1.2.205.139 - IPInfo

Basic Info

City: Tak

Region: Tak

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.205.20	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 20-12-2019 14:50:17.	2019-12-21 04:02:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.205.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1763
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.205.139.			IN	A

;; AUTHORITY SECTION:
.			40	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 09:08:48 CST 2022
;; MSG SIZE  rcvd: 104

Host info

139.205.2.1.in-addr.arpa domain name pointer node-fbf.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.205.2.1.in-addr.arpa	name = node-fbf.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.153.84.196	attack	Unauthorized connection attempt from IP address 188.153.84.196 on Port 445(SMB)	2019-09-09 21:56:17
60.191.103.162	attackspam	Sep 9 08:52:01 rb06 sshd[26123]: Failed password for invalid user newuser from 60.191.103.162 port 56929 ssh2 Sep 9 08:52:01 rb06 sshd[26123]: Received disconnect from 60.191.103.162: 11: Bye Bye [preauth] Sep 9 09:02:47 rb06 sshd[4261]: Failed password for invalid user user from 60.191.103.162 port 62734 ssh2 Sep 9 09:02:47 rb06 sshd[4261]: Received disconnect from 60.191.103.162: 11: Bye Bye [preauth] Sep 9 09:05:30 rb06 sshd[30795]: Failed password for invalid user steam from 60.191.103.162 port 24901 ssh2 Sep 9 09:05:31 rb06 sshd[30795]: Received disconnect from 60.191.103.162: 11: Bye Bye [preauth] Sep 9 09:08:33 rb06 sshd[10105]: Failed password for invalid user developer from 60.191.103.162 port 51131 ssh2 Sep 9 09:08:34 rb06 sshd[10105]: Received disconnect from 60.191.103.162: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=60.191.103.162	2019-09-09 21:23:07
176.59.98.249	attackspambots	Unauthorized connection attempt from IP address 176.59.98.249 on Port 445(SMB)	2019-09-09 21:25:38
136.232.11.254	attackbotsspam	Unauthorized connection attempt from IP address 136.232.11.254 on Port 445(SMB)	2019-09-09 21:48:06
129.211.27.10	attackspam	Sep 9 16:35:39 yabzik sshd[26563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.27.10 Sep 9 16:35:41 yabzik sshd[26563]: Failed password for invalid user 123456 from 129.211.27.10 port 45669 ssh2 Sep 9 16:44:26 yabzik sshd[29604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.27.10	2019-09-09 21:55:44
101.231.86.36	attack	2019-09-09T11:50:52.357094abusebot-5.cloudsearch.cf sshd\[21984\]: Invalid user a from 101.231.86.36 port 60651	2019-09-09 21:58:08
187.120.72.75	attack	Automatic report - Port Scan Attack	2019-09-09 21:46:28
49.234.79.176	attackspambots	Sep 9 14:41:54 nextcloud sshd\[13744\]: Invalid user ftptest from 49.234.79.176 Sep 9 14:41:54 nextcloud sshd\[13744\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.79.176 Sep 9 14:41:56 nextcloud sshd\[13744\]: Failed password for invalid user ftptest from 49.234.79.176 port 51768 ssh2 ...	2019-09-09 21:34:30
117.93.68.152	attackspambots	2019-09-08T21:31:53.042387suse-nuc sshd[1635]: error: maximum authentication attempts exceeded for root from 117.93.68.152 port 36472 ssh2 [preauth] ...	2019-09-09 21:22:14
114.6.29.254	attackspambots	Unauthorized connection attempt from IP address 114.6.29.254 on Port 445(SMB)	2019-09-09 22:33:30
118.25.3.220	attackbotsspam	Sep 9 13:05:15 root sshd[26599]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.3.220 Sep 9 13:05:16 root sshd[26599]: Failed password for invalid user sammy from 118.25.3.220 port 60190 ssh2 Sep 9 13:11:41 root sshd[26704]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.3.220 ...	2019-09-09 22:06:53
79.143.189.205	attack	Sep 9 13:35:43 mail sshd\[32012\]: Invalid user teamspeak3 from 79.143.189.205 Sep 9 13:35:43 mail sshd\[32012\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.143.189.205 Sep 9 13:35:45 mail sshd\[32012\]: Failed password for invalid user teamspeak3 from 79.143.189.205 port 46132 ssh2 ...	2019-09-09 22:29:29
157.245.4.129	attack	Sep 9 15:58:21 minden010 sshd[8946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.4.129 Sep 9 15:58:23 minden010 sshd[8946]: Failed password for invalid user test from 157.245.4.129 port 40912 ssh2 Sep 9 16:04:20 minden010 sshd[14138]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.4.129 ...	2019-09-09 22:10:07
202.51.110.214	attackbotsspam	Sep 9 11:21:00 MK-Soft-VM7 sshd\[9518\]: Invalid user znc-admin from 202.51.110.214 port 49449 Sep 9 11:21:00 MK-Soft-VM7 sshd\[9518\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.51.110.214 Sep 9 11:21:02 MK-Soft-VM7 sshd\[9518\]: Failed password for invalid user znc-admin from 202.51.110.214 port 49449 ssh2 ...	2019-09-09 21:30:07
107.175.153.66	attackspambots	Sep 6 12:43:24 itv-usvr-01 sshd[9166]: Invalid user deploy from 107.175.153.66 Sep 6 12:43:24 itv-usvr-01 sshd[9166]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.175.153.66 Sep 6 12:43:24 itv-usvr-01 sshd[9166]: Invalid user deploy from 107.175.153.66 Sep 6 12:43:27 itv-usvr-01 sshd[9166]: Failed password for invalid user deploy from 107.175.153.66 port 38464 ssh2 Sep 6 12:47:11 itv-usvr-01 sshd[9317]: Invalid user redmine from 107.175.153.66	2019-09-09 21:33:53

Recently Reported IPs

1.2.205.137	1.2.205.14	1.2.205.143	1.2.205.144
1.2.205.155	1.2.205.159	1.2.205.17	1.2.205.174
1.2.205.176	1.2.205.183	1.2.205.186	1.2.205.188
1.2.205.190	1.2.205.192	1.2.205.195	1.2.205.196
1.2.205.198	1.2.205.201	1.2.205.203	1.2.205.208