1.20.149.174 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.149.146	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-02 01:28:49
1.20.149.201	attack	Unauthorised access (Nov 4) SRC=1.20.149.201 LEN=52 TTL=116 ID=7627 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-04 16:53:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.149.174
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62340
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.149.174.			IN	A

;; AUTHORITY SECTION:
.			548	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 19:57:42 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 174.149.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 174.149.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.211.78.132	attackspambots	SSH brutforce	2019-11-10 18:34:25
140.143.200.251	attackbotsspam	2019-11-10T10:15:06.688864scmdmz1 sshd\[12958\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.200.251 user=root 2019-11-10T10:15:08.807089scmdmz1 sshd\[12958\]: Failed password for root from 140.143.200.251 port 49156 ssh2 2019-11-10T10:20:39.136669scmdmz1 sshd\[13365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.200.251 user=root ...	2019-11-10 18:14:11
99.185.76.161	attackspambots	Nov 10 01:42:39 plusreed sshd[4042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.185.76.161 user=root Nov 10 01:42:41 plusreed sshd[4042]: Failed password for root from 99.185.76.161 port 50728 ssh2 ...	2019-11-10 18:38:51
129.211.26.50	attackbots	Nov 10 07:21:28 root sshd[22942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.26.50 Nov 10 07:21:30 root sshd[22942]: Failed password for invalid user allotest from 129.211.26.50 port 40626 ssh2 Nov 10 07:27:29 root sshd[23042]: Failed password for root from 129.211.26.50 port 49320 ssh2 ...	2019-11-10 18:25:27
134.175.133.74	attackbotsspam	2019-11-10T09:44:37.265257abusebot-7.cloudsearch.cf sshd\[11404\]: Invalid user guest from 134.175.133.74 port 53782	2019-11-10 18:16:12
106.13.59.20	attack	Nov 9 23:39:02 hanapaa sshd\[31733\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.59.20 user=root Nov 9 23:39:04 hanapaa sshd\[31733\]: Failed password for root from 106.13.59.20 port 59448 ssh2 Nov 9 23:43:51 hanapaa sshd\[32279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.59.20 user=root Nov 9 23:43:53 hanapaa sshd\[32279\]: Failed password for root from 106.13.59.20 port 37264 ssh2 Nov 9 23:48:32 hanapaa sshd\[32654\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.59.20 user=root	2019-11-10 18:14:58
164.132.102.168	attackbotsspam	Nov 10 09:56:42 hosting sshd[11198]: Invalid user sys from 164.132.102.168 port 36696 ...	2019-11-10 18:19:24
89.35.39.180	attack	Fail2Ban Ban Triggered	2019-11-10 18:25:55
104.131.8.137	attack	F2B jail: sshd. Time: 2019-11-10 10:01:20, Reported by: VKReport	2019-11-10 18:20:04
185.143.223.81	attack	Nov 10 09:56:17 h2177944 kernel: \[6251750.875937\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.223.81 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=17556 PROTO=TCP SPT=53588 DPT=2207 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 10:07:41 h2177944 kernel: \[6252435.424221\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.223.81 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=43449 PROTO=TCP SPT=53588 DPT=62817 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 10:07:57 h2177944 kernel: \[6252450.973972\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.223.81 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=42693 PROTO=TCP SPT=53588 DPT=41807 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 10:24:42 h2177944 kernel: \[6253456.309303\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.223.81 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=25053 PROTO=TCP SPT=53588 DPT=39618 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 10 10:26:26 h2177944 kernel: \[6253559.858001\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.143.223.81 DST=85.2	2019-11-10 17:57:39
117.185.62.146	attackspambots	Nov 10 05:04:01 ny01 sshd[22070]: Failed password for root from 117.185.62.146 port 55736 ssh2 Nov 10 05:09:23 ny01 sshd[22502]: Failed password for root from 117.185.62.146 port 42273 ssh2	2019-11-10 18:36:29
222.186.175.183	attackbots	Nov 10 11:20:28 meumeu sshd[31072]: Failed password for root from 222.186.175.183 port 49558 ssh2 Nov 10 11:20:32 meumeu sshd[31072]: Failed password for root from 222.186.175.183 port 49558 ssh2 Nov 10 11:20:37 meumeu sshd[31072]: Failed password for root from 222.186.175.183 port 49558 ssh2 Nov 10 11:20:47 meumeu sshd[31072]: error: maximum authentication attempts exceeded for root from 222.186.175.183 port 49558 ssh2 [preauth] ...	2019-11-10 18:21:50
45.55.38.39	attack	2019-11-10T09:35:37.779656shield sshd\[12464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 user=root 2019-11-10T09:35:39.892828shield sshd\[12464\]: Failed password for root from 45.55.38.39 port 33384 ssh2 2019-11-10T09:39:35.905555shield sshd\[13260\]: Invalid user user from 45.55.38.39 port 52238 2019-11-10T09:39:35.909726shield sshd\[13260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.38.39 2019-11-10T09:39:37.696532shield sshd\[13260\]: Failed password for invalid user user from 45.55.38.39 port 52238 ssh2	2019-11-10 18:15:27
106.13.39.207	attack	Nov 10 07:22:36 vps01 sshd[12239]: Failed password for root from 106.13.39.207 port 52212 ssh2	2019-11-10 18:02:03
206.189.231.196	attackbotsspam	206.189.231.196 - - [10/Nov/2019:07:26:46 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.231.196 - - [10/Nov/2019:07:26:57 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.231.196 - - [10/Nov/2019:07:26:57 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.231.196 - - [10/Nov/2019:07:27:02 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.231.196 - - [10/Nov/2019:07:27:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1608 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 206.189.231.196 - - [10/Nov/2019:07:27:14 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ..	2019-11-10 18:33:38

Recently Reported IPs

1.20.149.167	1.20.149.182	1.20.149.187	1.20.149.188
78.205.134.164	1.20.149.19	1.20.149.204	1.20.149.207
1.20.149.211	135.84.21.190	1.20.149.213	1.20.149.217
1.20.149.226	1.20.149.228	1.20.149.241	1.20.149.3
1.20.149.34	1.20.149.43	42.177.78.9	1.20.149.51