1.2.200.14 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.200.49	attack	2. On May 18 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 1.2.200.49.	2020-05-20 18:40:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.200.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45168
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.200.14.			IN	A

;; AUTHORITY SECTION:
.			443	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 11:38:50 CST 2022
;; MSG SIZE  rcvd: 103

Host info

14.200.2.1.in-addr.arpa domain name pointer node-e8e.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
14.200.2.1.in-addr.arpa	name = node-e8e.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.4.252.4	attack	1596314880 - 08/02/2020 03:48:00 Host: ip-45-4-252-4.fibernet.net.ar/45.4.252.4 Port: 8080 TCP Blocked ...	2020-08-02 06:16:53
190.145.254.138	attackspam	SSH Invalid Login	2020-08-02 05:57:58
106.55.37.132	attack	Invalid user deploy from 106.55.37.132 port 59750	2020-08-02 06:09:07
46.242.245.245	attackspambots	Automatic report - XMLRPC Attack	2020-08-02 06:25:36
175.30.204.11	attackbots	2020-08-01T21:41:52.305283shield sshd\[15783\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.30.204.11 user=root 2020-08-01T21:41:54.537467shield sshd\[15783\]: Failed password for root from 175.30.204.11 port 33168 ssh2 2020-08-01T21:44:01.046128shield sshd\[16692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.30.204.11 user=root 2020-08-01T21:44:03.518963shield sshd\[16692\]: Failed password for root from 175.30.204.11 port 48061 ssh2 2020-08-01T21:46:11.521613shield sshd\[17484\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.30.204.11 user=root	2020-08-02 05:58:28
94.230.208.148	attack	Malicious brute force vulnerability hacking attacks	2020-08-02 06:30:39
193.112.74.169	attackspam	Aug 1 14:03:49 mockhub sshd[11172]: Failed password for root from 193.112.74.169 port 50050 ssh2 ...	2020-08-02 05:56:02
106.13.113.91	attackspambots	Aug 2 03:47:15 itv-usvr-02 sshd[22438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.113.91 user=root Aug 2 03:50:34 itv-usvr-02 sshd[22534]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.113.91 user=root Aug 2 03:53:39 itv-usvr-02 sshd[22632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.113.91 user=root	2020-08-02 06:24:19
91.134.173.100	attack	2020-08-01T21:53:17.081100shield sshd\[19406\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.173.100 user=root 2020-08-01T21:53:19.017361shield sshd\[19406\]: Failed password for root from 91.134.173.100 port 38534 ssh2 2020-08-01T21:56:58.739613shield sshd\[20039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.173.100 user=root 2020-08-01T21:57:00.681041shield sshd\[20039\]: Failed password for root from 91.134.173.100 port 49060 ssh2 2020-08-01T22:00:44.423110shield sshd\[21544\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.173.100 user=root	2020-08-02 06:30:56
114.236.45.203	attackspambots	Honeypot hit.	2020-08-02 06:05:15
118.24.114.88	attack	(sshd) Failed SSH login from 118.24.114.88 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 2 00:05:33 srv sshd[8853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.114.88 user=root Aug 2 00:05:35 srv sshd[8853]: Failed password for root from 118.24.114.88 port 51364 ssh2 Aug 2 00:11:29 srv sshd[8972]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.114.88 user=root Aug 2 00:11:31 srv sshd[8972]: Failed password for root from 118.24.114.88 port 57850 ssh2 Aug 2 00:17:19 srv sshd[13769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.114.88 user=root	2020-08-02 06:01:18
113.31.108.14	attackspam	Aug 1 22:22:30 ovpn sshd\[4190\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.108.14 user=root Aug 1 22:22:32 ovpn sshd\[4190\]: Failed password for root from 113.31.108.14 port 41152 ssh2 Aug 1 22:41:44 ovpn sshd\[8782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.108.14 user=root Aug 1 22:41:46 ovpn sshd\[8782\]: Failed password for root from 113.31.108.14 port 51930 ssh2 Aug 1 22:48:08 ovpn sshd\[10300\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.31.108.14 user=root	2020-08-02 06:05:35
154.8.147.238	attack	SSH Invalid Login	2020-08-02 05:56:30
211.145.49.253	attack	SSH Invalid Login	2020-08-02 05:57:41
69.94.141.98	attackspam	2020-08-01 15:40:24.132355-0500 localhost smtpd[87819]: NOQUEUE: reject: RCPT from unknown[69.94.141.98]: 554 5.7.1 Service unavailable; Client host [69.94.141.98] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo=	2020-08-02 06:06:01

Recently Reported IPs

1.2.200.133	1.2.200.119	103.3.2.86	1.2.200.130
1.2.201.37	1.2.201.39	1.2.201.35	1.2.201.42
1.2.201.48	1.2.201.58	1.2.201.5	1.2.201.46
1.2.200.141	1.2.201.6	1.2.201.31	103.3.244.110
1.2.201.65	1.2.201.69	1.2.201.83	1.2.201.87