200.144.29.196

基本信息:

城市(city): São Paulo

省份(region): Sao Paulo

国家(country): Brazil

运营商(isp): CIA Proc. de Dados do Estado de S Paulo - PRODESP

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Government

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt from IP address 200.144.29.196 on Port 445(SMB)	2019-11-29 03:12:34

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.144.29.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9285
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.144.29.196.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112802 1800 900 604800 86400

;; Query time: 95 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 29 03:12:31 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

Host 196.29.144.200.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 196.29.144.200.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
66.240.219.146	attack	Dec 23 20:34:22 debian-2gb-nbg1-2 kernel: \[782406.547113\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=66.240.219.146 DST=195.201.40.59 LEN=44 TOS=0x10 PREC=0x00 TTL=110 ID=12701 PROTO=TCP SPT=26200 DPT=8442 WINDOW=21765 RES=0x00 SYN URGP=0	2019-12-24 03:39:29
128.199.216.250	attack	Dec 23 05:57:56 web9 sshd\[17586\]: Invalid user nana123 from 128.199.216.250 Dec 23 05:57:56 web9 sshd\[17586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250 Dec 23 05:57:58 web9 sshd\[17586\]: Failed password for invalid user nana123 from 128.199.216.250 port 53674 ssh2 Dec 23 06:05:54 web9 sshd\[18942\]: Invalid user mandrake from 128.199.216.250 Dec 23 06:05:54 web9 sshd\[18942\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.216.250	2019-12-24 03:10:31
104.244.75.244	attack	Invalid user guest from 104.244.75.244 port 48502 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.75.244 Failed password for invalid user guest from 104.244.75.244 port 48502 ssh2 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.244.75.244 user=nobody Failed password for nobody from 104.244.75.244 port 52794 ssh2	2019-12-24 03:20:21
157.245.40.229	attackspambots	Dec 23 16:05:37 51-15-180-239 sshd[29337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=beaters.es user=root Dec 23 16:05:39 51-15-180-239 sshd[29337]: Failed password for root from 157.245.40.229 port 41722 ssh2 ...	2019-12-24 03:30:59
138.68.84.156	attackspambots	Chat Spam	2019-12-24 03:22:14
222.186.175.163	attack	Dec 23 20:09:34 debian64 sshd\[8605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.163 user=root Dec 23 20:09:37 debian64 sshd\[8605\]: Failed password for root from 222.186.175.163 port 33276 ssh2 Dec 23 20:09:39 debian64 sshd\[8605\]: Failed password for root from 222.186.175.163 port 33276 ssh2 ...	2019-12-24 03:21:38
185.175.93.3	attack	ET DROP Dshield Block Listed Source group 1 - port: 7585 proto: TCP cat: Misc Attack	2019-12-24 03:18:06
167.99.68.198	attack	$f2bV_matches	2019-12-24 03:23:16
158.174.171.23	attackbots	Dec 23 20:50:28 pkdns2 sshd\[32246\]: Failed password for root from 158.174.171.23 port 50598 ssh2Dec 23 20:50:56 pkdns2 sshd\[32256\]: Invalid user admin from 158.174.171.23Dec 23 20:50:58 pkdns2 sshd\[32256\]: Failed password for invalid user admin from 158.174.171.23 port 51664 ssh2Dec 23 20:53:40 pkdns2 sshd\[32371\]: Invalid user eran from 158.174.171.23Dec 23 20:53:42 pkdns2 sshd\[32371\]: Failed password for invalid user eran from 158.174.171.23 port 52683 ssh2Dec 23 20:54:13 pkdns2 sshd\[32417\]: Invalid user prince from 158.174.171.23 ...	2019-12-24 03:07:17
41.139.230.99	attackbotsspam	Dec 23 14:55:48 flomail dovecot: imap-login: Disconnected (auth failed, 1 attempts in 12 secs): user=, method=PLAIN, rip=41.139.230.99, lip=10.140.194.78, TLS: Disconnected, session=	2019-12-24 03:40:00
124.156.200.106	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-24 03:38:47
190.72.136.45	attack	Unauthorized connection attempt detected from IP address 190.72.136.45 to port 445	2019-12-24 03:35:08
197.45.138.52	attackbots	Dec 23 15:56:00 debian-2gb-nbg1-2 kernel: \[765705.983321\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=197.45.138.52 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=241 ID=31742 PROTO=TCP SPT=52910 DPT=1433 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-24 03:25:30
40.73.39.195	attack	Dec 23 15:48:33 h2177944 sshd\[1375\]: Invalid user quach from 40.73.39.195 port 34888 Dec 23 15:48:33 h2177944 sshd\[1375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.39.195 Dec 23 15:48:35 h2177944 sshd\[1375\]: Failed password for invalid user quach from 40.73.39.195 port 34888 ssh2 Dec 23 15:55:44 h2177944 sshd\[1613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.39.195 user=root ...	2019-12-24 03:42:19
58.87.120.53	attackspambots	Dec 23 13:02:36 ldap01vmsma01 sshd[44916]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.120.53 Dec 23 13:02:38 ldap01vmsma01 sshd[44916]: Failed password for invalid user guillan from 58.87.120.53 port 37942 ssh2 ...	2019-12-24 03:16:08

最近上报的IP列表

87.136.161.2	182.20.83.160	91.79.236.165	220.191.254.66
129.184.39.229	245.62.14.145	103.220.206.173	217.2.79.220
195.43.32.239	53.102.93.235	159.37.63.47	218.208.111.161
214.128.112.90	150.41.204.6	132.21.104.164	199.116.221.208
32.181.11.178	144.232.174.52	59.108.246.213	216.44.227.169