200.137.132.119

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Brazil

运营商(isp): Associacao Rede Nacional de Ensino e Pesquisa

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Aug 6 15:18:09 nextcloud sshd\[4730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.137.132.119 user=root Aug 6 15:18:11 nextcloud sshd\[4730\]: Failed password for root from 200.137.132.119 port 54044 ssh2 Aug 6 15:21:52 nextcloud sshd\[9625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.137.132.119 user=root	2020-08-07 02:05:23

类型

评论内容

时间

attackspam

Aug  6 15:18:09 nextcloud sshd\[4730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.137.132.119  user=root
Aug  6 15:18:11 nextcloud sshd\[4730\]: Failed password for root from 200.137.132.119 port 54044 ssh2
Aug  6 15:21:52 nextcloud sshd\[9625\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.137.132.119  user=root

2020-08-07 02:05:23

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.137.132.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18450
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.137.132.119.		IN	A

;; AUTHORITY SECTION:
.			162	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080603 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 07 02:05:16 CST 2020
;; MSG SIZE  rcvd: 119

HOST信息:

Host 119.132.137.200.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 119.132.137.200.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
72.245.129.212	attack	Automatic report - Port Scan Attack	2019-12-09 21:06:25
167.99.65.138	attackbotsspam	Dec 9 11:13:09 wh01 sshd[21612]: Invalid user server from 167.99.65.138 port 58096 Dec 9 11:13:09 wh01 sshd[21612]: Failed password for invalid user server from 167.99.65.138 port 58096 ssh2 Dec 9 11:13:09 wh01 sshd[21612]: Received disconnect from 167.99.65.138 port 58096:11: Bye Bye [preauth] Dec 9 11:13:09 wh01 sshd[21612]: Disconnected from 167.99.65.138 port 58096 [preauth] Dec 9 11:25:00 wh01 sshd[22496]: Invalid user nagios from 167.99.65.138 port 44154 Dec 9 11:25:00 wh01 sshd[22496]: Failed password for invalid user nagios from 167.99.65.138 port 44154 ssh2 Dec 9 11:25:00 wh01 sshd[22496]: Received disconnect from 167.99.65.138 port 44154:11: Bye Bye [preauth] Dec 9 11:25:00 wh01 sshd[22496]: Disconnected from 167.99.65.138 port 44154 [preauth] Dec 9 11:51:07 wh01 sshd[24957]: Invalid user michelle from 167.99.65.138 port 45884 Dec 9 11:51:07 wh01 sshd[24957]: Failed password for invalid user michelle from 167.99.65.138 port 45884 ssh2 Dec 9 11:51:07 wh01 sshd[24957	2019-12-09 20:38:07
86.35.216.134	attackbotsspam	Automatic report - Banned IP Access	2019-12-09 20:26:52
141.98.80.135	attackbotsspam	Dec 9 13:38:30 andromeda postfix/smtpd\[17795\]: warning: unknown\[141.98.80.135\]: SASL PLAIN authentication failed: authentication failure Dec 9 13:38:30 andromeda postfix/smtpd\[21856\]: warning: unknown\[141.98.80.135\]: SASL PLAIN authentication failed: authentication failure Dec 9 13:38:30 andromeda postfix/smtpd\[18072\]: warning: unknown\[141.98.80.135\]: SASL PLAIN authentication failed: authentication failure Dec 9 13:38:30 andromeda postfix/smtpd\[22089\]: warning: unknown\[141.98.80.135\]: SASL PLAIN authentication failed: authentication failure Dec 9 13:38:31 andromeda postfix/smtpd\[20191\]: warning: unknown\[141.98.80.135\]: SASL PLAIN authentication failed: authentication failure	2019-12-09 20:58:46
106.54.53.10	attack	Lines containing failures of 106.54.53.10 Dec 9 13:21:26 shared05 sshd[13985]: Invalid user test from 106.54.53.10 port 37926 Dec 9 13:21:26 shared05 sshd[13985]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.53.10 Dec 9 13:21:29 shared05 sshd[13985]: Failed password for invalid user test from 106.54.53.10 port 37926 ssh2 Dec 9 13:21:29 shared05 sshd[13985]: Received disconnect from 106.54.53.10 port 37926:11: Bye Bye [preauth] Dec 9 13:21:29 shared05 sshd[13985]: Disconnected from invalid user test 106.54.53.10 port 37926 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.54.53.10	2019-12-09 21:01:13
179.214.194.140	attackspam	Dec 9 12:34:34 MK-Soft-VM7 sshd[2979]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.214.194.140 Dec 9 12:34:35 MK-Soft-VM7 sshd[2979]: Failed password for invalid user dorab from 179.214.194.140 port 49515 ssh2 ...	2019-12-09 20:58:11
115.84.112.98	attack	Dec 9 10:10:19 xeon sshd[34853]: Failed password for root from 115.84.112.98 port 58648 ssh2	2019-12-09 21:00:53
83.14.199.49	attackbotsspam	fail2ban	2019-12-09 20:30:31
83.97.20.145	attackbotsspam	Host Scan	2019-12-09 20:22:54
170.81.148.7	attackbotsspam	Dec 9 13:10:01 pornomens sshd\[21352\]: Invalid user Henri from 170.81.148.7 port 48200 Dec 9 13:10:01 pornomens sshd\[21352\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.81.148.7 Dec 9 13:10:03 pornomens sshd\[21352\]: Failed password for invalid user Henri from 170.81.148.7 port 48200 ssh2 ...	2019-12-09 20:30:54
218.150.220.198	attack	2019-12-09T06:26:40.381387abusebot-5.cloudsearch.cf sshd\[24132\]: Invalid user robert from 218.150.220.198 port 34412	2019-12-09 20:46:59
175.213.185.129	attackspambots	Dec 9 01:59:12 php1 sshd\[5649\]: Invalid user jjjjjjjj from 175.213.185.129 Dec 9 01:59:12 php1 sshd\[5649\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.213.185.129 Dec 9 01:59:14 php1 sshd\[5649\]: Failed password for invalid user jjjjjjjj from 175.213.185.129 port 41188 ssh2 Dec 9 02:06:30 php1 sshd\[6387\]: Invalid user identd123 from 175.213.185.129 Dec 9 02:06:30 php1 sshd\[6387\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.213.185.129	2019-12-09 20:51:38
202.131.152.2	attackbots	2019-12-09T06:43:46.097675abusebot-3.cloudsearch.cf sshd\[13230\]: Invalid user mysql from 202.131.152.2 port 57518	2019-12-09 20:34:15
151.80.61.70	attack	Dec 9 14:09:25 vibhu-HP-Z238-Microtower-Workstation sshd\[21730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.61.70 user=root Dec 9 14:09:27 vibhu-HP-Z238-Microtower-Workstation sshd\[21730\]: Failed password for root from 151.80.61.70 port 55470 ssh2 Dec 9 14:17:15 vibhu-HP-Z238-Microtower-Workstation sshd\[22381\]: Invalid user info from 151.80.61.70 Dec 9 14:17:15 vibhu-HP-Z238-Microtower-Workstation sshd\[22381\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.61.70 Dec 9 14:17:16 vibhu-HP-Z238-Microtower-Workstation sshd\[22381\]: Failed password for invalid user info from 151.80.61.70 port 36120 ssh2 ...	2019-12-09 21:05:31
123.21.33.151	attack	SSH Brute-Force attacks	2019-12-09 20:22:07

最近上报的IP列表

212.129.32.152	46.72.235.90	73.183.116.29	186.195.125.136
124.158.184.211	119.98.109.130	209.141.40.237	98.244.68.232
220.167.105.105	122.116.234.168	97.121.238.119	40.83.143.31
123.161.134.111	87.246.7.11	125.5.145.150	153.131.252.180
222.252.119.234	203.194.97.171	103.219.219.95	81.68.142.128