2.245.166.119 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.245.166.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34336
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.245.166.119.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025030900 1800 900 604800 86400

;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 09 22:19:24 CST 2025
;; MSG SIZE  rcvd: 106

Host info

119.166.245.2.in-addr.arpa domain name pointer dynamic-002-245-166-119.2.245.pool.telefonica.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
119.166.245.2.in-addr.arpa	name = dynamic-002-245-166-119.2.245.pool.telefonica.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
116.31.105.198	attackbots	$f2bV_matches	2019-11-04 18:52:33
49.88.112.68	attackspam	Nov 4 11:21:47 MK-Soft-VM3 sshd[15821]: Failed password for root from 49.88.112.68 port 22805 ssh2 Nov 4 11:21:50 MK-Soft-VM3 sshd[15821]: Failed password for root from 49.88.112.68 port 22805 ssh2 ...	2019-11-04 19:13:29
62.12.115.116	attackbots	2019-11-04T09:10:01.061094abusebot-4.cloudsearch.cf sshd\[23172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.12.115.116 user=root	2019-11-04 19:08:55
118.25.36.79	attack	Too many connections or unauthorized access detected from Arctic banned ip	2019-11-04 19:06:16
112.215.141.101	attack	Nov 4 04:51:03 Tower sshd[42570]: Connection from 112.215.141.101 port 42874 on 192.168.10.220 port 22 Nov 4 04:51:05 Tower sshd[42570]: Failed password for root from 112.215.141.101 port 42874 ssh2 Nov 4 04:51:05 Tower sshd[42570]: Received disconnect from 112.215.141.101 port 42874:11: Bye Bye [preauth] Nov 4 04:51:05 Tower sshd[42570]: Disconnected from authenticating user root 112.215.141.101 port 42874 [preauth]	2019-11-04 18:42:36
217.182.74.125	attackbots	2019-11-04T12:06:12.487302host3.slimhost.com.ua sshd[1363684]: Invalid user 0 from 217.182.74.125 port 43722 2019-11-04T12:06:12.505231host3.slimhost.com.ua sshd[1363684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.ip-217-182-74.eu 2019-11-04T12:06:12.487302host3.slimhost.com.ua sshd[1363684]: Invalid user 0 from 217.182.74.125 port 43722 2019-11-04T12:06:14.460668host3.slimhost.com.ua sshd[1363684]: Failed password for invalid user 0 from 217.182.74.125 port 43722 ssh2 2019-11-04T12:09:54.631727host3.slimhost.com.ua sshd[1368300]: Invalid user hhchung from 217.182.74.125 port 53150 ...	2019-11-04 19:14:26
106.12.57.38	attackbotsspam	Nov 4 06:25:09 hgb10502 sshd[6581]: Invalid user user from 106.12.57.38 port 60868 Nov 4 06:25:10 hgb10502 sshd[6581]: Failed password for invalid user user from 106.12.57.38 port 60868 ssh2 Nov 4 06:25:11 hgb10502 sshd[6581]: Received disconnect from 106.12.57.38 port 60868:11: Bye Bye [preauth] Nov 4 06:25:11 hgb10502 sshd[6581]: Disconnected from 106.12.57.38 port 60868 [preauth] Nov 4 06:29:29 hgb10502 sshd[7000]: User r.r from 106.12.57.38 not allowed because not listed in AllowUsers Nov 4 06:29:29 hgb10502 sshd[7000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.57.38 user=r.r Nov 4 06:29:31 hgb10502 sshd[7000]: Failed password for invalid user r.r from 106.12.57.38 port 43260 ssh2 Nov 4 06:29:31 hgb10502 sshd[7000]: Received disconnect from 106.12.57.38 port 43260:11: Bye Bye [preauth] Nov 4 06:29:31 hgb10502 sshd[7000]: Disconnected from 106.12.57.38 port 43260 [preauth] Nov 4 06:34:04 hgb10502 sshd[73........ -------------------------------	2019-11-04 18:59:16
106.12.98.12	attackspambots	2019-11-04T12:02:42.875321tmaserv sshd\[24260\]: Invalid user matt from 106.12.98.12 port 57198 2019-11-04T12:02:42.880047tmaserv sshd\[24260\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.98.12 2019-11-04T12:02:44.453625tmaserv sshd\[24260\]: Failed password for invalid user matt from 106.12.98.12 port 57198 ssh2 2019-11-04T12:07:27.564419tmaserv sshd\[24502\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.98.12 user=root 2019-11-04T12:07:29.263644tmaserv sshd\[24502\]: Failed password for root from 106.12.98.12 port 38096 ssh2 2019-11-04T12:12:25.988908tmaserv sshd\[24726\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.98.12 user=root ...	2019-11-04 19:11:44
106.12.5.96	attack	ssh failed login	2019-11-04 18:47:58
138.75.12.173	attackspambots	(sshd) Failed SSH login from 138.75.12.173 (SG/Singapore/-/Singapore/-/[AS4773 MobileOne Ltd. Mobile/Internet Service Provider Singapore]): 1 in the last 3600 secs	2019-11-04 18:50:14
148.70.236.112	attackbots	Nov 4 04:14:29 plusreed sshd[3226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.236.112 user=root Nov 4 04:14:31 plusreed sshd[3226]: Failed password for root from 148.70.236.112 port 47784 ssh2 ...	2019-11-04 19:02:20
115.133.72.147	attackspam	DATE:2019-11-04 07:12:11, IP:115.133.72.147, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc-bis)	2019-11-04 19:00:07
219.223.234.4	attack	Nov 4 08:21:23 www2 sshd\[23916\]: Invalid user dkw0110 from 219.223.234.4Nov 4 08:21:25 www2 sshd\[23916\]: Failed password for invalid user dkw0110 from 219.223.234.4 port 63993 ssh2Nov 4 08:25:09 www2 sshd\[24329\]: Invalid user blades from 219.223.234.4 ...	2019-11-04 18:58:53
182.71.126.114	attackspambots	Unauthorised access (Nov 4) SRC=182.71.126.114 LEN=52 TTL=117 ID=18717 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-04 19:09:50
114.174.133.154	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.174.133.154/ JP - 1H : (22) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : JP NAME ASN : ASN4713 IP : 114.174.133.154 CIDR : 114.160.0.0/11 PREFIX COUNT : 301 UNIQUE IP COUNT : 28900096 ATTACKS DETECTED ASN4713 : 1H - 1 3H - 4 6H - 5 12H - 7 24H - 11 DateTime : 2019-11-04 07:25:20 INFO : Server 403 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-11-04 18:48:53

Recently Reported IPs

228.213.119.137	68.52.154.27	7.215.213.247	126.21.90.36
52.112.142.75	61.124.129.90	180.178.248.91	149.77.19.15
156.199.195.238	92.111.209.104	15.39.76.19	91.211.93.80
236.170.192.234	23.73.76.53	53.240.28.61	51.106.31.86
203.122.12.175	45.216.239.230	223.67.228.138	100.170.246.178