1.20.158.102 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.158.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65328
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.158.102.			IN	A

;; AUTHORITY SECTION:
.			383	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 20:02:48 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 102.158.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 102.158.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
87.237.235.107	attack	DATE:2019-07-18 12:50:15, IP:87.237.235.107, PORT:1433 - MSSQL brute force auth on a honeypot server (epe-dc)	2019-07-19 03:37:19
23.129.64.163	attack	Jul 18 05:50:25 mailman postfix/smtpd[24116]: warning: unknown[23.129.64.163]: SASL LOGIN authentication failed: authentication failure	2019-07-19 03:25:32
201.91.132.170	attack	Reported by AbuseIPDB proxy server.	2019-07-19 03:00:41
179.98.151.134	attack	Jul 17 06:33:36 server770 sshd[5063]: reveeclipse mapping checking getaddrinfo for 179-98-151-134.dsl.telesp.net.br [179.98.151.134] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 17 06:33:36 server770 sshd[5063]: Invalid user xm from 179.98.151.134 Jul 17 06:33:36 server770 sshd[5063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.98.151.134 Jul 17 06:33:38 server770 sshd[5063]: Failed password for invalid user xm from 179.98.151.134 port 45001 ssh2 Jul 17 06:33:38 server770 sshd[5063]: Received disconnect from 179.98.151.134: 11: Bye Bye [preauth] Jul 17 06:46:00 server770 sshd[5503]: reveeclipse mapping checking getaddrinfo for 179-98-151-134.dsl.telesp.net.br [179.98.151.134] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 17 06:46:00 server770 sshd[5503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.98.151.134 user=r.r Jul 17 06:46:02 server770 sshd[5503]: Failed password for r.r from 17........ -------------------------------	2019-07-19 03:47:30
188.244.208.203	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 02:06:39,949 INFO [shellcode_manager] (188.244.208.203) no match, writing hexdump (29530436751b268eecabdce3697eed30 :2134640) - MS17010 (EternalBlue)	2019-07-19 03:36:07
181.98.22.154	attackspambots	http	2019-07-19 03:33:06
70.116.65.207	attack	http	2019-07-19 03:27:38
87.103.173.45	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-19 03:02:29
113.160.219.194	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 14:39:26,762 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.160.219.194)	2019-07-19 03:20:14
64.121.166.71	attackspambots	Hit on /xmlrpc.php	2019-07-19 03:27:57
180.250.162.9	attackbotsspam	Jul 18 21:01:50 vps647732 sshd[22126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.162.9 Jul 18 21:01:52 vps647732 sshd[22126]: Failed password for invalid user debbie from 180.250.162.9 port 6908 ssh2 ...	2019-07-19 03:34:33
219.145.144.65	attackbots	[munged]::443 219.145.144.65 - - [18/Jul/2019:20:36:16 +0200] "POST /[munged]: HTTP/1.1" 200 6132 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" [munged]::443 219.145.144.65 - - [18/Jul/2019:20:36:19 +0200] "POST /[munged]: HTTP/1.1" 200 6132 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" [munged]::443 219.145.144.65 - - [18/Jul/2019:20:36:23 +0200] "POST /[munged]: HTTP/1.1" 200 6132 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" [munged]::443 219.145.144.65 - - [18/Jul/2019:20:36:26 +0200] "POST /[munged]: HTTP/1.1" 200 6132 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" [munged]::443 219.145.144.65 - - [18/Jul/2019:20:36:27 +0200] "POST /[munged]: HTTP/1.1" 200 6132 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64; rv:18.0) Gecko/20100101 Firefox/18.0" [munged]::443 219.145.144.65 - - [18/Jul/2019:20:36:29 +0200] "POST /[munged]: HTTP/1.1" 200 6132 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64;	2019-07-19 03:11:23
167.114.234.52	attack	DSM Bruteforce	2019-07-19 03:27:09
220.76.181.164	attackspambots	2019-07-18T19:01:18.927497abusebot-3.cloudsearch.cf sshd\[17650\]: Invalid user admin from 220.76.181.164 port 60921	2019-07-19 03:23:00
86.108.8.63	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-19 03:24:25

Recently Reported IPs

1.20.157.83	147.103.35.142	1.20.158.106	1.20.158.11
1.20.158.152	1.20.158.166	83.102.248.134	1.20.158.175
1.20.165.91	1.20.165.94	1.20.165.96	1.20.166.110
1.20.166.128	213.165.186.62	1.20.166.158	243.205.238.226
1.20.166.162	1.20.166.176	115.84.94.219	1.20.166.209