1.2.212.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.212.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3887
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.212.42.			IN	A

;; AUTHORITY SECTION:
.			488	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 11:39:05 CST 2022
;; MSG SIZE  rcvd: 103

Host info

42.212.2.1.in-addr.arpa domain name pointer node-gmi.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.212.2.1.in-addr.arpa	name = node-gmi.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.37.200.104	attackbots	49.37.200.104 - - \[29/Aug/2019:22:15:19 -0700\] "POST /downloader//downloader/index.php HTTP/1.1" 404 2070349.37.200.104 - - \[29/Aug/2019:22:33:04 -0700\] "POST /downloader//downloader/index.php HTTP/1.1" 404 2070349.37.200.104 - - \[29/Aug/2019:22:48:36 -0700\] "POST /downloader//downloader/index.php HTTP/1.1" 404 20703 ...	2019-08-30 15:07:12
158.69.192.200	attack	Automated report - ssh fail2ban: Aug 30 08:28:37 wrong password, user=root, port=56002, ssh2 Aug 30 08:28:40 wrong password, user=root, port=56002, ssh2 Aug 30 08:28:44 wrong password, user=root, port=56002, ssh2 Aug 30 08:28:47 wrong password, user=root, port=56002, ssh2	2019-08-30 15:29:18
222.186.42.94	attackbotsspam	Automated report - ssh fail2ban: Aug 30 09:35:59 wrong password, user=root, port=24370, ssh2 Aug 30 09:36:04 wrong password, user=root, port=24370, ssh2 Aug 30 09:36:07 wrong password, user=root, port=24370, ssh2	2019-08-30 15:38:30
191.7.152.13	attackbots	Aug 29 20:47:27 eddieflores sshd\[16695\]: Invalid user ncs from 191.7.152.13 Aug 29 20:47:27 eddieflores sshd\[16695\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.7.152.13 Aug 29 20:47:30 eddieflores sshd\[16695\]: Failed password for invalid user ncs from 191.7.152.13 port 46096 ssh2 Aug 29 20:52:33 eddieflores sshd\[17112\]: Invalid user helpdesk from 191.7.152.13 Aug 29 20:52:33 eddieflores sshd\[17112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.7.152.13	2019-08-30 14:54:51
212.3.214.45	attackbots	Aug 30 08:34:24 plex sshd[28778]: Invalid user emery from 212.3.214.45 port 49992	2019-08-30 14:46:26
138.68.212.180	attack	Honeypot hit.	2019-08-30 15:08:00
92.147.250.117	attackspam	Aug 29 19:43:14 wbs sshd\[18061\]: Invalid user marketing from 92.147.250.117 Aug 29 19:43:14 wbs sshd\[18061\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=areims-156-1-16-117.w92-147.abo.wanadoo.fr Aug 29 19:43:16 wbs sshd\[18061\]: Failed password for invalid user marketing from 92.147.250.117 port 40329 ssh2 Aug 29 19:51:38 wbs sshd\[18783\]: Invalid user weblogic from 92.147.250.117 Aug 29 19:51:38 wbs sshd\[18783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=areims-156-1-16-117.w92-147.abo.wanadoo.fr	2019-08-30 15:25:10
36.255.134.198	attackbotsspam	Automatic report - Port Scan Attack	2019-08-30 15:34:17
47.254.89.228	attackbotsspam	\[Fri Aug 30 07:48:32.997737 2019\] \[access_compat:error\] \[pid 5311:tid 140516674979584\] \[client 47.254.89.228:40252\] AH01797: client denied by server configuration: /var/www/lug/xmlrpc.php ...	2019-08-30 15:08:20
132.232.37.154	attackspam	Aug 30 02:34:31 ny01 sshd[23147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.37.154 Aug 30 02:34:33 ny01 sshd[23147]: Failed password for invalid user beatriz from 132.232.37.154 port 52320 ssh2 Aug 30 02:40:05 ny01 sshd[24017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.37.154	2019-08-30 14:45:37
162.247.74.74	attackspambots	Invalid user user from 162.247.74.74 port 37972	2019-08-30 15:12:17
159.93.73.12	attackbots	Aug 30 09:01:06 dedicated sshd[30052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.93.73.12 user=root Aug 30 09:01:09 dedicated sshd[30052]: Failed password for root from 159.93.73.12 port 34028 ssh2	2019-08-30 15:20:25
113.181.125.64	attackspambots	My Russian 19yo sweety pussy	2019-08-30 14:48:49
61.171.244.72	attackspam	Aug 30 08:00:03 OPSO sshd\[31997\]: Invalid user 000000 from 61.171.244.72 port 8608 Aug 30 08:00:03 OPSO sshd\[31997\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.171.244.72 Aug 30 08:00:05 OPSO sshd\[31997\]: Failed password for invalid user 000000 from 61.171.244.72 port 8608 ssh2 Aug 30 08:04:08 OPSO sshd\[32584\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.171.244.72 user=nginx Aug 30 08:04:11 OPSO sshd\[32584\]: Failed password for nginx from 61.171.244.72 port 48483 ssh2	2019-08-30 15:33:27
92.118.37.74	attackspam	Aug 30 06:56:44 mail kernel: [2229820.646797] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=4292 PROTO=TCP SPT=46525 DPT=44585 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 30 06:58:43 mail kernel: [2229940.079214] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=35456 PROTO=TCP SPT=46525 DPT=19356 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 30 06:59:17 mail kernel: [2229973.983221] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=64305 PROTO=TCP SPT=46525 DPT=17352 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 30 06:59:35 mail kernel: [2229992.029826] [UFW BLOCK] IN=eth0 OUT= MAC=fa:16:3e:d3:64:42:4c:5e:0c:c9:30:5f:08:00 SRC=92.118.37.74 DST=185.101.93.72 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=22117 PROTO=TCP SPT=46525 DPT=31506 WINDOW=1024 RES=0x00 SYN U	2019-08-30 15:31:10

Recently Reported IPs

1.2.212.145	1.2.213.29	1.2.213.75	1.2.213.109
1.2.212.168	1.2.214.103	1.2.214.118	1.2.213.240
1.2.212.226	1.2.212.7	1.2.214.112	103.3.246.43
1.2.214.131	1.2.214.152	1.2.214.208	1.2.214.154
1.2.214.184	1.2.214.245	1.2.214.187	237.7.199.40