202.200.144.69

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): Xi'an University of Architecture & Technology

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): University/College/School

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	firewall-block, port(s): 1433/tcp	2020-07-11 18:09:41

相同子网IP讨论:

IP	类型	评论内容	时间
202.200.144.150	attack	firewall-block, port(s): 445/tcp	2020-08-16 17:14:38
202.200.144.150	attackbots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: tcp cat: Potentially Bad Trafficbytes: 60	2020-07-21 15:03:37
202.200.144.150	attackspambots	Honeypot attack, port: 445, PTR: PTR record not found	2020-06-09 01:51:51
202.200.144.113	attack	Unauthorized connection attempt from IP address 202.200.144.113 on Port 445(SMB)	2020-02-10 02:44:33
202.200.144.150	attack	" "	2019-11-30 20:26:44
202.200.144.113	attack	Unauthorized connection attempt from IP address 202.200.144.113 on Port 445(SMB)	2019-11-29 21:59:37
202.200.144.150	attackbots	[portscan] tcp/1433 [MsSQL] *(RWIN=1024)(11190859)	2019-11-19 18:07:06
202.200.144.68	attackbotsspam	firewall-block, port(s): 1433/tcp	2019-10-19 16:48:08
202.200.144.112	attack	Unauthorised access (Oct 12) SRC=202.200.144.112 LEN=44 PREC=0x20 TTL=231 ID=26797 TCP DPT=1433 WINDOW=1024 SYN	2019-10-12 23:25:08
202.200.144.161	attackbots	Port Scan: TCP/445	2019-09-20 19:03:52
202.200.144.161	attack	Port Scan: TCP/445	2019-09-16 06:39:54
202.200.144.150	attackbots	firewall-block, port(s): 445/tcp	2019-08-29 07:15:12

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 202.200.144.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5868
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;202.200.144.69.			IN	A

;; AUTHORITY SECTION:
.			561	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071001 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 11 18:09:35 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

Host 69.144.200.202.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 69.144.200.202.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
52.202.187.239	attack	Lines containing failures of 52.202.187.239 Aug 4 03:10:32 siirappi sshd[12319]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.202.187.239 user=r.r Aug 4 03:10:35 siirappi sshd[12319]: Failed password for r.r from 52.202.187.239 port 54044 ssh2 Aug 4 03:10:35 siirappi sshd[12319]: Received disconnect from 52.202.187.239 port 54044:11: Bye Bye [preauth] Aug 4 03:10:35 siirappi sshd[12319]: Disconnected from authenticating user r.r 52.202.187.239 port 54044 [preauth] Aug 4 03:18:25 siirappi sshd[12546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.202.187.239 user=r.r Aug 4 03:18:27 siirappi sshd[12546]: Failed password for r.r from 52.202.187.239 port 60876 ssh2 Aug 4 03:18:28 siirappi sshd[12546]: Received disconnect from 52.202.187.239 port 60876:11: Bye Bye [preauth] Aug 4 03:18:28 siirappi sshd[12546]: Disconnected from authenticating user r.r 52.202.187.239 port 60876........ ------------------------------	2020-08-09 17:07:00
182.242.143.38	attack	Sent packet to closed port: 29640	2020-08-09 17:15:50
51.89.148.69	attackbots	Aug 9 07:05:53 piServer sshd[2833]: Failed password for root from 51.89.148.69 port 41014 ssh2 Aug 9 07:08:39 piServer sshd[3051]: Failed password for root from 51.89.148.69 port 59054 ssh2 ...	2020-08-09 16:49:56
122.51.188.20	attackspambots	Aug 8 22:49:34 dignus sshd[28026]: Failed password for root from 122.51.188.20 port 44438 ssh2 Aug 8 22:52:20 dignus sshd[28487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.188.20 user=root Aug 8 22:52:22 dignus sshd[28487]: Failed password for root from 122.51.188.20 port 42608 ssh2 Aug 8 22:55:14 dignus sshd[28838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.188.20 user=root Aug 8 22:55:16 dignus sshd[28838]: Failed password for root from 122.51.188.20 port 40778 ssh2 ...	2020-08-09 17:03:58
14.248.212.225	attackspambots	1596945006 - 08/09/2020 05:50:06 Host: 14.248.212.225/14.248.212.225 Port: 445 TCP Blocked	2020-08-09 17:04:55
189.39.102.67	attack	2020-08-09T06:51:16.702668centos sshd[1754]: Failed password for root from 189.39.102.67 port 44796 ssh2 2020-08-09T06:54:16.921004centos sshd[1912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.39.102.67 user=root 2020-08-09T06:54:18.983709centos sshd[1912]: Failed password for root from 189.39.102.67 port 58170 ssh2 ...	2020-08-09 16:50:22
89.248.168.217	attackbotsspam	89.248.168.217 was recorded 5 times by 4 hosts attempting to connect to the following ports: 4244,1812. Incident counter (4h, 24h, all-time): 5, 33, 23092	2020-08-09 17:03:27
91.191.209.188	attack	2020-08-09 10:31:27 dovecot_login authenticator failed for $User$ \[91.191.209.188\]: 535 Incorrect authentication data 2020-08-09 10:31:28 dovecot_login authenticator failed for $User$ \[91.191.209.188\]: 535 Incorrect authentication data 2020-08-09 10:36:53 dovecot_login authenticator failed for $User$ \[91.191.209.188\]: 535 Incorrect authentication data $set_id=myfiles@hosting1.no-server.de$ 2020-08-09 10:37:05 dovecot_login authenticator failed for $User$ \[91.191.209.188\]: 535 Incorrect authentication data $set_id=myfiles@hosting1.no-server.de$ 2020-08-09 10:37:06 dovecot_login authenticator failed for $User$ \[91.191.209.188\]: 535 Incorrect authentication data $set_id=myfiles@hosting1.no-server.de$ ...	2020-08-09 16:48:42
195.154.188.108	attack	2020-08-09T07:11:38.629446vps773228.ovh.net sshd[7517]: Failed password for root from 195.154.188.108 port 57198 ssh2 2020-08-09T07:15:39.911400vps773228.ovh.net sshd[7535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-154-188-108.rev.poneytelecom.eu user=root 2020-08-09T07:15:41.785449vps773228.ovh.net sshd[7535]: Failed password for root from 195.154.188.108 port 46766 ssh2 2020-08-09T07:19:34.263057vps773228.ovh.net sshd[7589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195-154-188-108.rev.poneytelecom.eu user=root 2020-08-09T07:19:36.398015vps773228.ovh.net sshd[7589]: Failed password for root from 195.154.188.108 port 36086 ssh2 ...	2020-08-09 17:17:35
192.241.207.227	attackspambots	Port scan denied	2020-08-09 16:55:34
106.12.12.127	attackbots	SSH Brute Force	2020-08-09 16:58:12
8.208.23.200	attackspam	$f2bV_matches	2020-08-09 17:22:18
182.61.10.142	attack	Aug 9 05:45:27 vpn01 sshd[14385]: Failed password for root from 182.61.10.142 port 59928 ssh2 ...	2020-08-09 16:58:41
70.114.77.190	attackbotsspam	firewall-block, port(s): 445/tcp	2020-08-09 17:06:04
37.152.181.57	attackspambots	bruteforce detected	2020-08-09 17:18:24

最近上报的IP列表

92.52.207.61	37.49.230.99	217.126.131.202	120.38.28.143
181.30.115.202	91.137.247.8	194.180.224.134	1.1.210.165
176.119.149.31	187.1.55.18	198.38.94.45	78.110.50.131
47.135.217.97	186.193.194.131	181.199.63.253	176.31.116.179
87.204.167.99	94.231.109.244	91.231.15.100	122.142.206.30