200.105.166.138

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Bolivia

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): AXS Bolivia S. A.

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.105.166.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16070
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.105.166.138.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041700 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu Apr 18 00:35:28 +08 2019
;; MSG SIZE  rcvd: 119

HOST信息:

138.166.105.200.in-addr.arpa domain name pointer static-200-105-166-138.acelerate.net.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
138.166.105.200.in-addr.arpa	name = static-200-105-166-138.acelerate.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
116.255.152.129	attackspambots	Unauthorised access (Oct 11) SRC=116.255.152.129 LEN=40 TOS=0x10 PREC=0x40 TTL=239 ID=4646 TCP DPT=1433 WINDOW=1024 SYN	2019-10-11 17:41:01
51.77.150.217	attack	k+ssh-bruteforce	2019-10-11 17:38:45
138.68.50.18	attackbotsspam	Lines containing failures of 138.68.50.18 Oct 8 10:54:58 shared10 sshd[25902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.50.18 user=r.r Oct 8 10:55:00 shared10 sshd[25902]: Failed password for r.r from 138.68.50.18 port 39356 ssh2 Oct 8 10:55:00 shared10 sshd[25902]: Received disconnect from 138.68.50.18 port 39356:11: Bye Bye [preauth] Oct 8 10:55:00 shared10 sshd[25902]: Disconnected from authenticating user r.r 138.68.50.18 port 39356 [preauth] Oct 8 11:15:17 shared10 sshd[2113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.50.18 user=r.r Oct 8 11:15:19 shared10 sshd[2113]: Failed password for r.r from 138.68.50.18 port 54370 ssh2 Oct 8 11:15:20 shared10 sshd[2113]: Received disconnect from 138.68.50.18 port 54370:11: Bye Bye [preauth] Oct 8 11:15:20 shared10 sshd[2113]: Disconnected from authenticating user r.r 138.68.50.18 port 54370 [preauth] Oct 8 11:1........ ------------------------------	2019-10-11 17:44:03
124.40.232.204	attack	firewall-block, port(s): 445/tcp	2019-10-11 17:32:11
67.225.141.93	attackbotsspam	WordPress XMLRPC scan :: 67.225.141.93 0.056 BYPASS [11/Oct/2019:14:50:35 1100] www.[censored_4] "POST /xmlrpc.php HTTP/1.1" 200 415 "-" "WordPress"	2019-10-11 17:18:15
220.133.89.7	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/220.133.89.7/ TW - 1H : (316) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 220.133.89.7 CIDR : 220.133.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 23 3H - 43 6H - 81 12H - 155 24H - 307 DateTime : 2019-10-11 05:50:24 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-11 17:21:16
60.191.66.212	attack	Oct 10 22:10:30 sachi sshd\[15686\]: Invalid user 7YGV6TFC from 60.191.66.212 Oct 10 22:10:30 sachi sshd\[15686\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.191.66.212 Oct 10 22:10:32 sachi sshd\[15686\]: Failed password for invalid user 7YGV6TFC from 60.191.66.212 port 49314 ssh2 Oct 10 22:14:02 sachi sshd\[15984\]: Invalid user Aluminium_123 from 60.191.66.212 Oct 10 22:14:02 sachi sshd\[15984\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.191.66.212	2019-10-11 17:46:08
143.208.84.29	attack	Oct 11 12:29:48 sauna sshd[104272]: Failed password for root from 143.208.84.29 port 41670 ssh2 ...	2019-10-11 17:46:41
101.89.139.49	attack	Oct 10 22:10:34 * sshd[27179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.139.49 user=r.r Oct 10 22:10:36 * sshd[27179]: Failed password for r.r from 101.89.139.49 port 27473 ssh2 Oct 10 22:10:36 * sshd[27179]: Received disconnect from 101.89.139.49: 11: Bye Bye [preauth] Oct 10 22:19:29 * sshd[27801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.139.49 user=r.r Oct 10 22:19:31 * sshd[27801]: Failed password for r.r from 101.89.139.49 port 56212 ssh2 Oct 10 22:19:31 * sshd[27801]: Received disconnect from 101.89.139.49: 11: Bye Bye [preauth] Oct 10 22:24:08 * sshd[28168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.139.49 user=r.r Oct 10 22:24:09 * sshd[28168]: Failed password for r.r from 101.89.139.49 port 29415 ssh2 Oct 10 22:24:10 *** sshd[28168]: Received disconnect from 101.89.139.49: 11: Bye By........ -------------------------------	2019-10-11 17:36:26
134.209.152.176	attackbots	Oct 11 06:42:00 docs sshd\[39438\]: Invalid user Psyche2017 from 134.209.152.176Oct 11 06:42:02 docs sshd\[39438\]: Failed password for invalid user Psyche2017 from 134.209.152.176 port 60838 ssh2Oct 11 06:45:48 docs sshd\[39559\]: Invalid user Haslo@12345 from 134.209.152.176Oct 11 06:45:50 docs sshd\[39559\]: Failed password for invalid user Haslo@12345 from 134.209.152.176 port 41032 ssh2Oct 11 06:49:38 docs sshd\[39702\]: Invalid user Qwert1@3$ from 134.209.152.176Oct 11 06:49:40 docs sshd\[39702\]: Failed password for invalid user Qwert1@3$ from 134.209.152.176 port 49458 ssh2 ...	2019-10-11 17:50:33
27.2.7.59	attack	SPF Fail sender not permitted to send mail for @2008.sina.com / Sent mail to target address hacked/leaked from abandonia in 2016	2019-10-11 17:35:45
151.252.67.122	attack	DATE:2019-10-11 06:45:05, IP:151.252.67.122, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc-bis)	2019-10-11 17:55:25
111.231.93.112	attackbots	SSH/22 MH Probe, BF, Hack -	2019-10-11 17:24:29
192.42.116.16	attackbotsspam	timhelmke.de:80 192.42.116.16 - - \[11/Oct/2019:05:50:24 +0200\] "POST /xmlrpc.php HTTP/1.0" 301 491 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/67.0.3396.99 Safari/537.36" timhelmke.de 192.42.116.16 \[11/Oct/2019:05:50:25 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 3777 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/67.0.3396.99 Safari/537.36"	2019-10-11 17:21:44
109.248.64.247	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/109.248.64.247/ AU - 1H : (32) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : AU NAME ASN : ASN47193 IP : 109.248.64.247 CIDR : 109.248.64.0/20 PREFIX COUNT : 5 UNIQUE IP COUNT : 17408 WYKRYTE ATAKI Z ASN47193 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-11 05:49:49 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-11 17:41:51

最近上报的IP列表

111.177.173.126	5.16.7.198	147.135.158.125	103.125.189.148
49.231.157.134	153.208.3.247	80.226.132.184	129.204.125.194
59.61.206.221	181.211.10.28	2.243.17.50	119.148.34.238
186.228.20.130	176.33.139.206	5.21.254.124	78.29.9.86
156.238.31.99	36.91.159.67	190.148.78.54	171.233.103.91