1.20.102.204 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.102.54	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/1.20.102.54/ TH - 1H : (31) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TH NAME ASN : ASN23969 IP : 1.20.102.54 CIDR : 1.20.102.0/24 PREFIX COUNT : 1783 UNIQUE IP COUNT : 1183744 ATTACKS DETECTED ASN23969 : 1H - 2 3H - 3 6H - 5 12H - 6 24H - 9 DateTime : 2019-10-20 14:02:17 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-20 22:46:58

Type

Details

Datetime

1.20.102.54

attackbotsspam

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/1.20.102.54/ 
 
 TH - 1H : (31)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : TH 
 NAME ASN : ASN23969 
 
 IP : 1.20.102.54 
 
 CIDR : 1.20.102.0/24 
 
 PREFIX COUNT : 1783 
 
 UNIQUE IP COUNT : 1183744 
 
 
 ATTACKS DETECTED ASN23969 :  
  1H - 2 
  3H - 3 
  6H - 5 
 12H - 6 
 24H - 9 
 
 DateTime : 2019-10-20 14:02:17 
 
 INFO :  HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN  - data recovery

2019-10-20 22:46:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.102.204
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15664
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.102.204.			IN	A

;; AUTHORITY SECTION:
.			574	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 126 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 19:45:35 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 204.102.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 204.102.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
124.189.36.173	attack	Honeypot attack, port: 5555, PTR: cpe-124-189-36-173.vb09.vic.asp.telstra.net.	2020-03-05 22:16:38
192.241.220.219	attack	Port scan: Attack repeated for 24 hours	2020-03-05 22:20:40
116.232.196.75	attackspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-05 22:09:49
167.99.99.10	attack	Jan 14 14:17:56 odroid64 sshd\[5999\]: Invalid user almacen from 167.99.99.10 Jan 14 14:17:57 odroid64 sshd\[5999\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.99.10 Mar 1 09:24:35 odroid64 sshd\[17912\]: Invalid user hubihao from 167.99.99.10 Mar 1 09:24:35 odroid64 sshd\[17912\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.99.10 ...	2020-03-05 21:54:11
167.99.83.237	attackspam	Nov 1 01:22:38 odroid64 sshd\[17364\]: Invalid user amdsa from 167.99.83.237 Nov 1 01:22:38 odroid64 sshd\[17364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.83.237 ...	2020-03-05 21:58:29
52.155.217.246	attack	1433/tcp 445/tcp... [2020-01-06/03-05]14pkt,2pt.(tcp)	2020-03-05 21:39:00
192.241.224.47	attackspambots	Automatic report - Port Scan Attack	2020-03-05 22:01:59
187.207.77.134	attack	Honeypot attack, port: 81, PTR: dsl-187-207-77-134-dyn.prod-infinitum.com.mx.	2020-03-05 21:59:28
91.220.204.253	attackbotsspam	$f2bV_matches	2020-03-05 21:54:49
223.25.99.37	attack	Automatically reported by fail2ban report script (mx1)	2020-03-05 22:08:30
168.227.99.10	attack	Dec 24 12:33:56 odroid64 sshd\[24378\]: User root from 168.227.99.10 not allowed because not listed in AllowUsers Dec 24 12:33:56 odroid64 sshd\[24378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.227.99.10 user=root Feb 17 07:35:06 odroid64 sshd\[19494\]: Invalid user nagios from 168.227.99.10 Feb 17 07:35:06 odroid64 sshd\[19494\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.227.99.10 ...	2020-03-05 21:42:09
167.99.93.0	attackbotsspam	Jan 26 04:55:43 odroid64 sshd\[9061\]: Invalid user ho from 167.99.93.0 Jan 26 04:55:43 odroid64 sshd\[9061\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.93.0 ...	2020-03-05 21:55:32
222.212.84.181	attack	Telnet/23 MH Probe, Scan, BF, Hack -	2020-03-05 21:39:43
167.99.48.123	attackbotsspam	Dec 23 23:20:09 odroid64 sshd\[21593\]: User ftp from 167.99.48.123 not allowed because not listed in AllowUsers Dec 23 23:20:09 odroid64 sshd\[21593\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.48.123 user=ftp Feb 11 18:18:20 odroid64 sshd\[22049\]: Invalid user rus from 167.99.48.123 Feb 11 18:18:20 odroid64 sshd\[22049\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.48.123 ...	2020-03-05 22:05:37
180.167.233.252	attack	$f2bV_matches	2020-03-05 22:15:54

Recently Reported IPs

1.20.102.192	1.20.102.228	160.198.72.154	1.20.102.238
1.20.102.243	1.20.102.246	1.20.102.249	1.20.102.3
1.20.102.39	1.20.102.40	1.20.102.56	1.20.102.58
105.66.159.171	1.20.108.197	1.20.109.123	1.20.110.107
1.20.110.114	1.20.110.125	1.20.110.152	1.20.110.165