1.0.248.48 - IPInfo

Basic Info

City: Pattani

Region: Pattani

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.0.248.246	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/1.0.248.246/ TH - 1H : (218) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TH NAME ASN : ASN23969 IP : 1.0.248.246 CIDR : 1.0.248.0/21 PREFIX COUNT : 1783 UNIQUE IP COUNT : 1183744 WYKRYTE ATAKI Z ASN23969 : 1H - 2 3H - 10 6H - 15 12H - 23 24H - 47 DateTime : 2019-10-02 23:25:10 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-03 08:41:26

Type

Details

Datetime

1.0.248.246

attackbots

IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/1.0.248.246/ 
 TH - 1H : (218)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : TH 
 NAME ASN : ASN23969 
 
 IP : 1.0.248.246 
 
 CIDR : 1.0.248.0/21 
 
 PREFIX COUNT : 1783 
 
 UNIQUE IP COUNT : 1183744 
 
 
 WYKRYTE ATAKI Z ASN23969 :  
  1H - 2 
  3H - 10 
  6H - 15 
 12H - 23 
 24H - 47 
 
 DateTime : 2019-10-02 23:25:10 
 
 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN  - data recovery

2019-10-03 08:41:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.0.248.48
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37289
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.0.248.48.			IN	A

;; AUTHORITY SECTION:
.			448	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022302 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 08:23:20 CST 2022
;; MSG SIZE  rcvd: 103

Host info

48.248.0.1.in-addr.arpa domain name pointer node-nqo.pool-1-0.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
48.248.0.1.in-addr.arpa	name = node-nqo.pool-1-0.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.82.67.111	attackspam	Jun 28 12:11:46 mail postfix/smtpd\[12959\]: warning: unknown\[80.82.67.111\]: SASL PLAIN authentication failed: \ Jun 28 12:39:23 mail postfix/smtpd\[13664\]: warning: unknown\[80.82.67.111\]: SASL PLAIN authentication failed: \ Jun 28 12:50:01 mail postfix/smtpd\[13889\]: warning: unknown\[80.82.67.111\]: SASL PLAIN authentication failed: \ Jun 28 13:55:53 mail postfix/smtpd\[15556\]: warning: unknown\[80.82.67.111\]: SASL PLAIN authentication failed: \	2019-06-28 21:51:37
13.58.26.165	attackspambots	SSH Brute-Forcing (ownc)	2019-06-28 21:45:28
177.87.68.101	attack	libpam_shield report: forced login attempt	2019-06-28 22:00:50
140.255.143.76	attackbotsspam	Jun 28 08:03:12 elektron postfix/smtpd\[4399\]: NOQUEUE: reject: RCPT from unknown\[140.255.143.76\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[140.255.143.76\]\; from=\ to=\ proto=ESMTP helo=\ Jun 28 08:03:45 elektron postfix/smtpd\[4399\]: NOQUEUE: reject: RCPT from unknown\[140.255.143.76\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[140.255.143.76\]\; from=\ to=\ proto=ESMTP helo=\ Jun 28 08:04:32 elektron postfix/smtpd\[8042\]: NOQUEUE: reject: RCPT from unknown\[140.255.143.76\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[140.255.143.76\]\; from=\ to=\ proto=ESMTP helo=\	2019-06-28 21:38:08
117.4.137.71	attack	Unauthorized connection attempt from IP address 117.4.137.71 on Port 445(SMB)	2019-06-28 21:28:36
74.208.239.79	attackspam	IP involved in SSH attack	2019-06-28 21:26:20
117.36.50.61	attackspam	Invalid user rodrigo from 117.36.50.61 port 58633	2019-06-28 21:34:03
27.72.100.119	attack	Honeypot attack, port: 445, PTR: PTR record not found	2019-06-28 21:42:48
36.65.76.19	attack	Unauthorized connection attempt from IP address 36.65.76.19 on Port 445(SMB)	2019-06-28 21:22:35
106.52.197.224	attack	Jun 28 22:46:25 martinbaileyphotography sshd\[25915\]: Invalid user admin from 106.52.197.224 port 38486 Jun 28 22:46:25 martinbaileyphotography sshd\[25915\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.197.224 Jun 28 22:46:27 martinbaileyphotography sshd\[25915\]: Failed password for invalid user admin from 106.52.197.224 port 38486 ssh2 Jun 28 22:52:49 martinbaileyphotography sshd\[26127\]: Invalid user keng from 106.52.197.224 port 60906 Jun 28 22:52:49 martinbaileyphotography sshd\[26127\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.197.224 ...	2019-06-28 21:59:00
5.125.76.127	attackspambots	Unauthorized connection attempt from IP address 5.125.76.127 on Port 445(SMB)	2019-06-28 21:50:19
177.66.41.67	attack	SMTP-sasl brute force ...	2019-06-28 21:32:41
177.21.133.57	attackspambots	libpam_shield report: forced login attempt	2019-06-28 21:58:26
36.82.102.124	attack	Unauthorized connection attempt from IP address 36.82.102.124 on Port 445(SMB)	2019-06-28 21:35:09
77.79.132.196	attack	Unauthorized connection attempt from IP address 77.79.132.196 on Port 445(SMB)	2019-06-28 21:38:47

Recently Reported IPs

1.0.248.42	1.0.248.5	1.0.248.8	1.0.248.88
1.0.249.10	1.0.249.106	1.0.249.113	1.0.249.120
1.0.249.123	1.0.249.13	1.0.249.14	1.0.249.141
1.0.249.159	1.0.249.170	1.0.249.182	1.0.249.191
1.0.249.201	10.85.232.62	1.0.253.228	1.0.253.248