184.22.139.214

Basic Info

City: Rayong

Region: Rayong

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
184.22.139.26	attackbotsspam	Jun 2 18:17:53 HOST sshd[31965]: Address 184.22.139.26 maps to 184-22-139-0.24.myaisfibre.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 2 18:17:53 HOST sshd[31965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.22.139.26 user=r.r Jun 2 18:17:54 HOST sshd[31965]: Failed password for r.r from 184.22.139.26 port 46388 ssh2 Jun 2 18:17:55 HOST sshd[31965]: Received disconnect from 184.22.139.26: 11: Bye Bye [preauth] Jun 2 18:20:52 HOST sshd[32065]: Address 184.22.139.26 maps to 184-22-139-0.24.myaisfibre.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Jun 2 18:20:52 HOST sshd[32065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.22.139.26 user=r.r Jun 2 18:20:55 HOST sshd[32065]: Failed password for r.r from 184.22.139.26 port 27594 ssh2 Jun 2 18:20:55 HOST sshd[32065]: Received disconnect from 184.22.139.26: 11........ -------------------------------	2020-06-04 22:05:23
184.22.139.8	attackbots	445/tcp [2019-07-30]1pkt	2019-07-30 23:38:10

Type

Details

Datetime

184.22.139.26

attackbotsspam

Jun  2 18:17:53 HOST sshd[31965]: Address 184.22.139.26 maps to 184-22-139-0.24.myaisfibre.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Jun  2 18:17:53 HOST sshd[31965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.22.139.26  user=r.r
Jun  2 18:17:54 HOST sshd[31965]: Failed password for r.r from 184.22.139.26 port 46388 ssh2
Jun  2 18:17:55 HOST sshd[31965]: Received disconnect from 184.22.139.26: 11: Bye Bye [preauth]
Jun  2 18:20:52 HOST sshd[32065]: Address 184.22.139.26 maps to 184-22-139-0.24.myaisfibre.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT!
Jun  2 18:20:52 HOST sshd[32065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=184.22.139.26  user=r.r
Jun  2 18:20:55 HOST sshd[32065]: Failed password for r.r from 184.22.139.26 port 27594 ssh2
Jun  2 18:20:55 HOST sshd[32065]: Received disconnect from 184.22.139.26: 11........
-------------------------------

2020-06-04 22:05:23

184.22.139.8

attackbots

445/tcp
[2019-07-30]1pkt

2019-07-30 23:38:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 184.22.139.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57880
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;184.22.139.214.			IN	A

;; AUTHORITY SECTION:
.			409	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022013100 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 31 20:49:38 CST 2022
;; MSG SIZE  rcvd: 107

Host info

214.139.22.184.in-addr.arpa domain name pointer 184-22-139-0.24.myaisfibre.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
214.139.22.184.in-addr.arpa	name = 184-22-139-0.24.myaisfibre.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.45.122.7	attackbots	Trying to log into mailserver (postfix/smtp) using multiple names and passwords	2019-09-25 04:55:11
70.45.113.42	attack	DATE:2019-09-24 14:36:14, IP:70.45.113.42, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-09-25 04:25:47
40.121.42.85	attackbots	Port Scan: TCP/443	2019-09-25 04:22:48
181.177.112.167	attack	2,23-03/03 concatform PostRequest-Spammer scoring: wien2018	2019-09-25 04:24:45
218.64.148.111	attackbotsspam	Sep 24 15:24:20 aat-srv002 sshd[23032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.64.148.111 Sep 24 15:24:22 aat-srv002 sshd[23032]: Failed password for invalid user user0 from 218.64.148.111 port 44583 ssh2 Sep 24 15:28:37 aat-srv002 sshd[23147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.64.148.111 Sep 24 15:28:39 aat-srv002 sshd[23147]: Failed password for invalid user scanner from 218.64.148.111 port 32994 ssh2 ...	2019-09-25 04:40:52
51.68.215.113	attackspambots	Port Scan detected from 51.68.215.113 (GB/United Kingdom/113.ip-51-68-215.eu). 4 hits in the last 216 seconds	2019-09-25 04:44:29
192.161.160.72	attackspam	Unauthorized access detected from banned ip	2019-09-25 05:00:02
123.214.34.213	attack	Telnet Server BruteForce Attack	2019-09-25 04:57:55
41.223.58.67	attack	Sep 24 22:28:07 rpi sshd[15865]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.223.58.67 Sep 24 22:28:10 rpi sshd[15865]: Failed password for invalid user money from 41.223.58.67 port 24106 ssh2	2019-09-25 04:43:53
178.62.64.107	attackspam	Sep 24 12:33:43 ny01 sshd[14991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.64.107 Sep 24 12:33:45 ny01 sshd[14991]: Failed password for invalid user alenda from 178.62.64.107 port 53884 ssh2 Sep 24 12:37:59 ny01 sshd[15668]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.64.107	2019-09-25 04:36:41
14.33.133.188	attackbotsspam	SSH bruteforce (Triggered fail2ban) Sep 24 21:32:17 dev1 sshd[95087]: error: maximum authentication attempts exceeded for invalid user root from 14.33.133.188 port 42135 ssh2 [preauth] Sep 24 21:32:17 dev1 sshd[95087]: Disconnecting invalid user root 14.33.133.188 port 42135: Too many authentication failures [preauth]	2019-09-25 04:29:23
144.217.255.89	attackspambots	2019-09-24T17:49:26.245802abusebot.cloudsearch.cf sshd\[9661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns542132.ip-144-217-255.net user=root	2019-09-25 04:45:57
110.49.71.240	attackbots	Sep 24 14:52:32 h2177944 sshd\[7185\]: Invalid user afirouz from 110.49.71.240 port 39988 Sep 24 14:52:32 h2177944 sshd\[7185\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.240 Sep 24 14:52:34 h2177944 sshd\[7185\]: Failed password for invalid user afirouz from 110.49.71.240 port 39988 ssh2 Sep 24 15:19:21 h2177944 sshd\[8638\]: Invalid user nvp from 110.49.71.240 port 27055 Sep 24 15:19:21 h2177944 sshd\[8638\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.71.240 ...	2019-09-25 04:35:32
138.197.145.26	attack	Sep 24 17:52:18 lnxded63 sshd[26516]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.145.26	2019-09-25 04:29:00
104.211.216.173	attackbotsspam	Sep 24 07:22:03 tdfoods sshd\[31176\]: Invalid user aspire from 104.211.216.173 Sep 24 07:22:03 tdfoods sshd\[31176\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.216.173 Sep 24 07:22:06 tdfoods sshd\[31176\]: Failed password for invalid user aspire from 104.211.216.173 port 47326 ssh2 Sep 24 07:27:27 tdfoods sshd\[31694\]: Invalid user suzy from 104.211.216.173 Sep 24 07:27:27 tdfoods sshd\[31694\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.216.173	2019-09-25 04:42:57

Recently Reported IPs

115.228.183.121	252.235.2.133	225.64.69.163	121.115.84.176
125.41.177.244	174.20.10.241	138.112.89.55	210.124.132.36
32.133.160.12	211.5.62.246	21.33.18.55	226.108.30.140
0.33.175.247	10.174.238.134	67.89.128.111	120.37.82.102
230.17.157.238	226.247.179.59	230.14.99.3	130.85.88.128