1.2.204.92 - IPInfo

Basic Info

City: Tak

Region: Tak

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.204.188	attack	Honeypot attack, port: 445, PTR: node-f5o.pool-1-2.dynamic.totinternet.net.	2020-05-07 12:57:16
1.2.204.140	attackbots	Icarus honeypot on github	2020-03-31 18:14:08
1.2.204.146	attack	Sun, 21 Jul 2019 07:37:06 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 19:50:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.204.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1408
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.204.92.			IN	A

;; AUTHORITY SECTION:
.			557	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 09:07:59 CST 2022
;; MSG SIZE  rcvd: 103

Host info

92.204.2.1.in-addr.arpa domain name pointer node-f30.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
92.204.2.1.in-addr.arpa	name = node-f30.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
95.57.34.131	attackspam	Automatic report - Port Scan Attack	2019-08-19 05:10:17
220.128.180.108	attackbots	Aug 18 22:37:28 apollo sshd\[9440\]: Failed password for root from 220.128.180.108 port 38700 ssh2Aug 18 22:37:41 apollo sshd\[9447\]: Failed password for root from 220.128.180.108 port 39999 ssh2Aug 18 22:37:50 apollo sshd\[9449\]: Invalid user oracle from 220.128.180.108 ...	2019-08-19 04:53:02
124.243.198.187	attackspambots	Aug 18 20:51:32 MK-Soft-VM6 sshd\[1754\]: Invalid user ftpuser from 124.243.198.187 port 45350 Aug 18 20:51:32 MK-Soft-VM6 sshd\[1754\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.243.198.187 Aug 18 20:51:34 MK-Soft-VM6 sshd\[1754\]: Failed password for invalid user ftpuser from 124.243.198.187 port 45350 ssh2 ...	2019-08-19 04:55:10
94.191.68.224	attack	Aug 18 14:57:43 tuxlinux sshd[45315]: Invalid user mailnull from 94.191.68.224 port 3016 Aug 18 14:57:43 tuxlinux sshd[45315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.68.224 Aug 18 14:57:43 tuxlinux sshd[45315]: Invalid user mailnull from 94.191.68.224 port 3016 Aug 18 14:57:43 tuxlinux sshd[45315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.68.224 Aug 18 14:57:43 tuxlinux sshd[45315]: Invalid user mailnull from 94.191.68.224 port 3016 Aug 18 14:57:43 tuxlinux sshd[45315]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.68.224 Aug 18 14:57:44 tuxlinux sshd[45315]: Failed password for invalid user mailnull from 94.191.68.224 port 3016 ssh2 ...	2019-08-19 04:53:30
185.132.53.100	attackbotsspam	Aug 18 17:06:32 [munged] sshd[30925]: Invalid user wesley from 185.132.53.100 port 51310 Aug 18 17:06:32 [munged] sshd[30925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.132.53.100	2019-08-19 05:27:30
49.236.219.105	attackbotsspam	Aug 18 06:57:11 mail postfix/postscreen[9313]: PREGREET 23 after 0.76 from [49.236.219.105]:59765: EHLO logudorotours.it ...	2019-08-19 04:54:12
80.51.182.18	attackbots	Automatic report - Port Scan Attack	2019-08-19 04:58:51
54.37.156.63	attack	Aug 18 15:12:15 vtv3 sshd\[12225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.156.63 user=root Aug 18 15:12:17 vtv3 sshd\[12225\]: Failed password for root from 54.37.156.63 port 35492 ssh2 Aug 18 15:16:07 vtv3 sshd\[14409\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.156.63 user=root Aug 18 15:16:09 vtv3 sshd\[14409\]: Failed password for root from 54.37.156.63 port 56414 ssh2 Aug 18 15:20:03 vtv3 sshd\[16260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.156.63 user=root Aug 18 15:31:22 vtv3 sshd\[22410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.156.63 user=root Aug 18 15:31:24 vtv3 sshd\[22410\]: Failed password for root from 54.37.156.63 port 55356 ssh2 Aug 18 15:35:12 vtv3 sshd\[24239\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.15	2019-08-19 04:50:50
177.74.182.52	attackspambots	2019-08-18T14:55:39.352831lumpi postfix/smtpd[975]: warning: unknown[177.74.182.52]: SASL PLAIN authentication failed: 2019-08-18T14:55:49.350135lumpi postfix/smtpd[975]: warning: unknown[177.74.182.52]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-08-18T14:56:07.466681lumpi postfix/smtpd[2000]: warning: unknown[177.74.182.52]: SASL PLAIN authentication failed: 2019-08-18T14:56:18.070435lumpi postfix/smtpd[2000]: warning: unknown[177.74.182.52]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-08-18T14:56:45.167229lumpi postfix/submission/smtpd[2002]: warning: unknown[177.74.182.52]: SASL PLAIN authentication failed: ...	2019-08-19 05:31:16
66.113.179.193	attackspam	Aug 18 17:19:22 vps sshd[26901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.113.179.193 Aug 18 17:19:25 vps sshd[26901]: Failed password for invalid user admin from 66.113.179.193 port 56648 ssh2 Aug 18 17:28:12 vps sshd[27331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.113.179.193 ...	2019-08-19 05:16:10
221.199.41.218	attackspambots	Autoban 221.199.41.218 ABORTED AUTH	2019-08-19 05:20:10
106.209.136.23	attack	Looking for resource vulnerabilities	2019-08-19 05:02:16
106.12.42.95	attackspam	Aug 18 11:13:53 askasleikir sshd[21201]: Failed password for invalid user toor from 106.12.42.95 port 36072 ssh2	2019-08-19 04:58:35
73.214.9.168	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: c-73-214-9-168.hsd1.pa.comcast.net.	2019-08-19 05:32:25
195.84.49.20	attackspambots	Aug 18 05:07:55 hpm sshd\[9393\]: Invalid user res from 195.84.49.20 Aug 18 05:07:55 hpm sshd\[9393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.0-24.49.84.195.host.songnetworks.se Aug 18 05:07:57 hpm sshd\[9393\]: Failed password for invalid user res from 195.84.49.20 port 48916 ssh2 Aug 18 05:12:09 hpm sshd\[9823\]: Invalid user user2 from 195.84.49.20 Aug 18 05:12:09 hpm sshd\[9823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.0-24.49.84.195.host.songnetworks.se	2019-08-19 05:18:46

Recently Reported IPs

1.2.204.88	26.206.82.94	1.2.204.95	1.2.205.101
1.2.205.104	1.2.205.108	31.49.71.8	1.2.205.111
1.2.205.112	1.2.205.114	1.2.205.118	1.2.205.119
1.2.205.125	1.2.205.129	1.2.205.130	1.2.205.137
1.2.205.139	1.2.205.14	1.2.205.143	1.2.205.144