JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 159.192.144.206

159.192.144.206 was found in our database!

This IP was reported 397 times. Confidence of Abuse is 100%: ?

100%

ISP	10 Fl. 72. CAT TELECOM TOWER Bangrak Bangkok Thailand
Usage Type	Fixed Line ISP
ASN	AS131090
Domain Name	ntplc.co.th
Country	🇹🇭 Thailand
City	Bangkok, Bangkok

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 159.192.144.206

Whois 159.192.144.206

IP Abuse Reports for 159.192.144.206:

This IP address has been reported a total of 397 times from 200 distinct sources. 159.192.144.206 was first reported on June 16th 2022, and the most recent report was 1 hour ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 musicwolf83	2026-06-22 05:47:48 (1 hour ago)	2026-06-21T23:46:14.239601-06:00 yms sshd[2840910]: Connection closed by authenticating user root 15 ... show more 2026-06-21T23:46:14.239601-06:00 yms sshd[2840910]: Connection closed by authenticating user root 159.192.144.206 port 43586 [preauth] 2026-06-21T23:47:47.060614-06:00 yms sshd[2843529]: Connection closed by authenticating user root 159.192.144.206 port 50462 [preauth] ... show less	Port Scan Brute-Force SSH
🇧🇷 modscleo4	2026-06-22 04:33:51 (2 hours ago)	2026-06-22T01:33:50.702930-03:00 salada-de-fruta sshd[1997492]: Connection closed by authenticating ... show more 2026-06-22T01:33:50.702930-03:00 salada-de-fruta sshd[1997492]: Connection closed by authenticating user root 159.192.144.206 port 53518 [preauth] ... show less	Port Scan Brute-Force SSH
🇲🇽 octageeks.com	2026-06-22 04:14:42 (3 hours ago)	Wordpress malicious attack:[sshd]	Web App Attack
🇺🇸 bigscoots.com	2026-06-22 02:31:41 (4 hours ago)	159.192.144.206 (TH/Thailand/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; ... show more 159.192.144.206 (TH/Thailand/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 21 21:25:43 13646 sshd[22000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.247.209.100 user=root Jun 21 21:25:45 13646 sshd[22000]: Failed password for root from 60.247.209.100 port 59874 ssh2 Jun 21 21:31:19 13646 sshd[24923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.206 user=root Jun 21 21:31:21 13646 sshd[24923]: Failed password for root from 159.192.144.206 port 48868 ssh2 Jun 21 21:19:49 13646 sshd[18467]: Failed password for root from 202.29.228.248 port 58316 ssh2 IP Addresses Blocked: 60.247.209.100 (CN/China/-) show less	Brute-Force SSH
🇷🇸 Scan	2026-06-22 01:49:28 (5 hours ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇬🇧 andypiper	2026-06-22 01:03:01 (6 hours ago)	CrowdSec ban for AbuseIPDB Top List	Brute-Force Web App Attack
🇳🇱 Alboweb B.V.	2026-06-22 00:11:16 (7 hours ago)	SSH abuse or brute-force attack detected by Fail2Ban in ssh jail	Brute-Force SSH
Anonymous	2026-06-21 23:23:44 (7 hours ago)	2026-06-21T23:23:41.180576+00:00 mta sshd[410560]: pam_unix(sshd:auth): authentication failure; logn ... show more 2026-06-21T23:23:41.180576+00:00 mta sshd[410560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.206 user=root 2026-06-21T23:23:43.414030+00:00 mta sshd[410560]: Failed password for root from 159.192.144.206 port 45558 ssh2 ... show less	Brute-Force SSH
🇩🇪 DocNetzwerk	2026-06-21 23:08:09 (8 hours ago)	159.192.144.206 (TH/Thailand/-), 3 distributed sshd attacks on account [redacted]	Brute-Force SSH
🇩🇪 LRob.fr	2026-06-21 23:00:12 (8 hours ago)	SSH abuse or brute-force attack detected by Fail2Ban in ssh jail	Brute-Force SSH
🇨🇭 Xenic	2026-06-21 22:20:06 (9 hours ago)	Jun 22 00:18:01 zurich-2 sshd[2894807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more Jun 22 00:18:01 zurich-2 sshd[2894807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.206 user=root Jun 22 00:18:03 zurich-2 sshd[2894807]: Failed password for root from 159.192.144.206 port 51770 ssh2 Jun 22 00:20:06 zurich-2 sshd[2894818]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.206 user=root ... show less	Brute-Force SSH
🇫🇷 bulletz	2026-06-21 21:26:47 (9 hours ago)	2026-06-21T23:07:47.067550+02:00 vps sshd[12082]: Failed password for root from 159.192.144.206 port ... show more 2026-06-21T23:07:47.067550+02:00 vps sshd[12082]: Failed password for root from 159.192.144.206 port 48618 ssh2 2026-06-21T23:26:45.263248+02:00 vps sshd[12815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.206 user=root 2026-06-21T23:26:46.990155+02:00 vps sshd[12815]: Failed password for root from 159.192.144.206 port 40478 ssh2 ... show less	Brute-Force SSH
🇺🇸 bigscoots.com	2026-06-21 20:04:23 (11 hours ago)	159.192.144.206 (TH/Thailand/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; ... show more 159.192.144.206 (TH/Thailand/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: 1; Trigger: LF_DISTATTACK; Logs: Jun 21 15:04:02 14362 sshd[18100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.241.244.100 user=root Jun 21 14:59:25 14362 sshd[15683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.20.33.175 user=root Jun 21 14:59:27 14362 sshd[15683]: Failed password for root from 88.20.33.175 port 36116 ssh2 Jun 21 15:01:30 14362 sshd[16717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.206 user=root Jun 21 15:01:32 14362 sshd[16717]: Failed password for root from 159.192.144.206 port 43236 ssh2 IP Addresses Blocked: 150.241.244.100 (IN/India/-) 88.20.33.175 (ES/Spain/175.red-88-20-33.staticip.rima-tde.net) show less	Brute-Force SSH
🇷🇺 Kotiacat_one	2026-06-21 19:44:41 (11 hours ago)	2026-06-21T22:44:38.649235+03:00 kotiacat.nexus sshd-session[40403]: pam_unix(sshd:auth): authentica ... show more 2026-06-21T22:44:38.649235+03:00 kotiacat.nexus sshd-session[40403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.192.144.206 user=root 2026-06-21T22:44:40.692035+03:00 kotiacat.nexus sshd-session[40403]: Failed password for root from 159.192.144.206 port 54334 ssh2 ... show less	Brute-Force SSH
🇱🇺 SiteXL	2026-06-21 18:36:02 (12 hours ago)	{"event":{"DateTime":"2026-06-21T15:29:06Z","RemoteAddr":"159.192.144.206:37490","Protocol":"SSH","C ... show more {"event":{"DateTime":"2026-06-21T15:29:06Z","RemoteAddr":"159.192.144.206:37490","Protocol":"SSH","Command":"","CommandOutput":"","Status":"Stateless","Msg":"New SSH Login Attempt","ID":"ae4a18be-82ae-46c3-bb6c-e23525448dfa","Environ":"","User":"root","Password":"djdeamon2025","Client":"SSH-2.0-Go","Headers":"","HeadersMap":null,"Cookies":"","UserAgent":"","HostHTTPRequest":"","Body":"","HTTPMethod":"","RequestURI":"","Description":"SSH interactive","SourceIp":"159.192.144.206","SourcePort":"37490","TLSServerName":"","Handler":""},"level":"info","msg":"New Event","status":"Stateless"} {"event":{"DateTime":"2026-06-21T16:29:38Z","RemoteAddr":"159.192.144.206:46256","Protocol":"SSH","Command":"","CommandOutput":"","Status":"Stateless","Msg":"New SSH Login Attempt","ID":"13fa4ed5-b875-44ca-b108-b4ed7343ce15","Environ":"","User":"root","Password":"djdeamon2012!@#","Client":"SSH-2.0-Go","Headers":"","HeadersMap":null,"Cookies":"","UserAgent":"","HostHTTPRequest":"","Body":"","HTTPMethod":"","RequestURI":"","Descri show less	Hacking Port Scan Brute-Force SSH

Showing 1 to 15 of 397 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇸🇬 2a09:bac5:55f8:1d05::2e4:a0

🇭🇰 193.176.211.55

🇪🇨 186.3.7.203

🇮🇶 185.166.25.150

🇳🇱 176.65.132.129

🇦🇺 149.167.183.92

🇻🇳 113.186.142.159

🇳🇵 103.10.28.137

🇷🇴 80.94.92.165

🇧🇷 45.164.251.106

🇨🇳 36.32.104.197

🇫🇷 13.140.150.107

🇮🇳 223.185.62.134

🇨🇳 180.76.234.93

🇮🇳 143.110.247.221

🇮🇳 135.13.28.35

🇻🇳 113.189.48.56

🇮🇷 85.133.193.72

🇱🇹 81.30.98.158

🇱🇹 81.30.98.62