200.119.138.42

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Guatemala

运营商(isp): Columbus Networks USA Inc.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Sep 4 04:19:49 mailman postfix/smtpd[28694]: warning: unknown[200.119.138.42]: SASL PLAIN authentication failed: authentication failure	2020-09-04 22:03:09
attackspambots	failed_logins	2020-09-04 13:42:21
attack	failed_logins	2020-09-04 06:09:21
attackspam	Aug 2 05:32:10 mail.srvfarm.net postfix/smtps/smtpd[1404180]: warning: unknown[200.119.138.42]: SASL PLAIN authentication failed: Aug 2 05:32:11 mail.srvfarm.net postfix/smtps/smtpd[1404180]: lost connection after AUTH from unknown[200.119.138.42] Aug 2 05:34:49 mail.srvfarm.net postfix/smtpd[1403823]: warning: unknown[200.119.138.42]: SASL PLAIN authentication failed: Aug 2 05:34:49 mail.srvfarm.net postfix/smtpd[1403823]: lost connection after AUTH from unknown[200.119.138.42] Aug 2 05:35:03 mail.srvfarm.net postfix/smtpd[1404335]: warning: unknown[200.119.138.42]: SASL PLAIN authentication failed:	2020-08-02 16:28:37
attackbotsspam	failed_logins	2020-07-07 12:54:00

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.119.138.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41974
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.119.138.42.			IN	A

;; AUTHORITY SECTION:
.			405	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070601 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 07 12:53:55 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 42.138.119.200.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.138.119.200.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
115.79.201.148	attack	Attempted connection to port 81.	2020-06-13 03:49:13
24.133.252.222	attackbotsspam	Unauthorized connection attempt from IP address 24.133.252.222 on Port 445(SMB)	2020-06-13 03:59:07
182.23.81.86	attackspam	Unauthorized connection attempt from IP address 182.23.81.86 on Port 445(SMB)	2020-06-13 04:07:40
128.134.248.29	attackbots	Unauthorized connection attempt detected from IP address 128.134.248.29 to port 8080	2020-06-13 03:45:59
187.202.70.182	attack	Jun 12 09:40:07 host2 sshd[24388]: reveeclipse mapping checking getaddrinfo for dsl-187-202-70-182-dyn.prod-infinhostnameum.com.mx [187.202.70.182] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 12 09:40:07 host2 sshd[24388]: Invalid user mu from 187.202.70.182 Jun 12 09:40:07 host2 sshd[24388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.202.70.182 Jun 12 09:40:09 host2 sshd[24388]: Failed password for invalid user mu from 187.202.70.182 port 20664 ssh2 Jun 12 09:40:09 host2 sshd[24388]: Received disconnect from 187.202.70.182: 11: Bye Bye [preauth] Jun 12 09:44:36 host2 sshd[7651]: reveeclipse mapping checking getaddrinfo for dsl-187-202-70-182-dyn.prod-infinhostnameum.com.mx [187.202.70.182] failed - POSSIBLE BREAK-IN ATTEMPT! Jun 12 09:44:36 host2 sshd[7651]: Invalid user rody from 187.202.70.182 Jun 12 09:44:36 host2 sshd[7651]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.202......... -------------------------------	2020-06-13 04:15:35
61.157.91.159	attackspambots	Jun 12 21:08:06 vps687878 sshd\[28238\]: Failed password for invalid user frappe from 61.157.91.159 port 37400 ssh2 Jun 12 21:10:16 vps687878 sshd\[28467\]: Invalid user croitoru12345 from 61.157.91.159 port 53081 Jun 12 21:10:16 vps687878 sshd\[28467\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.157.91.159 Jun 12 21:10:18 vps687878 sshd\[28467\]: Failed password for invalid user croitoru12345 from 61.157.91.159 port 53081 ssh2 Jun 12 21:12:28 vps687878 sshd\[28809\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.157.91.159 user=root ...	2020-06-13 03:44:37
128.199.84.201	attackbots	Jun 12 11:49:21 propaganda sshd[20418]: Connection from 128.199.84.201 port 39988 on 10.0.0.160 port 22 rdomain "" Jun 12 11:49:21 propaganda sshd[20418]: Connection closed by 128.199.84.201 port 39988 [preauth]	2020-06-13 03:58:42
222.138.213.132	attackbotsspam	Attempted connection to port 8080.	2020-06-13 03:41:01
103.52.217.227	attackbotsspam	TCP (SYN) 103.52.217.227:59535 -> port 23, len 40	2020-06-13 03:57:34
201.173.32.170	attackbots	Attempted connection to port 445.	2020-06-13 03:42:32
189.62.69.106	attackspam	Jun 12 19:20:21 abendstille sshd\[29674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.62.69.106 user=root Jun 12 19:20:22 abendstille sshd\[29674\]: Failed password for root from 189.62.69.106 port 41917 ssh2 Jun 12 19:25:14 abendstille sshd\[1856\]: Invalid user postgres from 189.62.69.106 Jun 12 19:25:14 abendstille sshd\[1856\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.62.69.106 Jun 12 19:25:16 abendstille sshd\[1856\]: Failed password for invalid user postgres from 189.62.69.106 port 40175 ssh2 ...	2020-06-13 04:00:54
185.52.159.79	attack	Jun 12 21:44:11 serwer sshd\[4964\]: Invalid user 123 from 185.52.159.79 port 37183 Jun 12 21:44:11 serwer sshd\[4964\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.52.159.79 Jun 12 21:44:13 serwer sshd\[4964\]: Failed password for invalid user 123 from 185.52.159.79 port 37183 ssh2 ...	2020-06-13 04:12:47
190.235.80.122	attackbots	Unauthorized connection attempt from IP address 190.235.80.122 on Port 445(SMB)	2020-06-13 04:17:11
185.176.27.102	attackspam	TCP (SYN) 185.176.27.102:57483 -> port 21499, len 44	2020-06-13 03:48:11
217.61.121.23	attackspambots	Jun 12 19:50:23 localhost postfix/smtpd\[31467\]: warning: unknown\[217.61.121.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 19:50:27 localhost postfix/smtpd\[31629\]: warning: unknown\[217.61.121.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 19:50:28 localhost postfix/smtpd\[31631\]: warning: unknown\[217.61.121.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 19:50:28 localhost postfix/smtpd\[31630\]: warning: unknown\[217.61.121.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 19:50:29 localhost postfix/smtpd\[31467\]: warning: unknown\[217.61.121.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 12 19:50:29 localhost postfix/smtpd\[31632\]: warning: unknown\[217.61.121.23\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-13 03:49:27

最近上报的IP列表

177.109.139.45	119.112.235.110	119.122.91.254	12.186.42.87
167.21.205.169	117.208.63.129	10.168.150.93	211.13.205.156
113.172.207.133	170.34.140.59	6.52.238.151	181.116.82.43
33.30.224.32	3.248.12.168	220.133.107.130	27.66.205.83
213.32.40.155	178.45.105.69	55.165.3.81	193.91.124.18