1.2.165.138 - IPInfo

Basic Info

City: Kamphaeng Phet

Region: Kamphaeng Phet

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.165.135	attackspambots	2020-07-01T01:24:55.516782suse-nuc sshd[22101]: Invalid user sniffer from 1.2.165.135 port 59723 ...	2020-09-27 05:21:50
1.2.165.135	attack	2020-07-01T01:24:55.516782suse-nuc sshd[22101]: Invalid user sniffer from 1.2.165.135 port 59723 ...	2020-09-26 21:36:34
1.2.165.135	attackspam	2020-07-01T01:24:55.516782suse-nuc sshd[22101]: Invalid user sniffer from 1.2.165.135 port 59723 ...	2020-09-26 13:18:17
1.2.165.180	attack	Unauthorized connection attempt from IP address 1.2.165.180 on Port 445(SMB)	2019-08-14 12:00:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.165.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 434
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.165.138.			IN	A

;; AUTHORITY SECTION:
.			310	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040201 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 03 03:56:22 CST 2022
;; MSG SIZE  rcvd: 104

Host info

138.165.2.1.in-addr.arpa domain name pointer node-7ey.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.165.2.1.in-addr.arpa	name = node-7ey.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
149.202.115.157	attack	Dec 4 23:48:37 sachi sshd\[8042\]: Invalid user schweitzer from 149.202.115.157 Dec 4 23:48:37 sachi sshd\[8042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip157.ip-149-202-115.eu Dec 4 23:48:39 sachi sshd\[8042\]: Failed password for invalid user schweitzer from 149.202.115.157 port 52000 ssh2 Dec 4 23:54:02 sachi sshd\[8603\]: Invalid user billon from 149.202.115.157 Dec 4 23:54:02 sachi sshd\[8603\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip157.ip-149-202-115.eu	2019-12-05 19:22:18
159.203.65.177	attack	ZTE Router Exploit Scanner	2019-12-05 19:07:42
164.132.42.32	attackbotsspam	2019-12-05T11:33:35.615518vps751288.ovh.net sshd\[6645\]: Invalid user sigg from 164.132.42.32 port 41690 2019-12-05T11:33:35.623734vps751288.ovh.net sshd\[6645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.ip-164-132-42.eu 2019-12-05T11:33:36.924627vps751288.ovh.net sshd\[6645\]: Failed password for invalid user sigg from 164.132.42.32 port 41690 ssh2 2019-12-05T11:39:15.666780vps751288.ovh.net sshd\[6703\]: Invalid user T3ST@123 from 164.132.42.32 port 51688 2019-12-05T11:39:15.676853vps751288.ovh.net sshd\[6703\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=32.ip-164-132-42.eu	2019-12-05 18:58:21
152.32.102.255	attack	firewall-block, port(s): 23/tcp	2019-12-05 19:34:28
37.187.17.45	attackbots	Dec 5 12:01:27 MK-Soft-Root2 sshd[13150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.17.45 Dec 5 12:01:29 MK-Soft-Root2 sshd[13150]: Failed password for invalid user nancy from 37.187.17.45 port 51904 ssh2 ...	2019-12-05 19:33:31
157.55.39.173	attackbots	$f2bV_matches	2019-12-05 19:38:36
82.77.152.107	attackbots	Automatic report - Port Scan Attack	2019-12-05 19:40:49
141.98.100.85	attackspambots	TCP Port Scanning	2019-12-05 19:41:06
91.23.33.175	attack	Dec 5 11:24:00 eventyay sshd[30061]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.23.33.175 Dec 5 11:24:02 eventyay sshd[30061]: Failed password for invalid user by from 91.23.33.175 port 43840 ssh2 Dec 5 11:30:20 eventyay sshd[30210]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.23.33.175 ...	2019-12-05 18:59:49
128.199.219.181	attack	SSH Brute Force, server-1 sshd[1046]: Failed password for invalid user Amx1234! from 128.199.219.181 port 44429 ssh2	2019-12-05 19:37:46
182.186.40.129	attackbotsspam	SQL APT attack Reported by AND credit to nic@wlink.biz from IP 118.69.71.82	2019-12-05 19:23:38
37.228.117.143	attackbots	Invalid user nfs from 37.228.117.143 port 59768 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.228.117.143 Failed password for invalid user nfs from 37.228.117.143 port 59768 ssh2 Invalid user asik from 37.228.117.143 port 37382 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.228.117.143	2019-12-05 19:32:51
185.65.244.172	attackbotsspam	2019-12-05T04:14:27.698388ns547587 sshd\[8141\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-32391.vps-default-host.net user=root 2019-12-05T04:14:29.844147ns547587 sshd\[8141\]: Failed password for root from 185.65.244.172 port 50402 ssh2 2019-12-05T04:22:38.544892ns547587 sshd\[11260\]: Invalid user server from 185.65.244.172 port 33102 2019-12-05T04:22:38.550702ns547587 sshd\[11260\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps-32391.vps-default-host.net ...	2019-12-05 19:38:14
49.88.112.75	attackspam	Dec 5 16:30:37 gw1 sshd[11052]: Failed password for root from 49.88.112.75 port 45723 ssh2 ...	2019-12-05 19:35:50
195.58.123.109	attackbots	Dec 5 16:08:12 gw1 sshd[9938]: Failed password for root from 195.58.123.109 port 40788 ssh2 ...	2019-12-05 19:20:41

Recently Reported IPs

1.2.164.2	1.2.170.88	1.36.163.22	1.36.186.43
1.36.195.244	1.36.197.120	1.36.223.145	1.36.223.146
1.36.223.236	1.36.226.177	1.36.41.24	1.36.47.116
1.36.57.165	54.172.53.106	1.37.81.249	1.38.201.35
154.160.27.196	1.4.147.195	1.4.147.73	1.4.151.95