1.20.207.199 - IPInfo

Basic Info

City: Si Racha

Region: Chon Buri

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.207.86	attack	hack	2021-02-14 19:26:32
1.20.207.55	attackspam	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-05-12 14:53:37
1.20.207.30	attack	Port scan detected on ports: 8291[TCP], 8291[TCP], 8291[TCP]	2020-04-22 23:43:01
1.20.207.94	attackspambots	Unauthorized connection attempt from IP address 1.20.207.94 on Port 445(SMB)	2020-01-03 18:41:58
1.20.207.105	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-02 16:16:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.207.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22995
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.207.199.			IN	A

;; AUTHORITY SECTION:
.			591	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022040301 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 04 11:47:54 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 199.207.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 199.207.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
210.9.47.154	attackspam	SSH brute-force: detected 11 distinct username(s) / 17 distinct password(s) within a 24-hour window.	2020-06-15 04:23:17
45.141.84.30	attack	Jun 14 22:34:29 debian-2gb-nbg1-2 kernel: \[14425580.048457\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.141.84.30 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=40908 PROTO=TCP SPT=50749 DPT=577 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-15 04:37:21
209.95.51.11	attackspam	2020-06-14T19:20:30+0000 Failed SSH Authentication/Brute Force Attack. (Server 6)	2020-06-15 04:19:12
117.89.12.35	attackspambots	SSH_attack	2020-06-15 04:26:51
49.235.153.220	attackbotsspam	2020-06-14T20:09:01.457660abusebot-7.cloudsearch.cf sshd[6405]: Invalid user user from 49.235.153.220 port 45882 2020-06-14T20:09:01.463839abusebot-7.cloudsearch.cf sshd[6405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.153.220 2020-06-14T20:09:01.457660abusebot-7.cloudsearch.cf sshd[6405]: Invalid user user from 49.235.153.220 port 45882 2020-06-14T20:09:03.562719abusebot-7.cloudsearch.cf sshd[6405]: Failed password for invalid user user from 49.235.153.220 port 45882 ssh2 2020-06-14T20:13:20.011222abusebot-7.cloudsearch.cf sshd[6667]: Invalid user deploy from 49.235.153.220 port 60354 2020-06-14T20:13:20.015767abusebot-7.cloudsearch.cf sshd[6667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.153.220 2020-06-14T20:13:20.011222abusebot-7.cloudsearch.cf sshd[6667]: Invalid user deploy from 49.235.153.220 port 60354 2020-06-14T20:13:22.004338abusebot-7.cloudsearch.cf sshd[6667]: Failed p ...	2020-06-15 04:13:43
200.92.102.203	attack	fail2ban -- 200.92.102.203 ...	2020-06-15 04:22:11
120.35.26.129	attackbots	SSH Brute-Force. Ports scanning.	2020-06-15 04:19:57
31.186.81.139	attack	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-06-15 04:32:16
38.111.144.139	attackspam	Automated report (2020-06-14T22:24:23+08:00). Faked user agent detected.	2020-06-15 04:21:27
18.209.109.122	attackspambots	Brute force 118 attempts	2020-06-15 04:35:39
187.189.65.51	attackspam	Bruteforce detected by fail2ban	2020-06-15 04:15:34
185.40.4.53	attackbotsspam	[2020-06-14 16:08:59] NOTICE[1273][C-00000ffd] chan_sip.c: Call from '' (185.40.4.53:65289) to extension '800+441235619322' rejected because extension not found in context 'public'. [2020-06-14 16:08:59] SECURITY[1288] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-14T16:08:59.414-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="800+441235619322",SessionID="0x7f31c02f97a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.40.4.53/65289",ACLName="no_extension_match" [2020-06-14 16:10:00] NOTICE[1273][C-00000ffe] chan_sip.c: Call from '' (185.40.4.53:53613) to extension '800++441235619322' rejected because extension not found in context 'public'. [2020-06-14 16:10:00] SECURITY[1288] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-14T16:10:00.751-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="800++441235619322",SessionID="0x7f31c02f97a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/ ...	2020-06-15 04:12:57
51.75.207.61	attack	Jun 14 13:25:51 dignus sshd[11936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.207.61 user=root Jun 14 13:25:53 dignus sshd[11936]: Failed password for root from 51.75.207.61 port 53752 ssh2 Jun 14 13:29:17 dignus sshd[12361]: Invalid user max from 51.75.207.61 port 54132 Jun 14 13:29:17 dignus sshd[12361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.207.61 Jun 14 13:29:19 dignus sshd[12361]: Failed password for invalid user max from 51.75.207.61 port 54132 ssh2 ...	2020-06-15 04:40:32
222.186.52.39	attackspam	2020-06-14T20:19:13.592739abusebot-3.cloudsearch.cf sshd[28966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.39 user=root 2020-06-14T20:19:15.375425abusebot-3.cloudsearch.cf sshd[28966]: Failed password for root from 222.186.52.39 port 15538 ssh2 2020-06-14T20:19:17.275316abusebot-3.cloudsearch.cf sshd[28966]: Failed password for root from 222.186.52.39 port 15538 ssh2 2020-06-14T20:19:13.592739abusebot-3.cloudsearch.cf sshd[28966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.39 user=root 2020-06-14T20:19:15.375425abusebot-3.cloudsearch.cf sshd[28966]: Failed password for root from 222.186.52.39 port 15538 ssh2 2020-06-14T20:19:17.275316abusebot-3.cloudsearch.cf sshd[28966]: Failed password for root from 222.186.52.39 port 15538 ssh2 2020-06-14T20:19:13.592739abusebot-3.cloudsearch.cf sshd[28966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruse ...	2020-06-15 04:23:05
79.130.152.21	attackbots	Automatic report - Port Scan Attack	2020-06-15 04:42:32

Recently Reported IPs

1.20.203.42	1.20.207.215	1.20.207.235	1.20.207.74
1.20.210.18	1.20.218.143	1.20.219.147	1.20.219.57
1.20.222.70	1.20.234.14	1.20.235.159	1.20.237.177
1.20.81.206	65.106.235.35	1.20.88.218	1.20.89.30
1.20.99.61	1.214.211.148	1.234.44.23	1.234.82.145