1.2.204.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.204.188	attack	Honeypot attack, port: 445, PTR: node-f5o.pool-1-2.dynamic.totinternet.net.	2020-05-07 12:57:16
1.2.204.140	attackbots	Icarus honeypot on github	2020-03-31 18:14:08
1.2.204.146	attack	Sun, 21 Jul 2019 07:37:06 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 19:50:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.204.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13186
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.204.20.			IN	A

;; AUTHORITY SECTION:
.			134	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 19:08:47 CST 2022
;; MSG SIZE  rcvd: 103

Host info

20.204.2.1.in-addr.arpa domain name pointer node-f10.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
20.204.2.1.in-addr.arpa	name = node-f10.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.61.175.219	attack	Jul 3 17:49:07 host sshd[14678]: Invalid user gusiyu from 182.61.175.219 port 59884 ...	2020-07-04 02:24:18
157.230.244.147	attackspam	2020-07-03T18:26:08.169681shield sshd\[26194\]: Invalid user notes from 157.230.244.147 port 36716 2020-07-03T18:26:08.173126shield sshd\[26194\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.244.147 2020-07-03T18:26:09.915881shield sshd\[26194\]: Failed password for invalid user notes from 157.230.244.147 port 36716 ssh2 2020-07-03T18:31:25.110614shield sshd\[29716\]: Invalid user photos from 157.230.244.147 port 33942 2020-07-03T18:31:25.115112shield sshd\[29716\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.244.147	2020-07-04 02:44:52
161.35.224.10	attackspambots	Jul 3 17:32:35 rush sshd[18579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.224.10 Jul 3 17:32:38 rush sshd[18579]: Failed password for invalid user ric from 161.35.224.10 port 62686 ssh2 Jul 3 17:35:57 rush sshd[18780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.35.224.10 ...	2020-07-04 02:18:04
195.54.160.228	attackbots	[MK-VM4] Blocked by UFW	2020-07-04 02:44:04
187.189.24.234	attack	Jul 3 12:31:43 Host-KLAX-C dovecot: imap-login: Disconnected (auth failed, 1 attempts in 19 secs): user=, method=PLAIN, rip=187.189.24.234, lip=185.198.26.142, TLS, session= ...	2020-07-04 02:48:37
14.187.117.215	attack	Email rejected due to spam filtering	2020-07-04 02:42:22
51.255.35.41	attackbotsspam	2020-07-03T20:09:45.6184631240 sshd\[15239\]: Invalid user mohammed from 51.255.35.41 port 32915 2020-07-03T20:09:45.6221041240 sshd\[15239\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.35.41 2020-07-03T20:09:47.7512541240 sshd\[15239\]: Failed password for invalid user mohammed from 51.255.35.41 port 32915 ssh2 ...	2020-07-04 02:27:57
185.69.246.218	attackbotsspam	Jul 3 20:31:50 mail sshd[10393]: Invalid user pi from 185.69.246.218 port 58572 Jul 3 20:31:50 mail sshd[10395]: Invalid user pi from 185.69.246.218 port 58576 ...	2020-07-04 02:38:06
218.92.0.220	attackbotsspam	Unauthorized connection attempt detected from IP address 218.92.0.220 to port 22	2020-07-04 02:33:50
51.83.75.97	attack	detected by Fail2Ban	2020-07-04 02:47:11
92.246.243.163	attackspam	Jul 3 08:43:34 web1 sshd\[13293\]: Invalid user admin from 92.246.243.163 Jul 3 08:43:34 web1 sshd\[13293\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.246.243.163 Jul 3 08:43:36 web1 sshd\[13293\]: Failed password for invalid user admin from 92.246.243.163 port 60960 ssh2 Jul 3 08:49:33 web1 sshd\[13805\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.246.243.163 user=root Jul 3 08:49:36 web1 sshd\[13805\]: Failed password for root from 92.246.243.163 port 59468 ssh2	2020-07-04 02:54:05
104.236.175.127	attackbotsspam	Jul 3 15:23:34 sigma sshd\[16196\]: Invalid user gordon from 104.236.175.127Jul 3 15:23:36 sigma sshd\[16196\]: Failed password for invalid user gordon from 104.236.175.127 port 42904 ssh2 ...	2020-07-04 02:23:26
190.248.150.138	attackbotsspam	Jul 3 18:27:15 rush sshd[21709]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.248.150.138 Jul 3 18:27:17 rush sshd[21709]: Failed password for invalid user sentry from 190.248.150.138 port 52636 ssh2 Jul 3 18:31:43 rush sshd[21953]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.248.150.138 ...	2020-07-04 02:48:01
60.6.57.239	attackspam	Jul 1 00:06:01 extapp sshd[21931]: Invalid user umar from 60.6.57.239 Jul 1 00:06:03 extapp sshd[21931]: Failed password for invalid user umar from 60.6.57.239 port 38688 ssh2 Jul 1 00:08:44 extapp sshd[23998]: Invalid user thiago from 60.6.57.239 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=60.6.57.239	2020-07-04 02:25:14
117.50.2.135	attack	Jul 3 18:16:48 rush sshd[21076]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.2.135 Jul 3 18:16:50 rush sshd[21076]: Failed password for invalid user cloud from 117.50.2.135 port 49924 ssh2 Jul 3 18:20:48 rush sshd[21260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.2.135 ...	2020-07-04 02:29:46

Recently Reported IPs

1.2.204.199	1.2.204.208	106.60.101.183	1.2.204.212
1.2.204.217	1.2.204.22	1.2.204.224	1.2.204.229
1.2.204.231	1.2.204.235	1.2.204.24	1.2.204.246
1.2.204.253	1.2.204.26	1.2.204.29	1.2.204.30
102.13.222.38	1.2.204.38	1.2.204.40	1.2.204.42