1.20.85.18 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.85.195	attackbotsspam	Unauthorized connection attempt from IP address 1.20.85.195 on Port 445(SMB)	2020-04-24 19:52:22
1.20.85.208	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 10:04:59
1.20.85.234	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-15 10:01:43
1.20.85.245	attackspam	Unauthorized connection attempt detected from IP address 1.20.85.245 to port 5555 [J]	2020-01-07 07:44:03
1.20.85.24	attackbotsspam	scan z	2019-12-03 17:18:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.85.18
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45287
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.85.18.			IN	A

;; AUTHORITY SECTION:
.			437	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 10:10:25 CST 2022
;; MSG SIZE  rcvd: 103

Host info

Host 18.85.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 18.85.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
113.22.216.222	attackbots	firewall-block, port(s): 23/tcp	2020-06-17 17:49:27
89.46.104.163	attackspambots	(mod_security) mod_security (id:231990) triggered by 89.46.104.163 (IT/Italy/host163-104-46-89.serverdedicati.aruba.it): 5 in the last 3600 secs	2020-06-17 17:35:45
217.112.142.215	attack	Jun 17 05:12:41 mail.srvfarm.net postfix/smtpd[759118]: NOQUEUE: reject: RCPT from unknown[217.112.142.215]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 17 05:14:00 mail.srvfarm.net postfix/smtpd[762714]: NOQUEUE: reject: RCPT from unknown[217.112.142.215]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 17 05:16:19 mail.srvfarm.net postfix/smtpd[761794]: NOQUEUE: reject: RCPT from unknown[217.112.142.215]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Jun 17 05:17:56 mail.srvfarm.net postfix/smtpd[776116]: NOQUEUE: reject: RCPT from unknown[217.112.142.215]: 45	2020-06-17 17:54:02
92.118.161.53	attackbots	TCP (SYN) 92.118.161.53:52494 -> port 3389, len 44	2020-06-17 17:52:38
185.143.75.81	attackbots	Jun 17 11:54:51 relay postfix/smtpd\[21830\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 11:55:05 relay postfix/smtpd\[21954\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 11:55:41 relay postfix/smtpd\[21832\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 11:55:55 relay postfix/smtpd\[3452\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 11:56:30 relay postfix/smtpd\[6067\]: warning: unknown\[185.143.75.81\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-17 17:57:35
114.67.123.3	attackspambots	Jun 17 05:50:09 mailserver sshd\[29072\]: Invalid user test1 from 114.67.123.3 ...	2020-06-17 17:47:45
185.143.72.23	attack	Jun 17 10:56:24 nlmail01.srvfarm.net postfix/smtpd[343617]: warning: unknown[185.143.72.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 10:57:14 nlmail01.srvfarm.net postfix/smtpd[344349]: warning: unknown[185.143.72.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 10:58:09 nlmail01.srvfarm.net postfix/smtpd[344349]: warning: unknown[185.143.72.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 10:59:03 nlmail01.srvfarm.net postfix/smtpd[343617]: warning: unknown[185.143.72.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 17 11:00:09 nlmail01.srvfarm.net postfix/smtpd[343617]: warning: unknown[185.143.72.23]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-17 17:58:47
113.160.129.28	attack	DATE:2020-06-17 05:49:55, IP:113.160.129.28, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2020-06-17 18:14:08
84.217.0.86	attackspambots	Jun 16 23:19:41 php1 sshd\[15962\]: Invalid user arvind from 84.217.0.86 Jun 16 23:19:41 php1 sshd\[15962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.217.0.86 Jun 16 23:19:43 php1 sshd\[15962\]: Failed password for invalid user arvind from 84.217.0.86 port 38488 ssh2 Jun 16 23:23:03 php1 sshd\[16197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.217.0.86 user=root Jun 16 23:23:05 php1 sshd\[16197\]: Failed password for root from 84.217.0.86 port 57636 ssh2	2020-06-17 17:39:37
95.85.26.23	attackbots	Jun 17 11:08:56 jane sshd[25490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.85.26.23 Jun 17 11:08:58 jane sshd[25490]: Failed password for invalid user eeg from 95.85.26.23 port 36036 ssh2 ...	2020-06-17 17:47:08
80.82.78.100	attackspambots	SmallBizIT.US 3 packets to udp(1646,2123,5123)	2020-06-17 18:03:54
92.220.10.100	attackbots	many hits	2020-06-17 17:36:32
112.186.35.181	attack	firewall-block, port(s): 23/tcp	2020-06-17 17:50:14
106.12.184.202	attack	...	2020-06-17 17:51:43
113.59.224.45	attack	Invalid user tempuser from 113.59.224.45 port 42078	2020-06-17 18:10:48

Recently Reported IPs

1.20.85.168	1.20.85.196	222.244.37.10	1.20.85.202
1.20.85.204	1.20.85.206	1.20.85.238	1.20.85.241
1.20.85.46	1.20.85.97	1.20.86.23	1.20.87.103
238.213.60.160	1.20.91.49	1.20.91.60	1.20.91.62
1.20.91.64	1.20.91.66	1.20.91.68	1.20.91.71