1.20.85.18 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.85.195	attackbotsspam	Unauthorized connection attempt from IP address 1.20.85.195 on Port 445(SMB)	2020-04-24 19:52:22
1.20.85.208	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 10:04:59
1.20.85.234	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 10:01:43
1.20.85.245	attackspam	Unauthorized connection attempt detected from IP address 1.20.85.245 to port 5555 [J]	2020-01-07 07:44:03
1.20.85.24	attackbotsspam	scan z	2019-12-03 17:18:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.85.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45287
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.85.18.			IN	A

;; AUTHORITY SECTION:
.			437	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 10:10:25 CST 2022
;; MSG SIZE  rcvd: 103

Host info

Host 18.85.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 18.85.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.116.253.142	attackbots	Jan 9 14:40:58 ns381471 sshd[26049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.253.142 Jan 9 14:41:00 ns381471 sshd[26049]: Failed password for invalid user uqd from 14.116.253.142 port 38177 ssh2	2020-01-09 21:59:29
51.91.212.81	attackspam	Unauthorized connection attempt detected from IP address 51.91.212.81 to port 143	2020-01-09 21:41:37
108.160.199.219	attack	Jan 9 14:10:33 nextcloud sshd\[21874\]: Invalid user share from 108.160.199.219 Jan 9 14:10:33 nextcloud sshd\[21874\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=108.160.199.219 Jan 9 14:10:35 nextcloud sshd\[21874\]: Failed password for invalid user share from 108.160.199.219 port 57134 ssh2 ...	2020-01-09 21:50:47
159.65.4.64	attack	SSH Login Bruteforce	2020-01-09 21:22:42
222.186.15.158	attack	Jan 9 14:36:14 h2177944 sshd\[3997\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.158 user=root Jan 9 14:36:15 h2177944 sshd\[3997\]: Failed password for root from 222.186.15.158 port 49466 ssh2 Jan 9 14:36:19 h2177944 sshd\[3997\]: Failed password for root from 222.186.15.158 port 49466 ssh2 Jan 9 14:36:21 h2177944 sshd\[3997\]: Failed password for root from 222.186.15.158 port 49466 ssh2 ...	2020-01-09 21:39:44
112.85.42.172	attack	(sshd) Failed SSH login from 112.85.42.172 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jan 9 10:27:15 svr sshd[338213]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.172 user=root Jan 9 10:27:17 svr sshd[338213]: Failed password for root from 112.85.42.172 port 7022 ssh2 Jan 9 10:27:21 svr sshd[338213]: Failed password for root from 112.85.42.172 port 7022 ssh2 Jan 9 10:27:24 svr sshd[338213]: Failed password for root from 112.85.42.172 port 7022 ssh2 Jan 9 10:27:27 svr sshd[338213]: Failed password for root from 112.85.42.172 port 7022 ssh2	2020-01-09 21:33:46
222.186.175.161	attackspambots	SSH Brute Force, server-1 sshd[22017]: Failed password for root from 222.186.175.161 port 19020 ssh2	2020-01-09 21:35:46
61.174.50.50	attackspam	Jan 9 14:10:18 debian-2gb-nbg1-2 kernel: \[834730.828904\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=61.174.50.50 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=1352 PROTO=TCP SPT=42733 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-09 22:06:49
178.44.93.153	attackbots	Telnet/23 MH Probe, BF, Hack -	2020-01-09 21:36:49
104.236.226.93	attackbots	$f2bV_matches	2020-01-09 21:51:42
117.50.65.217	attack	SSH Brute Force	2020-01-09 21:31:03
60.190.114.82	attack	Jan 9 10:10:39 ws24vmsma01 sshd[177417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.190.114.82 Jan 9 10:10:41 ws24vmsma01 sshd[177417]: Failed password for invalid user dyl from 60.190.114.82 port 54633 ssh2 ...	2020-01-09 21:45:35
77.247.108.91	attackbotsspam	77.247.108.91 was recorded 8 times by 2 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 8, 31, 777	2020-01-09 22:00:27
117.175.169.108	attackspam	failed_logins	2020-01-09 21:46:50
84.42.47.158	attackspambots	" "	2020-01-09 21:51:59

Recently Reported IPs

1.20.85.168	1.20.85.196	222.244.37.10	1.20.85.202
1.20.85.204	1.20.85.206	1.20.85.238	1.20.85.241
1.20.85.46	1.20.85.97	1.20.86.23	1.20.87.103
238.213.60.160	1.20.91.49	1.20.91.60	1.20.91.62
1.20.91.64	1.20.91.66	1.20.91.68	1.20.91.71