1.2.200.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.200.49	attack	2. On May 18 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 1.2.200.49.	2020-05-20 18:40:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.200.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19412
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.200.20.			IN	A

;; AUTHORITY SECTION:
.			355	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 18:59:37 CST 2022
;; MSG SIZE  rcvd: 103

Host info

20.200.2.1.in-addr.arpa domain name pointer node-e8k.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.200.2.1.in-addr.arpa	name = node-e8k.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.45.122.7	attackspambots	Apr 8 06:26:36 legacy sshd[28341]: Failed password for root from 112.45.122.7 port 52231 ssh2 Apr 8 06:26:40 legacy sshd[28343]: Failed password for root from 112.45.122.7 port 52683 ssh2 ...	2020-04-08 17:24:26
27.73.18.72	attackspambots	Unauthorized connection attempt detected from IP address 27.73.18.72 to port 445	2020-04-08 17:16:04
142.44.240.190	attackbotsspam	Apr 8 05:54:38 nextcloud sshd\[25450\]: Invalid user admin from 142.44.240.190 Apr 8 05:54:38 nextcloud sshd\[25450\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.240.190 Apr 8 05:54:40 nextcloud sshd\[25450\]: Failed password for invalid user admin from 142.44.240.190 port 59564 ssh2	2020-04-08 17:20:48
91.188.229.168	attack	HACKED MY ACCOUNT IN STEAM.. PLEASE RETURN MY ACCOUNT, HACKER HACKER	2020-04-08 17:09:24
121.11.100.183	attack	(sshd) Failed SSH login from 121.11.100.183 (CN/China/-): 5 in the last 3600 secs	2020-04-08 17:37:31
46.37.171.183	attackbotsspam	mue-Direct access to plugin not allowed	2020-04-08 17:21:49
213.230.67.32	attackbots	Apr 8 08:39:05 rotator sshd\[6989\]: Invalid user ts from 213.230.67.32Apr 8 08:39:07 rotator sshd\[6989\]: Failed password for invalid user ts from 213.230.67.32 port 64718 ssh2Apr 8 08:43:07 rotator sshd\[7750\]: Invalid user gpadmin from 213.230.67.32Apr 8 08:43:09 rotator sshd\[7750\]: Failed password for invalid user gpadmin from 213.230.67.32 port 40265 ssh2Apr 8 08:47:13 rotator sshd\[8516\]: Invalid user ubuntu from 213.230.67.32Apr 8 08:47:15 rotator sshd\[8516\]: Failed password for invalid user ubuntu from 213.230.67.32 port 15811 ssh2 ...	2020-04-08 17:28:56
13.231.224.163	attackspam	Apr 8 05:54:12 jane sshd[30637]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.231.224.163 Apr 8 05:54:14 jane sshd[30637]: Failed password for invalid user sysadmin from 13.231.224.163 port 47786 ssh2 ...	2020-04-08 17:40:54
213.136.92.72	attackbots	fail2ban	2020-04-08 17:03:19
222.186.15.246	attackspam	SSH Authentication Attempts Exceeded	2020-04-08 17:35:16
129.28.158.91	attack	Apr 7 22:37:37 php1 sshd\[23342\]: Invalid user angular from 129.28.158.91 Apr 7 22:37:37 php1 sshd\[23342\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.158.91 Apr 7 22:37:39 php1 sshd\[23342\]: Failed password for invalid user angular from 129.28.158.91 port 40738 ssh2 Apr 7 22:43:44 php1 sshd\[24022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.158.91 user=root Apr 7 22:43:46 php1 sshd\[24022\]: Failed password for root from 129.28.158.91 port 34120 ssh2	2020-04-08 17:44:02
51.38.238.165	attack	Apr 8 08:20:05 XXX sshd[30103]: Invalid user user from 51.38.238.165 port 34672	2020-04-08 17:08:00
89.35.39.60	attackspambots	REQUESTED PAGE: /wp-login.php	2020-04-08 17:18:24
116.196.101.168	attackbotsspam	Apr 8 09:42:58 DAAP sshd[8161]: Invalid user lobo from 116.196.101.168 port 54770 Apr 8 09:42:58 DAAP sshd[8161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.101.168 Apr 8 09:42:58 DAAP sshd[8161]: Invalid user lobo from 116.196.101.168 port 54770 Apr 8 09:43:00 DAAP sshd[8161]: Failed password for invalid user lobo from 116.196.101.168 port 54770 ssh2 Apr 8 09:52:56 DAAP sshd[8281]: Invalid user check from 116.196.101.168 port 40362 ...	2020-04-08 17:07:18
94.191.90.117	attackspam	SSH login attempts.	2020-04-08 17:17:41

Recently Reported IPs

1.2.200.2	1.2.200.201	1.2.200.202	198.72.120.38
1.2.200.211	1.2.200.212	1.2.200.214	1.2.200.223
1.2.200.225	1.2.200.226	1.2.200.233	1.2.200.234
1.2.200.236	1.2.200.238	1.2.200.242	1.2.200.245
1.2.200.247	1.2.200.250	1.2.200.252	1.2.200.27