1.20.97.116 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.97.181	attackbots	VNC brute force attack detected by fail2ban	2020-07-05 13:11:08
1.20.97.204	attack	Blocked Thailand, hacker netname: TOT-MOBILE-AS-AP descr: TOT Mobile Co LTD descr: 89/2 Moo3 Chaengwattana Rd Thungsonghong Laksi country: TH IP: 1.20.97.204 Hostname: 1.20.97.204 Human/Bot: Human Browser: Chrome version 63.0 running on Win7	2019-07-25 21:15:08

Type

Details

Datetime

1.20.97.181

attackbots

VNC brute force attack detected by fail2ban

2020-07-05 13:11:08

1.20.97.204

attack

Blocked Thailand, hacker
netname: TOT-MOBILE-AS-AP
descr: TOT Mobile Co LTD
descr: 89/2 Moo3 Chaengwattana Rd Thungsonghong Laksi
country: TH
 IP: 1.20.97.204 Hostname: 1.20.97.204
Human/Bot: Human
Browser: Chrome version 63.0 running on Win7

2019-07-25 21:15:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.97.116
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1061
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.97.116.			IN	A

;; AUTHORITY SECTION:
.			409	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 21:25:05 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 116.97.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 116.97.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
213.139.144.10	attackspambots	Sep 20 08:12:19 SilenceServices sshd[15319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.139.144.10 Sep 20 08:12:21 SilenceServices sshd[15319]: Failed password for invalid user santuario from 213.139.144.10 port 50313 ssh2 Sep 20 08:18:56 SilenceServices sshd[17774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.139.144.10	2019-09-20 16:20:34
104.248.254.222	attack	Sep 20 11:23:12 pkdns2 sshd\[38824\]: Invalid user aubrey from 104.248.254.222Sep 20 11:23:15 pkdns2 sshd\[38824\]: Failed password for invalid user aubrey from 104.248.254.222 port 55424 ssh2Sep 20 11:27:30 pkdns2 sshd\[38998\]: Invalid user test1 from 104.248.254.222Sep 20 11:27:32 pkdns2 sshd\[38998\]: Failed password for invalid user test1 from 104.248.254.222 port 44852 ssh2Sep 20 11:31:54 pkdns2 sshd\[39191\]: Invalid user yp from 104.248.254.222Sep 20 11:31:55 pkdns2 sshd\[39191\]: Failed password for invalid user yp from 104.248.254.222 port 34398 ssh2 ...	2019-09-20 16:40:40
82.64.80.109	attackbotsspam	Automatic report - Banned IP Access	2019-09-20 16:50:41
35.236.209.159	attackspambots	Sep 19 19:45:09 eddieflores sshd\[25128\]: Invalid user pwla from 35.236.209.159 Sep 19 19:45:09 eddieflores sshd\[25128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.209.236.35.bc.googleusercontent.com Sep 19 19:45:10 eddieflores sshd\[25128\]: Failed password for invalid user pwla from 35.236.209.159 port 38234 ssh2 Sep 19 19:49:12 eddieflores sshd\[25651\]: Invalid user cust from 35.236.209.159 Sep 19 19:49:12 eddieflores sshd\[25651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.209.236.35.bc.googleusercontent.com	2019-09-20 16:44:01
1.160.65.27	attackbotsspam	79.172.201.32:80 1.160.65.27 - - [20/Sep/2019:02:56:33 +0200] "CONNECT www.google.com:443 HTTP/1.0" 405 558 "-" "-"	2019-09-20 16:12:35
177.184.133.41	attack	Automatic report - Banned IP Access	2019-09-20 16:41:27
103.130.218.125	attack	Sep 19 22:22:44 hanapaa sshd\[29884\]: Invalid user souleke from 103.130.218.125 Sep 19 22:22:44 hanapaa sshd\[29884\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.130.218.125 Sep 19 22:22:45 hanapaa sshd\[29884\]: Failed password for invalid user souleke from 103.130.218.125 port 56140 ssh2 Sep 19 22:29:51 hanapaa sshd\[30566\]: Invalid user guest from 103.130.218.125 Sep 19 22:29:51 hanapaa sshd\[30566\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.130.218.125	2019-09-20 16:37:11
112.85.42.177	attackspambots	Sep 20 10:02:18 jane sshd[27306]: Failed password for root from 112.85.42.177 port 58529 ssh2 Sep 20 10:02:23 jane sshd[27306]: Failed password for root from 112.85.42.177 port 58529 ssh2 ...	2019-09-20 16:20:53
45.55.231.94	attack	Invalid user svn from 45.55.231.94 port 42262	2019-09-20 16:39:28
218.92.0.156	attackbots	Sep 19 18:37:27 hanapaa sshd\[6987\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.156 user=root Sep 19 18:37:29 hanapaa sshd\[6987\]: Failed password for root from 218.92.0.156 port 30019 ssh2 Sep 19 18:37:37 hanapaa sshd\[6987\]: Failed password for root from 218.92.0.156 port 30019 ssh2 Sep 19 18:37:44 hanapaa sshd\[7005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.156 user=root Sep 19 18:37:46 hanapaa sshd\[7005\]: Failed password for root from 218.92.0.156 port 51509 ssh2	2019-09-20 16:20:14
198.108.66.112	attack	RDP brute force attack detected by fail2ban	2019-09-20 16:23:56
138.68.158.109	attack	$f2bV_matches	2019-09-20 16:46:26
101.71.2.111	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-09-20 16:31:46
140.143.183.71	attack	Sep 20 07:08:08 MK-Soft-Root2 sshd\[1922\]: Invalid user qwerty from 140.143.183.71 port 49776 Sep 20 07:08:08 MK-Soft-Root2 sshd\[1922\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.183.71 Sep 20 07:08:10 MK-Soft-Root2 sshd\[1922\]: Failed password for invalid user qwerty from 140.143.183.71 port 49776 ssh2 ...	2019-09-20 16:36:45
117.48.205.14	attackbots	Sep 20 10:26:42 rotator sshd\[12561\]: Invalid user steamserver from 117.48.205.14Sep 20 10:26:44 rotator sshd\[12561\]: Failed password for invalid user steamserver from 117.48.205.14 port 46608 ssh2Sep 20 10:31:02 rotator sshd\[13343\]: Invalid user support from 117.48.205.14Sep 20 10:31:04 rotator sshd\[13343\]: Failed password for invalid user support from 117.48.205.14 port 51046 ssh2Sep 20 10:34:19 rotator sshd\[13364\]: Invalid user bert from 117.48.205.14Sep 20 10:34:22 rotator sshd\[13364\]: Failed password for invalid user bert from 117.48.205.14 port 49924 ssh2 ...	2019-09-20 16:49:08

Recently Reported IPs

1.20.97.112	1.20.97.119	1.20.97.120	1.20.97.122
1.20.97.132	1.20.97.141	1.20.97.142	1.20.97.145
1.20.97.146	1.20.97.148	1.20.97.150	1.20.97.155
1.20.97.157	1.20.97.158	1.20.97.160	1.20.97.163
1.20.97.166	1.20.97.173	1.20.97.174	1.20.97.178