1.20.244.245 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.244.96	attackspam	Automatic report - Port Scan	2020-03-12 16:07:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.244.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37990
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.244.245.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 14:28:00 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 245.244.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.244.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.216.56.123	attackbots	Brute force attempt	2020-04-10 15:02:45
93.123.16.126	attackspambots	<6 unauthorized SSH connections	2020-04-10 15:13:00
60.199.131.62	attackspam	<6 unauthorized SSH connections	2020-04-10 15:04:05
51.161.11.195	attackbots	Apr 10 08:24:36 srv-ubuntu-dev3 sshd[56432]: Invalid user sun from 51.161.11.195 Apr 10 08:24:36 srv-ubuntu-dev3 sshd[56432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.161.11.195 Apr 10 08:24:36 srv-ubuntu-dev3 sshd[56432]: Invalid user sun from 51.161.11.195 Apr 10 08:24:38 srv-ubuntu-dev3 sshd[56432]: Failed password for invalid user sun from 51.161.11.195 port 49642 ssh2 Apr 10 08:28:44 srv-ubuntu-dev3 sshd[57203]: Invalid user mcserver from 51.161.11.195 Apr 10 08:28:44 srv-ubuntu-dev3 sshd[57203]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.161.11.195 Apr 10 08:28:44 srv-ubuntu-dev3 sshd[57203]: Invalid user mcserver from 51.161.11.195 Apr 10 08:28:45 srv-ubuntu-dev3 sshd[57203]: Failed password for invalid user mcserver from 51.161.11.195 port 58474 ssh2 Apr 10 08:32:49 srv-ubuntu-dev3 sshd[57944]: Invalid user support from 51.161.11.195 ...	2020-04-10 14:36:32
222.186.180.130	attackspambots	Apr 10 08:24:39 vps sshd[437609]: Failed password for root from 222.186.180.130 port 54355 ssh2 Apr 10 08:24:42 vps sshd[437609]: Failed password for root from 222.186.180.130 port 54355 ssh2 Apr 10 08:31:06 vps sshd[474899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root Apr 10 08:31:08 vps sshd[474899]: Failed password for root from 222.186.180.130 port 44770 ssh2 Apr 10 08:31:10 vps sshd[474899]: Failed password for root from 222.186.180.130 port 44770 ssh2 ...	2020-04-10 14:42:56
185.220.101.249	attackspam	Apr 10 05:55:52 pve sshd[32387]: Failed password for root from 185.220.101.249 port 10780 ssh2 Apr 10 05:55:54 pve sshd[32387]: Failed password for root from 185.220.101.249 port 10780 ssh2 Apr 10 05:55:57 pve sshd[32387]: Failed password for root from 185.220.101.249 port 10780 ssh2 Apr 10 05:56:01 pve sshd[32387]: Failed password for root from 185.220.101.249 port 10780 ssh2	2020-04-10 15:00:46
179.124.34.8	attackspambots	Apr 10 09:02:00 srv-ubuntu-dev3 sshd[63556]: Invalid user test from 179.124.34.8 Apr 10 09:02:00 srv-ubuntu-dev3 sshd[63556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.124.34.8 Apr 10 09:02:00 srv-ubuntu-dev3 sshd[63556]: Invalid user test from 179.124.34.8 Apr 10 09:02:01 srv-ubuntu-dev3 sshd[63556]: Failed password for invalid user test from 179.124.34.8 port 52615 ssh2 Apr 10 09:03:36 srv-ubuntu-dev3 sshd[63835]: Invalid user andoria from 179.124.34.8 Apr 10 09:03:36 srv-ubuntu-dev3 sshd[63835]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.124.34.8 Apr 10 09:03:36 srv-ubuntu-dev3 sshd[63835]: Invalid user andoria from 179.124.34.8 Apr 10 09:03:38 srv-ubuntu-dev3 sshd[63835]: Failed password for invalid user andoria from 179.124.34.8 port 34225 ssh2 Apr 10 09:04:58 srv-ubuntu-dev3 sshd[64077]: Invalid user test from 179.124.34.8 ...	2020-04-10 15:05:37
128.199.158.182	attack	CMS (WordPress or Joomla) login attempt.	2020-04-10 14:47:22
211.169.248.209	attack	SSH brute-force: detected 11 distinct usernames within a 24-hour window.	2020-04-10 15:10:39
185.202.1.190	attack	2020-04-10T03:56:20Z - RDP login failed multiple times. (185.202.1.190)	2020-04-10 14:38:54
45.55.219.114	attackspambots	Apr 10 07:38:57 mail1 sshd\[11736\]: Invalid user peter from 45.55.219.114 port 41732 Apr 10 07:38:57 mail1 sshd\[11736\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.219.114 Apr 10 07:38:59 mail1 sshd\[11736\]: Failed password for invalid user peter from 45.55.219.114 port 41732 ssh2 Apr 10 07:45:43 mail1 sshd\[14623\]: Invalid user vagrant1 from 45.55.219.114 port 44148 Apr 10 07:45:43 mail1 sshd\[14623\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.219.114 ...	2020-04-10 14:53:07
172.105.210.107	attackbotsspam	Port 8009 scan denied	2020-04-10 14:57:12
192.99.31.122	attack	CMS (WordPress or Joomla) login attempt.	2020-04-10 14:46:52
181.55.127.245	attackspambots	Apr 10 06:33:27 sip sshd[22342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.55.127.245 Apr 10 06:33:29 sip sshd[22342]: Failed password for invalid user oscar from 181.55.127.245 port 37918 ssh2 Apr 10 06:38:14 sip sshd[24092]: Failed password for root from 181.55.127.245 port 40076 ssh2	2020-04-10 15:08:07
212.81.57.188	attackspam	Apr 10 05:56:06 smtp postfix/smtpd[13360]: NOQUEUE: reject: RCPT from liquid.chocualo.com[212.81.57.188]: 554 5.7.1 Service unavailable; Client host [212.81.57.188] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/sbl/query/SBL440932; from= to= proto=ESMTP helo= ...	2020-04-10 14:54:41

Recently Reported IPs

1.20.244.242	1.20.244.247	1.20.244.41	1.20.244.3
1.20.244.32	1.20.244.49	1.20.244.4	1.20.244.59
1.20.244.29	1.20.244.61	101.109.165.5	1.20.244.78
1.20.244.75	1.20.244.81	1.20.244.82	1.20.244.90
1.20.244.93	1.20.244.95	1.20.244.97	1.20.245.138