1.2.249.102 - IPInfo

Basic Info

City: Bangkok

Region: Bangkok

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.249.183	attackspam	Phishing and other mischief	2019-12-10 02:19:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.249.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17209
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.249.102.			IN	A

;; AUTHORITY SECTION:
.			248	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 09:22:42 CST 2022
;; MSG SIZE  rcvd: 104

Host info

102.249.2.1.in-addr.arpa domain name pointer node-nza.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
102.249.2.1.in-addr.arpa	name = node-nza.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.226.90.252	attack	[03/May/2020 15:01:05] Failed SMTP login from 94-226-90-252.access.telenet.be whostnameh SASL method CRAM-MD5. [03/May/2020 15:01:11] Failed SMTP login from 94-226-90-252.access.telenet.be whostnameh SASL method PLAIN. ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=94.226.90.252	2020-05-04 04:23:01
37.187.18.95	attackbots	(sshd) Failed SSH login from 37.187.18.95 (FR/France/ks3353169.kimsufi.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: May 3 22:11:07 s1 sshd[14095]: Invalid user happy from 37.187.18.95 port 58090 May 3 22:11:09 s1 sshd[14095]: Failed password for invalid user happy from 37.187.18.95 port 58090 ssh2 May 3 22:24:56 s1 sshd[14729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.18.95 user=root May 3 22:24:58 s1 sshd[14729]: Failed password for root from 37.187.18.95 port 58902 ssh2 May 3 22:37:04 s1 sshd[15154]: Invalid user remote from 37.187.18.95 port 41456	2020-05-04 04:32:10
14.18.58.226	attack	May 3 12:55:52 vps58358 sshd\[16893\]: Invalid user liuziyuan from 14.18.58.226May 3 12:55:54 vps58358 sshd\[16893\]: Failed password for invalid user liuziyuan from 14.18.58.226 port 37946 ssh2May 3 12:58:57 vps58358 sshd\[16930\]: Invalid user git from 14.18.58.226May 3 12:59:00 vps58358 sshd\[16930\]: Failed password for invalid user git from 14.18.58.226 port 46686 ssh2May 3 13:02:08 vps58358 sshd\[16963\]: Failed password for root from 14.18.58.226 port 55426 ssh2May 3 13:05:15 vps58358 sshd\[16997\]: Invalid user eric from 14.18.58.226 ...	2020-05-04 04:08:00
186.50.144.240	attack	Unauthorized connection attempt detected from IP address 186.50.144.240 to port 23	2020-05-04 04:37:15
13.82.87.18	attackspambots	Attempts to probe web pages for vulnerable PHP or other applications	2020-05-04 04:11:17
87.251.74.60	attackspambots	May 3 22:19:00 debian-2gb-nbg1-2 kernel: \[10796042.256827\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.60 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=46324 PROTO=TCP SPT=55232 DPT=30380 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-04 04:27:58
202.149.86.27	attackbotsspam	Brute-force attempt banned	2020-05-04 04:43:49
194.26.29.255	attack	Port Scan	2020-05-04 04:24:56
5.196.116.202	attack	$f2bV_matches	2020-05-04 04:31:17
3.87.46.206	attackspam	Bruteforce detected by fail2ban	2020-05-04 04:39:58
158.69.223.91	attackspam	May 3 20:41:28 mail sshd[18660]: Failed password for root from 158.69.223.91 port 41706 ssh2 May 3 20:55:01 mail sshd[27425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.223.91 ...	2020-05-04 04:12:12
122.116.219.214	attack	Icarus honeypot on github	2020-05-04 04:24:28
94.102.56.215	attack	94.102.56.215 was recorded 14 times by 8 hosts attempting to connect to the following ports: 56243,57057,59999. Incident counter (4h, 24h, all-time): 14, 61, 13036	2020-05-04 04:07:44
88.234.185.89	attack	Unauthorised access (May 3) SRC=88.234.185.89 LEN=44 TTL=54 ID=2452 TCP DPT=23 WINDOW=54511 SYN	2020-05-04 04:25:09
36.22.187.34	attack	Brute-force attempt banned	2020-05-04 04:36:34

Recently Reported IPs

1.2.248.93	1.2.249.106	1.2.249.11	210.112.222.3
1.2.249.113	1.2.249.116	1.2.249.118	1.2.249.126
1.2.249.128	1.2.249.138	1.2.249.140	1.2.249.149
1.2.249.150	37.120.88.229	1.2.249.164	1.2.249.174
1.2.249.178	1.2.249.190	1.2.249.192	1.2.249.201