200.85.214.149

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Chile

运营商(isp): Telefonica del Sur S.A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	suspicious action Wed, 04 Mar 2020 10:33:41 -0300	2020-03-05 03:18:16

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.85.214.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56434
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.85.214.149.			IN	A

;; AUTHORITY SECTION:
.			426	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030402 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 05 03:18:12 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 149.214.85.200.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.214.85.200.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
159.203.193.39	attackbots	Lines containing failures of 159.203.193.39 2019-09-12 16:44:03 SMTP protocol synchronization error (input sent whostnamehout wahostnameing for greeting): rejected connection from H=[159.203.193.39] input="\026\003\001" ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=159.203.193.39	2019-09-13 00:04:05
40.73.97.99	attack	Sep 12 06:11:46 eddieflores sshd\[11957\]: Invalid user sdtdserver from 40.73.97.99 Sep 12 06:11:46 eddieflores sshd\[11957\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.97.99 Sep 12 06:11:48 eddieflores sshd\[11957\]: Failed password for invalid user sdtdserver from 40.73.97.99 port 56754 ssh2 Sep 12 06:17:18 eddieflores sshd\[12375\]: Invalid user ts3bot from 40.73.97.99 Sep 12 06:17:18 eddieflores sshd\[12375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.97.99	2019-09-13 00:18:06
139.59.94.192	attackspambots	Sep 12 06:50:37 sachi sshd\[7160\]: Invalid user password from 139.59.94.192 Sep 12 06:50:37 sachi sshd\[7160\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.94.192 Sep 12 06:50:39 sachi sshd\[7160\]: Failed password for invalid user password from 139.59.94.192 port 33648 ssh2 Sep 12 06:57:49 sachi sshd\[7809\]: Invalid user steam1 from 139.59.94.192 Sep 12 06:57:49 sachi sshd\[7809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.94.192	2019-09-13 01:00:40
158.69.194.115	attackspambots	Sep 12 05:45:01 friendsofhawaii sshd\[13232\]: Invalid user alexalex from 158.69.194.115 Sep 12 05:45:01 friendsofhawaii sshd\[13232\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.ip-158-69-194.net Sep 12 05:45:03 friendsofhawaii sshd\[13232\]: Failed password for invalid user alexalex from 158.69.194.115 port 50637 ssh2 Sep 12 05:51:28 friendsofhawaii sshd\[13793\]: Invalid user 123456 from 158.69.194.115 Sep 12 05:51:28 friendsofhawaii sshd\[13793\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.ip-158-69-194.net	2019-09-13 01:42:48
122.165.149.75	attack	Sep 12 18:43:29 vps691689 sshd[25363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.165.149.75 Sep 12 18:43:31 vps691689 sshd[25363]: Failed password for invalid user admin from 122.165.149.75 port 50006 ssh2 ...	2019-09-13 01:02:03
187.120.134.53	attackbotsspam	$f2bV_matches	2019-09-13 00:32:41
82.196.15.195	attack	Sep 12 19:15:54 vps01 sshd[20607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.196.15.195 Sep 12 19:15:56 vps01 sshd[20607]: Failed password for invalid user dbuser from 82.196.15.195 port 49446 ssh2	2019-09-13 01:24:16
77.247.110.139	attackspambots	\[2019-09-12 11:37:26\] SECURITY\[1849\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-12T11:37:26.384-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="654000001148236518002",SessionID="0x7fd9a81e57a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.139/57819",ACLName="no_extension_match" \[2019-09-12 11:37:36\] SECURITY\[1849\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-12T11:37:36.120-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="72348525260103",SessionID="0x7fd9a8237fb8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.139/50869",ACLName="no_extension_match" \[2019-09-12 11:38:25\] SECURITY\[1849\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-12T11:38:25.381-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="68500001148825681005",SessionID="0x7fd9a81cb558",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.110.139/59642",AC	2019-09-12 23:59:33
210.242.86.137	attackbotsspam	445/tcp 445/tcp 445/tcp... [2019-07-14/09-12]20pkt,1pt.(tcp)	2019-09-12 23:49:35
78.136.95.189	attackbotsspam	Sep 12 12:47:43 vps200512 sshd\[10985\]: Invalid user qwerty from 78.136.95.189 Sep 12 12:47:43 vps200512 sshd\[10985\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.136.95.189 Sep 12 12:47:45 vps200512 sshd\[10985\]: Failed password for invalid user qwerty from 78.136.95.189 port 56944 ssh2 Sep 12 12:54:48 vps200512 sshd\[11129\]: Invalid user teamspeak from 78.136.95.189 Sep 12 12:54:48 vps200512 sshd\[11129\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.136.95.189	2019-09-13 01:12:24
60.26.202.47	attackbots	Sep 12 15:59:25 xb3 sshd[20395]: reveeclipse mapping checking getaddrinfo for no-data [60.26.202.47] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 12 15:59:27 xb3 sshd[20395]: Failed password for invalid user musicbot from 60.26.202.47 port 34868 ssh2 Sep 12 15:59:28 xb3 sshd[20395]: Received disconnect from 60.26.202.47: 11: Bye Bye [preauth] Sep 12 16:03:30 xb3 sshd[18921]: reveeclipse mapping checking getaddrinfo for no-data [60.26.202.47] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 12 16:03:32 xb3 sshd[18921]: Failed password for invalid user musicbot from 60.26.202.47 port 50382 ssh2 Sep 12 16:03:32 xb3 sshd[18921]: Received disconnect from 60.26.202.47: 11: Bye Bye [preauth] Sep 12 16:06:03 xb3 sshd[12795]: reveeclipse mapping checking getaddrinfo for no-data [60.26.202.47] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 12 16:06:04 xb3 sshd[12795]: Failed password for invalid user 12345 from 60.26.202.47 port 51236 ssh2 Sep 12 16:06:04 xb3 sshd[12795]: Received disconnect from 60......... -------------------------------	2019-09-13 01:29:41
219.137.226.52	attackspam	Sep 12 05:19:58 hiderm sshd\[13067\]: Invalid user ubuntu from 219.137.226.52 Sep 12 05:19:58 hiderm sshd\[13067\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.137.226.52 Sep 12 05:19:59 hiderm sshd\[13067\]: Failed password for invalid user ubuntu from 219.137.226.52 port 38590 ssh2 Sep 12 05:25:18 hiderm sshd\[13532\]: Invalid user hadoop from 219.137.226.52 Sep 12 05:25:18 hiderm sshd\[13532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.137.226.52	2019-09-13 00:13:48
46.36.108.146	attackspam	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-09-13 01:45:03
206.189.202.165	attackspambots	Sep 12 17:30:53 root sshd[21174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.202.165 Sep 12 17:30:55 root sshd[21174]: Failed password for invalid user test from 206.189.202.165 port 39282 ssh2 Sep 12 17:36:58 root sshd[21224]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.202.165 ...	2019-09-13 01:08:25
117.145.26.78	attackbots	Honeypot attack, port: 5555, PTR: PTR record not found	2019-09-12 23:57:44

最近上报的IP列表

37.251.222.179	114.56.23.20	138.134.230.130	41.58.222.139
54.4.155.197	115.29.7.45	169.96.35.36	166.45.87.181
118.30.149.177	101.200.53.232	42.201.115.33	136.148.208.209
101.106.134.142	109.70.127.201	36.181.178.255	3.32.34.103
240.235.35.46	150.221.165.141	217.190.130.18	188.228.84.133