1.20.149.207 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.149.146	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-05-02 01:28:49
1.20.149.201	attack	Unauthorised access (Nov 4) SRC=1.20.149.201 LEN=52 TTL=116 ID=7627 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-04 16:53:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.149.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62634
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.149.207.			IN	A

;; AUTHORITY SECTION:
.			328	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 19:58:02 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 207.149.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 207.149.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.61.1.161	attackbots	Oct 11 21:40:18 haigwepa sshd[23299]: Failed password for root from 182.61.1.161 port 57684 ssh2 ...	2020-10-12 03:51:50
60.243.48.126	attackbotsspam	IP 60.243.48.126 attacked honeypot on port: 23 at 10/10/2020 1:41:59 PM	2020-10-12 03:16:46
61.177.172.168	attack	Oct 11 21:15:50 vpn01 sshd[21691]: Failed password for root from 61.177.172.168 port 46266 ssh2 Oct 11 21:15:53 vpn01 sshd[21691]: Failed password for root from 61.177.172.168 port 46266 ssh2 ...	2020-10-12 03:21:41
94.224.37.149	attackspambots	Port Scan: TCP/443	2020-10-12 03:49:14
216.155.94.51	attackspambots	firewall-block, port(s): 5679/tcp	2020-10-12 03:46:38
157.230.93.183	attackspam	2020-10-11T13:03:59.854062linuxbox-skyline sshd[32469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.93.183 user=root 2020-10-11T13:04:01.551765linuxbox-skyline sshd[32469]: Failed password for root from 157.230.93.183 port 59756 ssh2 ...	2020-10-12 03:24:59
188.255.131.67	attack	Port Scan: TCP/443	2020-10-12 03:34:35
103.134.73.2	attackspambots	445/tcp 445/tcp 445/tcp... [2020-08-15/10-11]7pkt,1pt.(tcp)	2020-10-12 03:39:17
106.225.147.63	attack	Lines containing failures of 106.225.147.63 Oct 10 08:58:15 newdogma sshd[16052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.147.63 user=r.r Oct 10 08:58:16 newdogma sshd[16052]: Failed password for r.r from 106.225.147.63 port 57391 ssh2 Oct 10 08:58:17 newdogma sshd[16052]: Received disconnect from 106.225.147.63 port 57391:11: Bye Bye [preauth] Oct 10 08:58:17 newdogma sshd[16052]: Disconnected from authenticating user r.r 106.225.147.63 port 57391 [preauth] Oct 10 09:10:53 newdogma sshd[16450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.147.63 user=r.r Oct 10 09:10:55 newdogma sshd[16450]: Failed password for r.r from 106.225.147.63 port 53846 ssh2 Oct 10 09:10:55 newdogma sshd[16450]: Received disconnect from 106.225.147.63 port 53846:11: Bye Bye [preauth] Oct 10 09:10:55 newdogma sshd[16450]: Disconnected from authenticating user r.r 106.225.147.63 port 53846........ ------------------------------	2020-10-12 03:44:31
45.143.221.96	attackbots	[2020-10-11 12:22:47] NOTICE[1182][C-00002dff] chan_sip.c: Call from '' (45.143.221.96:5071) to extension '972595778361' rejected because extension not found in context 'public'. [2020-10-11 12:22:47] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-11T12:22:47.182-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="972595778361",SessionID="0x7f22f8418138",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.221.96/5071",ACLName="no_extension_match" [2020-10-11 12:31:40] NOTICE[1182][C-00002e08] chan_sip.c: Call from '' (45.143.221.96:5080) to extension '011972595778361' rejected because extension not found in context 'public'. [2020-10-11 12:31:40] SECURITY[1204] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-10-11T12:31:40.743-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011972595778361",SessionID="0x7f22f840f098",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.22 ...	2020-10-12 03:33:11
103.28.32.18	attackspam	2020-10-11T18:56:23.762360Z bada38478c94 New connection: 103.28.32.18:58724 (172.17.0.5:2222) [session: bada38478c94] 2020-10-11T18:59:18.187016Z ec6c39100ef8 New connection: 103.28.32.18:41162 (172.17.0.5:2222) [session: ec6c39100ef8]	2020-10-12 03:15:53
66.206.0.172	attack	[portscan] Port scan	2020-10-12 03:27:14
43.254.158.183	attackspambots	Oct 11 19:44:45 dignus sshd[11232]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.158.183 user=root Oct 11 19:44:46 dignus sshd[11232]: Failed password for root from 43.254.158.183 port 60342 ssh2 Oct 11 19:48:40 dignus sshd[11300]: Invalid user mcserver from 43.254.158.183 port 46470 Oct 11 19:48:40 dignus sshd[11300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.254.158.183 Oct 11 19:48:42 dignus sshd[11300]: Failed password for invalid user mcserver from 43.254.158.183 port 46470 ssh2 ...	2020-10-12 03:47:49
51.158.124.238	attack	2020-10-11T14:04:10.265875server.mjenks.net sshd[436604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.124.238 2020-10-11T14:04:10.258698server.mjenks.net sshd[436604]: Invalid user liy from 51.158.124.238 port 40098 2020-10-11T14:04:11.807653server.mjenks.net sshd[436604]: Failed password for invalid user liy from 51.158.124.238 port 40098 ssh2 2020-10-11T14:04:38.525311server.mjenks.net sshd[436643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.124.238 user=root 2020-10-11T14:04:40.242799server.mjenks.net sshd[436643]: Failed password for root from 51.158.124.238 port 47266 ssh2 ...	2020-10-12 03:26:47
186.10.233.146	attackspam	Oct 11 00:58:25 router sshd[3917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.10.233.146 Oct 11 00:58:26 router sshd[3917]: Failed password for invalid user bananapi from 186.10.233.146 port 57020 ssh2 Oct 11 01:10:57 router sshd[3924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.10.233.146 ...	2020-10-12 03:23:44

Recently Reported IPs

1.20.149.204	1.20.149.211	135.84.21.190	1.20.149.213
1.20.149.217	1.20.149.226	1.20.149.228	1.20.149.241
1.20.149.3	1.20.149.34	1.20.149.43	42.177.78.9
1.20.149.51	1.20.149.72	1.20.149.76	1.20.149.81
52.217.171.197	1.20.149.85	1.20.149.97	1.20.149.98