200.13.195.70 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Colombia

运营商(isp): Administracion de Redes en Colomsat S.A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Commercial

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	(sshd) Failed SSH login from 200.13.195.70 (CO/Colombia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 28 09:01:32 s1 sshd[17143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 user=root Apr 28 09:01:33 s1 sshd[17143]: Failed password for root from 200.13.195.70 port 54790 ssh2 Apr 28 09:07:19 s1 sshd[17274]: Invalid user debbie from 200.13.195.70 port 53178 Apr 28 09:07:21 s1 sshd[17274]: Failed password for invalid user debbie from 200.13.195.70 port 53178 ssh2 Apr 28 09:10:06 s1 sshd[17333]: Invalid user dorothea from 200.13.195.70 port 43194	2020-04-28 14:12:35
attackspam	Apr 21 08:32:11 mail sshd\[5730\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 user=root Apr 21 08:32:14 mail sshd\[5730\]: Failed password for root from 200.13.195.70 port 58552 ssh2 Apr 21 08:36:33 mail sshd\[5817\]: Invalid user testing from 200.13.195.70 Apr 21 08:36:33 mail sshd\[5817\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 ...	2020-04-21 16:03:52
attackbotsspam	no	2020-04-20 22:23:08
attackbots	Invalid user techuser from 200.13.195.70 port 53348	2020-04-19 14:31:27
attackbotsspam	Apr 14 13:13:23 Invalid user test from 200.13.195.70 port 39118	2020-04-14 19:32:50
attack	Invalid user usuario from 200.13.195.70 port 51138	2020-04-14 04:19:21
attack	2020-04-13T06:08:17.314298abusebot-7.cloudsearch.cf sshd[17867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 user=root 2020-04-13T06:08:18.991489abusebot-7.cloudsearch.cf sshd[17867]: Failed password for root from 200.13.195.70 port 51942 ssh2 2020-04-13T06:12:20.130208abusebot-7.cloudsearch.cf sshd[18178]: Invalid user saturnio from 200.13.195.70 port 59768 2020-04-13T06:12:20.134141abusebot-7.cloudsearch.cf sshd[18178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 2020-04-13T06:12:20.130208abusebot-7.cloudsearch.cf sshd[18178]: Invalid user saturnio from 200.13.195.70 port 59768 2020-04-13T06:12:21.836510abusebot-7.cloudsearch.cf sshd[18178]: Failed password for invalid user saturnio from 200.13.195.70 port 59768 ssh2 2020-04-13T06:16:18.096402abusebot-7.cloudsearch.cf sshd[18427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2 ...	2020-04-13 16:37:58
attackbotsspam	Apr 10 23:34:56 jane sshd[5614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Apr 10 23:34:58 jane sshd[5614]: Failed password for invalid user mysql from 200.13.195.70 port 33158 ssh2 ...	2020-04-11 06:22:16
attackspambots	Apr 10 21:18:35 Ubuntu-1404-trusty-64-minimal sshd\[16026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 user=root Apr 10 21:18:37 Ubuntu-1404-trusty-64-minimal sshd\[16026\]: Failed password for root from 200.13.195.70 port 51748 ssh2 Apr 10 21:27:59 Ubuntu-1404-trusty-64-minimal sshd\[21186\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 user=root Apr 10 21:28:01 Ubuntu-1404-trusty-64-minimal sshd\[21186\]: Failed password for root from 200.13.195.70 port 37490 ssh2 Apr 10 21:32:02 Ubuntu-1404-trusty-64-minimal sshd\[28295\]: Invalid user applmgr from 200.13.195.70	2020-04-11 03:56:04
attackbots	Apr 10 04:24:06 game-panel sshd[11387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Apr 10 04:24:08 game-panel sshd[11387]: Failed password for invalid user rancid from 200.13.195.70 port 33994 ssh2 Apr 10 04:28:03 game-panel sshd[11510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70	2020-04-10 14:19:09
attackspambots	SSH Bruteforce attack	2020-04-07 13:20:17
attack	(sshd) Failed SSH login from 200.13.195.70 (CO/Colombia/-): 5 in the last 3600 secs	2020-04-07 02:31:56
attackspam	Invalid user wkx from 200.13.195.70 port 47824	2020-04-01 16:31:24
attackbotsspam	Mar 20 14:49:02 ny01 sshd[2117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Mar 20 14:49:04 ny01 sshd[2117]: Failed password for invalid user amberley from 200.13.195.70 port 39196 ssh2 Mar 20 14:53:36 ny01 sshd[3988]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70	2020-03-21 03:02:08
attackspam	5x Failed Password	2020-03-20 05:44:41
attackspambots	Feb 10 21:25:15 auw2 sshd\[964\]: Invalid user xnw from 200.13.195.70 Feb 10 21:25:15 auw2 sshd\[964\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Feb 10 21:25:17 auw2 sshd\[964\]: Failed password for invalid user xnw from 200.13.195.70 port 39968 ssh2 Feb 10 21:28:15 auw2 sshd\[1209\]: Invalid user xxs from 200.13.195.70 Feb 10 21:28:15 auw2 sshd\[1209\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70	2020-02-11 15:40:00
attack	Jan 31 09:33:37 hcbbdb sshd\[28200\]: Invalid user naganjana from 200.13.195.70 Jan 31 09:33:37 hcbbdb sshd\[28200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Jan 31 09:33:39 hcbbdb sshd\[28200\]: Failed password for invalid user naganjana from 200.13.195.70 port 44686 ssh2 Jan 31 09:37:01 hcbbdb sshd\[28619\]: Invalid user jetty from 200.13.195.70 Jan 31 09:37:01 hcbbdb sshd\[28619\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70	2020-01-31 17:57:04
attackspam	Jan 25 17:09:21 hcbbdb sshd\[2283\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 user=root Jan 25 17:09:23 hcbbdb sshd\[2283\]: Failed password for root from 200.13.195.70 port 37966 ssh2 Jan 25 17:14:36 hcbbdb sshd\[2959\]: Invalid user admin from 200.13.195.70 Jan 25 17:14:36 hcbbdb sshd\[2959\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Jan 25 17:14:37 hcbbdb sshd\[2959\]: Failed password for invalid user admin from 200.13.195.70 port 36678 ssh2	2020-01-26 01:25:11
attack	2020-01-23T22:11:17.590054luisaranguren sshd[793355]: Invalid user ftpuser from 200.13.195.70 port 47102 2020-01-23T22:11:19.966461luisaranguren sshd[793355]: Failed password for invalid user ftpuser from 200.13.195.70 port 47102 ssh2 ...	2020-01-23 19:55:04
attackspambots	Jan 12 23:14:49 dedicated sshd[1217]: Invalid user k from 200.13.195.70 port 48790	2020-01-13 06:27:58
attack	$f2bV_matches	2020-01-03 16:18:08
attackspambots	$f2bV_matches	2019-12-15 19:38:23
attackspambots	Dec 11 08:14:22 zeus sshd[26190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Dec 11 08:14:24 zeus sshd[26190]: Failed password for invalid user lieuth from 200.13.195.70 port 45900 ssh2 Dec 11 08:20:24 zeus sshd[26377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Dec 11 08:20:26 zeus sshd[26377]: Failed password for invalid user abate from 200.13.195.70 port 54690 ssh2	2019-12-11 16:40:57
attackspam	SSH brute-force: detected 7 distinct usernames within a 24-hour window.	2019-12-09 21:40:55
attackbotsspam	Dec 6 11:50:36 firewall sshd[8966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Dec 6 11:50:36 firewall sshd[8966]: Invalid user lindamood from 200.13.195.70 Dec 6 11:50:37 firewall sshd[8966]: Failed password for invalid user lindamood from 200.13.195.70 port 33250 ssh2 ...	2019-12-07 00:05:32
attackspam	Dec 6 10:04:42 gw1 sshd[30726]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Dec 6 10:04:44 gw1 sshd[30726]: Failed password for invalid user ssh from 200.13.195.70 port 57608 ssh2 ...	2019-12-06 13:20:37
attackbots	Dec 4 04:51:11 game-panel sshd[18689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Dec 4 04:51:13 game-panel sshd[18689]: Failed password for invalid user ftpuser from 200.13.195.70 port 57304 ssh2 Dec 4 04:57:58 game-panel sshd[19010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70	2019-12-04 13:09:18
attackbots	SSH Brute Force, server-1 sshd[32605]: Failed password for root from 200.13.195.70 port 57706 ssh2	2019-12-03 08:31:43
attack	Nov 26 07:27:59 * sshd[17816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Nov 26 07:28:01 * sshd[17816]: Failed password for invalid user inter from 200.13.195.70 port 39802 ssh2	2019-11-26 16:25:39
attackspambots	Nov 11 09:40:21 server sshd\[15993\]: Invalid user debian from 200.13.195.70 Nov 11 09:40:21 server sshd\[15993\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 Nov 11 09:40:24 server sshd\[15993\]: Failed password for invalid user debian from 200.13.195.70 port 52664 ssh2 Nov 11 09:52:14 server sshd\[18883\]: Invalid user SC from 200.13.195.70 Nov 11 09:52:14 server sshd\[18883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.13.195.70 ...	2019-11-11 16:32:55

相同子网IP讨论:

IP	类型	评论内容	时间
200.13.195.7	attackspam	SSH login attempts with user root.	2019-11-30 05:33:30

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.13.195.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15687
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.13.195.70.			IN	A

;; AUTHORITY SECTION:
.			391	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100101 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 01 19:33:27 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 70.195.13.200.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.195.13.200.in-addr.arpa: NXDOMAIN

IP	类型	评论内容	时间
222.186.15.158	attackspam	03/27/2020-11:43:32.255240 222.186.15.158 Protocol: 6 ET SCAN Potential SSH Scan	2020-03-27 23:44:04
183.83.86.130	attack	Unauthorized connection attempt from IP address 183.83.86.130 on Port 445(SMB)	2020-03-27 23:25:25
106.54.121.117	attack	Mar 25 19:27:09 itv-usvr-01 sshd[17260]: Invalid user nexus from 106.54.121.117 Mar 25 19:27:09 itv-usvr-01 sshd[17260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.121.117 Mar 25 19:27:09 itv-usvr-01 sshd[17260]: Invalid user nexus from 106.54.121.117 Mar 25 19:27:11 itv-usvr-01 sshd[17260]: Failed password for invalid user nexus from 106.54.121.117 port 34620 ssh2	2020-03-27 23:05:19
91.10.91.69	attack	Mar 27 15:20:54 minden010 sshd[19373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.10.91.69 Mar 27 15:20:55 minden010 sshd[19373]: Failed password for invalid user natalie from 91.10.91.69 port 57155 ssh2 Mar 27 15:28:16 minden010 sshd[23069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.10.91.69 ...	2020-03-27 22:50:13
14.98.4.82	attack	Mar 27 16:41:54 master sshd[26115]: Failed password for invalid user phl from 14.98.4.82 port 3390 ssh2 Mar 27 17:03:14 master sshd[26173]: Failed password for invalid user lyu from 14.98.4.82 port 50019 ssh2	2020-03-27 23:34:17
106.225.129.108	attackspambots	Mar 27 06:40:13 mockhub sshd[22531]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.225.129.108 Mar 27 06:40:16 mockhub sshd[22531]: Failed password for invalid user mice from 106.225.129.108 port 58553 ssh2 ...	2020-03-27 23:31:52
52.183.21.61	attackbotsspam	SSH login attempts.	2020-03-27 23:37:24
47.93.159.143	attackbotsspam	SSH login attempts.	2020-03-27 23:43:05
222.252.16.26	attackspam	B: Abusive content scan (200)	2020-03-27 23:02:00
104.47.17.97	attack	SSH login attempts.	2020-03-27 23:27:31
181.143.221.68	attackbotsspam	SSH login attempts.	2020-03-27 23:03:50
193.104.83.97	attackbots	SSH brute-force: detected 12 distinct usernames within a 24-hour window.	2020-03-27 22:54:34
113.190.44.237	attack	1585312282 - 03/27/2020 13:31:22 Host: 113.190.44.237/113.190.44.237 Port: 445 TCP Blocked	2020-03-27 22:59:51
213.180.142.217	attack	SSH login attempts.	2020-03-27 23:32:50
106.240.246.194	attackspambots	Invalid user hu from 106.240.246.194 port 51735	2020-03-27 23:29:55

最近上报的IP列表

174.250.84.201	149.194.135.255	77.159.164.56	74.6.120.62
23.7.193.42	119.235.77.195	116.233.197.176	92.217.165.160
77.35.172.255	46.185.177.87	39.129.15.246	223.198.23.184
105.178.203.208	119.81.208.132	41.47.144.166	188.197.26.222
170.217.215.135	82.193.208.167	191.92.20.4	68.84.202.81