200.109.138.225

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Venezuela, Bolivarian Republic of

运营商(isp): CANTV Servicios Venezuela

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorised access (Aug 31) SRC=200.109.138.225 LEN=48 TTL=115 ID=12423 DF TCP DPT=445 WINDOW=8192 SYN	2019-08-31 23:58:15

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.109.138.225
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40702
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.109.138.225.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083101 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 31 23:57:52 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

225.138.109.200.in-addr.arpa domain name pointer 200.109.138-225.dyn.dsl.cantv.net.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
225.138.109.200.in-addr.arpa	name = 200.109.138-225.dyn.dsl.cantv.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
185.165.169.168	attack	Sep 5 11:26:51 markkoudstaal sshd[490]: Failed password for root from 185.165.169.168 port 48324 ssh2 Sep 5 11:30:29 markkoudstaal sshd[1549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.165.169.168 Sep 5 11:30:31 markkoudstaal sshd[1549]: Failed password for invalid user jmjo from 185.165.169.168 port 50102 ssh2 ...	2020-09-05 19:07:33
117.196.129.97	attack	Unauthorized connection attempt from IP address 117.196.129.97 on Port 445(SMB)	2020-09-05 19:06:29
221.126.242.254	attack	Unauthorized connection attempt from IP address 221.126.242.254 on Port 445(SMB)	2020-09-05 19:17:35
61.216.140.180	attackbotsspam	Unauthorized connection attempt from IP address 61.216.140.180 on Port 445(SMB)	2020-09-05 19:12:22
202.191.124.203	attackbotsspam	Unauthorized connection attempt from IP address 202.191.124.203 on Port 445(SMB)	2020-09-05 19:37:36
112.85.42.227	attackspambots	Sep 5 07:11:15 NPSTNNYC01T sshd[19125]: Failed password for root from 112.85.42.227 port 51602 ssh2 Sep 5 07:12:06 NPSTNNYC01T sshd[19203]: Failed password for root from 112.85.42.227 port 60950 ssh2 ...	2020-09-05 19:21:24
161.82.173.2	attackspambots	1599247102 - 09/04/2020 21:18:22 Host: 161.82.173.2/161.82.173.2 Port: 445 TCP Blocked	2020-09-05 19:26:54
203.87.133.178	attackbotsspam	Attempted connection to port 445.	2020-09-05 19:13:46
116.96.123.9	attackbots	Unauthorized connection attempt from IP address 116.96.123.9 on Port 445(SMB)	2020-09-05 19:33:38
102.158.100.23	attackbotsspam	Sep 4 18:45:26 mellenthin postfix/smtpd[32154]: NOQUEUE: reject: RCPT from unknown[102.158.100.23]: 554 5.7.1 Service unavailable; Client host [102.158.100.23] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/102.158.100.23; from= to= proto=ESMTP helo=<[102.158.100.23]>	2020-09-05 19:29:38
221.138.50.58	attackbots	Sep 5 09:39:27 srv0 sshd\[30060\]: Invalid user admin from 221.138.50.58 port 33314 Sep 5 09:39:27 srv0 sshd\[30060\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.138.50.58 Sep 5 09:39:29 srv0 sshd\[30060\]: Failed password for invalid user admin from 221.138.50.58 port 33314 ssh2 ...	2020-09-05 19:48:54
45.55.88.16	attackspambots	TCP (SYN) 45.55.88.16:46763 -> port 26103, len 44	2020-09-05 19:26:32
45.142.120.157	attackbots	2020-09-05 13:20:30 dovecot_login authenticator failed for \(User\) \[45.142.120.157\]: 535 Incorrect authentication data \(set_id=display_name@no-server.de\) 2020-09-05 13:20:43 dovecot_login authenticator failed for \(User\) \[45.142.120.157\]: 535 Incorrect authentication data \(set_id=display_name@no-server.de\) 2020-09-05 13:21:16 dovecot_login authenticator failed for \(User\) \[45.142.120.157\]: 535 Incorrect authentication data \(set_id=ilove@no-server.de\) 2020-09-05 13:21:42 dovecot_login authenticator failed for \(User\) \[45.142.120.157\]: 535 Incorrect authentication data \(set_id=srvc63@no-server.de\) 2020-09-05 13:22:17 dovecot_login authenticator failed for \(User\) \[45.142.120.157\]: 535 Incorrect authentication data \(set_id=greg1@no-server.de\) ...	2020-09-05 19:44:19
120.85.61.232	attackbotsspam	Sep 3 19:51:35 xxxxxxx7446550 sshd[21907]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.85.61.232 user=r.r Sep 3 19:51:37 xxxxxxx7446550 sshd[21907]: Failed password for r.r from 120.85.61.232 port 39723 ssh2 Sep 3 19:51:38 xxxxxxx7446550 sshd[21909]: Received disconnect from 120.85.61.232: 11: Bye Bye Sep 3 19:53:47 xxxxxxx7446550 sshd[22122]: Invalid user admin1 from 120.85.61.232 Sep 3 19:53:47 xxxxxxx7446550 sshd[22122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.85.61.232 Sep 3 19:53:49 xxxxxxx7446550 sshd[22122]: Failed password for invalid user admin1 from 120.85.61.232 port 6750 ssh2 Sep 3 19:53:49 xxxxxxx7446550 sshd[22123]: Received disconnect from 120.85.61.232: 11: Bye Bye Sep 3 19:56:01 xxxxxxx7446550 sshd[22359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.85.61.232 user=ftp ........ ----------------------------------------------- https://ww	2020-09-05 19:33:09
1.6.32.35	attackspam	Unauthorized connection attempt from IP address 1.6.32.35 on Port 445(SMB)	2020-09-05 19:40:23

最近上报的IP列表

45.80.242.220	166.148.193.147	79.147.183.40	13.235.241.80
162.15.54.119	62.51.85.138	55.16.192.124	217.208.171.115
135.13.150.127	86.60.86.146	65.242.233.118	60.92.244.56
199.233.168.9	205.61.98.163	187.36.251.219	222.255.236.102
98.179.45.26	99.250.157.61	190.63.11.162	147.72.222.120