1.2.204.92 - IPInfo

Basic Info

City: Tak

Region: Tak

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.204.188	attack	Honeypot attack, port: 445, PTR: node-f5o.pool-1-2.dynamic.totinternet.net.	2020-05-07 12:57:16
1.2.204.140	attackbots	Icarus honeypot on github	2020-03-31 18:14:08
1.2.204.146	attack	Sun, 21 Jul 2019 07:37:06 +0000 likely compromised host or open proxy. ddos rate spidering	2019-07-21 19:50:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.204.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1408
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.204.92.			IN	A

;; AUTHORITY SECTION:
.			557	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 09:07:59 CST 2022
;; MSG SIZE  rcvd: 103

Host info

92.204.2.1.in-addr.arpa domain name pointer node-f30.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
92.204.2.1.in-addr.arpa	name = node-f30.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.215	attack	Dec 17 00:13:25 legacy sshd[18970]: Failed password for root from 222.186.175.215 port 10280 ssh2 Dec 17 00:13:29 legacy sshd[18970]: Failed password for root from 222.186.175.215 port 10280 ssh2 Dec 17 00:13:37 legacy sshd[18970]: error: maximum authentication attempts exceeded for root from 222.186.175.215 port 10280 ssh2 [preauth] ...	2019-12-17 07:17:37
183.82.2.251	attackbotsspam	2019-12-16T21:49:58.211629abusebot.cloudsearch.cf sshd\[18107\]: Invalid user dovecot from 183.82.2.251 port 58471 2019-12-16T21:49:58.218135abusebot.cloudsearch.cf sshd\[18107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.82.2.251 2019-12-16T21:50:00.556417abusebot.cloudsearch.cf sshd\[18107\]: Failed password for invalid user dovecot from 183.82.2.251 port 58471 ssh2 2019-12-16T21:58:46.101359abusebot.cloudsearch.cf sshd\[18231\]: Invalid user pos from 183.82.2.251 port 40143	2019-12-17 07:21:23
72.27.52.225	attackbots	Unauthorized connection attempt detected from IP address 72.27.52.225 to port 445	2019-12-17 07:26:25
123.207.142.208	attackbots	Dec 17 00:14:11 lnxweb61 sshd[4836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.142.208	2019-12-17 07:22:01
61.216.13.170	attackbotsspam	Dec 17 00:02:41 cvbnet sshd[19362]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.216.13.170 Dec 17 00:02:43 cvbnet sshd[19362]: Failed password for invalid user tsiakas from 61.216.13.170 port 35145 ssh2 ...	2019-12-17 07:41:38
40.92.42.25	attack	Dec 17 02:17:25 debian-2gb-vpn-nbg1-1 kernel: [916613.321304] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.42.25 DST=78.46.192.101 LEN=52 TOS=0x02 PREC=0x00 TTL=102 ID=11000 DF PROTO=TCP SPT=41505 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2019-12-17 07:36:30
222.186.175.150	attackbots	Dec 16 13:32:35 php1 sshd\[16053\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Dec 16 13:32:37 php1 sshd\[16053\]: Failed password for root from 222.186.175.150 port 39572 ssh2 Dec 16 13:32:40 php1 sshd\[16053\]: Failed password for root from 222.186.175.150 port 39572 ssh2 Dec 16 13:32:49 php1 sshd\[16053\]: Failed password for root from 222.186.175.150 port 39572 ssh2 Dec 16 13:32:53 php1 sshd\[16099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root	2019-12-17 07:33:48
51.38.112.45	attackspam	Dec 16 22:33:30 web8 sshd\[28594\]: Invalid user squid from 51.38.112.45 Dec 16 22:33:30 web8 sshd\[28594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.112.45 Dec 16 22:33:32 web8 sshd\[28594\]: Failed password for invalid user squid from 51.38.112.45 port 34968 ssh2 Dec 16 22:38:41 web8 sshd\[31096\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.112.45 user=root Dec 16 22:38:43 web8 sshd\[31096\]: Failed password for root from 51.38.112.45 port 41950 ssh2	2019-12-17 07:45:04
180.76.119.77	attackspambots	Dec 16 13:27:26 auw2 sshd\[961\]: Invalid user centeno from 180.76.119.77 Dec 16 13:27:26 auw2 sshd\[961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.119.77 Dec 16 13:27:28 auw2 sshd\[961\]: Failed password for invalid user centeno from 180.76.119.77 port 49468 ssh2 Dec 16 13:32:44 auw2 sshd\[1504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.119.77 user=root Dec 16 13:32:46 auw2 sshd\[1504\]: Failed password for root from 180.76.119.77 port 50180 ssh2	2019-12-17 07:46:23
76.186.81.229	attackbotsspam	Dec 16 23:22:58 web8 sshd\[21075\]: Invalid user martindale from 76.186.81.229 Dec 16 23:22:58 web8 sshd\[21075\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.186.81.229 Dec 16 23:23:00 web8 sshd\[21075\]: Failed password for invalid user martindale from 76.186.81.229 port 36648 ssh2 Dec 16 23:30:33 web8 sshd\[24936\]: Invalid user tinklebell from 76.186.81.229 Dec 16 23:30:33 web8 sshd\[24936\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.186.81.229	2019-12-17 07:31:21
119.65.57.252	attackspam	Dec 16 22:58:35 debian-2gb-nbg1-2 kernel: \[186298.075721\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=119.65.57.252 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=55767 PROTO=TCP SPT=7634 DPT=5555 WINDOW=14834 RES=0x00 SYN URGP=0	2019-12-17 07:30:19
157.230.31.236	attackspam	Dec 17 00:35:20 microserver sshd[41236]: Invalid user yowchyong from 157.230.31.236 port 51464 Dec 17 00:35:20 microserver sshd[41236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.31.236 Dec 17 00:35:22 microserver sshd[41236]: Failed password for invalid user yowchyong from 157.230.31.236 port 51464 ssh2 Dec 17 00:40:02 microserver sshd[41639]: Invalid user sulema from 157.230.31.236 port 59386 Dec 17 00:40:02 microserver sshd[41639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.31.236 Dec 17 00:54:18 microserver sshd[44100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.31.236 user=root Dec 17 00:54:20 microserver sshd[44100]: Failed password for root from 157.230.31.236 port 54808 ssh2 Dec 17 00:59:19 microserver sshd[44951]: Invalid user apache from 157.230.31.236 port 34452 Dec 17 00:59:19 microserver sshd[44951]: pam_unix(sshd:auth): authentication fai	2019-12-17 07:49:34
163.172.229.170	attackspambots	Dec 16 13:10:56 sachi sshd\[18770\]: Invalid user smmsp from 163.172.229.170 Dec 16 13:10:56 sachi sshd\[18770\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.229.170 Dec 16 13:10:59 sachi sshd\[18770\]: Failed password for invalid user smmsp from 163.172.229.170 port 54904 ssh2 Dec 16 13:15:50 sachi sshd\[19204\]: Invalid user shiranthika from 163.172.229.170 Dec 16 13:15:50 sachi sshd\[19204\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.229.170	2019-12-17 07:29:08
114.221.14.22	attackspam	Dec 16 13:40:19 kapalua sshd\[28126\]: Invalid user noori from 114.221.14.22 Dec 16 13:40:19 kapalua sshd\[28126\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.221.14.22 Dec 16 13:40:21 kapalua sshd\[28126\]: Failed password for invalid user noori from 114.221.14.22 port 1962 ssh2 Dec 16 13:46:04 kapalua sshd\[28827\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.221.14.22 user=root Dec 16 13:46:07 kapalua sshd\[28827\]: Failed password for root from 114.221.14.22 port 1276 ssh2	2019-12-17 07:50:10
80.82.77.212	attackspambots	80.82.77.212 was recorded 48 times by 30 hosts attempting to connect to the following ports: 3283,1900,3702. Incident counter (4h, 24h, all-time): 48, 295, 1138	2019-12-17 07:44:50

Recently Reported IPs

1.2.204.88	26.206.82.94	1.2.204.95	1.2.205.101
1.2.205.104	1.2.205.108	31.49.71.8	1.2.205.111
1.2.205.112	1.2.205.114	1.2.205.118	1.2.205.119
1.2.205.125	1.2.205.129	1.2.205.130	1.2.205.137
1.2.205.139	1.2.205.14	1.2.205.143	1.2.205.144