200.105.74.139

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Argentina

运营商(isp): Telecom Argentina S.A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Mar 28 14:02:19 vmd48417 sshd[13529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.74.139	2020-03-29 01:04:49
attackbots	2020-03-28T12:36:19.176326shield sshd\[27910\]: Invalid user bxl from 200.105.74.139 port 47262 2020-03-28T12:36:19.187977shield sshd\[27910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.74.139 2020-03-28T12:36:21.298346shield sshd\[27910\]: Failed password for invalid user bxl from 200.105.74.139 port 47262 ssh2 2020-03-28T12:41:36.393870shield sshd\[28708\]: Invalid user dkx from 200.105.74.139 port 55465 2020-03-28T12:41:36.401146shield sshd\[28708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.74.139	2020-03-28 20:47:29

类型

评论内容

时间

attack

Mar 28 14:02:19 vmd48417 sshd[13529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.74.139

2020-03-29 01:04:49

attackbots

2020-03-28T12:36:19.176326shield sshd\[27910\]: Invalid user bxl from 200.105.74.139 port 47262
2020-03-28T12:36:19.187977shield sshd\[27910\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.74.139
2020-03-28T12:36:21.298346shield sshd\[27910\]: Failed password for invalid user bxl from 200.105.74.139 port 47262 ssh2
2020-03-28T12:41:36.393870shield sshd\[28708\]: Invalid user dkx from 200.105.74.139 port 55465
2020-03-28T12:41:36.401146shield sshd\[28708\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.74.139

2020-03-28 20:47:29

相同子网IP讨论:

IP	类型	评论内容	时间
200.105.74.140	attack	Jun 28 09:30:31 ns41 sshd[6761]: Failed password for root from 200.105.74.140 port 58470 ssh2 Jun 28 09:30:31 ns41 sshd[6761]: Failed password for root from 200.105.74.140 port 58470 ssh2	2020-06-28 15:35:53
200.105.74.140	attackbotsspam	Invalid user ecg from 200.105.74.140 port 42838	2020-06-16 14:16:48
200.105.74.140	attackspam	May 27 13:53:53 vpn01 sshd[23866]: Failed password for root from 200.105.74.140 port 39218 ssh2 ...	2020-05-27 20:10:48
200.105.74.140	attackspambots	Apr 24 05:48:40 ns382633 sshd\[29453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.74.140 user=root Apr 24 05:48:41 ns382633 sshd\[29453\]: Failed password for root from 200.105.74.140 port 44832 ssh2 Apr 24 05:52:26 ns382633 sshd\[30239\]: Invalid user qd from 200.105.74.140 port 36874 Apr 24 05:52:26 ns382633 sshd\[30239\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.74.140 Apr 24 05:52:27 ns382633 sshd\[30239\]: Failed password for invalid user qd from 200.105.74.140 port 36874 ssh2	2020-04-24 15:58:31
200.105.74.140	attackspam	detected by Fail2Ban	2020-04-23 22:57:12

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.105.74.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60883
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.105.74.139.			IN	A

;; AUTHORITY SECTION:
.			555	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032801 1800 900 604800 86400

;; Query time: 149 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 28 20:47:18 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

139.74.105.200.in-addr.arpa domain name pointer 200.105.74.139.fibercorp.com.ar.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.74.105.200.in-addr.arpa	name = 200.105.74.139.fibercorp.com.ar.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
47.108.244.207	attackbots		2020-04-30 08:20:52
159.203.41.1	attackbotsspam	159.203.41.1 - - [30/Apr/2020:01:10:43 +0200] "GET /wp-login.php HTTP/1.1" 200 5686 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.41.1 - - [30/Apr/2020:01:10:45 +0200] "POST /wp-login.php HTTP/1.1" 200 5937 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.41.1 - - [30/Apr/2020:01:10:46 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-30 07:56:21
142.93.247.221	attackbots	$f2bV_matches \| Triggered by Fail2Ban at Vostok web server	2020-04-30 08:16:34
45.65.124.110	attack	TCP src-port=40745 dst-port=25 Listed on barracuda spam-sorbs (Project Honey Pot rated Suspicious) (355)	2020-04-30 08:05:03
222.186.31.83	attackbots	Apr 30 01:50:53 minden010 sshd[15346]: Failed password for root from 222.186.31.83 port 50647 ssh2 Apr 30 01:50:56 minden010 sshd[15346]: Failed password for root from 222.186.31.83 port 50647 ssh2 Apr 30 01:50:58 minden010 sshd[15346]: Failed password for root from 222.186.31.83 port 50647 ssh2 ...	2020-04-30 07:53:49
103.104.123.24	attackspam	(sshd) Failed SSH login from 103.104.123.24 (VN/Vietnam/static-ptr.vndata.vn): 5 in the last 3600 secs	2020-04-30 08:17:22
147.135.197.108	attackbotsspam	2020-04-29T17:01:39.0683081495-001 sshd[48555]: Invalid user eom from 147.135.197.108 port 45758 2020-04-29T17:01:41.4766091495-001 sshd[48555]: Failed password for invalid user eom from 147.135.197.108 port 45758 ssh2 2020-04-29T17:06:38.6894951495-001 sshd[48745]: Invalid user icn from 147.135.197.108 port 60146 2020-04-29T17:06:38.6978181495-001 sshd[48745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.197.108 2020-04-29T17:06:38.6894951495-001 sshd[48745]: Invalid user icn from 147.135.197.108 port 60146 2020-04-29T17:06:40.8172081495-001 sshd[48745]: Failed password for invalid user icn from 147.135.197.108 port 60146 ssh2 ...	2020-04-30 08:07:43
2607:f298:5:111b::b10:f50d	attackspambots	Automatically reported by fail2ban report script (mx1)	2020-04-30 08:04:15
202.67.41.219	attack	Port probing on unauthorized port 445	2020-04-30 08:10:44
167.71.199.192	attackbotsspam	Apr 29 23:52:56 marvibiene sshd[2678]: Invalid user postgres from 167.71.199.192 port 34952 Apr 29 23:52:56 marvibiene sshd[2678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.199.192 Apr 29 23:52:56 marvibiene sshd[2678]: Invalid user postgres from 167.71.199.192 port 34952 Apr 29 23:52:57 marvibiene sshd[2678]: Failed password for invalid user postgres from 167.71.199.192 port 34952 ssh2 ...	2020-04-30 08:12:59
61.152.70.126	attackspambots	Apr 30 01:14:26 host sshd[47876]: Invalid user captain from 61.152.70.126 port 34839 ...	2020-04-30 07:48:47
157.245.202.47	attackspam	ERAJAYA.COM	2020-04-30 08:09:25
222.186.180.41	attackbots	Apr 30 01:50:29 server sshd[54832]: Failed none for root from 222.186.180.41 port 20006 ssh2 Apr 30 01:50:31 server sshd[54832]: Failed password for root from 222.186.180.41 port 20006 ssh2 Apr 30 01:50:35 server sshd[54832]: Failed password for root from 222.186.180.41 port 20006 ssh2	2020-04-30 07:52:43
187.188.90.141	attack	Invalid user valere from 187.188.90.141 port 35224	2020-04-30 07:46:34
74.95.46.38	attackspambots	US_Comcast Comcast_<177>1588191113 [1:2403422:56948] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 62 [Classification: Misc Attack] [Priority: 2]: {TCP} 74.95.46.38:37576	2020-04-30 08:01:45

最近上报的IP列表

183.206.236.216	112.133.245.68	106.77.76.58	192.186.0.222
187.161.101.6	118.189.184.169	118.46.20.58	14.228.17.24
177.38.59.107	105.112.58.249	14.29.232.191	117.41.142.236
122.226.73.85	12.112.156.189	14.170.90.153	137.64.50.15
58.65.231.52	219.77.165.18	211.63.156.179	191.200.227.226