1.2.200.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.200.49	attack	2. On May 18 2020 experienced a Brute Force SSH login attempt -> 1 unique times by 1.2.200.49.	2020-05-20 18:40:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.200.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19412
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.200.20.			IN	A

;; AUTHORITY SECTION:
.			355	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 18:59:37 CST 2022
;; MSG SIZE  rcvd: 103

Host info

20.200.2.1.in-addr.arpa domain name pointer node-e8k.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.200.2.1.in-addr.arpa	name = node-e8k.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.15.115	attackspambots	Aug 21 10:07:42 vps647732 sshd[25780]: Failed password for root from 222.186.15.115 port 51323 ssh2 ...	2020-08-21 16:13:26
14.23.154.114	attackspam	Aug 21 09:02:18 ip40 sshd[11141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.23.154.114 Aug 21 09:02:20 ip40 sshd[11141]: Failed password for invalid user 111111 from 14.23.154.114 port 44453 ssh2 ...	2020-08-21 15:47:20
106.53.9.137	attackbots	srv02 Mass scanning activity detected Target: 28364 ..	2020-08-21 16:15:18
61.182.226.42	attackspam	Invalid user ivan from 61.182.226.42 port 48754	2020-08-21 16:16:43
221.7.213.133	attack	Aug 21 09:55:50 abendstille sshd\[30489\]: Invalid user sims from 221.7.213.133 Aug 21 09:55:50 abendstille sshd\[30489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.213.133 Aug 21 09:55:52 abendstille sshd\[30489\]: Failed password for invalid user sims from 221.7.213.133 port 51399 ssh2 Aug 21 10:01:38 abendstille sshd\[4201\]: Invalid user administrator from 221.7.213.133 Aug 21 10:01:38 abendstille sshd\[4201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.213.133 ...	2020-08-21 16:08:34
67.230.171.161	attackbotsspam	Aug 21 09:00:52 ns392434 sshd[30067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.230.171.161 user=root Aug 21 09:00:55 ns392434 sshd[30067]: Failed password for root from 67.230.171.161 port 50668 ssh2 Aug 21 09:19:05 ns392434 sshd[30486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.230.171.161 user=root Aug 21 09:19:07 ns392434 sshd[30486]: Failed password for root from 67.230.171.161 port 53994 ssh2 Aug 21 09:47:38 ns392434 sshd[31077]: Invalid user ntc from 67.230.171.161 port 33560 Aug 21 09:47:38 ns392434 sshd[31077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.230.171.161 Aug 21 09:47:38 ns392434 sshd[31077]: Invalid user ntc from 67.230.171.161 port 33560 Aug 21 09:47:39 ns392434 sshd[31077]: Failed password for invalid user ntc from 67.230.171.161 port 33560 ssh2 Aug 21 10:02:31 ns392434 sshd[31434]: Invalid user atendimento from 67.230.171.161 port 37466	2020-08-21 16:19:16
156.96.44.213	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-08-21 16:21:38
103.86.134.194	attack	Invalid user sinusbot from 103.86.134.194 port 42290	2020-08-21 16:10:08
78.138.188.187	attack	Invalid user user from 78.138.188.187 port 38168	2020-08-21 15:48:00
125.72.106.103	attackspam	Aug 20 21:10:07 mockhub sshd[366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.72.106.103 Aug 20 21:10:09 mockhub sshd[366]: Failed password for invalid user nginx from 125.72.106.103 port 56586 ssh2 ...	2020-08-21 16:14:00
61.221.64.4	attack	Aug 21 07:40:47 cosmoit sshd[15742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.221.64.4	2020-08-21 15:56:27
139.198.122.19	attackspambots	Aug 21 17:26:07 NG-HHDC-SVS-001 sshd[7750]: Invalid user posto from 139.198.122.19 ...	2020-08-21 16:04:29
45.119.83.68	attackbotsspam	Aug 21 05:49:05 v22019038103785759 sshd\[24998\]: Invalid user lakim from 45.119.83.68 port 49682 Aug 21 05:49:05 v22019038103785759 sshd\[24998\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.119.83.68 Aug 21 05:49:07 v22019038103785759 sshd\[24998\]: Failed password for invalid user lakim from 45.119.83.68 port 49682 ssh2 Aug 21 05:54:27 v22019038103785759 sshd\[25441\]: Invalid user cdc from 45.119.83.68 port 59216 Aug 21 05:54:27 v22019038103785759 sshd\[25441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.119.83.68 ...	2020-08-21 16:24:50
93.108.242.140	attack	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-21 16:06:32
193.70.112.6	attack	SSH invalid-user multiple login attempts	2020-08-21 16:20:43

Recently Reported IPs

1.2.200.2	1.2.200.201	1.2.200.202	198.72.120.38
1.2.200.211	1.2.200.212	1.2.200.214	1.2.200.223
1.2.200.225	1.2.200.226	1.2.200.233	1.2.200.234
1.2.200.236	1.2.200.238	1.2.200.242	1.2.200.245
1.2.200.247	1.2.200.250	1.2.200.252	1.2.200.27