200.125.44.242

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Uruguay

运营商(isp): Administracion Nacional de Telecomunicaciones

主机名(hostname): unknown

机构(organization): Administracion Nacional de Telecomunicaciones

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Dovecot Invalid User Login Attempt.	2020-08-17 18:37:12
attackspambots	[SPAM] can you meet me tomorrow?	2020-07-03 21:28:34
attack	spam	2020-04-15 17:13:13
attackspambots	Brute force attempt	2019-12-16 20:34:34
attackspam	Sent mail to target address hacked/leaked from abandonia in 2016	2019-08-30 07:41:51
attackspam	proto=tcp . spt=37677 . dpt=25 . (listed on Github Combined on 3 lists ) (650)	2019-07-29 04:53:28

相同子网IP讨论:

IP	类型	评论内容	时间
200.125.44.62	attack	Unauthorized connection attempt detected from IP address 200.125.44.62 to port 445	2019-12-20 14:49:29
200.125.44.2	attack	Port Scan	2019-12-06 18:19:25

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.125.44.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10769
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.125.44.242.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019043000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue Apr 30 23:28:03 +08 2019
;; MSG SIZE  rcvd: 118

HOST信息:

242.44.125.200.in-addr.arpa domain name pointer r200-125-44-242.ae-static.anteldata.net.uy.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
242.44.125.200.in-addr.arpa	name = r200-125-44-242.ae-static.anteldata.net.uy.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
106.12.90.86	attackbots	Mar 29 17:58:11 NPSTNNYC01T sshd[21889]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.86 Mar 29 17:58:13 NPSTNNYC01T sshd[21889]: Failed password for invalid user party from 106.12.90.86 port 10651 ssh2 Mar 29 18:00:53 NPSTNNYC01T sshd[22109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.90.86 ...	2020-03-30 06:22:39
51.75.246.176	attack	Mar 29 23:49:43 srv-ubuntu-dev3 sshd[4408]: Invalid user bqt from 51.75.246.176 Mar 29 23:49:43 srv-ubuntu-dev3 sshd[4408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.246.176 Mar 29 23:49:43 srv-ubuntu-dev3 sshd[4408]: Invalid user bqt from 51.75.246.176 Mar 29 23:49:45 srv-ubuntu-dev3 sshd[4408]: Failed password for invalid user bqt from 51.75.246.176 port 34508 ssh2 Mar 29 23:53:44 srv-ubuntu-dev3 sshd[5045]: Invalid user uftp from 51.75.246.176 Mar 29 23:53:44 srv-ubuntu-dev3 sshd[5045]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.246.176 Mar 29 23:53:44 srv-ubuntu-dev3 sshd[5045]: Invalid user uftp from 51.75.246.176 Mar 29 23:53:46 srv-ubuntu-dev3 sshd[5045]: Failed password for invalid user uftp from 51.75.246.176 port 47078 ssh2 Mar 29 23:57:34 srv-ubuntu-dev3 sshd[5704]: Invalid user jira from 51.75.246.176 ...	2020-03-30 06:12:50
116.196.90.254	attackbotsspam	Mar 29 23:33:57 ArkNodeAT sshd\[26131\]: Invalid user vuu from 116.196.90.254 Mar 29 23:33:57 ArkNodeAT sshd\[26131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.90.254 Mar 29 23:33:59 ArkNodeAT sshd\[26131\]: Failed password for invalid user vuu from 116.196.90.254 port 60948 ssh2	2020-03-30 05:53:56
139.59.36.23	attackspambots	Mar 29 23:57:11 eventyay sshd[28553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.36.23 Mar 29 23:57:13 eventyay sshd[28553]: Failed password for invalid user vkw from 139.59.36.23 port 55864 ssh2 Mar 29 23:59:19 eventyay sshd[28609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.36.23 ...	2020-03-30 06:06:01
166.111.152.230	attackbots	Mar 30 03:00:57 gw1 sshd[1504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.111.152.230 Mar 30 03:00:59 gw1 sshd[1504]: Failed password for invalid user nrt from 166.111.152.230 port 38938 ssh2 ...	2020-03-30 06:10:47
171.237.166.224	attack	Mar 29 23:33:18 tuxlinux sshd[27942]: Invalid user service from 171.237.166.224 port 61211 Mar 29 23:33:18 tuxlinux sshd[27942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.237.166.224 Mar 29 23:33:18 tuxlinux sshd[27942]: Invalid user service from 171.237.166.224 port 61211 Mar 29 23:33:18 tuxlinux sshd[27942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.237.166.224 Mar 29 23:33:18 tuxlinux sshd[27942]: Invalid user service from 171.237.166.224 port 61211 Mar 29 23:33:18 tuxlinux sshd[27942]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.237.166.224 Mar 29 23:33:20 tuxlinux sshd[27942]: Failed password for invalid user service from 171.237.166.224 port 61211 ssh2 ...	2020-03-30 06:23:09
122.51.167.108	attackbotsspam	Mar 30 00:00:12 eventyay sshd[28708]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.167.108 Mar 30 00:00:14 eventyay sshd[28708]: Failed password for invalid user cri from 122.51.167.108 port 46172 ssh2 Mar 30 00:04:03 eventyay sshd[28829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.167.108 ...	2020-03-30 06:04:15
94.102.56.215	attackspambots	1585519287 - 03/30/2020 00:01:27 Host: 94.102.56.215/94.102.56.215 Port: 1 UDP Blocked ...	2020-03-30 06:18:57
92.222.156.151	attack	Fail2Ban Ban Triggered	2020-03-30 06:20:55
35.240.164.224	attackspambots	Mar 29 18:33:45 ws19vmsma01 sshd[7813]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.240.164.224 Mar 29 18:33:47 ws19vmsma01 sshd[7813]: Failed password for invalid user mwk from 35.240.164.224 port 52784 ssh2 ...	2020-03-30 06:02:10
111.3.103.78	attackbotsspam	[ssh] SSH attack	2020-03-30 05:59:34
45.125.65.35	attackspambots	Mar 29 23:41:11 srv01 postfix/smtpd\[11102\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 29 23:42:18 srv01 postfix/smtpd\[11102\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 29 23:42:38 srv01 postfix/smtpd\[11102\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 29 23:42:45 srv01 postfix/smtpd\[11102\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Mar 29 23:50:22 srv01 postfix/smtpd\[16074\]: warning: unknown\[45.125.65.35\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-03-30 06:09:05
185.68.28.239	attackbots	SSH Invalid Login	2020-03-30 06:26:43
142.44.240.12	attackbots	SSH invalid-user multiple login try	2020-03-30 06:02:32
154.49.213.26	attackspam	2020-03-29T21:33:43.775124randservbullet-proofcloud-66.localdomain sshd[10374]: Invalid user info from 154.49.213.26 port 34478 2020-03-29T21:33:43.778965randservbullet-proofcloud-66.localdomain sshd[10374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.49.213.26 2020-03-29T21:33:43.775124randservbullet-proofcloud-66.localdomain sshd[10374]: Invalid user info from 154.49.213.26 port 34478 2020-03-29T21:33:45.979730randservbullet-proofcloud-66.localdomain sshd[10374]: Failed password for invalid user info from 154.49.213.26 port 34478 ssh2 ...	2020-03-30 05:58:19

最近上报的IP列表

196.207.84.211	19.15.84.247	103.58.16.106	6.136.233.233
157.88.227.141	64.75.173.165	61.135.194.34	197.10.152.56
201.211.77.144	103.66.211.67	126.48.65.190	78.29.126.75
55.166.69.78	99.198.127.110	81.187.26.143	177.36.24.150
162.243.23.175	78.125.208.93	104.144.112.176	66.54.133.128