122.155.6.206 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: CAT Telecom Public Company Ltd

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jan 2 09:48:24 relay postfix/smtpd\[25948\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 2 09:48:31 relay postfix/smtpd\[25949\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 2 09:48:42 relay postfix/smtpd\[25769\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 2 09:49:07 relay postfix/smtpd\[25769\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 2 09:49:14 relay postfix/smtpd\[25948\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-02 18:30:57
attack	Jan 1 17:12:52 relay postfix/smtpd\[20967\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 1 17:12:59 relay postfix/smtpd\[17560\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 1 17:13:10 relay postfix/smtpd\[18590\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 1 17:13:38 relay postfix/smtpd\[22067\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 1 17:13:45 relay postfix/smtpd\[17560\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-02 04:38:06

Type

Details

Datetime

attack

Jan  2 09:48:24 relay postfix/smtpd\[25948\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan  2 09:48:31 relay postfix/smtpd\[25949\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan  2 09:48:42 relay postfix/smtpd\[25769\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan  2 09:49:07 relay postfix/smtpd\[25769\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan  2 09:49:14 relay postfix/smtpd\[25948\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...

2020-01-02 18:30:57

attack

Jan  1 17:12:52 relay postfix/smtpd\[20967\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan  1 17:12:59 relay postfix/smtpd\[17560\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan  1 17:13:10 relay postfix/smtpd\[18590\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan  1 17:13:38 relay postfix/smtpd\[22067\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
Jan  1 17:13:45 relay postfix/smtpd\[17560\]: warning: unknown\[122.155.6.206\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6
...

2020-01-02 04:38:06

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 122.155.6.206
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44623
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;122.155.6.206.			IN	A

;; AUTHORITY SECTION:
.			427	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010102 1800 900 604800 86400

;; Query time: 521 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 02 04:38:03 CST 2020
;; MSG SIZE  rcvd: 117

Host info

206.6.155.122.in-addr.arpa domain name pointer m06.serverfleet.net.
206.6.155.122.in-addr.arpa domain name pointer mail1.serverfleet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
206.6.155.122.in-addr.arpa	name = mail1.serverfleet.net.
206.6.155.122.in-addr.arpa	name = m06.serverfleet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.162.108.72	attack	Unauthorized connection attempt from IP address 125.162.108.72 on Port 445(SMB)	2020-06-08 04:07:26
222.186.3.249	attackbotsspam	Jun 7 21:56:59 OPSO sshd\[8057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.3.249 user=root Jun 7 21:57:02 OPSO sshd\[8057\]: Failed password for root from 222.186.3.249 port 55331 ssh2 Jun 7 21:57:04 OPSO sshd\[8057\]: Failed password for root from 222.186.3.249 port 55331 ssh2 Jun 7 21:57:06 OPSO sshd\[8057\]: Failed password for root from 222.186.3.249 port 55331 ssh2 Jun 7 22:00:36 OPSO sshd\[8498\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.3.249 user=root	2020-06-08 04:05:52
116.209.25.241	attack	TCP (SYN) 116.209.25.241:54012 -> port 23, len 44	2020-06-08 04:03:27
36.71.235.126	attack	Unauthorized connection attempt from IP address 36.71.235.126 on Port 445(SMB)	2020-06-08 04:20:11
119.96.189.177	attackspambots	Jun 7 22:25:18 eventyay sshd[1573]: Failed password for root from 119.96.189.177 port 44888 ssh2 Jun 7 22:27:10 eventyay sshd[1650]: Failed password for root from 119.96.189.177 port 36274 ssh2 ...	2020-06-08 04:34:40
213.32.78.219	attack	Jun 8 01:24:29 itv-usvr-01 sshd[17282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.78.219 user=root Jun 8 01:24:31 itv-usvr-01 sshd[17282]: Failed password for root from 213.32.78.219 port 54368 ssh2 Jun 8 01:27:43 itv-usvr-01 sshd[17415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.78.219 user=root Jun 8 01:27:45 itv-usvr-01 sshd[17415]: Failed password for root from 213.32.78.219 port 57712 ssh2 Jun 8 01:30:45 itv-usvr-01 sshd[17538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.78.219 user=root Jun 8 01:30:47 itv-usvr-01 sshd[17538]: Failed password for root from 213.32.78.219 port 32826 ssh2	2020-06-08 04:28:41
185.176.27.94	attackspambots	TCP (SYN) 185.176.27.94:48985 -> port 3389, len 44	2020-06-08 04:09:25
183.82.1.45	attackbots	Jun 7 21:28:46 mintao sshd\[3820\]: Address 183.82.1.45 maps to broadband.actcorp.in, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!\ Jun 7 21:28:46 mintao sshd\[3820\]: Invalid user bncc from 183.82.1.45\	2020-06-08 04:01:32
187.120.0.22	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-08 04:17:58
107.178.12.18	attackspambots	Unauthorized connection attempt from IP address 107.178.12.18 on Port 445(SMB)	2020-06-08 04:21:27
200.66.122.126	attackbots	Jun 7 11:55:50 mail.srvfarm.net postfix/smtpd[94713]: warning: unknown[200.66.122.126]: SASL PLAIN authentication failed: Jun 7 11:55:50 mail.srvfarm.net postfix/smtpd[94713]: lost connection after AUTH from unknown[200.66.122.126] Jun 7 11:58:19 mail.srvfarm.net postfix/smtpd[99649]: warning: unknown[200.66.122.126]: SASL PLAIN authentication failed: Jun 7 11:58:20 mail.srvfarm.net postfix/smtpd[99649]: lost connection after AUTH from unknown[200.66.122.126] Jun 7 12:01:58 mail.srvfarm.net postfix/smtps/smtpd[95103]: warning: unknown[200.66.122.126]: SASL PLAIN authentication failed:	2020-06-08 04:10:17
128.199.197.161	attackbotsspam	Jun 7 14:01:28 lnxmysql61 sshd[18424]: Failed password for root from 128.199.197.161 port 36944 ssh2 Jun 7 14:01:28 lnxmysql61 sshd[18424]: Failed password for root from 128.199.197.161 port 36944 ssh2	2020-06-08 04:00:57
136.169.130.150	attackbotsspam	Unauthorized connection attempt from IP address 136.169.130.150 on Port 445(SMB)	2020-06-08 04:23:48
85.105.30.249	attackbotsspam	Unauthorized connection attempt from IP address 85.105.30.249 on Port 445(SMB)	2020-06-08 04:14:22
170.80.36.153	attackspam	DATE:2020-06-07 14:01:08, IP:170.80.36.153, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-06-08 04:18:21

Recently Reported IPs

39.46.41.26	219.10.197.62	102.129.255.51	241.142.195.206
131.157.248.48	146.176.135.86	115.72.84.151	164.178.204.249
94.214.134.8	13.124.152.67	138.130.77.89	60.82.167.206
131.207.145.150	52.91.4.133	162.193.221.235	89.205.70.253
78.134.73.214	69.222.133.156	185.238.44.212	59.3.243.180