1.20.217.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.217.151	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-30 17:42:40
1.20.217.104	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 11:04:21
1.20.217.50	attackbotsspam	Unauthorized connection attempt from IP address 1.20.217.50 on Port 445(SMB)	2020-02-13 20:03:11
1.20.217.221	attack	Automatic report - XMLRPC Attack	2019-10-31 08:26:09
1.20.217.20	attack	Chat Spam	2019-10-29 17:28:30
1.20.217.78	attackspambots	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 09:36:01
1.20.217.173	attackbotsspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(06240931)	2019-06-25 05:34:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.217.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62052
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.217.2.			IN	A

;; AUTHORITY SECTION:
.			594	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 16:08:04 CST 2022
;; MSG SIZE  rcvd: 103

Host info

Host 2.217.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.217.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.169	attackbotsspam	$f2bV_matches	2020-08-23 15:20:20
170.210.203.215	attack	21 attempts against mh-ssh on cloud	2020-08-23 15:28:37
198.12.250.187	attackbotsspam	198.12.250.187 - - [23/Aug/2020:07:18:32 +0200] "GET /wp-login.php HTTP/1.1" 200 8537 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.250.187 - - [23/Aug/2020:07:18:34 +0200] "POST /wp-login.php HTTP/1.1" 200 8788 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.12.250.187 - - [23/Aug/2020:07:18:36 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-23 15:25:00
106.54.139.117	attack	Aug 22 23:20:12 pixelmemory sshd[2950067]: Failed password for invalid user msmith from 106.54.139.117 port 57864 ssh2 Aug 22 23:21:18 pixelmemory sshd[2950403]: Invalid user sam from 106.54.139.117 port 40236 Aug 22 23:21:18 pixelmemory sshd[2950403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.139.117 Aug 22 23:21:18 pixelmemory sshd[2950403]: Invalid user sam from 106.54.139.117 port 40236 Aug 22 23:21:20 pixelmemory sshd[2950403]: Failed password for invalid user sam from 106.54.139.117 port 40236 ssh2 ...	2020-08-23 15:49:07
178.46.208.97	attackspam	SmallBizIT.US 3 packets to tcp(23)	2020-08-23 15:41:11
103.28.52.84	attackbotsspam	Invalid user admin from 103.28.52.84 port 47886	2020-08-23 15:24:07
83.149.99.8	attackbotsspam	1598169135 - 08/23/2020 09:52:15 Host: 83.149.99.8/83.149.99.8 Port: 22 TCP Blocked	2020-08-23 15:54:50
149.28.47.51	attack	Wordpress_xmlrpc_attack	2020-08-23 15:31:56
49.233.155.170	attack	Aug 23 09:45:36 OPSO sshd\[23546\]: Invalid user postgres from 49.233.155.170 port 43474 Aug 23 09:45:36 OPSO sshd\[23546\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.155.170 Aug 23 09:45:38 OPSO sshd\[23546\]: Failed password for invalid user postgres from 49.233.155.170 port 43474 ssh2 Aug 23 09:50:54 OPSO sshd\[24516\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.155.170 user=root Aug 23 09:50:56 OPSO sshd\[24516\]: Failed password for root from 49.233.155.170 port 42044 ssh2	2020-08-23 16:04:28
218.92.0.250	attack	Aug 23 09:52:36 marvibiene sshd[4020]: Failed password for root from 218.92.0.250 port 7728 ssh2 Aug 23 09:52:40 marvibiene sshd[4020]: Failed password for root from 218.92.0.250 port 7728 ssh2	2020-08-23 15:59:10
51.210.182.187	attack	Invalid user darrell from 51.210.182.187 port 59546	2020-08-23 15:47:39
107.170.104.125	attackspam	Invalid user nathan from 107.170.104.125 port 59932	2020-08-23 15:43:19
118.25.144.49	attackbotsspam	Aug 23 06:55:11 h1745522 sshd[7078]: Invalid user er from 118.25.144.49 port 47702 Aug 23 06:55:11 h1745522 sshd[7078]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.144.49 Aug 23 06:55:11 h1745522 sshd[7078]: Invalid user er from 118.25.144.49 port 47702 Aug 23 06:55:13 h1745522 sshd[7078]: Failed password for invalid user er from 118.25.144.49 port 47702 ssh2 Aug 23 06:59:31 h1745522 sshd[7428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.144.49 user=root Aug 23 06:59:33 h1745522 sshd[7428]: Failed password for root from 118.25.144.49 port 45468 ssh2 Aug 23 07:03:57 h1745522 sshd[8936]: Invalid user rubens from 118.25.144.49 port 43232 Aug 23 07:03:57 h1745522 sshd[8936]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.144.49 Aug 23 07:03:57 h1745522 sshd[8936]: Invalid user rubens from 118.25.144.49 port 43232 Aug 23 07:03:59 h1745522 ss ...	2020-08-23 15:19:32
185.105.169.186	attackbots	Automatic report - Port Scan Attack	2020-08-23 15:44:37
54.36.180.236	attack	Aug 23 05:52:46 ajax sshd[23587]: Failed password for root from 54.36.180.236 port 48503 ssh2	2020-08-23 15:50:29

Recently Reported IPs

186.96.99.86	171.37.39.138	123.16.24.195	125.227.169.85
125.127.145.119	37.97.195.177	157.245.145.209	157.230.242.66
180.116.93.62	117.190.148.2	49.7.224.217	182.244.66.146
201.150.188.139	47.93.47.238	101.80.113.125	138.117.81.45
94.231.179.89	1.62.192.234	191.55.72.137	206.189.190.231