1.20.146.108 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.146.16	attackbotsspam	Unauthorized connection attempt from IP address 1.20.146.16 on Port 445(SMB)	2020-07-26 00:08:22
1.20.146.95	attack	Unauthorized connection attempt from IP address 1.20.146.95 on Port 445(SMB)	2019-11-01 19:22:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.146.108
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6017
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.146.108.			IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 16:36:31 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 108.146.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 108.146.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.198.98.191	attackbots	Mar 25 00:18:44 OPSO sshd\[3596\]: Invalid user postgres from 117.198.98.191 port 45842 Mar 25 00:18:44 OPSO sshd\[3596\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.198.98.191 Mar 25 00:18:46 OPSO sshd\[3596\]: Failed password for invalid user postgres from 117.198.98.191 port 45842 ssh2 Mar 25 00:21:10 OPSO sshd\[4141\]: Invalid user ubuntu from 117.198.98.191 port 52845 Mar 25 00:21:10 OPSO sshd\[4141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.198.98.191	2020-03-25 08:01:23
118.32.48.75	attackspambots	Telnet Server BruteForce Attack	2020-03-25 08:04:47
163.172.118.125	attack	SSH brute force	2020-03-25 08:15:34
213.150.206.88	attackbotsspam	Invalid user matematica from 213.150.206.88 port 40578	2020-03-25 08:00:53
213.251.184.102	attack	Mar 24 03:55:48 XXX sshd[34109]: Invalid user cnc from 213.251.184.102 port 55980	2020-03-25 08:10:53
222.4.17.197	attackspambots	Mar 24 19:25:17 debian-2gb-nbg1-2 kernel: \[7333400.515636\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=222.4.17.197 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=50 ID=0 DF PROTO=TCP SPT=7547 DPT=55123 WINDOW=65535 RES=0x00 ACK SYN URGP=0	2020-03-25 08:20:03
222.186.30.187	attack	Mar 25 00:57:32 dcd-gentoo sshd[24592]: User root from 222.186.30.187 not allowed because none of user's groups are listed in AllowGroups Mar 25 00:57:35 dcd-gentoo sshd[24592]: error: PAM: Authentication failure for illegal user root from 222.186.30.187 Mar 25 00:57:32 dcd-gentoo sshd[24592]: User root from 222.186.30.187 not allowed because none of user's groups are listed in AllowGroups Mar 25 00:57:35 dcd-gentoo sshd[24592]: error: PAM: Authentication failure for illegal user root from 222.186.30.187 Mar 25 00:57:32 dcd-gentoo sshd[24592]: User root from 222.186.30.187 not allowed because none of user's groups are listed in AllowGroups Mar 25 00:57:35 dcd-gentoo sshd[24592]: error: PAM: Authentication failure for illegal user root from 222.186.30.187 Mar 25 00:57:35 dcd-gentoo sshd[24592]: Failed keyboard-interactive/pam for invalid user root from 222.186.30.187 port 15159 ssh2 ...	2020-03-25 08:03:57
185.53.88.49	attackbots	[2020-03-24 19:53:59] NOTICE[1148][C-000167d1] chan_sip.c: Call from '' (185.53.88.49:5076) to extension '9011972595778361' rejected because extension not found in context 'public'. [2020-03-24 19:53:59] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-24T19:53:59.511-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011972595778361",SessionID="0x7fd82c530768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.53.88.49/5076",ACLName="no_extension_match" [2020-03-24 20:02:45] NOTICE[1148][C-000167de] chan_sip.c: Call from '' (185.53.88.49:5078) to extension '5011972595778361' rejected because extension not found in context 'public'. [2020-03-24 20:02:45] SECURITY[1163] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-03-24T20:02:45.323-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="5011972595778361",SessionID="0x7fd82c43c848",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/18 ...	2020-03-25 08:13:29
194.180.224.251	attackspambots	Mar 24 23:22:44 localhost sshd[120978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.180.224.251 user=root Mar 24 23:22:47 localhost sshd[120978]: Failed password for root from 194.180.224.251 port 47268 ssh2 Mar 24 23:22:49 localhost sshd[120987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.180.224.251 user=root Mar 24 23:22:50 localhost sshd[120987]: Failed password for root from 194.180.224.251 port 52360 ssh2 Mar 24 23:22:52 localhost sshd[120994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.180.224.251 user=root Mar 24 23:22:54 localhost sshd[120994]: Failed password for root from 194.180.224.251 port 56280 ssh2 ...	2020-03-25 08:08:13
51.158.25.170	attackspam	firewall-block, port(s): 5098/udp	2020-03-25 08:26:22
88.152.185.229	attackbots	Chat Spam	2020-03-25 07:55:15
106.13.128.234	attack	Mar 25 01:06:09 pornomens sshd\[28874\]: Invalid user brette from 106.13.128.234 port 39924 Mar 25 01:06:09 pornomens sshd\[28874\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.128.234 Mar 25 01:06:11 pornomens sshd\[28874\]: Failed password for invalid user brette from 106.13.128.234 port 39924 ssh2 ...	2020-03-25 08:06:38
145.239.78.59	attackbotsspam	Mar 5 00:26:03 [snip] sshd[7872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.78.59 user=root Mar 5 00:26:05 [snip] sshd[7872]: Failed password for root from 145.239.78.59 port 36164 ssh2 Mar 5 00:39:36 [snip] sshd[9446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.78.59 user=root[...]	2020-03-25 07:55:50
72.131.202.203	attackbotsspam	Icarus honeypot on github	2020-03-25 08:10:00
82.213.38.146	attackspam	Scanned 3 times in the last 24 hours on port 22	2020-03-25 08:09:31

Recently Reported IPs

103.135.51.105	103.135.7.110	103.135.7.101	103.135.7.166
103.135.7.2	103.135.7.246	103.135.7.54	103.135.7.78
103.135.7.82	103.135.70.117	103.135.70.118	1.20.146.201
103.135.70.114	103.135.70.145	103.135.70.9	103.135.7.85
103.135.76.1	103.135.77.17	103.135.77.13	103.135.77.200