1.20.99.127 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.20.99.89	attackbotsspam	xmlrpc attack	2020-01-23 15:48:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.20.99.127
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4181
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.20.99.127.			IN	A

;; AUTHORITY SECTION:
.			553	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022500 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 16:41:51 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 127.99.20.1.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 127.99.20.1.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.129.49.62	attackspambots	DATE:2020-06-02 14:06:40, IP:190.129.49.62, PORT:ssh SSH brute force auth (docker-dc)	2020-06-02 22:36:19
41.66.244.86	attack	Jun 2 13:29:21 localhost sshd[49877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.66.244.86 user=root Jun 2 13:29:24 localhost sshd[49877]: Failed password for root from 41.66.244.86 port 36206 ssh2 Jun 2 13:34:21 localhost sshd[50543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.66.244.86 user=root Jun 2 13:34:23 localhost sshd[50543]: Failed password for root from 41.66.244.86 port 40984 ssh2 Jun 2 13:39:03 localhost sshd[51874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.66.244.86 user=root Jun 2 13:39:06 localhost sshd[51874]: Failed password for root from 41.66.244.86 port 45758 ssh2 ...	2020-06-02 22:40:14
170.82.236.19	attack	Jun 2 05:06:38 propaganda sshd[6248]: Connection from 170.82.236.19 port 35268 on 10.0.0.160 port 22 rdomain "" Jun 2 05:06:39 propaganda sshd[6248]: Connection closed by 170.82.236.19 port 35268 [preauth]	2020-06-02 22:37:23
193.70.88.213	attackspam	May 27 09:54:43 v2202003116398111542 sshd[17413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.88.213 user=root	2020-06-02 22:45:50
59.36.143.3	attack	Jun 2 18:37:43 dhoomketu sshd[433738]: Failed password for root from 59.36.143.3 port 54827 ssh2 Jun 2 18:39:00 dhoomketu sshd[433754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.36.143.3 user=root Jun 2 18:39:02 dhoomketu sshd[433754]: Failed password for root from 59.36.143.3 port 60729 ssh2 Jun 2 18:41:36 dhoomketu sshd[433846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.36.143.3 user=root Jun 2 18:41:39 dhoomketu sshd[433846]: Failed password for root from 59.36.143.3 port 44300 ssh2 ...	2020-06-02 22:54:42
103.224.49.34	attackspambots	T: f2b postfix aggressive 3x	2020-06-02 22:53:16
124.127.206.4	attack	May 30 12:26:21 v2202003116398111542 sshd[15789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.127.206.4 user=nobody	2020-06-02 23:02:14
112.85.42.174	attackbotsspam	Jun 2 16:32:08 eventyay sshd[12988]: Failed password for root from 112.85.42.174 port 24854 ssh2 Jun 2 16:32:22 eventyay sshd[12988]: error: maximum authentication attempts exceeded for root from 112.85.42.174 port 24854 ssh2 [preauth] Jun 2 16:32:29 eventyay sshd[12996]: Failed password for root from 112.85.42.174 port 49659 ssh2 ...	2020-06-02 22:41:55
187.60.214.234	attack	May 27 06:04:09 v2202003116398111542 sshd[29297]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.60.214.234 user=root	2020-06-02 22:26:23
139.59.211.245	attackbots	TCP (SYN) 139.59.211.245:32767 -> port 8545, len 44	2020-06-02 22:34:46
119.28.21.55	attackbots	2020-06-02T06:53:18.054514morrigan.ad5gb.com sshd[22369]: Failed password for root from 119.28.21.55 port 48366 ssh2 2020-06-02T06:53:18.889469morrigan.ad5gb.com sshd[22369]: Disconnected from authenticating user root 119.28.21.55 port 48366 [preauth] 2020-06-02T07:06:20.833502morrigan.ad5gb.com sshd[27739]: Connection closed by 119.28.21.55 port 52388 [preauth]	2020-06-02 22:50:49
141.98.81.107	attackbotsspam	Jun 2 14:26:18 email sshd\[7880\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.107 user=root Jun 2 14:26:20 email sshd\[7880\]: Failed password for root from 141.98.81.107 port 36495 ssh2 Jun 2 14:27:19 email sshd\[8071\]: Invalid user admin from 141.98.81.107 Jun 2 14:27:19 email sshd\[8071\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.107 Jun 2 14:27:21 email sshd\[8071\]: Failed password for invalid user admin from 141.98.81.107 port 34483 ssh2 ...	2020-06-02 22:34:02
113.2.112.106	attackspambots	Unauthorised access (Jun 2) SRC=113.2.112.106 LEN=40 TTL=47 ID=20139 TCP DPT=23 WINDOW=8365 SYN	2020-06-02 22:46:32
139.155.74.147	attackbots	Unauthorised connection attempt detected at AUO NODE 4. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-02 22:36:05
193.9.46.63	attack	Jun 1 16:55:10 UTC__SANYALnet-Labs__cac14 sshd[27186]: Connection from 193.9.46.63 port 37164 on 64.137.176.112 port 22 Jun 1 16:55:12 UTC__SANYALnet-Labs__cac14 sshd[27186]: User r.r from 193.9.46.63 not allowed because not listed in AllowUsers Jun 1 16:55:12 UTC__SANYALnet-Labs__cac14 sshd[27186]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.9.46.63 user=r.r Jun 1 16:55:14 UTC__SANYALnet-Labs__cac14 sshd[27186]: Failed password for invalid user r.r from 193.9.46.63 port 37164 ssh2 Jun 1 16:55:14 UTC__SANYALnet-Labs__cac14 sshd[27186]: Received disconnect from 193.9.46.63: 11: Bye Bye [preauth] Jun 1 16:58:26 UTC__SANYALnet-Labs__cac14 sshd[27234]: Connection from 193.9.46.63 port 51278 on 64.137.176.112 port 22 Jun 1 16:58:27 UTC__SANYALnet-Labs__cac14 sshd[27234]: User r.r from 193.9.46.63 not allowed because not listed in AllowUsers Jun 1 16:58:27 UTC__SANYALnet-Labs__cac14 sshd[27234]: pam_unix(sshd:auth): aut........ -------------------------------	2020-06-02 22:30:57

Recently Reported IPs

1.20.99.124	103.145.33.251	103.145.29.134	103.145.33.254
103.145.31.166	103.145.31.218	103.145.29.154	103.145.33.253
103.145.31.18	103.145.31.136	103.145.33.252	103.145.32.98
1.20.99.128	103.145.34.10	103.145.34.102	103.145.34.34
103.145.34.45	103.145.34.9	103.145.34.48	103.145.34.51