200.125.44.242

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Uruguay

运营商(isp): Administracion Nacional de Telecomunicaciones

主机名(hostname): unknown

机构(organization): Administracion Nacional de Telecomunicaciones

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Dovecot Invalid User Login Attempt.	2020-08-17 18:37:12
attackspambots	[SPAM] can you meet me tomorrow?	2020-07-03 21:28:34
attack	spam	2020-04-15 17:13:13
attackspambots	Brute force attempt	2019-12-16 20:34:34
attackspam	Sent mail to target address hacked/leaked from abandonia in 2016	2019-08-30 07:41:51
attackspam	proto=tcp . spt=37677 . dpt=25 . (listed on Github Combined on 3 lists ) (650)	2019-07-29 04:53:28

相同子网IP讨论:

IP	类型	评论内容	时间
200.125.44.62	attack	Unauthorized connection attempt detected from IP address 200.125.44.62 to port 445	2019-12-20 14:49:29
200.125.44.2	attack	Port Scan	2019-12-06 18:19:25

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.125.44.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10769
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.125.44.242.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019043000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 30 23:28:03 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

242.44.125.200.in-addr.arpa domain name pointer r200-125-44-242.ae-static.anteldata.net.uy.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
242.44.125.200.in-addr.arpa	name = r200-125-44-242.ae-static.anteldata.net.uy.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
140.143.207.57	attack	Dec 13 05:49:30 ns3042688 sshd\[24314\]: Invalid user hung from 140.143.207.57 Dec 13 05:49:30 ns3042688 sshd\[24314\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.207.57 Dec 13 05:49:32 ns3042688 sshd\[24314\]: Failed password for invalid user hung from 140.143.207.57 port 60144 ssh2 Dec 13 05:56:12 ns3042688 sshd\[27372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.207.57 user=root Dec 13 05:56:13 ns3042688 sshd\[27372\]: Failed password for root from 140.143.207.57 port 58192 ssh2 ...	2019-12-13 13:11:26
51.75.30.199	attack	Dec 13 06:06:36 vps691689 sshd[2207]: Failed password for sync from 51.75.30.199 port 59089 ssh2 Dec 13 06:11:35 vps691689 sshd[2335]: Failed password for root from 51.75.30.199 port 34712 ssh2 ...	2019-12-13 13:12:51
167.114.230.252	attackspam	Dec 12 19:06:46 tdfoods sshd\[32217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip252.ip-167-114-230.eu user=root Dec 12 19:06:48 tdfoods sshd\[32217\]: Failed password for root from 167.114.230.252 port 48651 ssh2 Dec 12 19:12:04 tdfoods sshd\[481\]: Invalid user com from 167.114.230.252 Dec 12 19:12:04 tdfoods sshd\[481\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip252.ip-167-114-230.eu Dec 12 19:12:06 tdfoods sshd\[481\]: Failed password for invalid user com from 167.114.230.252 port 52878 ssh2	2019-12-13 13:17:28
200.80.227.140	attack	1576212961 - 12/13/2019 05:56:01 Host: 200.80.227.140/200.80.227.140 Port: 445 TCP Blocked	2019-12-13 13:23:19
52.254.87.129	attack	Dec 13 04:49:49 web8 sshd\[8367\]: Invalid user bigtoy2 from 52.254.87.129 Dec 13 04:49:49 web8 sshd\[8367\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.254.87.129 Dec 13 04:49:52 web8 sshd\[8367\]: Failed password for invalid user bigtoy2 from 52.254.87.129 port 33038 ssh2 Dec 13 04:56:13 web8 sshd\[11574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.254.87.129 user=root Dec 13 04:56:15 web8 sshd\[11574\]: Failed password for root from 52.254.87.129 port 43266 ssh2	2019-12-13 13:08:59
121.164.233.83	attack	Dec 13 06:34:20 areeb-Workstation sshd[10495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.164.233.83 Dec 13 06:34:23 areeb-Workstation sshd[10495]: Failed password for invalid user mallorie from 121.164.233.83 port 44314 ssh2 ...	2019-12-13 09:11:29
41.76.242.10	attackspam	1576212959 - 12/13/2019 05:55:59 Host: 41.76.242.10/41.76.242.10 Port: 445 TCP Blocked	2019-12-13 13:26:16
106.12.15.235	attackspambots	Dec 13 11:56:45 webhost01 sshd[8316]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.15.235 Dec 13 11:56:47 webhost01 sshd[8316]: Failed password for invalid user admin from 106.12.15.235 port 38958 ssh2 ...	2019-12-13 13:01:59
148.70.77.22	attack	$f2bV_matches	2019-12-13 13:28:30
218.92.0.138	attack	Dec 13 06:11:19 sso sshd[23128]: Failed password for root from 218.92.0.138 port 61959 ssh2 Dec 13 06:11:22 sso sshd[23128]: Failed password for root from 218.92.0.138 port 61959 ssh2 ...	2019-12-13 13:18:41
132.232.1.106	attackspambots	Dec 13 01:45:16 vps647732 sshd[29629]: Failed password for backup from 132.232.1.106 port 33089 ssh2 Dec 13 01:52:22 vps647732 sshd[29817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.1.106 ...	2019-12-13 09:03:25
187.162.24.195	attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-13 13:25:09
114.33.210.236	attack	Dec 13 00:58:41 server sshd\[14467\]: Invalid user anarchy from 114.33.210.236 Dec 13 00:58:41 server sshd\[14467\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114-33-210-236.hinet-ip.hinet.net Dec 13 00:58:43 server sshd\[14467\]: Failed password for invalid user anarchy from 114.33.210.236 port 59996 ssh2 Dec 13 01:45:57 server sshd\[29137\]: Invalid user jm from 114.33.210.236 Dec 13 01:45:57 server sshd\[29137\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114-33-210-236.hinet-ip.hinet.net ...	2019-12-13 09:08:03
112.85.42.173	attack	$f2bV_matches	2019-12-13 13:29:15
190.198.26.52	attack	1576190753 - 12/12/2019 23:45:53 Host: 190.198.26.52/190.198.26.52 Port: 445 TCP Blocked	2019-12-13 09:14:30

最近上报的IP列表

196.207.84.211	19.15.84.247	103.58.16.106	6.136.233.233
157.88.227.141	64.75.173.165	61.135.194.34	197.10.152.56
201.211.77.144	103.66.211.67	126.48.65.190	78.29.126.75
55.166.69.78	99.198.127.110	81.187.26.143	177.36.24.150
162.243.23.175	78.125.208.93	104.144.112.176	66.54.133.128