138.201.20.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.201.200.50	attackspam	15.09.2020 18:58:25 - Bad Robot Ignore Robots.txt	2020-09-17 00:12:59
138.201.200.50	attackbotsspam	15.09.2020 18:58:25 - Bad Robot Ignore Robots.txt	2020-09-16 16:29:55
138.201.207.106	attackspambots	Automatic report - Port Scan Attack	2020-03-12 03:31:36
138.201.200.69	attackbotsspam	Dec 5 00:17:37 wildwolf ssh-honeypotd[26164]: Failed password for a from 138.201.200.69 port 54572 ssh2 (target: 158.69.100.151:22, password: a) Dec 5 00:17:37 wildwolf ssh-honeypotd[26164]: Failed password for a from 138.201.200.69 port 54992 ssh2 (target: 158.69.100.144:22, password: a) Dec 5 00:17:37 wildwolf ssh-honeypotd[26164]: Failed password for a from 138.201.200.69 port 39994 ssh2 (target: 158.69.100.140:22, password: a) Dec 5 00:17:37 wildwolf ssh-honeypotd[26164]: Failed password for a from 138.201.200.69 port 48126 ssh2 (target: 158.69.100.153:22, password: a) Dec 5 00:17:37 wildwolf ssh-honeypotd[26164]: Failed password for a from 138.201.200.69 port 47492 ssh2 (target: 158.69.100.138:22, password: a) Dec 5 00:17:37 wildwolf ssh-honeypotd[26164]: Failed password for a from 138.201.200.69 port 38526 ssh2 (target: 158.69.100.134:22, password: a) Dec 5 00:17:37 wildwolf ssh-honeypotd[26164]: Failed password for a from 138.201.200.69 port 51668 ssh2 (tar........ ------------------------------	2019-12-06 17:36:57
138.201.202.95	attackbots	11/23/2019-12:47:49.799524 138.201.202.95 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-24 02:18:50
138.201.202.95	attackbotsspam	138.201.202.95 was recorded 5 times by 2 hosts attempting to connect to the following ports: 2375,2376,2377. Incident counter (4h, 24h, all-time): 5, 5, 5	2019-11-23 06:58:47
138.201.203.73	attackbots	Sql/code injection probe	2019-11-16 03:08:59

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.201.20.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40509
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.201.20.3.			IN	A

;; AUTHORITY SECTION:
.			89	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:37:55 CST 2022
;; MSG SIZE  rcvd: 105

Host info

3.20.201.138.in-addr.arpa domain name pointer static.3.20.201.138.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
3.20.201.138.in-addr.arpa	name = static.3.20.201.138.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.117.42.124	attack	19/8/10@08:23:26: FAIL: Alarm-Intrusion address from=45.117.42.124 19/8/10@08:23:26: FAIL: Alarm-Intrusion address from=45.117.42.124 ...	2019-08-10 20:52:25
223.27.234.253	attackbotsspam	Aug 10 14:37:14 lnxmysql61 sshd[28553]: Failed password for root from 223.27.234.253 port 46344 ssh2 Aug 10 14:37:14 lnxmysql61 sshd[28553]: Failed password for root from 223.27.234.253 port 46344 ssh2 Aug 10 14:43:25 lnxmysql61 sshd[29333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.27.234.253	2019-08-10 20:56:34
34.68.204.156	attack	WordPress XMLRPC scan :: 34.68.204.156 0.060 BYPASS [10/Aug/2019:22:23:52 1000] [censored_4] "POST /xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-08-10 20:33:59
141.98.81.111	attack	Aug 10 08:23:47 TORMINT sshd\[18497\]: Invalid user admin from 141.98.81.111 Aug 10 08:23:47 TORMINT sshd\[18497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.111 Aug 10 08:23:49 TORMINT sshd\[18497\]: Failed password for invalid user admin from 141.98.81.111 port 58095 ssh2 ...	2019-08-10 20:35:41
58.47.177.160	attackspam	2019-08-10T12:23:21.973969abusebot-7.cloudsearch.cf sshd\[19428\]: Invalid user admin from 58.47.177.160 port 55080	2019-08-10 20:55:10
121.67.246.139	attackspambots	Invalid user IEUser from 121.67.246.139 port 40334 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.246.139 Failed password for invalid user IEUser from 121.67.246.139 port 40334 ssh2 Invalid user reshma from 121.67.246.139 port 39980 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.67.246.139	2019-08-10 21:24:16
14.139.237.162	attackbots	Mar 1 17:15:38 motanud sshd\[25354\]: Invalid user zt from 14.139.237.162 port 40332 Mar 1 17:15:38 motanud sshd\[25354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.237.162 Mar 1 17:15:40 motanud sshd\[25354\]: Failed password for invalid user zt from 14.139.237.162 port 40332 ssh2	2019-08-10 21:04:24
184.105.247.228	attackspambots	Honeypot attack, port: 5555, PTR: scan-15h.shadowserver.org.	2019-08-10 20:59:56
14.139.59.195	attackspam	Mar 4 08:55:12 motanud sshd\[12767\]: Invalid user sh from 14.139.59.195 port 42112 Mar 4 08:55:12 motanud sshd\[12767\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.139.59.195 Mar 4 08:55:14 motanud sshd\[12767\]: Failed password for invalid user sh from 14.139.59.195 port 42112 ssh2	2019-08-10 21:04:04
178.122.239.121	attackspam	Aug 10 13:39:44 pl3server sshd[937542]: Invalid user admin from 178.122.239.121 Aug 10 13:39:47 pl3server sshd[937542]: Failed password for invalid user admin from 178.122.239.121 port 56402 ssh2 Aug 10 13:39:47 pl3server sshd[937542]: Connection closed by 178.122.239.121 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=178.122.239.121	2019-08-10 21:09:44
87.236.212.48	attackbotsspam	Aug 10 04:25:07 isowiki sshd[28926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.236.212.48 user=r.r Aug 10 04:25:10 isowiki sshd[28926]: Failed password for r.r from 87.236.212.48 port 50310 ssh2 Aug 10 10:28:51 isowiki sshd[29821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.236.212.48 user=r.r Aug 10 10:28:53 isowiki sshd[29821]: Failed password for r.r from 87.236.212.48 port 40728 ssh2 Aug 10 13:34:19 isowiki sshd[30435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.236.212.48 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=87.236.212.48	2019-08-10 21:25:40
89.248.172.85	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-08-10 21:03:26
41.35.17.72	attackspam	Aug 10 13:39:51 pl3server sshd[937591]: reveeclipse mapping checking getaddrinfo for host-41.35.17.72.tedata.net [41.35.17.72] failed - POSSIBLE BREAK-IN ATTEMPT! Aug 10 13:39:51 pl3server sshd[937591]: Invalid user admin from 41.35.17.72 Aug 10 13:39:51 pl3server sshd[937591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.35.17.72 Aug 10 13:39:52 pl3server sshd[937591]: Failed password for invalid user admin from 41.35.17.72 port 53709 ssh2 Aug 10 13:39:53 pl3server sshd[937591]: Connection closed by 41.35.17.72 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=41.35.17.72	2019-08-10 21:14:42
14.116.251.29	attackbotsspam	Jan 3 14:56:41 motanud sshd\[6999\]: Invalid user pv from 14.116.251.29 port 58494 Jan 3 14:56:41 motanud sshd\[6999\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.116.251.29 Jan 3 14:56:42 motanud sshd\[6999\]: Failed password for invalid user pv from 14.116.251.29 port 58494 ssh2	2019-08-10 21:15:06
5.39.88.4	attackbotsspam	Aug 10 15:08:14 SilenceServices sshd[30999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.88.4 Aug 10 15:08:16 SilenceServices sshd[30999]: Failed password for invalid user bm from 5.39.88.4 port 46262 ssh2 Aug 10 15:14:41 SilenceServices sshd[3248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.39.88.4	2019-08-10 21:27:39

Recently Reported IPs

138.201.20.208	138.201.20.22	138.201.20.5	138.201.200.158
138.201.200.61	138.201.201.131	138.201.201.196	118.175.206.46
138.201.201.239	138.201.201.40	138.201.202.206	138.201.202.39
138.201.202.94	138.201.203.211	138.201.203.55	118.175.206.63
138.201.204.227	138.201.204.197	138.201.205.11	138.201.204.167