1.20.97.145 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.97.181	attackbots	VNC brute force attack detected by fail2ban	2020-07-05 13:11:08
1.20.97.204	attack	Blocked Thailand, hacker netname: TOT-MOBILE-AS-AP descr: TOT Mobile Co LTD descr: 89/2 Moo3 Chaengwattana Rd Thungsonghong Laksi country: TH IP: 1.20.97.204 Hostname: 1.20.97.204 Human/Bot: Human Browser: Chrome version 63.0 running on Win7	2019-07-25 21:15:08

Type

Details

Datetime

1.20.97.181

attackbots

VNC brute force attack detected by fail2ban

2020-07-05 13:11:08

1.20.97.204

attack

Blocked Thailand, hacker
netname: TOT-MOBILE-AS-AP
descr: TOT Mobile Co LTD
descr: 89/2 Moo3 Chaengwattana Rd Thungsonghong Laksi
country: TH
 IP: 1.20.97.204 Hostname: 1.20.97.204
Human/Bot: Human
Browser: Chrome version 63.0 running on Win7

2019-07-25 21:15:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.97.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3540
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.97.145.			IN	A

;; AUTHORITY SECTION:
.			558	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022400 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 24 21:25:25 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 145.97.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.97.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.163.220.125	attackspambots	Multiport scan : 13 ports scanned 146 254 1049 3128 3826 4445 5033 6112 9040 9110 15002 50389 65000	2019-12-07 09:08:36
185.143.223.129	attack	2019-12-07T01:45:46.997313+01:00 lumpi kernel: [969498.365618] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=185.143.223.129 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=27813 PROTO=TCP SPT=42199 DPT=11865 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-07 09:05:56
59.149.237.145	attackbots	Dec 7 05:45:14 vps666546 sshd\[10454\]: Invalid user zhou from 59.149.237.145 port 36813 Dec 7 05:45:14 vps666546 sshd\[10454\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 Dec 7 05:45:17 vps666546 sshd\[10454\]: Failed password for invalid user zhou from 59.149.237.145 port 36813 ssh2 Dec 7 05:55:03 vps666546 sshd\[10786\]: Invalid user evelynp from 59.149.237.145 port 42455 Dec 7 05:55:03 vps666546 sshd\[10786\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.149.237.145 ...	2019-12-07 13:11:38
117.50.38.246	attackspam	2019-12-07T05:50:54.180424struts4.enskede.local sshd\[2023\]: Invalid user admin from 117.50.38.246 port 58602 2019-12-07T05:50:54.189004struts4.enskede.local sshd\[2023\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.38.246 2019-12-07T05:50:57.278746struts4.enskede.local sshd\[2023\]: Failed password for invalid user admin from 117.50.38.246 port 58602 ssh2 2019-12-07T05:57:29.899277struts4.enskede.local sshd\[2060\]: Invalid user test from 117.50.38.246 port 59396 2019-12-07T05:57:29.907096struts4.enskede.local sshd\[2060\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.38.246 ...	2019-12-07 13:17:45
178.128.25.171	attackspam	fail2ban	2019-12-07 13:17:16
180.76.134.246	attack	Dec 7 05:48:25 sd-53420 sshd\[20100\]: Invalid user lali from 180.76.134.246 Dec 7 05:48:25 sd-53420 sshd\[20100\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.134.246 Dec 7 05:48:27 sd-53420 sshd\[20100\]: Failed password for invalid user lali from 180.76.134.246 port 41712 ssh2 Dec 7 05:54:58 sd-53420 sshd\[21365\]: Invalid user teste from 180.76.134.246 Dec 7 05:54:58 sd-53420 sshd\[21365\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.134.246 ...	2019-12-07 13:16:32
111.207.149.133	attackbots	Dec 7 05:55:05 andromeda sshd\[7135\]: Invalid user user from 111.207.149.133 port 16588 Dec 7 05:55:05 andromeda sshd\[7135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.207.149.133 Dec 7 05:55:06 andromeda sshd\[7135\]: Failed password for invalid user user from 111.207.149.133 port 16588 ssh2	2019-12-07 13:08:39
138.68.92.121	attack	Dec 6 23:29:05 pi sshd\[22323\]: Failed password for invalid user sandige from 138.68.92.121 port 47878 ssh2 Dec 6 23:44:41 pi sshd\[22983\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121 user=mysql Dec 6 23:44:43 pi sshd\[22983\]: Failed password for mysql from 138.68.92.121 port 57418 ssh2 Dec 6 23:59:58 pi sshd\[23658\]: Invalid user nentwich from 138.68.92.121 port 38736 Dec 6 23:59:58 pi sshd\[23658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.92.121 ...	2019-12-07 09:12:17
185.143.223.121	attackbotsspam	Excessive Port-Scanning	2019-12-07 09:06:53
51.15.84.255	attackbotsspam	Dec 6 18:29:41 dallas01 sshd[32275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.84.255 Dec 6 18:29:43 dallas01 sshd[32275]: Failed password for invalid user billie from 51.15.84.255 port 48732 ssh2 Dec 6 18:38:39 dallas01 sshd[2866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.84.255	2019-12-07 09:13:49
103.28.121.26	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-07 13:14:44
185.143.223.130	attackspambots	Port scan on 5 port(s): 12167 12250 12257 12293 12324	2019-12-07 09:05:31
139.155.151.50	attackspam	Dec 6 18:47:59 sachi sshd\[13261\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.151.50 user=backup Dec 6 18:48:01 sachi sshd\[13261\]: Failed password for backup from 139.155.151.50 port 37474 ssh2 Dec 6 18:55:08 sachi sshd\[13907\]: Invalid user named from 139.155.151.50 Dec 6 18:55:08 sachi sshd\[13907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.151.50 Dec 6 18:55:10 sachi sshd\[13907\]: Failed password for invalid user named from 139.155.151.50 port 43042 ssh2	2019-12-07 13:01:55
218.89.134.71	attackbotsspam	Dec 6 23:01:08 localhost sshd\[3824\]: Invalid user marhta from 218.89.134.71 port 18690 Dec 6 23:01:08 localhost sshd\[3824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.89.134.71 Dec 6 23:01:10 localhost sshd\[3824\]: Failed password for invalid user marhta from 218.89.134.71 port 18690 ssh2 ...	2019-12-07 09:12:45
124.251.110.148	attack	Dec 7 05:40:24 vps sshd[22048]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.251.110.148 Dec 7 05:40:26 vps sshd[22048]: Failed password for invalid user guest from 124.251.110.148 port 50622 ssh2 Dec 7 05:54:47 vps sshd[22735]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.251.110.148 ...	2019-12-07 13:05:12

Recently Reported IPs

1.20.97.142	1.20.97.146	1.20.97.148	1.20.97.150
1.20.97.155	1.20.97.157	1.20.97.158	1.20.97.160
1.20.97.163	1.20.97.166	1.20.97.173	1.20.97.174
1.20.97.178	1.20.97.184	1.20.97.186	1.20.97.189
1.20.97.190	1.20.97.194	255.73.6.194	1.20.97.198