167.249.20.1 - IPInfo

Basic Info

City: San Miguel

Region: San Miguel

Country: El Salvador

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.249.206.35	attack	Jan 11 05:49:22 grey postfix/smtpd\[9288\]: NOQUEUE: reject: RCPT from ip167-249-206-35.mentrix.com.br\[167.249.206.35\]: 554 5.7.1 Service unavailable\; Client host \[167.249.206.35\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[167.249.206.35\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-11 18:48:12
167.249.206.13	attack	Port Scan	2019-10-23 20:57:17

Type

Details

Datetime

167.249.206.35

attack

Jan 11 05:49:22 grey postfix/smtpd\[9288\]: NOQUEUE: reject: RCPT from ip167-249-206-35.mentrix.com.br\[167.249.206.35\]: 554 5.7.1 Service unavailable\; Client host \[167.249.206.35\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[167.249.206.35\]\; from=\ to=\ proto=ESMTP helo=\
...

2020-01-11 18:48:12

167.249.206.13

attack

Port Scan

2019-10-23 20:57:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.249.20.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31309
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.249.20.1.			IN	A

;; AUTHORITY SECTION:
.			226	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023080900 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Aug 10 01:59:07 CST 2023
;; MSG SIZE  rcvd: 105

Host info

Host 1.20.249.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 1.20.249.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.74.121.79	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-05 03:02:11
86.57.227.142	attackspam	nft/Honeypot/21/73e86	2020-05-05 03:11:55
182.43.134.224	attackbotsspam	"fail2ban match"	2020-05-05 03:29:45
177.80.234.51	attackbotsspam	May 4 18:13:05 vlre-nyc-1 sshd\[5439\]: Invalid user mpiuser from 177.80.234.51 May 4 18:13:06 vlre-nyc-1 sshd\[5439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.80.234.51 May 4 18:13:08 vlre-nyc-1 sshd\[5439\]: Failed password for invalid user mpiuser from 177.80.234.51 port 25382 ssh2 May 4 18:22:24 vlre-nyc-1 sshd\[5601\]: Invalid user ascension from 177.80.234.51 May 4 18:22:24 vlre-nyc-1 sshd\[5601\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.80.234.51 ...	2020-05-05 03:28:16
106.13.54.106	attackspambots	May 4 20:23:12 host sshd[15965]: Invalid user yoshi from 106.13.54.106 port 35635 ...	2020-05-05 03:26:44
203.168.31.117	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-05-05 03:26:59
185.135.83.179	attack	185.135.83.179 - - [04/May/2020:22:37:16 +0400] "POST /GponForm/diag_Form?style/ HTTP/1.1" 502 157 "-" "curl/7.3.2" ...	2020-05-05 02:59:11
183.82.115.50	attack	Honeypot attack, port: 445, PTR: broadband.actcorp.in.	2020-05-05 03:14:32
213.217.0.132	attackbotsspam	May 4 21:10:05 debian-2gb-nbg1-2 kernel: \[10878303.297629\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=213.217.0.132 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=33308 PROTO=TCP SPT=43963 DPT=55295 WINDOW=1024 RES=0x00 SYN URGP=0	2020-05-05 03:16:50
186.249.23.2	attack	2020-05-04T14:08:36.895245scrat postfix/smtpd[3161958]: NOQUEUE: reject: RCPT from unknown[186.249.23.2]: 450 4.7.25 Client host rejected: cannot find your hostname, [186.249.23.2]; from= to= proto=ESMTP helo= 2020-05-04T14:08:38.043130scrat postfix/smtpd[3161958]: NOQUEUE: reject: RCPT from unknown[186.249.23.2]: 450 4.7.25 Client host rejected: cannot find your hostname, [186.249.23.2]; from= to= proto=ESMTP helo= 2020-05-04T14:08:39.202754scrat postfix/smtpd[3161958]: NOQUEUE: reject: RCPT from unknown[186.249.23.2]: 450 4.7.25 Client host rejected: cannot find your hostname, [186.249.23.2]; from= to= proto=ESMTP helo= 2020-05-04T14:08:40.351631scrat postfix/smtpd[3161958]: NOQUEUE: reject: RCPT from unknown[186.249.23.2]: 450 4.7.25 Client host rejected: cannot find your hostname, [186.249.23.2]; from= to=	2020-05-05 02:50:12
168.232.13.210	attack	Automatic report - Banned IP Access	2020-05-05 02:48:16
206.189.191.205	attackspam	[Mon May 04 13:29:01 2020] - DDoS Attack From IP: 206.189.191.205 Port: 34921	2020-05-05 03:27:51
14.250.210.44	attack	1588594090 - 05/04/2020 14:08:10 Host: 14.250.210.44/14.250.210.44 Port: 445 TCP Blocked	2020-05-05 03:14:04
81.4.109.159	attackspam	$f2bV_matches	2020-05-05 02:56:25
106.13.233.61	attackbots	k+ssh-bruteforce	2020-05-05 03:07:42

Recently Reported IPs

167.249.20.13	113.190.54.236	132.147.202.74	242.129.246.114
155.111.148.119	217.91.231.254	71.140.13.210	174.85.233.112
213.233.110.203	222.10.96.11	36.82.98.152	63.95.240.158
77.220.32.242	183.253.225.247	95.111.194.65	57.199.245.218
39.108.187.166	181.46.164.19	181.143.201.80	186.143.201.80