1.2.242.194 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.242.0	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 24-02-2020 04:55:14.	2020-02-24 15:12:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.242.194
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54987
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.242.194.			IN	A

;; AUTHORITY SECTION:
.			437	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 19:25:43 CST 2022
;; MSG SIZE  rcvd: 104

Host info

194.242.2.1.in-addr.arpa domain name pointer node-mo2.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
194.242.2.1.in-addr.arpa	name = node-mo2.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.18.101.84	attackbots	Mar 26 22:19:37 plex sshd[20290]: Invalid user cafea from 218.18.101.84 port 52074	2020-03-27 06:30:27
106.12.209.81	attack	Mar 26 23:12:40 host01 sshd[14257]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.209.81 Mar 26 23:12:41 host01 sshd[14257]: Failed password for invalid user bmy from 106.12.209.81 port 57660 ssh2 Mar 26 23:16:43 host01 sshd[15075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.209.81 ...	2020-03-27 06:27:19
189.7.129.60	attack	2020-03-26T22:14:47.798459ns386461 sshd\[5615\]: Invalid user ssr from 189.7.129.60 port 58034 2020-03-26T22:14:47.802891ns386461 sshd\[5615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.129.60 2020-03-26T22:14:49.402499ns386461 sshd\[5615\]: Failed password for invalid user ssr from 189.7.129.60 port 58034 ssh2 2020-03-26T22:24:44.882898ns386461 sshd\[14693\]: Invalid user crc from 189.7.129.60 port 45370 2020-03-26T22:24:44.887586ns386461 sshd\[14693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.129.60 ...	2020-03-27 06:17:18
196.27.127.61	attackbots	Mar 26 21:18:53 XXXXXX sshd[21707]: Invalid user khd from 196.27.127.61 port 50218	2020-03-27 06:23:47
185.53.88.39	attack	185.53.88.39 was recorded 5 times by 5 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 17, 244	2020-03-27 06:22:56
182.61.26.157	attack	2020-03-26T23:19:53.486733vps751288.ovh.net sshd\[26986\]: Invalid user oracle from 182.61.26.157 port 48924 2020-03-26T23:19:53.499660vps751288.ovh.net sshd\[26986\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.26.157 2020-03-26T23:19:55.661687vps751288.ovh.net sshd\[26986\]: Failed password for invalid user oracle from 182.61.26.157 port 48924 ssh2 2020-03-26T23:23:00.751280vps751288.ovh.net sshd\[27004\]: Invalid user zxa from 182.61.26.157 port 40830 2020-03-26T23:23:00.759449vps751288.ovh.net sshd\[27004\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.26.157	2020-03-27 06:43:53
167.99.70.191	attackspam	167.99.70.191 - - [26/Mar/2020:22:19:43 +0100] "POST /wp-login.php HTTP/1.0" 200 2195 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.99.70.191 - - [26/Mar/2020:22:19:45 +0100] "POST /wp-login.php HTTP/1.0" 200 2184 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-27 06:23:17
123.31.27.102	attackspam	Lines containing failures of 123.31.27.102 Mar 25 19:11:41 shared11 sshd[20836]: Invalid user kamran from 123.31.27.102 port 46178 Mar 25 19:11:41 shared11 sshd[20836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.27.102 Mar 25 19:11:43 shared11 sshd[20836]: Failed password for invalid user kamran from 123.31.27.102 port 46178 ssh2 Mar 25 19:11:44 shared11 sshd[20836]: Received disconnect from 123.31.27.102 port 46178:11: Bye Bye [preauth] Mar 25 19:11:44 shared11 sshd[20836]: Disconnected from invalid user kamran 123.31.27.102 port 46178 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=123.31.27.102	2020-03-27 06:26:59
139.155.20.146	attackbots	Mar 26 21:19:32 *** sshd[31154]: Invalid user vlq from 139.155.20.146	2020-03-27 06:33:36
111.231.66.74	attack	Mar 26 22:19:44 serwer sshd\[18492\]: Invalid user umb from 111.231.66.74 port 53752 Mar 26 22:19:44 serwer sshd\[18492\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.66.74 Mar 26 22:19:47 serwer sshd\[18492\]: Failed password for invalid user umb from 111.231.66.74 port 53752 ssh2 ...	2020-03-27 06:19:51
69.28.235.203	attackspam	2020-03-26T21:12:03.945396ionos.janbro.de sshd[126195]: Invalid user super from 69.28.235.203 port 38313 2020-03-26T21:12:05.636334ionos.janbro.de sshd[126195]: Failed password for invalid user super from 69.28.235.203 port 38313 ssh2 2020-03-26T21:15:51.004426ionos.janbro.de sshd[126208]: Invalid user sub from 69.28.235.203 port 44694 2020-03-26T21:15:51.304904ionos.janbro.de sshd[126208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.28.235.203 2020-03-26T21:15:51.004426ionos.janbro.de sshd[126208]: Invalid user sub from 69.28.235.203 port 44694 2020-03-26T21:15:53.373091ionos.janbro.de sshd[126208]: Failed password for invalid user sub from 69.28.235.203 port 44694 ssh2 2020-03-26T21:19:37.830585ionos.janbro.de sshd[126219]: Invalid user test from 69.28.235.203 port 51071 2020-03-26T21:19:38.520875ionos.janbro.de sshd[126219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.28.235.203 2020-03-26T ...	2020-03-27 06:24:33
118.201.65.165	attackspam	SSH Login Bruteforce	2020-03-27 06:21:49
107.170.249.6	attack	SSH Invalid Login	2020-03-27 06:48:29
111.75.8.230	attackspambots	bruteforce detected	2020-03-27 06:25:41
31.214.144.16	attack	2020-03-26T22:14:28.466750homeassistant sshd[23693]: Invalid user bot from 31.214.144.16 port 53176 2020-03-26T22:14:28.478477homeassistant sshd[23693]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.214.144.16 ...	2020-03-27 06:30:01

Recently Reported IPs

1.2.242.17	1.2.242.215	1.2.242.222	1.2.242.24
1.2.242.240	1.2.242.242	1.2.242.246	1.2.242.38
1.2.242.44	1.2.242.60	1.2.242.85	1.2.243.111
1.2.243.112	1.2.243.118	1.2.243.123	1.2.243.127
1.2.243.130	1.2.243.150	1.2.243.160	1.2.243.177