200.125.44.2 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Uruguay

运营商(isp): Administracion Nacional de Telecomunicaciones

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Port Scan	2019-12-06 18:19:25

相同子网IP讨论:

IP	类型	评论内容	时间
200.125.44.242	attackbotsspam	Dovecot Invalid User Login Attempt.	2020-08-17 18:37:12
200.125.44.242	attackspambots	[SPAM] can you meet me tomorrow?	2020-07-03 21:28:34
200.125.44.242	attack	spam	2020-04-15 17:13:13
200.125.44.62	attack	Unauthorized connection attempt detected from IP address 200.125.44.62 to port 445	2019-12-20 14:49:29
200.125.44.242	attackspambots	Brute force attempt	2019-12-16 20:34:34
200.125.44.242	attackspam	Sent mail to target address hacked/leaked from abandonia in 2016	2019-08-30 07:41:51
200.125.44.242	attackspam	proto=tcp . spt=37677 . dpt=25 . (listed on Github Combined on 3 lists ) (650)	2019-07-29 04:53:28

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.125.44.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34262
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.125.44.2.			IN	A

;; AUTHORITY SECTION:
.			516	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120600 1800 900 604800 86400

;; Query time: 125 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 06 18:19:20 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

2.44.125.200.in-addr.arpa domain name pointer r200-125-44-2.ae-static.anteldata.net.uy.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.44.125.200.in-addr.arpa	name = r200-125-44-2.ae-static.anteldata.net.uy.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
113.106.8.55	attackspambots	firewall-block, port(s): 22223/tcp	2020-10-02 19:45:17
91.121.91.82	attackbotsspam	"fail2ban match"	2020-10-02 19:22:21
177.183.214.82	attackspambots	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: b1b7d652.virtua.com.br.	2020-10-02 19:48:17
217.71.225.150	attack	Listed on zen-spamhaus also abuseat.org / proto=6 . srcport=50832 . dstport=445 SMB . (3852)	2020-10-02 19:31:14
179.52.187.206	attackspam	Oct 1 16:31:51 cumulus sshd[30705]: Did not receive identification string from 179.52.187.206 port 63289 Oct 1 16:31:53 cumulus sshd[30706]: Did not receive identification string from 179.52.187.206 port 63477 Oct 1 16:31:53 cumulus sshd[30708]: Did not receive identification string from 179.52.187.206 port 63485 Oct 1 16:31:53 cumulus sshd[30707]: Did not receive identification string from 179.52.187.206 port 63480 Oct 1 16:31:53 cumulus sshd[30709]: Did not receive identification string from 179.52.187.206 port 63483 Oct 1 16:31:53 cumulus sshd[30710]: Invalid user nagesh from 179.52.187.206 port 63492 Oct 1 16:31:54 cumulus sshd[30712]: Did not receive identification string from 179.52.187.206 port 63484 Oct 1 16:31:54 cumulus sshd[30713]: Did not receive identification string from 179.52.187.206 port 63481 Oct 1 16:31:54 cumulus sshd[30710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.52.187.206 Oct 1 16:31:5........ -------------------------------	2020-10-02 19:39:40
187.95.124.103	attackspam	Oct 2 13:18:32 marvibiene sshd[9631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.95.124.103 Oct 2 13:18:34 marvibiene sshd[9631]: Failed password for invalid user registry from 187.95.124.103 port 50140 ssh2	2020-10-02 19:42:39
153.149.154.73	attackbots	Repeated RDP login failures. Last user: Server	2020-10-02 19:28:13
218.108.186.218	attackspambots	Unauthorized SSH login attempts	2020-10-02 19:49:07
212.73.81.242	attack	Oct 2 12:48:43 vm1 sshd[31208]: Failed password for root from 212.73.81.242 port 14632 ssh2 Oct 2 12:54:57 vm1 sshd[31339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.73.81.242 ...	2020-10-02 19:32:48
106.52.137.134	attackspambots	2020-10-02T07:52:59.465420abusebot-2.cloudsearch.cf sshd[25966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.137.134 user=root 2020-10-02T07:53:01.564069abusebot-2.cloudsearch.cf sshd[25966]: Failed password for root from 106.52.137.134 port 49896 ssh2 2020-10-02T07:57:17.848240abusebot-2.cloudsearch.cf sshd[26021]: Invalid user user3 from 106.52.137.134 port 37276 2020-10-02T07:57:17.854014abusebot-2.cloudsearch.cf sshd[26021]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.137.134 2020-10-02T07:57:17.848240abusebot-2.cloudsearch.cf sshd[26021]: Invalid user user3 from 106.52.137.134 port 37276 2020-10-02T07:57:20.037882abusebot-2.cloudsearch.cf sshd[26021]: Failed password for invalid user user3 from 106.52.137.134 port 37276 ssh2 2020-10-02T08:01:29.046442abusebot-2.cloudsearch.cf sshd[26037]: Invalid user oracle from 106.52.137.134 port 52886 ...	2020-10-02 19:33:28
223.247.153.244	attackspam	TCP (SYN) 223.247.153.244:58023 -> port 8140, len 44	2020-10-02 19:38:00
154.209.228.238	attack	Oct 2 14:35:36 pkdns2 sshd\[24620\]: Invalid user nikhil from 154.209.228.238Oct 2 14:35:38 pkdns2 sshd\[24620\]: Failed password for invalid user nikhil from 154.209.228.238 port 40950 ssh2Oct 2 14:38:58 pkdns2 sshd\[24736\]: Invalid user test from 154.209.228.238Oct 2 14:39:00 pkdns2 sshd\[24736\]: Failed password for invalid user test from 154.209.228.238 port 22778 ssh2Oct 2 14:42:36 pkdns2 sshd\[24957\]: Invalid user jason from 154.209.228.238Oct 2 14:42:38 pkdns2 sshd\[24957\]: Failed password for invalid user jason from 154.209.228.238 port 44642 ssh2 ...	2020-10-02 19:47:21
40.113.85.192	attackbots	02.10.2020 02:15:22 - SMTP Spam without Auth on hMailserver Detected by ELinOX-hMail-A2F	2020-10-02 19:46:14
41.72.219.102	attackbotsspam	Invalid user abhishek from 41.72.219.102 port 55574	2020-10-02 19:56:44
128.199.120.132	attack	Oct 2 11:48:03 rotator sshd\[16839\]: Invalid user project from 128.199.120.132Oct 2 11:48:05 rotator sshd\[16839\]: Failed password for invalid user project from 128.199.120.132 port 59398 ssh2Oct 2 11:52:40 rotator sshd\[17636\]: Invalid user alicia from 128.199.120.132Oct 2 11:52:42 rotator sshd\[17636\]: Failed password for invalid user alicia from 128.199.120.132 port 44172 ssh2Oct 2 11:56:43 rotator sshd\[18457\]: Invalid user test from 128.199.120.132Oct 2 11:56:45 rotator sshd\[18457\]: Failed password for invalid user test from 128.199.120.132 port 52848 ssh2 ...	2020-10-02 19:47:06

最近上报的IP列表

22.208.184.113	215.146.25.99	120.40.1.91	70.6.221.21
52.67.228.84	37.114.167.45	54.240.168.56	219.76.153.71
194.44.53.81	77.81.102.43	216.27.22.199	247.158.78.165
60.31.180.133	162.213.240.255	140.216.57.221	141.105.66.247
63.80.184.100	118.120.202.97	116.101.196.141	179.111.125.228