1.20.100.108 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.100.111	attackbots	Dovecot Invalid User Login Attempt.	2020-08-28 12:53:10
1.20.100.45	attackspam	Dovecot Invalid User Login Attempt.	2020-08-24 13:57:00
1.20.100.111	attackspambots	Dovecot Invalid User Login Attempt.	2020-07-24 06:06:29
1.20.100.45	attackspambots	Dovecot Invalid User Login Attempt.	2020-07-18 01:34:20
1.20.100.97	attack	1.20.100.97 - - [08/Apr/2019:08:27:17 +0800] "POST https://www.eznewstoday.com/wp-login.php HTTP/1.1" 200 5534 "https://www.eznewstoday.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.3; WOW64; rv:52.54.17) Gecko/20166441 Firefox/52.54.17"	2019-04-08 08:28:11

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.100.108
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34163
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.100.108.			IN	A

;; AUTHORITY SECTION:
.			508	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 11:39:39 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 108.100.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 108.100.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
148.70.7.149	attack	C2,WP GET /wp-login.php	2020-05-03 12:45:06
2a00:d680:20:50::ca51	attackbotsspam	2a00:d680:20:50::ca51 - - [03/May/2020:06:56:17 +0300] "POST /wp-login.php HTTP/1.1" 200 2172 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-03 12:57:16
177.193.88.87	attackbots	May 3 05:56:59 nextcloud sshd\[18875\]: Invalid user user from 177.193.88.87 May 3 05:56:59 nextcloud sshd\[18875\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.193.88.87 May 3 05:57:02 nextcloud sshd\[18875\]: Failed password for invalid user user from 177.193.88.87 port 48300 ssh2	2020-05-03 12:19:14
129.226.113.144	attack	$f2bV_matches	2020-05-03 12:45:32
222.186.30.218	attack	2020-05-03T06:57:26.327567sd-86998 sshd[3983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218 user=root 2020-05-03T06:57:28.385795sd-86998 sshd[3983]: Failed password for root from 222.186.30.218 port 52459 ssh2 2020-05-03T06:57:30.693432sd-86998 sshd[3983]: Failed password for root from 222.186.30.218 port 52459 ssh2 2020-05-03T06:57:26.327567sd-86998 sshd[3983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218 user=root 2020-05-03T06:57:28.385795sd-86998 sshd[3983]: Failed password for root from 222.186.30.218 port 52459 ssh2 2020-05-03T06:57:30.693432sd-86998 sshd[3983]: Failed password for root from 222.186.30.218 port 52459 ssh2 2020-05-03T06:57:26.327567sd-86998 sshd[3983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218 user=root 2020-05-03T06:57:28.385795sd-86998 sshd[3983]: Failed password for root from 222.186. ...	2020-05-03 12:58:46
88.147.88.167	attackbots	SSH brute-force attempt	2020-05-03 12:23:50
222.186.42.137	attack	May 3 06:31:08 legacy sshd[6001]: Failed password for root from 222.186.42.137 port 25904 ssh2 May 3 06:31:10 legacy sshd[6001]: Failed password for root from 222.186.42.137 port 25904 ssh2 May 3 06:31:12 legacy sshd[6001]: Failed password for root from 222.186.42.137 port 25904 ssh2 ...	2020-05-03 12:31:27
165.22.52.141	attackspam	165.22.52.141 - - [03/May/2020:05:56:10 +0200] "GET /wp-login.php HTTP/1.1" 200 6124 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.52.141 - - [03/May/2020:05:56:13 +0200] "POST /wp-login.php HTTP/1.1" 200 6354 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.52.141 - - [03/May/2020:05:56:15 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-03 12:59:26
104.236.32.106	attack	$f2bV_matches	2020-05-03 12:47:44
116.203.233.249	attack	2020-05-03T04:35:48.018586shield sshd\[21245\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.249.233.203.116.clients.your-server.de user=root 2020-05-03T04:35:50.085139shield sshd\[21245\]: Failed password for root from 116.203.233.249 port 59376 ssh2 2020-05-03T04:39:19.458631shield sshd\[22101\]: Invalid user tongzhou from 116.203.233.249 port 43732 2020-05-03T04:39:19.462502shield sshd\[22101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=static.249.233.203.116.clients.your-server.de 2020-05-03T04:39:21.634491shield sshd\[22101\]: Failed password for invalid user tongzhou from 116.203.233.249 port 43732 ssh2	2020-05-03 12:39:37
111.68.98.152	attackbotsspam	May 3 06:41:08 legacy sshd[6504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.68.98.152 May 3 06:41:10 legacy sshd[6504]: Failed password for invalid user sonar from 111.68.98.152 port 56800 ssh2 May 3 06:47:38 legacy sshd[6923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.68.98.152 ...	2020-05-03 12:49:49
132.232.26.42	attackspambots	May 3 06:03:47 minden010 sshd[22569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.26.42 May 3 06:03:48 minden010 sshd[22569]: Failed password for invalid user cmsftp from 132.232.26.42 port 43472 ssh2 May 3 06:10:13 minden010 sshd[25903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.26.42 ...	2020-05-03 12:56:58
163.172.93.131	attackspam	2020-05-03T03:50:18.406049abusebot-6.cloudsearch.cf sshd[10066]: Invalid user mehdi from 163.172.93.131 port 37640 2020-05-03T03:50:18.411767abusebot-6.cloudsearch.cf sshd[10066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=sd.two-notes.net 2020-05-03T03:50:18.406049abusebot-6.cloudsearch.cf sshd[10066]: Invalid user mehdi from 163.172.93.131 port 37640 2020-05-03T03:50:20.498105abusebot-6.cloudsearch.cf sshd[10066]: Failed password for invalid user mehdi from 163.172.93.131 port 37640 ssh2 2020-05-03T03:56:36.723167abusebot-6.cloudsearch.cf sshd[10560]: Invalid user admins from 163.172.93.131 port 48056 2020-05-03T03:56:36.730037abusebot-6.cloudsearch.cf sshd[10560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=sd.two-notes.net 2020-05-03T03:56:36.723167abusebot-6.cloudsearch.cf sshd[10560]: Invalid user admins from 163.172.93.131 port 48056 2020-05-03T03:56:39.042491abusebot-6.cloudsearch.cf sshd[1 ...	2020-05-03 12:38:59
67.205.31.136	attackbotsspam	Automatic report - WordPress Brute Force	2020-05-03 12:37:17
103.124.145.34	attackbots	Invalid user philipp from 103.124.145.34 port 52293	2020-05-03 12:23:10

Recently Reported IPs

1.20.100.115	1.20.100.113	1.20.100.141	1.20.100.138
1.20.100.153	1.20.100.144	1.20.100.156	1.20.100.142
1.20.100.136	1.20.100.16	1.20.100.163	1.20.100.122
1.20.100.164	1.20.100.158	1.20.100.167	1.20.100.168
1.20.100.170	1.20.100.180	1.20.100.18	1.20.100.189