104.20.2.27 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
104.20.212.42	spambots	Vr network	2023-03-18 06:45:21
104.20.2.253	attackbotsspam	TCP Port Scanning	2020-03-12 04:40:15

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.20.2.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11821
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.20.2.27.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021602 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 17 06:48:31 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 27.2.20.104.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 27.2.20.104.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.192.100.222	attack	DATE:2020-03-24 01:02:59, IP:81.192.100.222, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-03-24 10:06:47
167.99.87.82	attackspam	Mar 24 01:00:54 vserver sshd\[14713\]: Invalid user kmycloud from 167.99.87.82Mar 24 01:00:56 vserver sshd\[14713\]: Failed password for invalid user kmycloud from 167.99.87.82 port 43212 ssh2Mar 24 01:06:49 vserver sshd\[14761\]: Invalid user sounosuke from 167.99.87.82Mar 24 01:06:51 vserver sshd\[14761\]: Failed password for invalid user sounosuke from 167.99.87.82 port 38530 ssh2 ...	2020-03-24 10:00:23
120.92.34.203	attack	Mar 24 03:20:50 XXX sshd[41426]: Invalid user netapp from 120.92.34.203 port 23158	2020-03-24 12:02:12
118.25.78.149	attackbotsspam	Mar 24 01:30:26 legacy sshd[14930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.78.149 Mar 24 01:30:27 legacy sshd[14930]: Failed password for invalid user opton from 118.25.78.149 port 56166 ssh2 Mar 24 01:33:13 legacy sshd[14992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.78.149 ...	2020-03-24 10:15:11
180.242.234.91	attackbots	1585022392 - 03/24/2020 04:59:52 Host: 180.242.234.91/180.242.234.91 Port: 445 TCP Blocked	2020-03-24 12:18:16
51.38.130.63	attack	Mar 24 04:03:14 localhost sshd\[15751\]: Invalid user user from 51.38.130.63 port 60906 Mar 24 04:03:14 localhost sshd\[15751\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.130.63 Mar 24 04:03:16 localhost sshd\[15751\]: Failed password for invalid user user from 51.38.130.63 port 60906 ssh2 ...	2020-03-24 12:05:02
122.224.217.46	attackspam	Mar 24 03:10:34 XXX sshd[41343]: Invalid user selene from 122.224.217.46 port 59660	2020-03-24 12:10:22
178.80.103.102	attackbots	1585008396 - 03/24/2020 01:06:36 Host: 178.80.103.102/178.80.103.102 Port: 445 TCP Blocked	2020-03-24 10:13:42
222.219.183.190	attack	some try hack my steam game store accont form this ip inetnum: 61.166.0.0 - 61.166.255.255 netname: CHINANET-YN country: CN descr: CHINANET Yunnan province network admin-c: ZL48-AP tech-c: ZL48-AP status: ALLOCATED NON-PORTABLE mnt-by: MAINT-CHINANET last-modified: 2008-09-04T06:49:46Z source: APNIC person: zhiyong liu nic-hdl: ZL48-AP e-mail: ********@163.com address: 136 beijin roadkunmingchina phone: +86-871-68226585 fax-no: +86-871-8221536 country: CN mnt-by: MAINT-CHINANET-YN last-modified: 2018-12-27T01:58:34Z source: APNIC	2020-03-24 11:05:55
122.51.101.238	attackspam	$f2bV_matches	2020-03-24 12:23:19
196.200.191.115	attackspambots	DATE:2020-03-24 01:03:00, IP:196.200.191.115, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-03-24 10:06:06
128.199.224.215	attackbotsspam	Mar 24 04:59:59 vps647732 sshd[5538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.224.215 Mar 24 05:00:00 vps647732 sshd[5538]: Failed password for invalid user philip from 128.199.224.215 port 41438 ssh2 ...	2020-03-24 12:03:33
63.82.48.68	attack	Mar 24 00:21:43 web01 postfix/smtpd[7559]: connect from bump.saparel.com[63.82.48.68] Mar 24 00:21:43 web01 policyd-spf[8166]: None; identhostnamey=helo; client-ip=63.82.48.68; helo=bump.kranbery.com; envelope-from=x@x Mar 24 00:21:43 web01 policyd-spf[8166]: Pass; identhostnamey=mailfrom; client-ip=63.82.48.68; helo=bump.kranbery.com; envelope-from=x@x Mar x@x Mar 24 00:21:44 web01 postfix/smtpd[7559]: disconnect from bump.saparel.com[63.82.48.68] Mar 24 00:24:43 web01 postfix/smtpd[8332]: connect from bump.saparel.com[63.82.48.68] Mar 24 00:24:43 web01 policyd-spf[8337]: None; identhostnamey=helo; client-ip=63.82.48.68; helo=bump.kranbery.com; envelope-from=x@x Mar 24 00:24:43 web01 policyd-spf[8337]: Pass; identhostnamey=mailfrom; client-ip=63.82.48.68; helo=bump.kranbery.com; envelope-from=x@x Mar x@x Mar 24 00:24:43 web01 postfix/smtpd[8332]: disconnect from bump.saparel.com[63.82.48.68] Mar 24 00:28:02 web01 postfix/smtpd[8480]: connect from bump.saparel.com[63.82........ -------------------------------	2020-03-24 10:08:59
200.133.39.24	attack	Mar 24 01:19:13 combo sshd[21636]: Invalid user lihuanhuan from 200.133.39.24 port 57210 Mar 24 01:19:15 combo sshd[21636]: Failed password for invalid user lihuanhuan from 200.133.39.24 port 57210 ssh2 Mar 24 01:22:51 combo sshd[21935]: Invalid user zhoubao from 200.133.39.24 port 53146 ...	2020-03-24 10:04:05
222.186.31.83	attackspambots	Mar 23 17:55:51 wbs sshd\[1632\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root Mar 23 17:55:53 wbs sshd\[1632\]: Failed password for root from 222.186.31.83 port 39768 ssh2 Mar 23 18:03:55 wbs sshd\[2211\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.83 user=root Mar 23 18:03:58 wbs sshd\[2211\]: Failed password for root from 222.186.31.83 port 38192 ssh2 Mar 23 18:04:00 wbs sshd\[2211\]: Failed password for root from 222.186.31.83 port 38192 ssh2	2020-03-24 12:18:39

Recently Reported IPs

104.20.2.22	104.20.2.40	206.237.0.102	104.20.2.51
104.20.20.91	104.20.200.115	104.20.202.153	104.20.203.153
60.23.71.240	45.148.99.176	104.20.204.70	104.20.205.70
104.20.206.52	104.20.206.62	62.34.205.195	204.20.161.201
104.20.207.52	252.132.78.108	104.20.207.62	104.20.208.69