:38:11 vtv3 sshd[22861]: Failed password for invalid user ttta from 158.69.197.113 port 60248 ssh2 Nov 25 06:44:22 vtv3 sshd[25592]: Failed password for root from 158.69.197.113 port 41180 ssh2 Nov 25 06:56:31 vtv3 sshd[31636]: Failed password for root from 158.69.197.113 port 59494 ssh2 Nov 25 07:02:38 vtv3 sshd[2134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.197.113 Nov 25 07:02:40 vtv3 sshd[2134]: Failed password for invalid user xh from 158.69.197.113 port 40414 ssh2 Nov 2	2020-01-16 21:14:00
83.167.28.131	attack	Unauthorized connection attempt detected from IP address 83.167.28.131 to port 2220 [J]	2020-01-16 21:32:20
213.32.23.58	attack	Jan 16 14:05:22 ArkNodeAT sshd\[19672\]: Invalid user marti from 213.32.23.58 Jan 16 14:05:22 ArkNodeAT sshd\[19672\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.23.58 Jan 16 14:05:24 ArkNodeAT sshd\[19672\]: Failed password for invalid user marti from 213.32.23.58 port 38230 ssh2	2020-01-16 21:09:40
82.131.209.179	attackspambots	Jan 16 07:27:33 Tower sshd[7086]: Connection from 82.131.209.179 port 47154 on 192.168.10.220 port 22 rdomain "" Jan 16 07:27:34 Tower sshd[7086]: Invalid user appuser from 82.131.209.179 port 47154 Jan 16 07:27:34 Tower sshd[7086]: error: Could not get shadow information for NOUSER Jan 16 07:27:34 Tower sshd[7086]: Failed password for invalid user appuser from 82.131.209.179 port 47154 ssh2 Jan 16 07:27:34 Tower sshd[7086]: Received disconnect from 82.131.209.179 port 47154:11: Bye Bye [preauth] Jan 16 07:27:34 Tower sshd[7086]: Disconnected from invalid user appuser 82.131.209.179 port 47154 [preauth]	2020-01-16 21:04:37
139.199.124.119	attack	Automatic report - SSH Brute-Force Attack	2020-01-16 21:21:34
188.131.179.87	attackbots	Jan 16 13:53:22 dedicated sshd[7052]: Invalid user michael from 188.131.179.87 port 28910	2020-01-16 20:56:21
147.27.41.7	attackspambots	2020-01-16T23:41:20.490589luisaranguren sshd[1606522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.27.41.7 user=root 2020-01-16T23:41:23.097161luisaranguren sshd[1606522]: Failed password for root from 147.27.41.7 port 47049 ssh2 ...	2020-01-16 21:09:06
193.56.28.151	attackspambots	Unauthorized connection attempt detected from IP address 193.56.28.151 to port 25 [J]	2020-01-16 21:18:11
128.199.75.69	attackspam	Unauthorized connection attempt detected from IP address 128.199.75.69 to port 2220 [J]	2020-01-16 21:28:10
175.174.97.35	attackbots	Unauthorised access (Jan 16) SRC=175.174.97.35 LEN=40 TTL=49 ID=25111 TCP DPT=23 WINDOW=12425 SYN	2020-01-16 21:27:22
46.182.6.77	attackbotsspam	Jan 16 13:56:22 localhost sshd\[9224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.182.6.77 user=root Jan 16 13:56:24 localhost sshd\[9224\]: Failed password for root from 46.182.6.77 port 51268 ssh2 Jan 16 14:02:03 localhost sshd\[9557\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.182.6.77 user=root Jan 16 14:02:05 localhost sshd\[9557\]: Failed password for root from 46.182.6.77 port 52376 ssh2 Jan 16 14:05:30 localhost sshd\[9787\]: Invalid user bni from 46.182.6.77 Jan 16 14:05:30 localhost sshd\[9787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.182.6.77 ...	2020-01-16 21:12:07

Recently Reported IPs

1.2.164.2	1.2.170.88	1.36.163.22	1.36.186.43
1.36.195.244	1.36.197.120	1.36.223.145	1.36.223.146
1.36.223.236	1.36.226.177	1.36.41.24	1.36.47.116
1.36.57.165	54.172.53.106	1.37.81.249	1.38.201.35
154.160.27.196	1.4.147.195	1.4.147.73	1.4.151.95