1.2.242.11 - IPInfo

Basic Info

City: Sam Ngam

Region: Phichit

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.242.0	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 24-02-2020 04:55:14.	2020-02-24 15:12:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.242.11
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43713
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.242.11.			IN	A

;; AUTHORITY SECTION:
.			449	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 09:19:21 CST 2022
;; MSG SIZE  rcvd: 103

Host info

11.242.2.1.in-addr.arpa domain name pointer node-miz.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
11.242.2.1.in-addr.arpa	name = node-miz.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.134.248.230	attackspambots	91.134.248.230 - - \[07/Jan/2020:15:27:37 +0100\] "POST /wp-login.php HTTP/1.0" 200 4404 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 91.134.248.230 - - \[07/Jan/2020:15:27:44 +0100\] "POST /wp-login.php HTTP/1.0" 200 4236 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 91.134.248.230 - - \[07/Jan/2020:15:27:47 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-01-08 04:31:17
49.88.112.62	attackbotsspam	Jan 7 21:27:52 jane sshd[20230]: Failed password for root from 49.88.112.62 port 42664 ssh2 Jan 7 21:27:56 jane sshd[20230]: Failed password for root from 49.88.112.62 port 42664 ssh2 ...	2020-01-08 04:39:02
140.249.22.238	attackspambots	Unauthorized connection attempt detected from IP address 140.249.22.238 to port 2220 [J]	2020-01-08 04:50:39
51.83.72.243	attack	SSH Brute Force	2020-01-08 04:52:20
179.124.36.195	attackbots	Jan 7 21:26:56 vpn01 sshd[29915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.124.36.195 Jan 7 21:26:57 vpn01 sshd[29915]: Failed password for invalid user ftpuser from 179.124.36.195 port 49415 ssh2 ...	2020-01-08 04:36:53
1.9.129.229	attackbotsspam	Jan 6 13:54:34 v26 sshd[30085]: Invalid user ubuntu from 1.9.129.229 port 54135 Jan 6 13:54:36 v26 sshd[30085]: Failed password for invalid user ubuntu from 1.9.129.229 port 54135 ssh2 Jan 6 13:54:37 v26 sshd[30085]: Received disconnect from 1.9.129.229 port 54135:11: Bye Bye [preauth] Jan 6 13:54:37 v26 sshd[30085]: Disconnected from 1.9.129.229 port 54135 [preauth] Jan 6 13:59:08 v26 sshd[30365]: Invalid user temp from 1.9.129.229 port 51406 Jan 6 13:59:11 v26 sshd[30365]: Failed password for invalid user temp from 1.9.129.229 port 51406 ssh2 Jan 6 13:59:11 v26 sshd[30365]: Received disconnect from 1.9.129.229 port 51406:11: Bye Bye [preauth] Jan 6 13:59:11 v26 sshd[30365]: Disconnected from 1.9.129.229 port 51406 [preauth] Jan 6 14:01:33 v26 sshd[30494]: Invalid user amhostname from 1.9.129.229 port 35234 Jan 6 14:01:35 v26 sshd[30494]: Failed password for invalid user amhostname from 1.9.129.229 port 35234 ssh2 Jan 6 14:01:35 v26 sshd[30494]: Received dis........ -------------------------------	2020-01-08 04:53:15
111.230.241.245	attackspambots	Unauthorized connection attempt detected from IP address 111.230.241.245 to port 2220 [J]	2020-01-08 04:16:31
39.42.17.77	attackbotsspam	1578401673 - 01/07/2020 13:54:33 Host: 39.42.17.77/39.42.17.77 Port: 445 TCP Blocked	2020-01-08 04:27:45
119.28.134.88	attackspam	Unauthorized connection attempt detected from IP address 119.28.134.88 to port 2220 [J]	2020-01-08 04:40:22
222.124.15.210	attackbots	Unauthorized connection attempt from IP address 222.124.15.210 on Port 445(SMB)	2020-01-08 04:35:10
129.213.160.211	attackbotsspam	$f2bV_matches	2020-01-08 04:28:29
51.38.179.179	attackbotsspam	Unauthorized connection attempt detected from IP address 51.38.179.179 to port 2220 [J]	2020-01-08 04:41:03
220.88.1.208	attackbots	Unauthorized connection attempt detected from IP address 220.88.1.208 to port 2220 [J]	2020-01-08 04:26:58
49.88.112.67	attack	Jan 7 21:06:16 v22018053744266470 sshd[24945]: Failed password for root from 49.88.112.67 port 28895 ssh2 Jan 7 21:09:08 v22018053744266470 sshd[25125]: Failed password for root from 49.88.112.67 port 11531 ssh2 ...	2020-01-08 04:21:19
118.24.220.237	attackbotsspam	Jan 8 00:58:03 gw1 sshd[20114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.220.237 Jan 8 00:58:06 gw1 sshd[20114]: Failed password for invalid user cvsroot from 118.24.220.237 port 56570 ssh2 ...	2020-01-08 04:19:33

Recently Reported IPs

1.2.242.108	1.2.246.69	1.2.246.9	1.2.246.97
1.2.246.99	1.2.247.111	1.2.247.119	1.2.247.137
1.2.247.150	159.202.175.28	1.2.247.154	1.2.247.19
1.2.247.235	1.2.247.6	109.176.156.8	1.2.247.79
1.2.248.108	1.2.248.114	1.2.248.14	1.2.248.145