172.20.2.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: IANA Special-Purpose Address

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
172.20.20.20	bots	Stop hacking	2024-05-27 11:22:45
172.20.20.20	proxy	2001:0002:14:5:1:2:bf35:2610.	2024-05-27 11:20:27
172.20.20.20	proxy	2001:0002:14:5:1:2:bf35:2610.	2024-05-27 11:20:18
172.20.20.20	attack	2001:0002:14:5:1:2:bf35:2610.	2024-05-27 11:20:04
172.20.20.20	attack	Bitches	2024-05-27 11:18:56
172.20.20.20	attack	Bitches	2024-05-27 11:17:24
172.20.20.1	attack	Bitches	2024-05-27 11:17:09
172.20.243.93	spam	Used for SPAM, PHISHING and SCAM on STOLLEN list we don't know, as usual with LIERS and ROBERS !	2020-02-10 19:29:18
172.20.21.30	attackbots	Port 1433 Scan	2019-10-12 07:25:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.20.2.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17626
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.20.2.2.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025110901 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 10 11:42:31 CST 2025
;; MSG SIZE  rcvd: 103

Host info

Host 2.2.20.172.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.2.20.172.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.33.181	attackspam	Sep 25 04:29:35 work-partkepr sshd\[8871\]: Invalid user odroid from 106.13.33.181 port 40486 Sep 25 04:29:35 work-partkepr sshd\[8871\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.33.181 ...	2019-09-25 12:31:34
66.249.66.95	attack	Automatic report - Banned IP Access	2019-09-25 12:42:24
177.23.90.10	attackspam	Sep 24 23:50:21 ny01 sshd[10894]: Failed password for backup from 177.23.90.10 port 48442 ssh2 Sep 24 23:55:22 ny01 sshd[12113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.23.90.10 Sep 24 23:55:25 ny01 sshd[12113]: Failed password for invalid user bim from 177.23.90.10 port 32902 ssh2	2019-09-25 13:00:55
191.34.162.186	attack	[Aegis] @ 2019-09-25 04:55:43 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-09-25 12:28:28
194.226.171.214	attackspambots	Sep 25 07:51:08 taivassalofi sshd[135949]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.226.171.214 Sep 25 07:51:10 taivassalofi sshd[135949]: Failed password for invalid user admin from 194.226.171.214 port 46554 ssh2 ...	2019-09-25 12:59:47
221.7.213.133	attackspambots	Sep 24 18:09:39 auw2 sshd\[1953\]: Invalid user tm from 221.7.213.133 Sep 24 18:09:39 auw2 sshd\[1953\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.213.133 Sep 24 18:09:41 auw2 sshd\[1953\]: Failed password for invalid user tm from 221.7.213.133 port 41421 ssh2 Sep 24 18:14:29 auw2 sshd\[2432\]: Invalid user vbox from 221.7.213.133 Sep 24 18:14:29 auw2 sshd\[2432\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.7.213.133	2019-09-25 12:33:08
149.129.63.171	attack	$f2bV_matches	2019-09-25 12:16:33
221.178.157.244	attackspam	Sep 25 03:55:59 work-partkepr sshd\[8484\]: Invalid user vowell from 221.178.157.244 port 16929 Sep 25 03:55:59 work-partkepr sshd\[8484\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.178.157.244 ...	2019-09-25 12:32:35
118.71.38.88	attackbotsspam	Unauthorised access (Sep 25) SRC=118.71.38.88 LEN=40 TTL=47 ID=38694 TCP DPT=8080 WINDOW=42512 SYN Unauthorised access (Sep 24) SRC=118.71.38.88 LEN=40 TTL=47 ID=57618 TCP DPT=8080 WINDOW=57896 SYN Unauthorised access (Sep 24) SRC=118.71.38.88 LEN=40 TTL=47 ID=23294 TCP DPT=8080 WINDOW=42512 SYN Unauthorised access (Sep 23) SRC=118.71.38.88 LEN=40 TTL=47 ID=12978 TCP DPT=8080 WINDOW=42512 SYN	2019-09-25 12:56:42
106.12.185.58	attack	Sep 25 09:48:43 gw1 sshd[6954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.185.58 Sep 25 09:48:46 gw1 sshd[6954]: Failed password for invalid user arkserverpass from 106.12.185.58 port 36964 ssh2 ...	2019-09-25 12:53:57
2.238.193.59	attackspambots	Sep 24 18:27:38 friendsofhawaii sshd\[24566\]: Invalid user viktor from 2.238.193.59 Sep 24 18:27:38 friendsofhawaii sshd\[24566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2-238-193-59.ip245.fastwebnet.it Sep 24 18:27:40 friendsofhawaii sshd\[24566\]: Failed password for invalid user viktor from 2.238.193.59 port 40308 ssh2 Sep 24 18:32:15 friendsofhawaii sshd\[24943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=2-238-193-59.ip245.fastwebnet.it user=root Sep 24 18:32:17 friendsofhawaii sshd\[24943\]: Failed password for root from 2.238.193.59 port 55120 ssh2	2019-09-25 12:43:57
51.38.39.182	attack	Sep 25 05:55:42 rpi sshd[22848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.39.182 Sep 25 05:55:43 rpi sshd[22848]: Failed password for invalid user http from 51.38.39.182 port 43398 ssh2	2019-09-25 12:47:38
208.187.166.187	attackbots	Spam mails sent to address hacked/leaked from Nexus Mods in July 2013	2019-09-25 12:22:04
176.131.64.32	attackspambots	[WedSep2505:55:31.0340842019][:error][pid29348:tid47123171276544][client176.131.64.32:53806][client176.131.64.32]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severity"CRITICAL"][hostname"www.ilgiornaledelticino.ch"][uri"/123.sql"][unique_id"XYrlM12GMK-lYdrFrNqdrwAAAIk"][WedSep2505:55:36.1278582019][:error][pid12308:tid47123250824960][client176.131.64.32:54069][client176.131.64.32]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"\\\\\\\\.sql\$"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"1288"][id"350590"][rev"2"][msg"Atomicorp.comWAFRules:AttackBlocked-Dataleakage-attempttoaccessrawSQLfiles$disablethisruleifyourequireaccesstofilesthatendwith.sql$"][severi	2019-09-25 12:49:14
114.141.191.238	attackbotsspam	$f2bV_matches	2019-09-25 12:22:48

Recently Reported IPs

172.20.2.1	157.175.76.105	170.64.173.170	162.216.150.179
183.82.110.60	20.29.19.106	172.18.64.1	221.0.199.123
99.219.142.176	66.90.98.179	104.238.222.173	36.139.241.99
18.97.19.170	10.110.73.8	93.44.44.183	10.17.133.248
111.49.8.210	167.71.228.124	109.123.229.197	113.200.184.131