1.2.200.106 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.200.49	attack	2. On May 18 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 1.2.200.49.	2020-05-20 18:40:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.200.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23993
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.200.106.			IN	A

;; AUTHORITY SECTION:
.			172	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 11:38:48 CST 2022
;; MSG SIZE  rcvd: 104

Host info

106.200.2.1.in-addr.arpa domain name pointer node-eay.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.200.2.1.in-addr.arpa	name = node-eay.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.65.41.159	attack	Aug 29 15:04:54 pve1 sshd[23769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.41.159 Aug 29 15:04:56 pve1 sshd[23769]: Failed password for invalid user admin from 159.65.41.159 port 48956 ssh2 ...	2020-08-30 04:02:32
129.211.92.41	attackbots	Aug 29 15:25:36 home sshd[2566128]: Invalid user zpw from 129.211.92.41 port 46646 Aug 29 15:25:36 home sshd[2566128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.92.41 Aug 29 15:25:36 home sshd[2566128]: Invalid user zpw from 129.211.92.41 port 46646 Aug 29 15:25:38 home sshd[2566128]: Failed password for invalid user zpw from 129.211.92.41 port 46646 ssh2 Aug 29 15:29:44 home sshd[2567599]: Invalid user iz from 129.211.92.41 port 35156 ...	2020-08-30 03:43:21
113.231.21.98	attackspam	Unauthorised access (Aug 29) SRC=113.231.21.98 LEN=40 TTL=46 ID=39678 TCP DPT=8080 WINDOW=38172 SYN Unauthorised access (Aug 29) SRC=113.231.21.98 LEN=40 TTL=46 ID=40757 TCP DPT=8080 WINDOW=132 SYN Unauthorised access (Aug 28) SRC=113.231.21.98 LEN=40 TTL=46 ID=26796 TCP DPT=8080 WINDOW=132 SYN Unauthorised access (Aug 28) SRC=113.231.21.98 LEN=40 TTL=46 ID=60765 TCP DPT=8080 WINDOW=38172 SYN	2020-08-30 03:34:15
94.232.40.45	attackbots	RDP brute forcing (r)	2020-08-30 03:30:31
51.91.110.170	attack	2020-08-29T16:12:24.928875mail.standpoint.com.ua sshd[24088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.ip-51-91-110.eu 2020-08-29T16:12:24.925189mail.standpoint.com.ua sshd[24088]: Invalid user admin from 51.91.110.170 port 43016 2020-08-29T16:12:27.761089mail.standpoint.com.ua sshd[24088]: Failed password for invalid user admin from 51.91.110.170 port 43016 ssh2 2020-08-29T16:16:12.474991mail.standpoint.com.ua sshd[24569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.ip-51-91-110.eu user=root 2020-08-29T16:16:14.609580mail.standpoint.com.ua sshd[24569]: Failed password for root from 51.91.110.170 port 49382 ssh2 ...	2020-08-30 03:45:33
111.67.206.115	attackbotsspam	Aug 29 05:19:06 mockhub sshd[2389]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.206.115 Aug 29 05:19:07 mockhub sshd[2389]: Failed password for invalid user uu from 111.67.206.115 port 43860 ssh2 ...	2020-08-30 04:06:38
96.39.117.210	attackbots	2020-08-29T14:03:18.898955hz01.yumiweb.com sshd\[5190\]: Invalid user admin from 96.39.117.210 port 43380 2020-08-29T14:03:20.523857hz01.yumiweb.com sshd\[5192\]: Invalid user admin from 96.39.117.210 port 43397 2020-08-29T14:03:21.645433hz01.yumiweb.com sshd\[5194\]: Invalid user admin from 96.39.117.210 port 43402 ...	2020-08-30 03:55:39
178.128.121.188	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-30 03:53:22
202.154.180.51	attack	$f2bV_matches	2020-08-30 03:41:23
180.76.54.86	attackbotsspam	Aug 29 14:15:26 inter-technics sshd[11252]: Invalid user zd from 180.76.54.86 port 47098 Aug 29 14:15:26 inter-technics sshd[11252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.54.86 Aug 29 14:15:26 inter-technics sshd[11252]: Invalid user zd from 180.76.54.86 port 47098 Aug 29 14:15:28 inter-technics sshd[11252]: Failed password for invalid user zd from 180.76.54.86 port 47098 ssh2 Aug 29 14:19:49 inter-technics sshd[11510]: Invalid user beni from 180.76.54.86 port 43912 ...	2020-08-30 03:43:03
134.209.179.18	attackspambots	Invalid user deploy from 134.209.179.18 port 59146	2020-08-30 03:52:25
49.232.137.54	attackspam	Aug 29 15:30:25 OPSO sshd\[14748\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.137.54 user=root Aug 29 15:30:27 OPSO sshd\[14748\]: Failed password for root from 49.232.137.54 port 51140 ssh2 Aug 29 15:34:50 OPSO sshd\[15019\]: Invalid user lcc from 49.232.137.54 port 41936 Aug 29 15:34:50 OPSO sshd\[15019\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.137.54 Aug 29 15:34:52 OPSO sshd\[15019\]: Failed password for invalid user lcc from 49.232.137.54 port 41936 ssh2	2020-08-30 04:05:27
178.128.243.225	attackbots	Aug 29 20:22:33 buvik sshd[8690]: Invalid user steam from 178.128.243.225 Aug 29 20:22:33 buvik sshd[8690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.243.225 Aug 29 20:22:35 buvik sshd[8690]: Failed password for invalid user steam from 178.128.243.225 port 45298 ssh2 ...	2020-08-30 03:56:35
14.231.133.123	attack	1598702635 - 08/29/2020 14:03:55 Host: 14.231.133.123/14.231.133.123 Port: 445 TCP Blocked ...	2020-08-30 03:33:54
106.55.37.132	attackspam	Aug 29 14:35:13 vps639187 sshd\[3239\]: Invalid user pandora from 106.55.37.132 port 40052 Aug 29 14:35:13 vps639187 sshd\[3239\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.55.37.132 Aug 29 14:35:16 vps639187 sshd\[3239\]: Failed password for invalid user pandora from 106.55.37.132 port 40052 ssh2 ...	2020-08-30 04:00:15

Recently Reported IPs

1.2.200.11	1.2.2.1	177.61.180.244	1.2.200.138
1.2.200.125	1.2.200.126	1.2.200.133	1.2.200.14
1.2.200.119	103.3.2.86	1.2.200.130	1.2.201.37
1.2.201.39	1.2.201.35	1.2.201.42	1.2.201.48
1.2.201.58	1.2.201.5	1.2.201.46	1.2.200.141