1.20.246.97 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.246.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 280
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.246.97.			IN	A

;; AUTHORITY SECTION:
.			333	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 10:04:29 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 97.246.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 97.246.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.115.165.204	attack	Probing for vulnerable services	2019-07-15 08:11:08
110.138.148.98	attack	Jul 15 02:48:02 server sshd\[25661\]: Invalid user customer from 110.138.148.98 port 37332 Jul 15 02:48:02 server sshd\[25661\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.138.148.98 Jul 15 02:48:04 server sshd\[25661\]: Failed password for invalid user customer from 110.138.148.98 port 37332 ssh2 Jul 15 02:54:42 server sshd\[4866\]: Invalid user testuser from 110.138.148.98 port 41411 Jul 15 02:54:42 server sshd\[4866\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.138.148.98	2019-07-15 08:07:42
202.62.60.107	attack	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-15 08:14:40
58.87.67.142	attack	2019-07-15T06:20:38.261697enmeeting.mahidol.ac.th sshd\[1836\]: Invalid user backup from 58.87.67.142 port 56600 2019-07-15T06:20:38.280397enmeeting.mahidol.ac.th sshd\[1836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.67.142 2019-07-15T06:20:40.077301enmeeting.mahidol.ac.th sshd\[1836\]: Failed password for invalid user backup from 58.87.67.142 port 56600 ssh2 ...	2019-07-15 07:56:50
35.187.222.10	attackspambots	WordPress wp-login brute force :: 35.187.222.10 0.056 BYPASS [15/Jul/2019:07:13:40 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-15 08:13:24
81.26.66.36	attackspam	Jul 15 00:49:41 [host] sshd[17463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.26.66.36 user=root Jul 15 00:49:44 [host] sshd[17463]: Failed password for root from 81.26.66.36 port 59964 ssh2 Jul 15 00:54:58 [host] sshd[17625]: Invalid user ftp_user from 81.26.66.36	2019-07-15 07:53:32
185.254.122.13	attackbotsspam	Jul 15 01:59:32 h2177944 kernel: \[1472986.659004\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.254.122.13 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=25313 PROTO=TCP SPT=47774 DPT=55729 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 15 02:07:10 h2177944 kernel: \[1473444.517740\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.254.122.13 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x20 TTL=245 ID=38340 PROTO=TCP SPT=47774 DPT=45000 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 15 02:12:54 h2177944 kernel: \[1473788.756989\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.254.122.13 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x20 TTL=245 ID=26086 PROTO=TCP SPT=47774 DPT=23362 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 15 02:16:17 h2177944 kernel: \[1473991.789765\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.254.122.13 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x20 TTL=245 ID=55215 PROTO=TCP SPT=47774 DPT=6008 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 15 02:17:56 h2177944 kernel: \[1474089.875310\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=185.254.122.13 DST=85.2	2019-07-15 08:26:18
148.240.94.16	attackspambots	proto=tcp . spt=36743 . dpt=25 . (listed on Dark List de Jul 14) (613)	2019-07-15 07:41:53
45.119.215.199	attackspambots	www.goldgier.de 45.119.215.199 \[14/Jul/2019:23:13:53 +0200\] "POST /wp-login.php HTTP/1.1" 200 8725 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.goldgier.de 45.119.215.199 \[14/Jul/2019:23:13:55 +0200\] "POST /wp-login.php HTTP/1.1" 200 8725 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.goldgier.de 45.119.215.199 \[14/Jul/2019:23:13:57 +0200\] "POST /wp-login.php HTTP/1.1" 200 8725 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-07-15 08:04:09
46.242.12.225	attackbots	Unauthorized access detected from banned ip	2019-07-15 08:06:12
144.217.243.216	attack	Jul 14 23:13:53 vtv3 sshd\[9487\]: Invalid user test1 from 144.217.243.216 port 43152 Jul 14 23:13:53 vtv3 sshd\[9487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.243.216 Jul 14 23:13:55 vtv3 sshd\[9487\]: Failed password for invalid user test1 from 144.217.243.216 port 43152 ssh2 Jul 14 23:22:19 vtv3 sshd\[13589\]: Invalid user www from 144.217.243.216 port 35062 Jul 14 23:22:19 vtv3 sshd\[13589\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.243.216 Jul 14 23:35:01 vtv3 sshd\[19489\]: Invalid user fp from 144.217.243.216 port 51548 Jul 14 23:35:01 vtv3 sshd\[19489\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.217.243.216 Jul 14 23:35:03 vtv3 sshd\[19489\]: Failed password for invalid user fp from 144.217.243.216 port 51548 ssh2 Jul 14 23:39:24 vtv3 sshd\[21783\]: Invalid user ry from 144.217.243.216 port 47636 Jul 14 23:39:24 vtv3 sshd\[21783\]: p	2019-07-15 08:12:40
111.90.141.171	attackbots	Jul 14 17:13:31 web1 postfix/smtpd[32053]: warning: unknown[111.90.141.171]: SASL LOGIN authentication failed: authentication failure Jul 14 17:13:31 web1 postfix/smtpd[32054]: warning: unknown[111.90.141.171]: SASL LOGIN authentication failed: authentication failure Jul 14 17:13:31 web1 postfix/smtpd[32057]: warning: unknown[111.90.141.171]: SASL LOGIN authentication failed: authentication failure Jul 14 17:13:31 web1 postfix/smtpd[32051]: warning: unknown[111.90.141.171]: SASL LOGIN authentication failed: authentication failure Jul 14 17:13:31 web1 postfix/smtpd[32052]: warning: unknown[111.90.141.171]: SASL LOGIN authentication failed: authentication failure ...	2019-07-15 08:21:05
190.12.178.212	attackspam	Jul 15 02:01:38 vps647732 sshd[27285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.12.178.212 Jul 15 02:01:41 vps647732 sshd[27285]: Failed password for invalid user you from 190.12.178.212 port 38958 ssh2 ...	2019-07-15 08:24:03
40.113.104.81	attackbots	Jul 15 01:28:19 legacy sshd[14582]: Failed password for root from 40.113.104.81 port 1088 ssh2 Jul 15 01:34:00 legacy sshd[14731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.113.104.81 Jul 15 01:34:02 legacy sshd[14731]: Failed password for invalid user cn from 40.113.104.81 port 1088 ssh2 ...	2019-07-15 07:41:35
104.248.162.218	attackbotsspam	Jul 15 01:09:31 microserver sshd[28954]: Invalid user ts3bot from 104.248.162.218 port 59586 Jul 15 01:09:31 microserver sshd[28954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.162.218 Jul 15 01:09:33 microserver sshd[28954]: Failed password for invalid user ts3bot from 104.248.162.218 port 59586 ssh2 Jul 15 01:14:02 microserver sshd[30314]: Invalid user cedric from 104.248.162.218 port 41386 Jul 15 01:14:02 microserver sshd[30314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.162.218 Jul 15 01:27:24 microserver sshd[33825]: Invalid user maisa from 104.248.162.218 port 39082 Jul 15 01:27:24 microserver sshd[33825]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.162.218 Jul 15 01:27:27 microserver sshd[33825]: Failed password for invalid user maisa from 104.248.162.218 port 39082 ssh2 Jul 15 01:31:57 microserver sshd[34783]: Invalid user robin from 104.248.162	2019-07-15 08:01:54

Recently Reported IPs

1.20.246.78	1.20.246.99	1.20.247.102	1.20.252.189
1.20.252.227	1.20.252.240	1.20.252.4	1.20.252.9
1.20.253.10	1.20.253.108	1.20.253.118	1.20.253.128
1.20.253.130	1.20.253.14	1.20.253.148	1.20.253.152
1.20.253.154	1.20.253.157	1.20.253.165	1.20.253.173