Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Argentina

Internet Service Provider: Telecom Argentina S.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
Type Details Datetime
attackspambots
SSH auth scanning - multiple failed logins
2020-10-11 01:09:26
attackbotsspam
SSH login attempts.
2020-10-10 17:01:08
attack
(sshd) Failed SSH login from 200.45.147.129 (AR/Argentina/host129.200-45-147.telecom.net.ar): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep  7 07:24:32 server sshd[8827]: Invalid user rawlinson from 200.45.147.129 port 63109
Sep  7 07:24:34 server sshd[8827]: Failed password for invalid user rawlinson from 200.45.147.129 port 63109 ssh2
Sep  7 07:35:18 server sshd[12721]: Failed password for root from 200.45.147.129 port 29462 ssh2
Sep  7 07:38:01 server sshd[13549]: Failed password for root from 200.45.147.129 port 44226 ssh2
Sep  7 07:40:42 server sshd[15000]: Failed password for root from 200.45.147.129 port 36018 ssh2
2020-09-08 01:18:02
attack
...
2020-09-07 16:42:33
attackbots
Aug 27 11:02:32 ip40 sshd[19535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129 
Aug 27 11:02:33 ip40 sshd[19535]: Failed password for invalid user test from 200.45.147.129 port 49947 ssh2
...
2020-08-27 20:15:59
attack
Aug 11 18:47:51 ny01 sshd[18013]: Failed password for root from 200.45.147.129 port 6851 ssh2
Aug 11 18:52:39 ny01 sshd[18567]: Failed password for root from 200.45.147.129 port 20302 ssh2
2020-08-12 07:29:18
attackbots
Aug  7 22:09:00 game-panel sshd[19181]: Failed password for root from 200.45.147.129 port 4591 ssh2
Aug  7 22:13:46 game-panel sshd[19536]: Failed password for root from 200.45.147.129 port 10974 ssh2
2020-08-08 06:37:03
attackbotsspam
Jul 29 23:30:17 ns381471 sshd[7335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129
Jul 29 23:30:20 ns381471 sshd[7335]: Failed password for invalid user wanghaiqiang from 200.45.147.129 port 10044 ssh2
2020-07-30 05:31:27
attackbotsspam
Invalid user production from 200.45.147.129 port 29876
2020-07-26 15:45:15
attack
2020-07-24T05:48:01.374339vps1033 sshd[15047]: Invalid user dmg from 200.45.147.129 port 5857
2020-07-24T05:48:01.379115vps1033 sshd[15047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=host129.200-45-147.telecom.net.ar
2020-07-24T05:48:01.374339vps1033 sshd[15047]: Invalid user dmg from 200.45.147.129 port 5857
2020-07-24T05:48:03.403190vps1033 sshd[15047]: Failed password for invalid user dmg from 200.45.147.129 port 5857 ssh2
2020-07-24T05:53:05.576055vps1033 sshd[25968]: Invalid user max from 200.45.147.129 port 51485
...
2020-07-24 14:23:34
attackbotsspam
841. On Jul 16 2020 experienced a Brute Force SSH login attempt -> 6 unique times by 200.45.147.129.
2020-07-17 08:27:57
attack
Jul  9 15:21:39 electroncash sshd[27516]: Invalid user db2bep from 200.45.147.129 port 44031
Jul  9 15:21:39 electroncash sshd[27516]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129 
Jul  9 15:21:39 electroncash sshd[27516]: Invalid user db2bep from 200.45.147.129 port 44031
Jul  9 15:21:42 electroncash sshd[27516]: Failed password for invalid user db2bep from 200.45.147.129 port 44031 ssh2
Jul  9 15:25:34 electroncash sshd[28511]: Invalid user johhny from 200.45.147.129 port 44933
...
2020-07-09 21:38:47
attackbotsspam
Jul  7 06:49:49 lnxweb61 sshd[20384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129
2020-07-07 18:42:22
attackbotsspam
Jun 30 11:30:05 server1 sshd\[11271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129  user=brian
Jun 30 11:30:07 server1 sshd\[11271\]: Failed password for brian from 200.45.147.129 port 55387 ssh2
Jun 30 11:32:58 server1 sshd\[13231\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129  user=root
Jun 30 11:33:00 server1 sshd\[13231\]: Failed password for root from 200.45.147.129 port 61380 ssh2
Jun 30 11:35:56 server1 sshd\[15334\]: Invalid user mpiuser from 200.45.147.129
...
2020-07-02 01:44:41
attack
Jun 27 00:15:00 mail sshd[20581]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129 
Jun 27 00:15:02 mail sshd[20581]: Failed password for invalid user xx from 200.45.147.129 port 49261 ssh2
...
2020-06-27 09:04:47
attack
Jun 25 22:58:44 dignus sshd[9500]: Invalid user hxy from 200.45.147.129 port 20121
Jun 25 22:58:44 dignus sshd[9500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129
Jun 25 22:58:46 dignus sshd[9500]: Failed password for invalid user hxy from 200.45.147.129 port 20121 ssh2
Jun 25 23:03:03 dignus sshd[9857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129  user=root
Jun 25 23:03:05 dignus sshd[9857]: Failed password for root from 200.45.147.129 port 19490 ssh2
...
2020-06-26 17:15:53
attack
Jun 22 13:16:52 game-panel sshd[1315]: Failed password for root from 200.45.147.129 port 47330 ssh2
Jun 22 13:18:05 game-panel sshd[1430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129
Jun 22 13:18:07 game-panel sshd[1430]: Failed password for invalid user dmp from 200.45.147.129 port 40916 ssh2
2020-06-22 23:05:33
attackspam
Jun 20 17:49:21 ip-172-31-61-156 sshd[23656]: Invalid user deploy from 200.45.147.129
Jun 20 17:49:22 ip-172-31-61-156 sshd[23656]: Failed password for invalid user deploy from 200.45.147.129 port 29751 ssh2
Jun 20 17:49:21 ip-172-31-61-156 sshd[23656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129
Jun 20 17:49:21 ip-172-31-61-156 sshd[23656]: Invalid user deploy from 200.45.147.129
Jun 20 17:49:22 ip-172-31-61-156 sshd[23656]: Failed password for invalid user deploy from 200.45.147.129 port 29751 ssh2
...
2020-06-21 03:32:02
attack
Jun 19 14:13:56 mellenthin sshd[27579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129
Jun 19 14:13:58 mellenthin sshd[27579]: Failed password for invalid user mdh from 200.45.147.129 port 18371 ssh2
2020-06-20 01:32:49
attackbotsspam
SSH Brute Force
2020-05-11 07:27:29
attackspam
Observed on multiple hosts.
2020-05-05 14:16:17
attackbotsspam
Apr 29 15:08:20 XXX sshd[16504]: Invalid user cta from 200.45.147.129 port 39496
2020-04-30 08:09:07
attackbotsspam
Apr 28 05:48:01 mail sshd\[10742\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129  user=root
Apr 28 05:48:03 mail sshd\[10742\]: Failed password for root from 200.45.147.129 port 17091 ssh2
Apr 28 05:55:13 mail sshd\[10818\]: Invalid user teamspeak from 200.45.147.129
Apr 28 05:55:13 mail sshd\[10818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129
...
2020-04-28 12:02:09
attack
5x Failed Password
2020-04-23 20:27:23
attackbotsspam
Apr 23 07:57:45 cloud sshd[26861]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129 
Apr 23 07:57:46 cloud sshd[26861]: Failed password for invalid user ubuntu from 200.45.147.129 port 63208 ssh2
2020-04-23 14:15:26
attack
Apr 22 21:24:51 srv01 sshd[3820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129  user=root
Apr 22 21:24:53 srv01 sshd[3820]: Failed password for root from 200.45.147.129 port 6034 ssh2
Apr 22 21:28:37 srv01 sshd[4125]: Invalid user admin from 200.45.147.129 port 58477
Apr 22 21:28:37 srv01 sshd[4125]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129
Apr 22 21:28:37 srv01 sshd[4125]: Invalid user admin from 200.45.147.129 port 58477
Apr 22 21:28:39 srv01 sshd[4125]: Failed password for invalid user admin from 200.45.147.129 port 58477 ssh2
...
2020-04-23 03:56:27
attack
Apr 20 16:25:03 pve1 sshd[18168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.45.147.129 
Apr 20 16:25:05 pve1 sshd[18168]: Failed password for invalid user admin123 from 200.45.147.129 port 20100 ssh2
...
2020-04-20 23:50:37
attack
Apr 10 04:01:52 pkdns2 sshd\[64913\]: Invalid user test from 200.45.147.129Apr 10 04:01:54 pkdns2 sshd\[64913\]: Failed password for invalid user test from 200.45.147.129 port 40528 ssh2Apr 10 04:06:28 pkdns2 sshd\[65173\]: Invalid user sdtdserver from 200.45.147.129Apr 10 04:06:30 pkdns2 sshd\[65173\]: Failed password for invalid user sdtdserver from 200.45.147.129 port 28987 ssh2Apr 10 04:10:53 pkdns2 sshd\[65380\]: Invalid user ubuntu from 200.45.147.129Apr 10 04:10:55 pkdns2 sshd\[65380\]: Failed password for invalid user ubuntu from 200.45.147.129 port 34463 ssh2
...
2020-04-10 09:14:41
attackspambots
$f2bV_matches
2020-04-08 07:27:56
attack
Apr  4 01:54:13 vps647732 sshd[4224]: Failed password for root from 200.45.147.129 port 49694 ssh2
...
2020-04-04 08:16:17
Comments on same subnet:
IP Type Details Datetime
200.45.147.45 attack
Automatic report - Port Scan Attack
2019-07-24 13:43:37
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.45.147.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31671
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.45.147.129.			IN	A

;; AUTHORITY SECTION:
.			445	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011400 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 14 16:01:48 CST 2020
;; MSG SIZE  rcvd: 118
Host info
129.147.45.200.in-addr.arpa domain name pointer host129.200-45-147.telecom.net.ar.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
129.147.45.200.in-addr.arpa	name = host129.200-45-147.telecom.net.ar.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
80.14.27.32 attackspambots
5x Failed Password
2020-02-14 23:03:42
106.201.238.93 attack
Did not receive identification string
2020-02-14 22:29:02
185.232.65.50 attackspambots
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-14 22:36:15
212.96.69.17 attackspambots
Honeypot attack, port: 445, PTR: PTR record not found
2020-02-14 22:25:11
122.161.90.240 attackbotsspam
Automatic report - Port Scan Attack
2020-02-14 22:39:12
212.98.186.249 attackbotsspam
Honeypot attack, port: 445, PTR: mail.bwg.by.
2020-02-14 22:33:13
5.39.86.52 attackbots
2020-02-14T14:47:35.098555scmdmz1 sshd[16367]: Invalid user justuggftp from 5.39.86.52 port 55518
2020-02-14T14:47:35.101434scmdmz1 sshd[16367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3110525.ip-5-39-86.eu
2020-02-14T14:47:35.098555scmdmz1 sshd[16367]: Invalid user justuggftp from 5.39.86.52 port 55518
2020-02-14T14:47:37.339090scmdmz1 sshd[16367]: Failed password for invalid user justuggftp from 5.39.86.52 port 55518 ssh2
2020-02-14T14:50:40.403415scmdmz1 sshd[16771]: Invalid user xxbigdata from 5.39.86.52 port 54746
...
2020-02-14 22:46:55
177.189.231.29 attackspam
Honeypot attack, port: 81, PTR: 177-189-231-29.dsl.telesp.net.br.
2020-02-14 22:40:47
41.76.169.43 attack
Feb 14 13:49:55 vlre-nyc-1 sshd\[26823\]: Invalid user james from 41.76.169.43
Feb 14 13:49:55 vlre-nyc-1 sshd\[26823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.76.169.43
Feb 14 13:49:57 vlre-nyc-1 sshd\[26823\]: Failed password for invalid user james from 41.76.169.43 port 58050 ssh2
Feb 14 13:51:23 vlre-nyc-1 sshd\[26848\]: Invalid user connor from 41.76.169.43
Feb 14 13:51:23 vlre-nyc-1 sshd\[26848\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.76.169.43
...
2020-02-14 22:50:58
184.75.36.227 attackspam
Honeypot attack, port: 445, PTR: users.ncsplus.com.
2020-02-14 22:27:42
69.94.141.81 attackbotsspam
Feb 14 14:51:40 mxgate1 postfix/postscreen[23892]: CONNECT from [69.94.141.81]:54184 to [176.31.12.44]:25
Feb 14 14:51:40 mxgate1 postfix/dnsblog[23895]: addr 69.94.141.81 listed by domain zen.spamhaus.org as 127.0.0.3
Feb 14 14:51:40 mxgate1 postfix/dnsblog[23895]: addr 69.94.141.81 listed by domain zen.spamhaus.org as 127.0.0.2
Feb 14 14:51:40 mxgate1 postfix/dnsblog[23894]: addr 69.94.141.81 listed by domain b.barracudacentral.org as 127.0.0.2
Feb 14 14:51:46 mxgate1 postfix/postscreen[23892]: DNSBL rank 3 for [69.94.141.81]:54184
Feb x@x
Feb 14 14:51:47 mxgate1 postfix/postscreen[23892]: DISCONNECT [69.94.141.81]:54184


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=69.94.141.81
2020-02-14 22:35:31
185.53.88.78 attackbots
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-14 22:18:56
114.35.2.251 attack
Automatic report - Port Scan Attack
2020-02-14 22:26:46
118.25.12.59 attackbotsspam
Feb 14 15:20:33 legacy sshd[16173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.12.59
Feb 14 15:20:35 legacy sshd[16173]: Failed password for invalid user www from 118.25.12.59 port 33132 ssh2
Feb 14 15:24:41 legacy sshd[16378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.12.59
...
2020-02-14 22:30:13
18.233.18.63 attackbotsspam
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-14 22:27:03

Recently Reported IPs

141.136.49.29 147.109.8.252 124.88.112.119 24.178.155.217
49.254.251.183 123.202.24.124 123.145.20.27 122.51.240.250
168.35.60.132 116.252.0.163 11.169.215.93 112.186.37.175
206.17.89.55 110.177.73.127 109.128.204.76 239.236.13.96
164.82.200.205 194.246.33.124 103.215.245.131 236.132.10.205