189.206.201.20

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Mexico

运营商(isp): Alestra S. de R.L. de C.V.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt detected from IP address 189.206.201.20 to port 81	2020-03-17 19:44:33
attackbotsspam	Unauthorized connection attempt detected from IP address 189.206.201.20 to port 23 [J]	2020-03-01 06:27:46
attack	Unauthorized connection attempt detected from IP address 189.206.201.20 to port 81 [J]	2020-01-18 13:24:00

类型

评论内容

时间

attackspambots

Unauthorized connection attempt detected from IP address 189.206.201.20 to port 81

2020-03-17 19:44:33

attackbotsspam

Unauthorized connection attempt detected from IP address 189.206.201.20 to port 23 [J]

2020-03-01 06:27:46

attack

Unauthorized connection attempt detected from IP address 189.206.201.20 to port 81 [J]

2020-01-18 13:24:00

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.206.201.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36765
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.206.201.20.			IN	A

;; AUTHORITY SECTION:
.			353	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011701 1800 900 604800 86400

;; Query time: 124 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 18 13:23:56 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 20.201.206.189.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.201.206.189.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
51.158.65.138	attackbots	Automatic report - XMLRPC Attack	2019-10-21 23:42:50
109.11.32.80	attackspam	2019-10-21 x@x 2019-10-21 11:49:47 unexpected disconnection while reading SMTP command from 80.32.11.109.rev.sfr.net [109.11.32.80]:17433 I=[10.100.18.23]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=109.11.32.80	2019-10-21 23:55:10
80.41.55.106	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/80.41.55.106/ GB - 1H : (61) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN9105 IP : 80.41.55.106 CIDR : 80.40.0.0/13 PREFIX COUNT : 42 UNIQUE IP COUNT : 3022848 ATTACKS DETECTED ASN9105 : 1H - 1 3H - 2 6H - 2 12H - 2 24H - 7 DateTime : 2019-10-21 13:41:12 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-22 00:00:40
132.232.40.45	attack	Oct 21 12:46:42 anodpoucpklekan sshd[6755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.40.45 user=root Oct 21 12:46:44 anodpoucpklekan sshd[6755]: Failed password for root from 132.232.40.45 port 57998 ssh2 ...	2019-10-22 00:03:58
211.167.97.247	attackbots	firewall-block, port(s): 1433/tcp	2019-10-22 00:16:24
128.199.128.215	attack	Oct 21 08:54:03 xtremcommunity sshd\[744391\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.128.215 user=root Oct 21 08:54:05 xtremcommunity sshd\[744391\]: Failed password for root from 128.199.128.215 port 39074 ssh2 Oct 21 08:58:49 xtremcommunity sshd\[744512\]: Invalid user elena from 128.199.128.215 port 48376 Oct 21 08:58:49 xtremcommunity sshd\[744512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.128.215 Oct 21 08:58:51 xtremcommunity sshd\[744512\]: Failed password for invalid user elena from 128.199.128.215 port 48376 ssh2 ...	2019-10-22 00:04:13
156.212.91.227	attackbotsspam	Oct 21 13:38:45 admin sendmail[7071]: x9LBcjsd007071: host-156.212.227.91-static.tedata.net [156.212.91.227] (may be forged) did not issue MAIL/EXPN/VRFY/ETRN during connection to TLSMTA Oct 21 13:39:02 admin sendmail[7080]: x9LBd03T007080: host-156.212.227.91-static.tedata.net [156.212.91.227] (may be forged) did not issue MAIL/EXPN/VRFY/ETRN during connection to TLSMTA Oct 21 13:39:04 admin sendmail[7081]: x9LBd2aG007081: host-156.212.227.91-static.tedata.net [156.212.91.227] (may be forged) did not issue MAIL/EXPN/VRFY/ETRN during connection to TLSMTA Oct 21 13:39:06 admin sendmail[7084]: x9LBd41h007084: host-156.212.227.91-static.tedata.net [156.212.91.227] (may be forged) did not issue MAIL/EXPN/VRFY/ETRN during connection to TLSMTA ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=156.212.91.227	2019-10-21 23:49:06
106.12.110.157	attack	2019-10-21T12:14:36.327965abusebot-3.cloudsearch.cf sshd\[21948\]: Invalid user idc_2011 from 106.12.110.157 port 10709	2019-10-21 23:38:42
93.185.67.178	attackspambots	5x Failed Password	2019-10-22 00:04:50
162.247.74.213	attackspam	Oct 21 17:46:57 km20725 sshd\[30610\]: Invalid user acer from 162.247.74.213Oct 21 17:46:59 km20725 sshd\[30610\]: Failed password for invalid user acer from 162.247.74.213 port 41368 ssh2Oct 21 17:47:02 km20725 sshd\[30610\]: Failed password for invalid user acer from 162.247.74.213 port 41368 ssh2Oct 21 17:47:05 km20725 sshd\[30610\]: Failed password for invalid user acer from 162.247.74.213 port 41368 ssh2 ...	2019-10-22 00:18:22
85.185.18.70	attackspam	2019-10-21T15:48:53.135828 sshd[9378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.185.18.70 user=root 2019-10-21T15:48:55.092849 sshd[9378]: Failed password for root from 85.185.18.70 port 50930 ssh2 2019-10-21T15:53:48.152894 sshd[9437]: Invalid user giselle from 85.185.18.70 port 53416 2019-10-21T15:53:48.167311 sshd[9437]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.185.18.70 2019-10-21T15:53:48.152894 sshd[9437]: Invalid user giselle from 85.185.18.70 port 53416 2019-10-21T15:53:50.288024 sshd[9437]: Failed password for invalid user giselle from 85.185.18.70 port 53416 ssh2 ...	2019-10-21 23:45:27
162.241.178.219	attackspam	(sshd) Failed SSH login from 162.241.178.219 (server.multixservices.net): 5 in the last 3600 secs	2019-10-22 00:10:39
37.5.246.204	attackbots	2019-10-21 x@x 2019-10-21 12:41:01 unexpected disconnection while reading SMTP command from (ip2505f6cc.dynamic.kabel-deutschland.de) [37.5.246.204]:51786 I=[10.100.18.20]:25 (error: Connection reset by peer) 2019-10-21 x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=37.5.246.204	2019-10-22 00:07:26
83.56.9.1	attackspambots	Oct 21 17:40:58 nginx sshd[65224]: Invalid user max from 83.56.9.1 Oct 21 17:40:58 nginx sshd[65224]: Connection closed by 83.56.9.1 port 55098 [preauth]	2019-10-21 23:57:44
186.226.151.169	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/186.226.151.169/ BR - 1H : (255) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN262980 IP : 186.226.151.169 CIDR : 186.226.144.0/21 PREFIX COUNT : 8 UNIQUE IP COUNT : 11264 ATTACKS DETECTED ASN262980 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 2 DateTime : 2019-10-21 13:41:11 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-22 00:02:01

最近上报的IP列表

178.89.216.141	177.94.219.141	186.93.29.105	173.176.15.89
157.245.154.65	122.117.62.192	119.123.177.28	243.195.6.235
70.179.226.142	114.32.209.239	94.140.170.230	132.108.214.170
150.150.2.159	191.92.146.106	86.3.7.190	109.105.6.166
146.127.154.31	108.58.166.194	103.252.128.166	96.246.140.13