1.2.245.239 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.245.239
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33292
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.245.239.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 129 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 19:30:48 CST 2022
;; MSG SIZE  rcvd: 104

Host info

239.245.2.1.in-addr.arpa domain name pointer node-nan.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
239.245.2.1.in-addr.arpa	name = node-nan.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
97.84.211.29	attackbotsspam	firewall-block, port(s): 23/tcp	2020-03-04 13:18:19
122.228.19.79	attack	122.228.19.79 was recorded 14 times by 5 hosts attempting to connect to the following ports: 1234,5672,41794,444,520,40001,23424,8006,666,3388,1010,9009,873. Incident counter (4h, 24h, all-time): 14, 112, 15270	2020-03-04 13:22:36
92.118.161.1	attackspam	firewall-block, port(s): 8333/tcp	2020-03-04 13:25:46
165.22.92.109	attack	Mar 4 04:25:26 XXX sshd[31862]: Invalid user XXXXXX from 165.22.92.109 port 33054	2020-03-04 13:39:43
83.68.232.158	attackspam	firewall-block, port(s): 23/tcp	2020-03-04 13:37:34
218.92.0.210	attack	2020-03-04T06:21:48.130474scmdmz1 sshd[30036]: Failed password for root from 218.92.0.210 port 29614 ssh2 2020-03-04T06:21:50.806084scmdmz1 sshd[30036]: Failed password for root from 218.92.0.210 port 29614 ssh2 2020-03-04T06:21:52.994557scmdmz1 sshd[30036]: Failed password for root from 218.92.0.210 port 29614 ssh2 ...	2020-03-04 13:23:51
222.186.173.142	attackspambots	Mar 4 13:39:33 bacztwo sshd[1292]: error: PAM: Authentication failure for root from 222.186.173.142 Mar 4 13:39:37 bacztwo sshd[1292]: error: PAM: Authentication failure for root from 222.186.173.142 Mar 4 13:39:42 bacztwo sshd[1292]: error: PAM: Authentication failure for root from 222.186.173.142 Mar 4 13:39:42 bacztwo sshd[1292]: Failed keyboard-interactive/pam for root from 222.186.173.142 port 1906 ssh2 Mar 4 13:39:31 bacztwo sshd[1292]: error: PAM: Authentication failure for root from 222.186.173.142 Mar 4 13:39:33 bacztwo sshd[1292]: error: PAM: Authentication failure for root from 222.186.173.142 Mar 4 13:39:37 bacztwo sshd[1292]: error: PAM: Authentication failure for root from 222.186.173.142 Mar 4 13:39:42 bacztwo sshd[1292]: error: PAM: Authentication failure for root from 222.186.173.142 Mar 4 13:39:42 bacztwo sshd[1292]: Failed keyboard-interactive/pam for root from 222.186.173.142 port 1906 ssh2 Mar 4 13:39:45 bacztwo sshd[1292]: error: PAM: Authentication fail ...	2020-03-04 13:50:48
94.237.69.169	attackspam	Tue Mar 3 22:00:38 2020 - Child process 128236 handling connection Tue Mar 3 22:00:38 2020 - New connection from: 94.237.69.169:33340 Tue Mar 3 22:00:38 2020 - Sending data to client: [Login: ] Tue Mar 3 22:00:38 2020 - Got data: root Tue Mar 3 22:00:39 2020 - Sending data to client: [Password: ] Tue Mar 3 22:00:40 2020 - Got data: root Tue Mar 3 22:00:42 2020 - Child 128243 granting shell Tue Mar 3 22:00:42 2020 - Child 128236 exiting Tue Mar 3 22:00:42 2020 - Sending data to client: [Logged in] Tue Mar 3 22:00:42 2020 - Sending data to client: [Welcome to MX990 Embedded Linux] Tue Mar 3 22:00:42 2020 - Sending data to client: [[root@dvrdvs /]# ] Tue Mar 3 22:00:42 2020 - Reporting IP address: 94.237.69.169 - mflag: 0	2020-03-04 13:51:36
13.127.213.86	attackspam	web-1 [ssh_2] SSH Attack	2020-03-04 13:43:25
125.215.207.40	attackbotsspam	Mar 4 09:59:40 gw1 sshd[24055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.40 Mar 4 09:59:42 gw1 sshd[24055]: Failed password for invalid user odoo from 125.215.207.40 port 33342 ssh2 ...	2020-03-04 13:56:20
112.27.250.251	attackbots	Mar 4 06:00:11 mout sshd[31809]: Invalid user developer from 112.27.250.251 port 57008	2020-03-04 13:16:32
213.178.155.20	attackbotsspam	2020-03-04T05:34:19.889414shield sshd\[15843\]: Invalid user em from 213.178.155.20 port 44116 2020-03-04T05:34:19.896985shield sshd\[15843\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.178.155.20 2020-03-04T05:34:21.516552shield sshd\[15843\]: Failed password for invalid user em from 213.178.155.20 port 44116 ssh2 2020-03-04T05:42:56.229815shield sshd\[17091\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.178.155.20 user=root 2020-03-04T05:42:58.155709shield sshd\[17091\]: Failed password for root from 213.178.155.20 port 50346 ssh2	2020-03-04 13:53:02
95.52.231.251	attackspam	Automatic report - Port Scan Attack	2020-03-04 13:35:09
133.130.113.206	attackbots	Mar 4 06:00:11 jane sshd[1626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.130.113.206 Mar 4 06:00:13 jane sshd[1626]: Failed password for invalid user admin from 133.130.113.206 port 51364 ssh2 ...	2020-03-04 13:14:27
60.190.129.6	attackspambots	Mar 4 04:01:28 XXX sshd[31617]: Invalid user admin from 60.190.129.6 port 35204	2020-03-04 13:44:59

Recently Reported IPs

1.2.245.230	1.2.245.250	1.2.245.6	1.2.245.60
1.2.245.8	1.2.245.80	1.2.245.98	1.2.246.0
1.2.246.106	1.2.246.11	1.2.246.114	1.2.246.127
1.2.246.138	1.2.246.14	1.2.246.141	1.2.246.171
1.2.246.182	1.2.246.200	1.2.246.205	1.2.246.213