1.2.200.106 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.200.49	attack	2. On May 18 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 1.2.200.49.	2020-05-20 18:40:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.200.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23993
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.200.106.			IN	A

;; AUTHORITY SECTION:
.			172	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 11:38:48 CST 2022
;; MSG SIZE  rcvd: 104

Host info

106.200.2.1.in-addr.arpa domain name pointer node-eay.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
106.200.2.1.in-addr.arpa	name = node-eay.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.91.149.134	attack	Invalid user gk from 112.91.149.134 port 55924	2019-10-30 07:17:37
113.31.102.157	attackbotsspam	Oct 29 10:53:42 * sshd[30106]: Failed password for invalid user charity from 113.31.102.157 port 47356 ssh2 Oct 29 11:09:48 * sshd[30481]: Failed password for invalid user rator from 113.31.102.157 port 45212 ssh2 Oct 29 11:30:49 * sshd[30869]: Failed password for invalid user perl from 113.31.102.157 port 51756 ssh2 Oct 29 12:03:33 * sshd[31450]: Failed password for invalid user up from 113.31.102.157 port 47452 ssh2 Oct 29 12:08:45 * sshd[31558]: Failed password for invalid user webmaster from 113.31.102.157 port 56162 ssh2 Oct 29 12:19:19 * sshd[31740]: Failed password for invalid user pos from 113.31.102.157 port 45328 ssh2 Oct 29 12:40:40 * sshd[32168]: Failed password for invalid user ppldtepe from 113.31.102.157 port 51874 ssh2 Oct 29 12:45:58 * sshd[32295]: Failed password for invalid user wpadmin from 113.31.102.157 port 60588 ssh2 Oct 29 12:51:27 * sshd[32409]: Failed password for invalid user rajadhidevi from 113.31.102.157 port 41068 ssh2 Oct 29 13:23:43 * sshd[778]: Failed pas	2019-10-30 07:15:48
202.59.132.71	attackspam	Unauthorized connection attempt from IP address 202.59.132.71 on Port 445(SMB)	2019-10-30 07:08:01
77.81.238.70	attackbots	Oct 29 22:51:18 venus sshd\[9155\]: Invalid user fdsa3rw3 from 77.81.238.70 port 45199 Oct 29 22:51:18 venus sshd\[9155\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.238.70 Oct 29 22:51:20 venus sshd\[9155\]: Failed password for invalid user fdsa3rw3 from 77.81.238.70 port 45199 ssh2 ...	2019-10-30 07:17:54
83.139.139.22	attackspam	Chat Spam	2019-10-30 06:52:25
200.122.249.203	attackspam	Invalid user mhasan from 200.122.249.203 port 39997	2019-10-30 06:50:43
196.218.129.70	attackspam	Unauthorized connection attempt from IP address 196.218.129.70 on Port 445(SMB)	2019-10-30 07:06:46
103.218.2.137	attackbots	Invalid user Server5 from 103.218.2.137 port 54604	2019-10-30 06:48:44
119.196.83.10	attack	detected by Fail2Ban	2019-10-30 06:58:22
114.220.176.218	attackspam	Oct 29 03:32:25 * sshd[7239]: Failed password for invalid user vuser from 114.220.176.218 port 50256 ssh2 Oct 29 03:44:14 * sshd[7464]: Failed password for invalid user 1 from 114.220.176.218 port 53522 ssh2 Oct 29 03:48:12 * sshd[7531]: Failed password for invalid user 3 from 114.220.176.218 port 35798 ssh2 Oct 29 03:52:20 * sshd[7570]: Failed password for invalid user Admin2018 from 114.220.176.218 port 46308 ssh2 Oct 29 03:56:16 * sshd[7603]: Failed password for invalid user alexxutzu1$@121 from 114.220.176.218 port 56812 ssh2 Oct 29 04:00:07 * sshd[7644]: Failed password for invalid user 12-qw from 114.220.176.218 port 39088 ssh2 Oct 29 04:04:15 * sshd[7743]: Failed password for invalid user windfox from 114.220.176.218 port 49596 ssh2 Oct 29 04:08:23 * sshd[7798]: Failed password for invalid user catnip from 114.220.176.218 port 60108 ssh2 Oct 29 04:12:32 * sshd[7891]: Failed password for invalid user vicecity from 114.220.176.218 port 42396 ssh2 Oct 29 04:16:34 * sshd[7930]: Failed p	2019-10-30 07:13:50
80.151.236.165	attackspam	Lines containing failures of 80.151.236.165 Oct 29 17:58:10 jarvis sshd[3401]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.151.236.165 user=r.r Oct 29 17:58:12 jarvis sshd[3401]: Failed password for r.r from 80.151.236.165 port 53443 ssh2 Oct 29 17:58:14 jarvis sshd[3401]: Received disconnect from 80.151.236.165 port 53443:11: Bye Bye [preauth] Oct 29 17:58:14 jarvis sshd[3401]: Disconnected from authenticating user r.r 80.151.236.165 port 53443 [preauth] Oct 29 18:06:44 jarvis sshd[5016]: Invalid user vbox from 80.151.236.165 port 62903 Oct 29 18:06:44 jarvis sshd[5016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.151.236.165 Oct 29 18:06:45 jarvis sshd[5016]: Failed password for invalid user vbox from 80.151.236.165 port 62903 ssh2 Oct 29 18:06:46 jarvis sshd[5016]: Received disconnect from 80.151.236.165 port 62903:11: Bye Bye [preauth] Oct 29 18:06:46 jarvis sshd[5016]: Di........ ------------------------------	2019-10-30 07:18:51
185.122.104.171	attackspambots	Automatic report - XMLRPC Attack	2019-10-30 07:13:30
101.230.238.32	attackspambots	Lines containing failures of 101.230.238.32 Oct 28 08:38:15 shared10 sshd[11855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.230.238.32 user=r.r Oct 28 08:38:17 shared10 sshd[11855]: Failed password for r.r from 101.230.238.32 port 40722 ssh2 Oct 28 08:38:18 shared10 sshd[11855]: Received disconnect from 101.230.238.32 port 40722:11: Bye Bye [preauth] Oct 28 08:38:18 shared10 sshd[11855]: Disconnected from authenticating user r.r 101.230.238.32 port 40722 [preauth] Oct 28 09:02:20 shared10 sshd[19793]: Invalid user hattori from 101.230.238.32 port 51834 Oct 28 09:02:20 shared10 sshd[19793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.230.238.32 Oct 28 09:02:22 shared10 sshd[19793]: Failed password for invalid user hattori from 101.230.238.32 port 51834 ssh2 Oct 28 09:02:22 shared10 sshd[19793]: Received disconnect from 101.230.238.32 port 51834:11: Bye Bye [preauth] Oct 28 0........ ------------------------------	2019-10-30 07:05:08
187.233.146.222	attack	23/tcp [2019-10-29]1pkt	2019-10-30 06:58:07
58.137.211.166	attack	Unauthorized connection attempt from IP address 58.137.211.166 on Port 445(SMB)	2019-10-30 07:14:34

Recently Reported IPs

1.2.200.11	1.2.2.1	177.61.180.244	1.2.200.138
1.2.200.125	1.2.200.126	1.2.200.133	1.2.200.14
1.2.200.119	103.3.2.86	1.2.200.130	1.2.201.37
1.2.201.39	1.2.201.35	1.2.201.42	1.2.201.48
1.2.201.58	1.2.201.5	1.2.201.46	1.2.200.141