171.6.138.54 - IPInfo

Basic Info

City: Nonthaburi

Region: Changwat Nonthaburi

Country: Thailand

Internet Service Provider: Triple T Internet PCL

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Mail/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-10-29 02:21:17

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 171.6.138.54
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29957
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;171.6.138.54.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102801 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 29 02:21:14 CST 2019
;; MSG SIZE  rcvd: 116

Host info

54.138.6.171.in-addr.arpa domain name pointer mx-ll-171.6.138-54.dynamic.3bb.co.th.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
54.138.6.171.in-addr.arpa	name = mx-ll-171.6.138-54.dynamic.3bb.co.th.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.189.178.171	attack	Unauthorized connection attempt detected from IP address 206.189.178.171 to port 2220 [J]	2020-02-01 13:56:38
112.30.117.22	attack	Feb 1 06:24:30 legacy sshd[2729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.30.117.22 Feb 1 06:24:33 legacy sshd[2729]: Failed password for invalid user 123qwe from 112.30.117.22 port 33081 ssh2 Feb 1 06:28:10 legacy sshd[3035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.30.117.22 ...	2020-02-01 13:58:36
49.235.81.235	attackspambots	Unauthorized connection attempt detected from IP address 49.235.81.235 to port 2220 [J]	2020-02-01 13:57:31
52.148.80.180	attack	Feb 1 05:31:56 l02a sshd[23225]: Invalid user testdev from 52.148.80.180 Feb 1 05:31:56 l02a sshd[23225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.148.80.180 Feb 1 05:31:56 l02a sshd[23225]: Invalid user testdev from 52.148.80.180 Feb 1 05:31:57 l02a sshd[23225]: Failed password for invalid user testdev from 52.148.80.180 port 47830 ssh2	2020-02-01 13:50:03
112.220.85.26	attackspam	Unauthorized connection attempt detected from IP address 112.220.85.26 to port 2220 [J]	2020-02-01 13:35:59
159.89.169.137	attackbots	Jan 31 19:11:11 hpm sshd\[8766\]: Invalid user nagios from 159.89.169.137 Jan 31 19:11:11 hpm sshd\[8766\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.137 Jan 31 19:11:13 hpm sshd\[8766\]: Failed password for invalid user nagios from 159.89.169.137 port 47988 ssh2 Jan 31 19:14:29 hpm sshd\[9676\]: Invalid user tom from 159.89.169.137 Jan 31 19:14:29 hpm sshd\[9676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.169.137	2020-02-01 13:31:04
34.251.176.199	attackspambots	Looking for resource vulnerabilities	2020-02-01 13:55:56
18.130.2.242	attack	W 31101,/var/log/nginx/access.log,-,-	2020-02-01 14:02:59
185.151.242.89	attackbots	firewall-block, port(s): 3396/tcp, 63389/tcp	2020-02-01 13:40:03
52.117.4.29	attackspambots	Brute force VPN server	2020-02-01 13:38:31
190.85.171.126	attack	Port 22 Scan, PTR: None	2020-02-01 13:41:34
104.244.79.181	attack	Unauthorized connection attempt detected from IP address 104.244.79.181 to port 22 [J]	2020-02-01 13:47:30
103.40.235.215	attackbots	Jan 31 19:11:43 auw2 sshd\[24972\]: Invalid user ark from 103.40.235.215 Jan 31 19:11:43 auw2 sshd\[24972\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.40.235.215 Jan 31 19:11:46 auw2 sshd\[24972\]: Failed password for invalid user ark from 103.40.235.215 port 50634 ssh2 Jan 31 19:15:54 auw2 sshd\[25908\]: Invalid user teamspeak from 103.40.235.215 Jan 31 19:15:54 auw2 sshd\[25908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.40.235.215	2020-02-01 13:18:24
88.132.66.26	attack	Unauthorized connection attempt detected from IP address 88.132.66.26 to port 2220 [J]	2020-02-01 13:20:51
103.143.173.25	attackspam	Brute-force general attack.	2020-02-01 13:26:23

Recently Reported IPs

65.31.199.233	36.91.178.106	12.16.105.131	86.158.17.237
171.6.136.254	92.206.99.226	35.79.54.125	207.160.229.19
67.161.181.98	101.54.72.79	42.118.71.117	174.209.67.248
87.112.44.238	113.80.131.226	187.244.243.19	171.49.129.37
113.247.67.49	103.91.79.156	115.101.80.152	170.94.57.248