200.73.129.85 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Argentina

Internet Service Provider: Telecom Argentina S.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Invalid user uplink from 200.73.129.85 port 59048	2020-05-17 06:18:09
attackbotsspam	May 16 09:54:24 ny01 sshd[31266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.85 May 16 09:54:27 ny01 sshd[31266]: Failed password for invalid user attachments from 200.73.129.85 port 57060 ssh2 May 16 09:59:05 ny01 sshd[32380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.85	2020-05-17 02:42:07
attackspambots	[ssh] SSH attack	2020-05-16 19:42:45
attackbots	May 5 18:49:33 piServer sshd[21182]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.85 May 5 18:49:36 piServer sshd[21182]: Failed password for invalid user helpdesk from 200.73.129.85 port 34170 ssh2 May 5 18:54:38 piServer sshd[21543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.85 ...	2020-05-06 01:08:16
attackspambots	$f2bV_matches	2020-05-05 15:10:08
attackbots	May 4 11:39:00 web1 sshd\[15236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.85 user=root May 4 11:39:02 web1 sshd\[15236\]: Failed password for root from 200.73.129.85 port 42536 ssh2 May 4 11:43:42 web1 sshd\[15752\]: Invalid user testmail1 from 200.73.129.85 May 4 11:43:42 web1 sshd\[15752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.85 May 4 11:43:44 web1 sshd\[15752\]: Failed password for invalid user testmail1 from 200.73.129.85 port 52764 ssh2	2020-05-05 06:31:55
attackbotsspam	Invalid user admin from 200.73.129.85 port 53280	2020-05-03 15:05:28
attackbots	2020-04-30 19:54:00 server sshd[22615]: Failed password for invalid user mysqluser from 200.73.129.85 port 48858 ssh2	2020-05-02 01:11:39
attack	(sshd) Failed SSH login from 200.73.129.85 (AR/Argentina/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 29 20:49:57 amsweb01 sshd[28169]: Invalid user user2 from 200.73.129.85 port 48664 Apr 29 20:50:00 amsweb01 sshd[28169]: Failed password for invalid user user2 from 200.73.129.85 port 48664 ssh2 Apr 29 20:57:23 amsweb01 sshd[28679]: Invalid user tomcat from 200.73.129.85 port 37096 Apr 29 20:57:24 amsweb01 sshd[28679]: Failed password for invalid user tomcat from 200.73.129.85 port 37096 ssh2 Apr 29 21:01:49 amsweb01 sshd[29057]: Invalid user guest from 200.73.129.85 port 43916	2020-04-30 03:11:46
attack	Apr 17 06:05:08 pixelmemory sshd[23786]: Failed password for root from 200.73.129.85 port 46968 ssh2 Apr 17 06:06:39 pixelmemory sshd[24071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.85 Apr 17 06:06:41 pixelmemory sshd[24071]: Failed password for invalid user test from 200.73.129.85 port 35042 ssh2 ...	2020-04-18 02:14:46

Comments on same subnet:

IP	Type	Details	Datetime
200.73.129.6	attackspambots	Oct 10 20:19:16 santamaria sshd\[10773\]: Invalid user mongodb from 200.73.129.6 Oct 10 20:19:16 santamaria sshd\[10773\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.6 Oct 10 20:19:17 santamaria sshd\[10773\]: Failed password for invalid user mongodb from 200.73.129.6 port 39744 ssh2 ...	2020-10-11 03:04:35
200.73.129.6	attackspambots	Sep 24 12:28:13 124388 sshd[9793]: Invalid user ftpadmin from 200.73.129.6 port 62158 Sep 24 12:28:13 124388 sshd[9793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.6 Sep 24 12:28:13 124388 sshd[9793]: Invalid user ftpadmin from 200.73.129.6 port 62158 Sep 24 12:28:15 124388 sshd[9793]: Failed password for invalid user ftpadmin from 200.73.129.6 port 62158 ssh2 Sep 24 12:31:05 124388 sshd[10032]: Invalid user ansible from 200.73.129.6 port 40899	2020-09-24 20:57:26
200.73.129.6	attackbots	Sep 24 06:43:15 fhem-rasp sshd[16375]: Invalid user rf from 200.73.129.6 port 9561 ...	2020-09-24 12:53:49
200.73.129.6	attackspam	Sep 23 20:31:59 jane sshd[23565]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.6 Sep 23 20:32:01 jane sshd[23565]: Failed password for invalid user mongo from 200.73.129.6 port 59334 ssh2 ...	2020-09-24 04:22:17
200.73.129.102	attackbotsspam	2020-09-20T16:00:44.709742abusebot.cloudsearch.cf sshd[7624]: Invalid user admin from 200.73.129.102 port 49620 2020-09-20T16:00:44.715034abusebot.cloudsearch.cf sshd[7624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.102 2020-09-20T16:00:44.709742abusebot.cloudsearch.cf sshd[7624]: Invalid user admin from 200.73.129.102 port 49620 2020-09-20T16:00:46.806514abusebot.cloudsearch.cf sshd[7624]: Failed password for invalid user admin from 200.73.129.102 port 49620 ssh2 2020-09-20T16:05:38.491337abusebot.cloudsearch.cf sshd[7722]: Invalid user postgres from 200.73.129.102 port 33614 2020-09-20T16:05:38.497751abusebot.cloudsearch.cf sshd[7722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.102 2020-09-20T16:05:38.491337abusebot.cloudsearch.cf sshd[7722]: Invalid user postgres from 200.73.129.102 port 33614 2020-09-20T16:05:40.614674abusebot.cloudsearch.cf sshd[7722]: Failed password f ...	2020-09-21 01:21:24
200.73.129.102	attackbotsspam	Invalid user administrador from 200.73.129.102 port 42838	2020-09-20 17:20:32
200.73.129.102	attackbotsspam	Sep 18 10:56:39 django-0 sshd[16680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.102 user=root Sep 18 10:56:41 django-0 sshd[16680]: Failed password for root from 200.73.129.102 port 60680 ssh2 ...	2020-09-18 19:46:40
200.73.129.102	attack	Sep 18 05:33:51 rotator sshd\[26690\]: Invalid user test from 200.73.129.102Sep 18 05:33:53 rotator sshd\[26690\]: Failed password for invalid user test from 200.73.129.102 port 38044 ssh2Sep 18 05:38:35 rotator sshd\[27478\]: Invalid user music from 200.73.129.102Sep 18 05:38:37 rotator sshd\[27478\]: Failed password for invalid user music from 200.73.129.102 port 49710 ssh2Sep 18 05:43:22 rotator sshd\[28283\]: Invalid user mysql from 200.73.129.102Sep 18 05:43:25 rotator sshd\[28283\]: Failed password for invalid user mysql from 200.73.129.102 port 33150 ssh2 ...	2020-09-18 12:04:14
200.73.129.102	attack	200.73.129.102 (AR/Argentina/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 17 13:42:55 server2 sshd[16990]: Failed password for root from 51.254.220.61 port 43893 ssh2 Sep 17 13:42:50 server2 sshd[16931]: Failed password for root from 82.148.19.158 port 54830 ssh2 Sep 17 13:43:43 server2 sshd[17377]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.19.127.228 user=root Sep 17 13:43:19 server2 sshd[17303]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.102 user=root Sep 17 13:43:21 server2 sshd[17303]: Failed password for root from 200.73.129.102 port 56632 ssh2 IP Addresses Blocked: 51.254.220.61 (FR/France/-) 82.148.19.158 (RU/Russia/-) 61.19.127.228 (TH/Thailand/-)	2020-09-18 02:17:21
200.73.129.102	attack	Invalid user administrador from 200.73.129.102 port 42838	2020-09-17 00:53:42
200.73.129.102	attack	Sep 16 10:38:24 vm1 sshd[9124]: Failed password for root from 200.73.129.102 port 54808 ssh2 Sep 16 11:07:03 vm1 sshd[9676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.102 ...	2020-09-16 17:08:20
200.73.129.102	attackspam	Aug 29 14:06:38 dhoomketu sshd[2741657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.102 Aug 29 14:06:38 dhoomketu sshd[2741657]: Invalid user karen from 200.73.129.102 port 39362 Aug 29 14:06:40 dhoomketu sshd[2741657]: Failed password for invalid user karen from 200.73.129.102 port 39362 ssh2 Aug 29 14:10:50 dhoomketu sshd[2741784]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.129.102 user=root Aug 29 14:10:52 dhoomketu sshd[2741784]: Failed password for root from 200.73.129.102 port 39292 ssh2 ...	2020-08-29 16:57:13
200.73.129.102	attack	leo_www	2020-08-11 14:44:09
200.73.129.102	attackbots	sshd: Failed password for .... from 200.73.129.102 port 40454 ssh2 (12 attempts)	2020-08-06 20:11:44
200.73.129.102	attackbots	bruteforce detected	2020-07-12 15:05:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.73.129.85
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59122
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.73.129.85.			IN	A

;; AUTHORITY SECTION:
.			429	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041702 1800 900 604800 86400

;; Query time: 134 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 18 02:14:42 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 85.129.73.200.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 85.129.73.200.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.25.87.27	attack	Jun 14 12:51:11 root sshd[25248]: Invalid user guanshuaijie from 118.25.87.27 ...	2020-06-14 18:24:14
203.95.212.41	attack	Invalid user caddy from 203.95.212.41 port 44665	2020-06-14 18:01:15
47.180.114.229	attackbotsspam	Jun 14 12:11:52 server sshd[10046]: Failed password for root from 47.180.114.229 port 53522 ssh2 Jun 14 12:14:51 server sshd[10150]: Failed password for root from 47.180.114.229 port 46638 ssh2 Jun 14 12:17:54 server sshd[10393]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.180.114.229 ...	2020-06-14 18:33:58
14.175.210.240	attack	1592106497 - 06/14/2020 05:48:17 Host: 14.175.210.240/14.175.210.240 Port: 445 TCP Blocked	2020-06-14 18:01:40
14.29.162.139	attackbotsspam	Jun 14 08:13:40 srv-ubuntu-dev3 sshd[42054]: Invalid user wade from 14.29.162.139 Jun 14 08:13:40 srv-ubuntu-dev3 sshd[42054]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.162.139 Jun 14 08:13:40 srv-ubuntu-dev3 sshd[42054]: Invalid user wade from 14.29.162.139 Jun 14 08:13:42 srv-ubuntu-dev3 sshd[42054]: Failed password for invalid user wade from 14.29.162.139 port 21496 ssh2 Jun 14 08:17:35 srv-ubuntu-dev3 sshd[42684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.162.139 user=root Jun 14 08:17:37 srv-ubuntu-dev3 sshd[42684]: Failed password for root from 14.29.162.139 port 59034 ssh2 Jun 14 08:21:08 srv-ubuntu-dev3 sshd[43292]: Invalid user pbcte from 14.29.162.139 Jun 14 08:21:08 srv-ubuntu-dev3 sshd[43292]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.29.162.139 Jun 14 08:21:08 srv-ubuntu-dev3 sshd[43292]: Invalid user pbcte from 14.29.162 ...	2020-06-14 17:57:30
114.84.166.72	attack	$f2bV_matches	2020-06-14 18:28:36
45.121.163.78	attack	20/6/14@01:58:31: FAIL: Alarm-Network address from=45.121.163.78 ...	2020-06-14 18:30:30
106.12.108.170	attack	2020-06-14T05:26:09.014403shield sshd\[7535\]: Invalid user admin from 106.12.108.170 port 55486 2020-06-14T05:26:09.018451shield sshd\[7535\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.170 2020-06-14T05:26:11.319271shield sshd\[7535\]: Failed password for invalid user admin from 106.12.108.170 port 55486 ssh2 2020-06-14T05:29:14.463051shield sshd\[8027\]: Invalid user thuannd9 from 106.12.108.170 port 53820 2020-06-14T05:29:14.465809shield sshd\[8027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.108.170	2020-06-14 17:56:39
72.167.190.168	attackspam	Trolling for resource vulnerabilities	2020-06-14 18:35:56
123.30.236.149	attackspam	Invalid user cedric from 123.30.236.149 port 17552	2020-06-14 17:56:10
67.205.137.32	attackbots	2020-06-14T11:38:16.408204snf-827550 sshd[3747]: Failed password for root from 67.205.137.32 port 33296 ssh2 2020-06-14T11:40:21.233584snf-827550 sshd[3771]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.137.32 user=root 2020-06-14T11:40:22.817144snf-827550 sshd[3771]: Failed password for root from 67.205.137.32 port 42610 ssh2 ...	2020-06-14 18:17:38
134.209.102.196	attackspam	Jun 14 10:36:18 gestao sshd[10391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.102.196 Jun 14 10:36:20 gestao sshd[10391]: Failed password for invalid user stephan from 134.209.102.196 port 60794 ssh2 Jun 14 10:40:04 gestao sshd[10574]: Failed password for root from 134.209.102.196 port 34020 ssh2 ...	2020-06-14 17:54:52
121.46.244.194	attackbotsspam	Jun 14 10:04:44 abendstille sshd\[28148\]: Invalid user uais533 from 121.46.244.194 Jun 14 10:04:44 abendstille sshd\[28148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.244.194 Jun 14 10:04:46 abendstille sshd\[28148\]: Failed password for invalid user uais533 from 121.46.244.194 port 56891 ssh2 Jun 14 10:07:10 abendstille sshd\[30107\]: Invalid user guest from 121.46.244.194 Jun 14 10:07:10 abendstille sshd\[30107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.46.244.194 ...	2020-06-14 18:04:02
182.61.65.120	attack	<6 unauthorized SSH connections	2020-06-14 18:24:31
175.6.141.222	attackbotsspam	Jun 14 05:48:12 host sshd[24338]: Invalid user odooplus from 175.6.141.222 port 52880 ...	2020-06-14 18:06:13

Recently Reported IPs

183.89.211.193	167.99.181.140	185.68.145.195	142.11.227.174
50.63.161.42	42.178.127.63	241.243.253.163	46.201.164.152
114.40.193.223	60.19.201.68	104.131.217.66	131.72.236.138
87.241.138.66	42.3.51.73	157.52.145.18	49.81.226.119
94.68.66.39	157.245.76.221	94.46.163.165	181.143.172.106