1.20.98.98 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.98.66	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/1.20.98.66/ TH - 1H : (18) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TH NAME ASN : ASN23969 IP : 1.20.98.66 CIDR : 1.20.98.0/24 PREFIX COUNT : 1783 UNIQUE IP COUNT : 1183744 ATTACKS DETECTED ASN23969 : 1H - 1 3H - 2 6H - 4 12H - 4 24H - 6 DateTime : 2019-11-11 07:21:49 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-11 20:21:26

Type

Details

Datetime

1.20.98.66

attackbotsspam

IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/1.20.98.66/ 
 
 TH - 1H : (18)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : TH 
 NAME ASN : ASN23969 
 
 IP : 1.20.98.66 
 
 CIDR : 1.20.98.0/24 
 
 PREFIX COUNT : 1783 
 
 UNIQUE IP COUNT : 1183744 
 
 
 ATTACKS DETECTED ASN23969 :  
  1H - 1 
  3H - 2 
  6H - 4 
 12H - 4 
 24H - 6 
 
 DateTime : 2019-11-11 07:21:49 
 
 INFO :  HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN  - data recovery

2019-11-11 20:21:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.98.98
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50683
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.98.98.			IN	A

;; AUTHORITY SECTION:
.			282	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 16:41:19 CST 2022
;; MSG SIZE  rcvd: 103

Host info

Host 98.98.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 98.98.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
187.173.208.148	attackspam	Dec 19 01:51:07 auw2 sshd\[32331\]: Invalid user tez from 187.173.208.148 Dec 19 01:51:07 auw2 sshd\[32331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.173.208.148 Dec 19 01:51:09 auw2 sshd\[32331\]: Failed password for invalid user tez from 187.173.208.148 port 45500 ssh2 Dec 19 01:58:33 auw2 sshd\[680\]: Invalid user guest from 187.173.208.148 Dec 19 01:58:33 auw2 sshd\[680\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.173.208.148	2019-12-19 22:13:47
113.160.241.173	attack	1576766389 - 12/19/2019 15:39:49 Host: 113.160.241.173/113.160.241.173 Port: 445 TCP Blocked	2019-12-19 22:41:25
138.68.94.173	attackspam	Dec 19 13:15:41 vps647732 sshd[27297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.94.173 Dec 19 13:15:43 vps647732 sshd[27297]: Failed password for invalid user mirinda from 138.68.94.173 port 38210 ssh2 ...	2019-12-19 22:32:18
220.76.107.50	attackspam	Dec 19 15:29:06 mail sshd[17381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.107.50 Dec 19 15:29:08 mail sshd[17381]: Failed password for invalid user suvendu from 220.76.107.50 port 41546 ssh2 Dec 19 15:35:29 mail sshd[18588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.76.107.50	2019-12-19 22:38:52
139.219.15.116	attackbots	Invalid user leendert from 139.219.15.116 port 34844	2019-12-19 22:37:34
159.65.5.183	attackspambots	Invalid user backup from 159.65.5.183 port 33210	2019-12-19 22:30:08
45.146.200.22	attackbots	email spam	2019-12-19 22:06:25
78.196.238.217	attack	Automatic report - Web App Attack	2019-12-19 22:27:21
91.230.154.221	attack	email spam	2019-12-19 22:02:27
209.105.243.145	attackspambots	Invalid user admin from 209.105.243.145 port 39212	2019-12-19 22:32:43
129.146.139.144	attack	2019-12-19 07:03:20,291 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:03:20 2019-12-19 07:03:22,256 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:03:22 2019-12-19 07:04:39,501 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:04:39 2019-12-19 07:04:41,305 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:04:41 2019-12-19 07:04:50,364 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:04:50 2019-12-19 07:04:59,716 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:04:59 2019-12-19 07:05:06,105 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:05:06 2019-12-19 07:05:08,828 fail2ban.filter [1733]: INFO [ssh] Found 129.146.139.144 - 2019-12-19 07:05:08 2019-12-19 07:05:15,227 fail2ban.filter [1733]: INFO [ssh] Fo........ -------------------------------	2019-12-19 22:22:39
64.207.94.17	attack	email spam	2019-12-19 22:05:12
218.92.0.179	attackspambots	Dec 19 15:39:39 dcd-gentoo sshd[25142]: User root from 218.92.0.179 not allowed because none of user's groups are listed in AllowGroups Dec 19 15:39:41 dcd-gentoo sshd[25142]: error: PAM: Authentication failure for illegal user root from 218.92.0.179 Dec 19 15:39:39 dcd-gentoo sshd[25142]: User root from 218.92.0.179 not allowed because none of user's groups are listed in AllowGroups Dec 19 15:39:41 dcd-gentoo sshd[25142]: error: PAM: Authentication failure for illegal user root from 218.92.0.179 Dec 19 15:39:39 dcd-gentoo sshd[25142]: User root from 218.92.0.179 not allowed because none of user's groups are listed in AllowGroups Dec 19 15:39:41 dcd-gentoo sshd[25142]: error: PAM: Authentication failure for illegal user root from 218.92.0.179 Dec 19 15:39:41 dcd-gentoo sshd[25142]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.179 port 39364 ssh2 ...	2019-12-19 22:46:13
125.160.66.229	attackbots	1576736876 - 12/19/2019 07:27:56 Host: 125.160.66.229/125.160.66.229 Port: 445 TCP Blocked	2019-12-19 22:27:51
93.90.74.187	attack	Dec 17 02:23:48 host sshd[18646]: User r.r from 93.90.74.187 not allowed because none of user's groups are listed in AllowGroups Dec 17 02:23:48 host sshd[18646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.90.74.187 user=r.r Dec 17 02:23:50 host sshd[18646]: Failed password for invalid user r.r from 93.90.74.187 port 47748 ssh2 Dec 17 02:23:50 host sshd[18646]: Received disconnect from 93.90.74.187 port 47748:11: Bye Bye [preauth] Dec 17 02:23:50 host sshd[18646]: Disconnected from invalid user r.r 93.90.74.187 port 47748 [preauth] Dec 17 02:33:23 host sshd[20886]: Invalid user rfabb from 93.90.74.187 port 54804 Dec 17 02:33:23 host sshd[20886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.90.74.187 Dec 17 02:33:24 host sshd[20886]: Failed password for invalid user rfabb from 93.90.74.187 port 54804 ssh2 Dec 17 02:33:25 host sshd[20886]: Received disconnect from 93.90.74.187 p........ -------------------------------	2019-12-19 22:33:42

Recently Reported IPs

103.144.178.138	103.144.178.143	103.144.178.14	103.144.178.148
103.144.178.156	103.144.178.154	103.144.178.16	103.144.178.161
103.144.178.130	103.144.178.164	103.144.178.172	1.20.99.10
103.144.178.166	103.144.178.176	103.144.178.180	103.144.178.19
103.144.178.190	103.144.178.183	103.144.178.200	1.20.99.104