200.69.67.12 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Colombia

运营商(isp): TV Azteca Sucursal Colombia

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-10-24 00:59:35
attackbotsspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(09161116)	2019-09-17 02:47:03

相同子网IP讨论:

IP	类型	评论内容	时间
200.69.67.53	attackspambots	unauthorized connection attempt	2020-02-07 14:13:20
200.69.67.253	attackbotsspam	Unauthorized connection attempt detected from IP address 200.69.67.253 to port 23 [T]	2020-02-01 17:07:55

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.69.67.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29686
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.69.67.12.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091601 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 17 02:46:58 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

12.67.69.200.in-addr.arpa domain name pointer azteca-comunicaciones.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
12.67.69.200.in-addr.arpa	name = azteca-comunicaciones.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
180.76.238.70	attackbotsspam	Sep 6 23:46:57 ny01 sshd[21208]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.238.70 Sep 6 23:46:59 ny01 sshd[21208]: Failed password for invalid user qwe123 from 180.76.238.70 port 46772 ssh2 Sep 6 23:49:54 ny01 sshd[21728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.238.70	2019-09-07 12:47:11
101.89.216.223	attackbotsspam	2019-09-07T05:25:51.231563beta postfix/smtpd[11816]: warning: unknown[101.89.216.223]: SASL LOGIN authentication failed: authentication failure 2019-09-07T05:25:56.598235beta postfix/smtpd[11816]: warning: unknown[101.89.216.223]: SASL LOGIN authentication failed: authentication failure 2019-09-07T05:26:02.124315beta postfix/smtpd[11816]: warning: unknown[101.89.216.223]: SASL LOGIN authentication failed: authentication failure ...	2019-09-07 12:42:19
142.93.203.108	attackspam	Sep 7 05:19:59 xeon sshd[49331]: Invalid user web from 142.93.203.108	2019-09-07 12:33:29
188.166.235.171	attack	Sep 6 18:19:58 php2 sshd\[12790\]: Invalid user steam from 188.166.235.171 Sep 6 18:19:58 php2 sshd\[12790\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.235.171 Sep 6 18:19:59 php2 sshd\[12790\]: Failed password for invalid user steam from 188.166.235.171 port 53916 ssh2 Sep 6 18:25:10 php2 sshd\[13199\]: Invalid user serverpilot from 188.166.235.171 Sep 6 18:25:10 php2 sshd\[13199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.235.171	2019-09-07 12:34:03
49.207.180.197	attackspambots	Sep 7 06:40:07 OPSO sshd\[16192\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.180.197 user=admin Sep 7 06:40:09 OPSO sshd\[16192\]: Failed password for admin from 49.207.180.197 port 34699 ssh2 Sep 7 06:44:53 OPSO sshd\[16600\]: Invalid user 123456 from 49.207.180.197 port 62546 Sep 7 06:44:53 OPSO sshd\[16600\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.207.180.197 Sep 7 06:44:55 OPSO sshd\[16600\]: Failed password for invalid user 123456 from 49.207.180.197 port 62546 ssh2	2019-09-07 12:59:32
46.105.227.206	attackspambots	Sep 7 06:20:31 markkoudstaal sshd[11455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.227.206 Sep 7 06:20:33 markkoudstaal sshd[11455]: Failed password for invalid user webadmin from 46.105.227.206 port 33852 ssh2 Sep 7 06:24:52 markkoudstaal sshd[11797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.105.227.206	2019-09-07 12:30:59
209.17.97.58	attackspam	Port scan attempt detected by AWS-CCS, CTS, India	2019-09-07 12:58:34
117.139.202.64	attackbotsspam	Sep 6 18:14:06 web1 sshd\[28691\]: Invalid user hadoop from 117.139.202.64 Sep 6 18:14:06 web1 sshd\[28691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64 Sep 6 18:14:08 web1 sshd\[28691\]: Failed password for invalid user hadoop from 117.139.202.64 port 42789 ssh2 Sep 6 18:19:36 web1 sshd\[29142\]: Invalid user solr from 117.139.202.64 Sep 6 18:19:36 web1 sshd\[29142\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.139.202.64	2019-09-07 12:19:40
206.189.232.29	attackspambots	Sep 6 18:02:13 lcdev sshd\[3141\]: Invalid user oracle from 206.189.232.29 Sep 6 18:02:13 lcdev sshd\[3141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.232.29 Sep 6 18:02:14 lcdev sshd\[3141\]: Failed password for invalid user oracle from 206.189.232.29 port 45750 ssh2 Sep 6 18:09:54 lcdev sshd\[3867\]: Invalid user odoo from 206.189.232.29 Sep 6 18:09:54 lcdev sshd\[3867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.232.29	2019-09-07 12:27:33
211.239.121.27	attack	Sep 6 16:46:40 hcbb sshd\[404\]: Invalid user user from 211.239.121.27 Sep 6 16:46:40 hcbb sshd\[404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.239.121.27 Sep 6 16:46:42 hcbb sshd\[404\]: Failed password for invalid user user from 211.239.121.27 port 38174 ssh2 Sep 6 16:51:30 hcbb sshd\[863\]: Invalid user ftpuser1 from 211.239.121.27 Sep 6 16:51:30 hcbb sshd\[863\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.239.121.27	2019-09-07 12:11:36
220.130.190.13	attackbotsspam	Sep 6 17:44:36 hanapaa sshd\[11213\]: Invalid user appuser from 220.130.190.13 Sep 6 17:44:36 hanapaa sshd\[11213\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-190-13.hinet-ip.hinet.net Sep 6 17:44:38 hanapaa sshd\[11213\]: Failed password for invalid user appuser from 220.130.190.13 port 54107 ssh2 Sep 6 17:49:17 hanapaa sshd\[11642\]: Invalid user support from 220.130.190.13 Sep 6 17:49:17 hanapaa sshd\[11642\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220-130-190-13.hinet-ip.hinet.net	2019-09-07 12:31:30
196.196.83.111	attackspam	2019-09-06 19:40:20 dovecot_login authenticator failed for (5ElR66) [196.196.83.111]:4819 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=rick1996@lerctr.org) 2019-09-06 19:40:27 dovecot_login authenticator failed for (pi4lClLyt) [196.196.83.111]:2805 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=rick1996@lerctr.org) 2019-09-06 19:40:38 dovecot_login authenticator failed for (EzMojLTS43) [196.196.83.111]:4500 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=rick1996@lerctr.org) ...	2019-09-07 12:43:32
182.61.26.36	attack	Sep 6 18:12:05 php1 sshd\[15659\]: Invalid user admin from 182.61.26.36 Sep 6 18:12:05 php1 sshd\[15659\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.26.36 Sep 6 18:12:07 php1 sshd\[15659\]: Failed password for invalid user admin from 182.61.26.36 port 53004 ssh2 Sep 6 18:15:06 php1 sshd\[15921\]: Invalid user gmodserver from 182.61.26.36 Sep 6 18:15:06 php1 sshd\[15921\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.26.36	2019-09-07 12:26:01
62.94.74.132	attackspambots	Sep 7 04:42:44 lnxded64 sshd[15304]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.94.74.132	2019-09-07 12:20:38
45.55.158.8	attackspam	Sep 7 06:23:07 vps01 sshd[3226]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.158.8 Sep 7 06:23:09 vps01 sshd[3226]: Failed password for invalid user usuario from 45.55.158.8 port 48836 ssh2	2019-09-07 12:38:35

最近上报的IP列表

61.219.82.220	61.52.193.126	58.59.46.62	49.67.57.106
18.132.197.186	110.134.54.78	36.233.73.112	116.98.166.132
185.53.170.128	131.1.254.142	47.191.48.128	115.236.81.154
105.147.160.204	34.72.35.224	164.129.63.8	54.182.244.103
24.224.147.7	114.244.249.16	110.49.71.242	119.132.30.246