201.216.138.20

基本信息:

城市(city): Guatemala City

省份(region): Departamento de Guatemala

国家(country): Guatemala

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.216.138.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8777
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.216.138.20.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 18 01:05:44 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

20.138.216.201.in-addr.arpa domain name pointer 20.138.216.201.intelnet.net.gt.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
20.138.216.201.in-addr.arpa	name = 20.138.216.201.intelnet.net.gt.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
182.247.193.215	attackbots	Unauthorised access (Jul 27) SRC=182.247.193.215 LEN=40 TTL=49 ID=5058 TCP DPT=8080 WINDOW=30206 SYN Unauthorised access (Jul 27) SRC=182.247.193.215 LEN=40 TTL=49 ID=40932 TCP DPT=8080 WINDOW=25551 SYN	2020-07-28 02:48:58
3.85.189.128	attackspam	3.85.189.128 - - [27/Jul/2020:14:52:25 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 3.85.189.128 - - [27/Jul/2020:14:52:25 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 3.85.189.128 - - [27/Jul/2020:14:52:25 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 3.85.189.128 - - [27/Jul/2020:14:52:25 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 3.85.189.128 - - [27/Jul/2020:14:52:25 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 3.85.189.128 - - [27/Jul/2020:14:52:25 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 3.85.189.128 - - [27/Jul/2020:14:52:25 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 3.85.189.128 - - [27/Jul/2020:14:52:25 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 3.85.189.128 - - [27/Jul/2020:14:52:25 + ...	2020-07-28 02:56:36
87.251.74.22	attack	Jul 27 20:24:32 debian-2gb-nbg1-2 kernel: \[18132776.622907\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.22 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=26298 PROTO=TCP SPT=51805 DPT=2198 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-28 02:43:08
54.196.250.245	attackbotsspam	54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/Jul/2020:14:52:26 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;2492d7be8546f6d737f9699c1bcb7f6a" 54.196.250.245 - - [27/J ...	2020-07-28 02:56:22
197.231.202.33	spamattackproxynormal	Tried to hack me	2020-07-28 02:49:58
106.12.106.34	attackbots	firewall-block, port(s): 980/tcp	2020-07-28 03:05:28
45.141.84.30	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 25 - port: 52938 proto: tcp cat: Misc Attackbytes: 60	2020-07-28 02:38:03
35.193.25.198	attackbots	Jul 27 19:03:08 onepixel sshd[3043152]: Failed password for root from 35.193.25.198 port 57356 ssh2 Jul 27 19:06:43 onepixel sshd[3045230]: Invalid user lixuejun from 35.193.25.198 port 41540 Jul 27 19:06:43 onepixel sshd[3045230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.193.25.198 Jul 27 19:06:43 onepixel sshd[3045230]: Invalid user lixuejun from 35.193.25.198 port 41540 Jul 27 19:06:45 onepixel sshd[3045230]: Failed password for invalid user lixuejun from 35.193.25.198 port 41540 ssh2	2020-07-28 03:13:34
217.170.205.14	attackbots	Lines containing failures of 217.170.205.14 Jul 27 13:34:13 shared06 sshd[10060]: Invalid user admin from 217.170.205.14 port 10853 Jul 27 13:34:13 shared06 sshd[10060]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.170.205.14 Jul 27 13:34:15 shared06 sshd[10060]: Failed password for invalid user admin from 217.170.205.14 port 10853 ssh2 Jul 27 13:34:16 shared06 sshd[10060]: Connection closed by invalid user admin 217.170.205.14 port 10853 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=217.170.205.14	2020-07-28 02:55:40
61.177.172.168	attackspambots	SSH Login Bruteforce	2020-07-28 03:06:59
5.166.230.246	attack	Jul 27 11:39:26 XXX sshd[9958]: reveeclipse mapping checking getaddrinfo for 5x166x230x246.dynamic.chel.ertelecom.ru [5.166.230.246] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 27 11:39:26 XXX sshd[9958]: Invalid user admin from 5.166.230.246 Jul 27 11:39:26 XXX sshd[9958]: Received disconnect from 5.166.230.246: 11: Bye Bye [preauth] Jul 27 11:39:27 XXX sshd[9960]: reveeclipse mapping checking getaddrinfo for 5x166x230x246.dynamic.chel.ertelecom.ru [5.166.230.246] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 27 11:39:27 XXX sshd[9960]: User r.r from 5.166.230.246 not allowed because none of user's groups are listed in AllowGroups Jul 27 11:39:27 XXX sshd[9960]: Received disconnect from 5.166.230.246: 11: Bye Bye [preauth] Jul 27 11:39:28 XXX sshd[9962]: reveeclipse mapping checking getaddrinfo for 5x166x230x246.dynamic.chel.ertelecom.ru [5.166.230.246] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 27 11:39:28 XXX sshd[9962]: Invalid user admin from 5.166.230.246 Jul 27 11:39:28 XXX s........ -------------------------------	2020-07-28 02:54:38
167.99.99.10	attack	2020-07-27T17:17:14+0200 Failed SSH Authentication/Brute Force Attack. (Server 10)	2020-07-28 02:47:31
95.158.50.201	attackbotsspam	RDP	2020-07-28 03:08:53
129.28.158.43	attack	Jul 27 20:25:01 vpn01 sshd[7263]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.158.43 Jul 27 20:25:03 vpn01 sshd[7263]: Failed password for invalid user joyou from 129.28.158.43 port 48218 ssh2 ...	2020-07-28 03:10:45
45.179.84.1	attackbotsspam	Jul 27 13:49:10 debian-2gb-nbg1-2 kernel: \[18109055.556491\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.179.84.1 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=105 ID=28274 DF PROTO=TCP SPT=50044 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0	2020-07-28 02:46:25

最近上报的IP列表

121.201.239.181	51.218.179.79	93.161.66.59	2.12.54.232
101.23.9.152	221.85.95.208	182.70.241.58	153.96.244.222
76.116.148.244	139.18.226.106	138.23.46.244	203.177.76.11
31.57.154.74	61.45.170.38	195.34.15.98	76.21.113.201
74.88.67.122	109.159.31.119	67.49.27.139	24.194.201.233