1.172.1.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Republic of China (ROC)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.172.134.218	attackspam	2020-09-24T13:07:41.768220suse-nuc sshd[10002]: Invalid user admin from 1.172.134.218 port 40320 ...	2020-09-27 05:42:20
1.172.134.218	attackbots	2020-09-24T13:07:41.768220suse-nuc sshd[10002]: Invalid user admin from 1.172.134.218 port 40320 ...	2020-09-26 21:58:53
1.172.134.218	attack	2020-09-24T13:07:41.768220suse-nuc sshd[10002]: Invalid user admin from 1.172.134.218 port 40320 ...	2020-09-26 13:41:11
1.172.144.11	attack	1597924905 - 08/20/2020 14:01:45 Host: 1.172.144.11/1.172.144.11 Port: 445 TCP Blocked	2020-08-21 02:28:25
1.172.180.175	attackspam	Unauthorized connection attempt from IP address 1.172.180.175 on Port 445(SMB)	2020-07-15 17:44:39
1.172.135.91	attackspambots	20/7/10@23:48:29: FAIL: Alarm-Network address from=1.172.135.91 20/7/10@23:48:30: FAIL: Alarm-Network address from=1.172.135.91 ...	2020-07-11 19:40:24
1.172.193.118	attackspambots	1592798129 - 06/22/2020 05:55:29 Host: 1.172.193.118/1.172.193.118 Port: 23 TCP Blocked	2020-06-22 12:16:15
1.172.103.127	attack	1586231400 - 04/07/2020 05:50:00 Host: 1.172.103.127/1.172.103.127 Port: 445 TCP Blocked	2020-04-07 16:54:27
1.172.124.201	attackbots	" "	2020-02-20 01:10:42
1.172.169.209	attackspambots	Unauthorized connection attempt from IP address 1.172.169.209 on Port 445(SMB)	2020-02-09 08:03:23
1.172.151.238	attackspambots	lfd: (smtpauth) Failed SMTP AUTH login from 1.172.151.238 (TW/Taiwan/1-172-151-238.dynamic-ip.hinet.net): 5 in the last 3600 secs - Sat Jul 14 16:05:10 2018	2020-02-07 05:50:25
1.172.102.217	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 06-02-2020 04:50:14.	2020-02-06 20:43:03
1.172.164.245	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-03 13:16:38
1.172.199.87	attack	1580304720 - 01/29/2020 14:32:00 Host: 1.172.199.87/1.172.199.87 Port: 445 TCP Blocked	2020-01-30 03:23:15
1.172.136.189	attackspam	1579795309 - 01/23/2020 17:01:49 Host: 1.172.136.189/1.172.136.189 Port: 445 TCP Blocked	2020-01-24 06:05:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.172.1.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54255
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.172.1.20.			IN	A

;; AUTHORITY SECTION:
.			2	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 14:25:59 CST 2022
;; MSG SIZE  rcvd: 103

Host info

20.1.172.1.in-addr.arpa domain name pointer 1-172-1-20.dynamic-ip.hinet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.1.172.1.in-addr.arpa	name = 1-172-1-20.dynamic-ip.hinet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
184.105.139.82	attackspam	Automatic report - Port Scan Attack	2019-09-07 16:52:34
154.8.197.176	attack	Sep 7 02:36:19 [host] sshd[28135]: Invalid user helpdesk from 154.8.197.176 Sep 7 02:36:19 [host] sshd[28135]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.197.176 Sep 7 02:36:21 [host] sshd[28135]: Failed password for invalid user helpdesk from 154.8.197.176 port 41954 ssh2	2019-09-07 16:32:59
205.185.120.184	attackbots	2019-09-07 01:03:12,623 fail2ban.actions [26179]: NOTICE [sshd] Ban 205.185.120.184	2019-09-07 17:13:42
218.98.40.142	attackbots	Sep 7 10:25:06 ubuntu-2gb-nbg1-dc3-1 sshd[13167]: Failed password for root from 218.98.40.142 port 15487 ssh2 Sep 7 10:25:10 ubuntu-2gb-nbg1-dc3-1 sshd[13167]: error: maximum authentication attempts exceeded for root from 218.98.40.142 port 15487 ssh2 [preauth] ...	2019-09-07 17:17:12
167.99.15.245	attackbotsspam	Sep 7 10:17:54 dedicated sshd[29507]: Invalid user vbox from 167.99.15.245 port 37902	2019-09-07 16:30:11
88.225.220.181	attack	Automatic report - Port Scan Attack	2019-09-07 17:11:03
167.71.41.24	attackspam	Sep 7 04:26:09 TORMINT sshd\[10324\]: Invalid user uploadupload from 167.71.41.24 Sep 7 04:26:09 TORMINT sshd\[10324\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.41.24 Sep 7 04:26:12 TORMINT sshd\[10324\]: Failed password for invalid user uploadupload from 167.71.41.24 port 37560 ssh2 ...	2019-09-07 16:30:37
104.236.58.55	attack	$f2bV_matches	2019-09-07 16:48:00
207.237.235.99	attackspambots	Sep 2 20:13:57 itv-usvr-01 sshd[13919]: Invalid user pi from 207.237.235.99 Sep 2 20:13:57 itv-usvr-01 sshd[13918]: Invalid user pi from 207.237.235.99 Sep 2 20:13:57 itv-usvr-01 sshd[13919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.237.235.99 Sep 2 20:13:57 itv-usvr-01 sshd[13919]: Invalid user pi from 207.237.235.99 Sep 2 20:13:59 itv-usvr-01 sshd[13919]: Failed password for invalid user pi from 207.237.235.99 port 40630 ssh2 Sep 2 20:13:57 itv-usvr-01 sshd[13918]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.237.235.99 Sep 2 20:13:57 itv-usvr-01 sshd[13918]: Invalid user pi from 207.237.235.99 Sep 2 20:13:59 itv-usvr-01 sshd[13918]: Failed password for invalid user pi from 207.237.235.99 port 40628 ssh2	2019-09-07 16:51:02
188.31.18.15	attack	Communication world wide -man decided and woman wish ill will -comms with the world -inspiring - however some IT/DEV might not be happy with others enjoying themselves -where is OFCOM BBC hastily a Mac White -31/188	2019-09-07 16:44:48
58.221.204.114	attackspam	Sep 7 10:21:48 ArkNodeAT sshd\[16142\]: Invalid user jenkins from 58.221.204.114 Sep 7 10:21:48 ArkNodeAT sshd\[16142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.221.204.114 Sep 7 10:21:50 ArkNodeAT sshd\[16142\]: Failed password for invalid user jenkins from 58.221.204.114 port 57495 ssh2	2019-09-07 17:15:12
119.249.217.124	attackbots	Unauthorised access (Sep 7) SRC=119.249.217.124 LEN=40 TTL=49 ID=4294 TCP DPT=8080 WINDOW=61066 SYN Unauthorised access (Sep 6) SRC=119.249.217.124 LEN=40 TTL=49 ID=63175 TCP DPT=8080 WINDOW=51191 SYN Unauthorised access (Sep 4) SRC=119.249.217.124 LEN=40 TTL=49 ID=9600 TCP DPT=8080 WINDOW=23055 SYN	2019-09-07 16:35:55
51.83.70.149	attack	2019-09-07T08:39:47.884149abusebot-8.cloudsearch.cf sshd\[2223\]: Invalid user default from 51.83.70.149 port 60164	2019-09-07 17:03:17
80.211.95.201	attack	Sep 6 22:18:00 web9 sshd\[4230\]: Invalid user hippotec from 80.211.95.201 Sep 6 22:18:00 web9 sshd\[4230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.95.201 Sep 6 22:18:02 web9 sshd\[4230\]: Failed password for invalid user hippotec from 80.211.95.201 port 35960 ssh2 Sep 6 22:22:27 web9 sshd\[5031\]: Invalid user password from 80.211.95.201 Sep 6 22:22:27 web9 sshd\[5031\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.95.201	2019-09-07 16:38:37
157.230.238.132	attackspambots	WordPress wp-login brute force :: 157.230.238.132 0.048 BYPASS [07/Sep/2019:13:12:18 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-09-07 16:32:28

Recently Reported IPs

1.172.0.6	1.172.1.50	1.172.10.102	1.172.101.20
1.172.103.238	1.172.104.104	1.172.104.138	1.172.104.156
1.172.104.35	1.172.105.103	1.172.105.52	1.172.107.188
1.172.108.92	1.172.110.221	1.172.111.115	1.172.111.136
1.172.112.179	1.172.112.214	1.172.112.96	1.172.113.62