1.20.234.51 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.234.40	attack	Fail2Ban Ban Triggered	2020-02-18 16:22:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.234.51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5612
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.234.51.			IN	A

;; AUTHORITY SECTION:
.			110	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 10:00:25 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 51.234.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 51.234.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.172.69.52	attackbotsspam	Jun 6 00:07:21 cdc sshd[25868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.69.52 user=root Jun 6 00:07:23 cdc sshd[25868]: Failed password for invalid user root from 167.172.69.52 port 43668 ssh2	2020-06-06 07:40:14
216.96.118.182	attackbots	Jun 5 07:28:10 our-server-hostname sshd[11636]: Failed password for r.r from 216.96.118.182 port 3460 ssh2 Jun 5 07:29:34 our-server-hostname sshd[11952]: Failed password for r.r from 216.96.118.182 port 8568 ssh2 Jun 5 07:30:10 our-server-hostname sshd[12075]: Failed password for r.r from 216.96.118.182 port 5664 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=216.96.118.182	2020-06-06 07:37:03
61.141.221.236	attack	Jun 5 19:07:31 Tower sshd[5881]: Connection from 61.141.221.236 port 56012 on 192.168.10.220 port 22 rdomain "" Jun 5 19:07:33 Tower sshd[5881]: Failed password for root from 61.141.221.236 port 56012 ssh2 Jun 5 19:07:34 Tower sshd[5881]: Received disconnect from 61.141.221.236 port 56012:11: Bye Bye [preauth] Jun 5 19:07:34 Tower sshd[5881]: Disconnected from authenticating user root 61.141.221.236 port 56012 [preauth]	2020-06-06 07:27:04
5.196.72.11	attack	$f2bV_matches	2020-06-06 07:50:57
36.230.234.187	attackbotsspam	Jun 5 16:52:56 Tower sshd[39458]: Connection from 36.230.234.187 port 42962 on 192.168.10.220 port 22 rdomain "" Jun 5 16:52:57 Tower sshd[39458]: Failed password for root from 36.230.234.187 port 42962 ssh2 Jun 5 16:52:57 Tower sshd[39458]: Received disconnect from 36.230.234.187 port 42962:11: Bye Bye [preauth] Jun 5 16:52:57 Tower sshd[39458]: Disconnected from authenticating user root 36.230.234.187 port 42962 [preauth]	2020-06-06 07:33:41
193.29.15.169	attackspam	UDP 193.29.15.169:40477 -> port 1900, len 118	2020-06-06 07:52:18
195.54.167.120	attackbots	Multiport scan : 26 ports scanned 4601 4604 4605 4607 4610 4611 4612 4614 4615 4616 4617 4618 4619 4621 4622 4623 4624 4625 4629 5940 5941 5942 5944 5946 5950 5956	2020-06-06 07:16:31
218.161.59.246	attack	Honeypot attack, port: 81, PTR: 218-161-59-246.HINET-IP.hinet.net.	2020-06-06 07:29:21
61.12.26.145	attackspam	Jun 6 00:59:23 tuxlinux sshd[41741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.26.145 user=root Jun 6 00:59:26 tuxlinux sshd[41741]: Failed password for root from 61.12.26.145 port 35494 ssh2 Jun 6 00:59:23 tuxlinux sshd[41741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.26.145 user=root Jun 6 00:59:26 tuxlinux sshd[41741]: Failed password for root from 61.12.26.145 port 35494 ssh2 Jun 6 01:04:15 tuxlinux sshd[41868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.26.145 user=root ...	2020-06-06 07:47:59
115.159.66.109	attackbotsspam	Bruteforce detected by fail2ban	2020-06-06 07:35:44
89.248.162.247	attack	TCP (SYN) 89.248.162.247:49534 -> port 443, len 40	2020-06-06 07:35:11
14.116.208.72	attackbotsspam	2020-06-05T18:08:46.991062morrigan.ad5gb.com sshd[3929]: Disconnected from authenticating user root 14.116.208.72 port 39634 [preauth] 2020-06-05T18:11:58.242253morrigan.ad5gb.com sshd[3991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.208.72 user=root 2020-06-05T18:12:00.353782morrigan.ad5gb.com sshd[3991]: Failed password for root from 14.116.208.72 port 32853 ssh2	2020-06-06 07:50:44
151.80.155.98	attackspam	Jun 5 18:52:30 ny01 sshd[5609]: Failed password for root from 151.80.155.98 port 56070 ssh2 Jun 5 18:55:43 ny01 sshd[6412]: Failed password for root from 151.80.155.98 port 59398 ssh2	2020-06-06 07:21:02
116.196.107.128	attackbots	(sshd) Failed SSH login from 116.196.107.128 (CN/China/-): 5 in the last 3600 secs	2020-06-06 07:24:29
159.203.176.82	attackbotsspam	159.203.176.82 - - [05/Jun/2020:21:25:31 +0100] "POST /wp-login.php HTTP/1.1" 200 4433 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.176.82 - - [05/Jun/2020:21:25:32 +0100] "POST /wp-login.php HTTP/1.1" 200 4433 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.176.82 - - [05/Jun/2020:21:25:32 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-06 07:36:38

Recently Reported IPs

1.20.234.45	1.20.234.52	249.74.198.201	1.20.234.57
1.20.234.61	1.20.234.82	1.20.235.100	1.20.235.11
1.20.235.110	1.20.235.13	1.20.235.130	1.20.235.161
175.219.82.93	1.20.235.203	1.20.235.216	1.20.235.229
1.20.235.231	1.20.235.25	1.20.235.47	33.29.118.160