1.2.147.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.147.214	attackspambots	Unauthorized connection attempt from IP address 1.2.147.214 on Port 445(SMB)	2020-09-01 19:36:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.147.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50106
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.147.99.			IN	A

;; AUTHORITY SECTION:
.			235	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 18:19:05 CST 2022
;; MSG SIZE  rcvd: 103

Host info

99.147.2.1.in-addr.arpa domain name pointer node-3tv.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
99.147.2.1.in-addr.arpa	name = node-3tv.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.62.117.106	attackspam	DATE:2020-09-17 23:58:56,IP:178.62.117.106,MATCHES:10,PORT:ssh	2020-09-18 06:20:53
107.151.111.130	attackbotsspam	Hits on port : 3389	2020-09-18 06:32:45
52.224.111.80	attackbotsspam	Cluster member 67.227.229.95 (US/United States/host.cjthedj97.me) said, DENY 52.224.111.80, Reason:[(mod_security) mod_security (id:19001) triggered by 52.224.111.80 (US/United States/-): 1 in the last 3600 secs]; Ports: *; Direction: inout; Trigger: LF_CLUSTER	2020-09-18 06:31:51
61.177.172.168	attackbotsspam	Sep 18 00:16:09 theomazars sshd[25498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.168 user=root Sep 18 00:16:11 theomazars sshd[25498]: Failed password for root from 61.177.172.168 port 35740 ssh2	2020-09-18 06:26:48
103.136.40.20	attackbots	DATE:2020-09-17 22:02:29,IP:103.136.40.20,MATCHES:10,PORT:ssh	2020-09-18 06:16:04
52.142.9.209	attackbots	[f2b] sshd bruteforce, retries: 1	2020-09-18 06:14:02
58.33.84.251	attack	Sep 17 14:17:11 mockhub sshd[152503]: Failed password for root from 58.33.84.251 port 51133 ssh2 Sep 17 14:19:53 mockhub sshd[152582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.33.84.251 user=root Sep 17 14:19:55 mockhub sshd[152582]: Failed password for root from 58.33.84.251 port 10310 ssh2 ...	2020-09-18 06:04:20
49.235.193.207	attackbotsspam	Sep 17 23:36:53 sshgateway sshd\[23483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.193.207 user=root Sep 17 23:36:55 sshgateway sshd\[23483\]: Failed password for root from 49.235.193.207 port 50252 ssh2 Sep 17 23:42:07 sshgateway sshd\[23543\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.193.207 user=root	2020-09-18 06:29:55
114.67.103.151	attack	Tried sshing with brute force.	2020-09-18 05:56:15
93.137.182.231	attackspam	Lines containing failures of 93.137.182.231 Sep 17 10:08:10 bfm9005 sshd[22287]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.137.182.231 user=www-data Sep 17 10:08:11 bfm9005 sshd[22287]: Failed password for www-data from 93.137.182.231 port 45266 ssh2 Sep 17 10:08:12 bfm9005 sshd[22287]: Received disconnect from 93.137.182.231 port 45266:11: Bye Bye [preauth] Sep 17 10:08:12 bfm9005 sshd[22287]: Disconnected from authenticating user www-data 93.137.182.231 port 45266 [preauth] Sep 17 10:14:01 bfm9005 sshd[22932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.137.182.231 user=r.r Sep 17 10:14:03 bfm9005 sshd[22932]: Failed password for r.r from 93.137.182.231 port 44996 ssh2 Sep 17 10:14:03 bfm9005 sshd[22932]: Received disconnect from 93.137.182.231 port 44996:11: Bye Bye [preauth] Sep 17 10:14:03 bfm9005 sshd[22932]: Disconnected from authenticating user r.r 93.137.182.231 por........ ------------------------------	2020-09-18 06:30:10
176.37.60.16	attackbotsspam	2020-09-17T13:01:28.648316vps773228.ovh.net sshd[30585]: Failed password for invalid user sysadmin from 176.37.60.16 port 40403 ssh2 2020-09-17T23:43:05.286135vps773228.ovh.net sshd[3494]: Invalid user sysadmin from 176.37.60.16 port 56479 2020-09-17T23:43:05.300042vps773228.ovh.net sshd[3494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-176-37-60-16.la.net.ua 2020-09-17T23:43:05.286135vps773228.ovh.net sshd[3494]: Invalid user sysadmin from 176.37.60.16 port 56479 2020-09-17T23:43:07.340787vps773228.ovh.net sshd[3494]: Failed password for invalid user sysadmin from 176.37.60.16 port 56479 ssh2 ...	2020-09-18 06:30:56
198.98.49.181	attackspambots	Brute-Force reported by Fail2Ban	2020-09-18 06:29:20
118.194.132.112	attackbots	Sep 18 02:52:43 web1 sshd[19801]: Invalid user admin from 118.194.132.112 port 57668 Sep 18 02:52:43 web1 sshd[19801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.194.132.112 Sep 18 02:52:43 web1 sshd[19801]: Invalid user admin from 118.194.132.112 port 57668 Sep 18 02:52:46 web1 sshd[19801]: Failed password for invalid user admin from 118.194.132.112 port 57668 ssh2 Sep 18 02:52:43 web1 sshd[19801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.194.132.112 Sep 18 02:52:43 web1 sshd[19801]: Invalid user admin from 118.194.132.112 port 57668 Sep 18 02:52:46 web1 sshd[19801]: Failed password for invalid user admin from 118.194.132.112 port 57668 ssh2 Sep 18 02:52:48 web1 sshd[19801]: Failed password for invalid user admin from 118.194.132.112 port 57668 ssh2 Sep 18 07:36:03 web1 sshd[19534]: Invalid user admin from 118.194.132.112 port 48053 Sep 18 07:36:04 web1 sshd[19534]: pam_unix(sshd:auth): ...	2020-09-18 06:27:10
60.243.120.197	attackspam	brute force attack ssh	2020-09-18 06:06:56
170.130.187.38	attack	Automatic report - Banned IP Access	2020-09-18 06:17:49

Recently Reported IPs

1.2.147.88	14.215.234.250	1.2.148.0	1.2.148.144
1.2.148.152	1.2.148.16	1.2.148.162	1.2.148.195
1.2.148.203	1.2.148.244	1.2.148.247	1.2.148.27
1.2.148.35	20.205.117.136	1.2.148.51	45.81.18.199
1.2.148.58	1.2.149.1	1.2.149.104	1.2.149.108