129.227.200.112

基本信息:

城市(city): Central

省份(region): Central and Western District

国家(country): Hong Kong

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 129.227.200.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60958
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;129.227.200.112.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Sep 09 01:26:39 CST 2019
;; MSG SIZE  rcvd: 119

HOST信息:

Host 112.200.227.129.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 112.200.227.129.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
142.93.115.47	attack	SSH brute force attempt	2020-04-28 00:53:41
61.153.231.58	attackspam	Unauthorised access (Apr 27) SRC=61.153.231.58 LEN=48 TTL=115 ID=15973 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Apr 27) SRC=61.153.231.58 LEN=52 TTL=115 ID=8537 DF TCP DPT=445 WINDOW=8192 SYN	2020-04-28 00:35:17
80.89.137.54	attackbots	[SMTP/25/465/587 Probe] [SMTPD] RECEIVED: EHLO 0-1-2.org [SMTPD] SENT: 554 5.7.1 Rejected: IP FROM DNS for {0-1-2.org} diff. [* OpenProxy ] in stopforumspam:'listed [46 times]' in projecthoneypot:'listed' [Suspicious] in SpamCop:'listed' in sorbs:'listed [spam], [web]' in Unsubscore:'listed' in BlMailspike:'listed' (04271416)	2020-04-28 00:37:42
139.199.14.128	attackspambots	2020-04-27T16:22:08.276073abusebot-3.cloudsearch.cf sshd[10053]: Invalid user ubuntu from 139.199.14.128 port 50904 2020-04-27T16:22:08.284928abusebot-3.cloudsearch.cf sshd[10053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.14.128 2020-04-27T16:22:08.276073abusebot-3.cloudsearch.cf sshd[10053]: Invalid user ubuntu from 139.199.14.128 port 50904 2020-04-27T16:22:10.562225abusebot-3.cloudsearch.cf sshd[10053]: Failed password for invalid user ubuntu from 139.199.14.128 port 50904 ssh2 2020-04-27T16:29:35.934711abusebot-3.cloudsearch.cf sshd[10422]: Invalid user biotech from 139.199.14.128 port 58236 2020-04-27T16:29:35.941614abusebot-3.cloudsearch.cf sshd[10422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.14.128 2020-04-27T16:29:35.934711abusebot-3.cloudsearch.cf sshd[10422]: Invalid user biotech from 139.199.14.128 port 58236 2020-04-27T16:29:38.249233abusebot-3.cloudsearch.cf sshd[ ...	2020-04-28 00:43:35
77.247.108.77	attackspambots	Unauthorized connection attempt detected from IP address 77.247.108.77 to port 7443	2020-04-28 00:38:00
66.249.65.192	attackbots	[Mon Apr 27 18:53:12.456964 2020] [:error] [pid 5377:tid 140575006160640] [client 66.249.65.192:43608] [client 66.249.65.192] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/TableFilter/system-v114.css"] [unique_id "XqbHqDwnaCnY869yr5gqfwAAAC4"], referer: https://103.27.207.197/ ...	2020-04-28 00:47:00
185.50.149.13	attack	Apr 27 16:10:05 smtp postfix/smtpd[20612]: warning: unknown[185.50.149.13]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 16:10:21 smtp postfix/smtpd[31950]: warning: unknown[185.50.149.13]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 17:27:20 smtp postfix/smtpd[74852]: warning: unknown[185.50.149.13]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 17:27:41 smtp postfix/smtpd[29623]: warning: unknown[185.50.149.13]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 18:36:57 smtp postfix/smtpd[42342]: warning: unknown[185.50.149.13]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-28 00:39:23
177.200.207.11	attack	Apr 27 14:26:00 PorscheCustomer sshd[1738]: Failed password for root from 177.200.207.11 port 51150 ssh2 Apr 27 14:30:50 PorscheCustomer sshd[1903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.200.207.11 Apr 27 14:30:51 PorscheCustomer sshd[1903]: Failed password for invalid user take from 177.200.207.11 port 35248 ssh2 ...	2020-04-28 00:55:37
113.52.139.131	attackspam	Time: Mon Apr 27 09:52:02 2020 -0300 IP: 113.52.139.131 (KR/South Korea/-) Failures: 15 (ftpd) Interval: 3600 seconds Blocked: Permanent Block	2020-04-28 00:52:32
162.243.128.29	attackbotsspam	404 NOT FOUND	2020-04-28 00:28:57
177.104.124.235	attackbots	Apr 27 20:53:58 gw1 sshd[21846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.104.124.235 Apr 27 20:54:01 gw1 sshd[21846]: Failed password for invalid user nd from 177.104.124.235 port 8287 ssh2 ...	2020-04-28 00:37:14
178.62.0.138	attackspambots	$f2bV_matches	2020-04-28 00:29:53
122.51.183.47	attackbots	2020-04-27T08:43:04.7891741495-001 sshd[57396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.183.47 user=root 2020-04-27T08:43:07.2892421495-001 sshd[57396]: Failed password for root from 122.51.183.47 port 43820 ssh2 2020-04-27T08:47:56.6277421495-001 sshd[57665]: Invalid user zq from 122.51.183.47 port 40974 2020-04-27T08:47:56.6308981495-001 sshd[57665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.183.47 2020-04-27T08:47:56.6277421495-001 sshd[57665]: Invalid user zq from 122.51.183.47 port 40974 2020-04-27T08:47:58.8850081495-001 sshd[57665]: Failed password for invalid user zq from 122.51.183.47 port 40974 ssh2 ...	2020-04-28 00:38:19
84.127.54.84	attackbotsspam	2020/04/27 13:53:13 [error] 1474#1474: 62864 "/volume4/Web/cvazquez.es/phpmyadmin/index.php" is not found (2: No such file or directory), client: 84.127.54.84, server: www.cvazquez.es, request: "GET /phpmyadmin/ HTTP/1.1", host: "www.cvazquez.es", referrer: "http://www.cvazquez.es/" 2020/04/27 13:53:13 [error] 1471#1471: 62865 "/volume4/Web/cvazquez.es/phpMyAdmin/index.php" is not found (2: No such file or directory), client: 84.127.54.84, server: www.cvazquez.es, request: "GET /phpMyAdmin/ HTTP/1.1", host: "www.cvazquez.es", referrer: "http://www.cvazquez.es/" ...	2020-04-28 00:44:28
157.230.53.57	attackspam	Apr 27 14:33:37 124388 sshd[19734]: Failed password for invalid user lynx from 157.230.53.57 port 48146 ssh2 Apr 27 14:37:22 124388 sshd[19863]: Invalid user timo from 157.230.53.57 port 59660 Apr 27 14:37:22 124388 sshd[19863]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.53.57 Apr 27 14:37:22 124388 sshd[19863]: Invalid user timo from 157.230.53.57 port 59660 Apr 27 14:37:24 124388 sshd[19863]: Failed password for invalid user timo from 157.230.53.57 port 59660 ssh2	2020-04-28 00:55:54

最近上报的IP列表

184.215.92.141	208.198.205.189	123.82.86.100	210.13.46.76
170.247.33.61	134.225.90.97	117.199.122.159	84.15.184.164
56.244.159.227	186.22.145.246	83.153.48.221	18.233.162.7
59.62.234.14	36.73.4.33	157.252.241.169	62.11.48.243
124.140.206.110	92.151.51.148	42.231.148.129	73.255.175.153