27.214.200.44 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): China Unicom Shandong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Unauthorised access (Oct 12) SRC=27.214.200.44 LEN=40 TTL=49 ID=34794 TCP DPT=8080 WINDOW=16370 SYN Unauthorised access (Oct 12) SRC=27.214.200.44 LEN=40 TTL=49 ID=52569 TCP DPT=8080 WINDOW=54640 SYN Unauthorised access (Oct 11) SRC=27.214.200.44 LEN=40 TTL=49 ID=37409 TCP DPT=8080 WINDOW=60109 SYN Unauthorised access (Oct 11) SRC=27.214.200.44 LEN=40 TTL=49 ID=6300 TCP DPT=8080 WINDOW=40885 SYN Unauthorised access (Oct 9) SRC=27.214.200.44 LEN=40 TTL=49 ID=38203 TCP DPT=8080 WINDOW=54640 SYN Unauthorised access (Oct 9) SRC=27.214.200.44 LEN=40 TTL=49 ID=5083 TCP DPT=8080 WINDOW=60109 SYN	2019-10-13 02:51:26
attack	Unauthorised access (Oct 4) SRC=27.214.200.44 LEN=40 TTL=49 ID=19578 TCP DPT=8080 WINDOW=16370 SYN Unauthorised access (Oct 1) SRC=27.214.200.44 LEN=40 TTL=49 ID=20193 TCP DPT=8080 WINDOW=44264 SYN Unauthorised access (Sep 30) SRC=27.214.200.44 LEN=40 TTL=49 ID=817 TCP DPT=8080 WINDOW=40885 SYN	2019-10-04 18:06:50
attackspam	Unauthorised access (Sep 21) SRC=27.214.200.44 LEN=40 TTL=49 ID=14890 TCP DPT=8080 WINDOW=44264 SYN Unauthorised access (Sep 19) SRC=27.214.200.44 LEN=40 TTL=49 ID=19106 TCP DPT=8080 WINDOW=31616 SYN Unauthorised access (Sep 18) SRC=27.214.200.44 LEN=40 TTL=49 ID=42524 TCP DPT=8080 WINDOW=31616 SYN	2019-09-22 01:02:50

类型

评论内容

时间

attack

Unauthorised access (Oct 12) SRC=27.214.200.44 LEN=40 TTL=49 ID=34794 TCP DPT=8080 WINDOW=16370 SYN 
Unauthorised access (Oct 12) SRC=27.214.200.44 LEN=40 TTL=49 ID=52569 TCP DPT=8080 WINDOW=54640 SYN 
Unauthorised access (Oct 11) SRC=27.214.200.44 LEN=40 TTL=49 ID=37409 TCP DPT=8080 WINDOW=60109 SYN 
Unauthorised access (Oct 11) SRC=27.214.200.44 LEN=40 TTL=49 ID=6300 TCP DPT=8080 WINDOW=40885 SYN 
Unauthorised access (Oct  9) SRC=27.214.200.44 LEN=40 TTL=49 ID=38203 TCP DPT=8080 WINDOW=54640 SYN 
Unauthorised access (Oct  9) SRC=27.214.200.44 LEN=40 TTL=49 ID=5083 TCP DPT=8080 WINDOW=60109 SYN

2019-10-13 02:51:26

attack

Unauthorised access (Oct  4) SRC=27.214.200.44 LEN=40 TTL=49 ID=19578 TCP DPT=8080 WINDOW=16370 SYN 
Unauthorised access (Oct  1) SRC=27.214.200.44 LEN=40 TTL=49 ID=20193 TCP DPT=8080 WINDOW=44264 SYN 
Unauthorised access (Sep 30) SRC=27.214.200.44 LEN=40 TTL=49 ID=817 TCP DPT=8080 WINDOW=40885 SYN

2019-10-04 18:06:50

attackspam

Unauthorised access (Sep 21) SRC=27.214.200.44 LEN=40 TTL=49 ID=14890 TCP DPT=8080 WINDOW=44264 SYN 
Unauthorised access (Sep 19) SRC=27.214.200.44 LEN=40 TTL=49 ID=19106 TCP DPT=8080 WINDOW=31616 SYN 
Unauthorised access (Sep 18) SRC=27.214.200.44 LEN=40 TTL=49 ID=42524 TCP DPT=8080 WINDOW=31616 SYN

2019-09-22 01:02:50

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 27.214.200.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55869
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;27.214.200.44.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019092100 1800 900 604800 86400

;; Query time: 656 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Sep 22 01:02:47 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

Host 44.200.214.27.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 44.200.214.27.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
151.80.46.40	attack	Automatic report - Banned IP Access	2019-08-28 17:17:47
153.35.123.27	attackspam	Aug 28 11:09:50 vps691689 sshd[25139]: Failed password for root from 153.35.123.27 port 40970 ssh2 Aug 28 11:15:03 vps691689 sshd[25251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.35.123.27 ...	2019-08-28 17:21:48
168.61.165.178	attackspambots	Aug 28 10:35:49 srv-4 sshd\[837\]: Invalid user cui from 168.61.165.178 Aug 28 10:35:49 srv-4 sshd\[837\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.61.165.178 Aug 28 10:35:51 srv-4 sshd\[837\]: Failed password for invalid user cui from 168.61.165.178 port 36244 ssh2 ...	2019-08-28 17:24:29
115.29.3.34	attackbots	Aug 28 08:41:14 server sshd\[32667\]: Invalid user wildfly from 115.29.3.34 port 32866 Aug 28 08:41:14 server sshd\[32667\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.3.34 Aug 28 08:41:16 server sshd\[32667\]: Failed password for invalid user wildfly from 115.29.3.34 port 32866 ssh2 Aug 28 08:44:49 server sshd\[6975\]: Invalid user wwwdata from 115.29.3.34 port 46758 Aug 28 08:44:49 server sshd\[6975\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.29.3.34	2019-08-28 17:26:13
119.188.247.58	attackspam	Aug 27 20:28:54 tdfoods sshd\[20753\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.188.247.58 user=root Aug 27 20:28:56 tdfoods sshd\[20753\]: Failed password for root from 119.188.247.58 port 4653 ssh2 Aug 27 20:29:06 tdfoods sshd\[20776\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.188.247.58 user=root Aug 27 20:29:08 tdfoods sshd\[20776\]: Failed password for root from 119.188.247.58 port 1508 ssh2 Aug 27 20:29:18 tdfoods sshd\[20794\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.188.247.58 user=root	2019-08-28 18:12:26
142.44.160.173	attack	Aug 28 10:31:18 dev0-dcde-rnet sshd[10939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.173 Aug 28 10:31:20 dev0-dcde-rnet sshd[10939]: Failed password for invalid user mahesh from 142.44.160.173 port 35758 ssh2 Aug 28 10:35:28 dev0-dcde-rnet sshd[10956]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.173	2019-08-28 17:19:46
167.99.230.57	attackbots	Aug 28 09:43:33 MK-Soft-VM6 sshd\[6198\]: Invalid user francis from 167.99.230.57 port 49422 Aug 28 09:43:33 MK-Soft-VM6 sshd\[6198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.230.57 Aug 28 09:43:35 MK-Soft-VM6 sshd\[6198\]: Failed password for invalid user francis from 167.99.230.57 port 49422 ssh2 ...	2019-08-28 17:54:01
94.191.93.34	attackbots	Aug 27 22:12:08 kapalua sshd\[32052\]: Invalid user andrew from 94.191.93.34 Aug 27 22:12:08 kapalua sshd\[32052\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.93.34 Aug 27 22:12:10 kapalua sshd\[32052\]: Failed password for invalid user andrew from 94.191.93.34 port 60786 ssh2 Aug 27 22:18:17 kapalua sshd\[32543\]: Invalid user admln from 94.191.93.34 Aug 27 22:18:17 kapalua sshd\[32543\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.93.34	2019-08-28 18:10:12
59.173.8.178	attackbotsspam	Aug 27 23:11:30 lcdev sshd\[10989\]: Invalid user vpn from 59.173.8.178 Aug 27 23:11:30 lcdev sshd\[10989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.173.8.178 Aug 27 23:11:33 lcdev sshd\[10989\]: Failed password for invalid user vpn from 59.173.8.178 port 59072 ssh2 Aug 27 23:17:20 lcdev sshd\[11531\]: Invalid user amssys from 59.173.8.178 Aug 27 23:17:20 lcdev sshd\[11531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.173.8.178	2019-08-28 17:20:20
67.205.135.127	attackspambots	Aug 27 20:44:37 php1 sshd\[24843\]: Invalid user gamma from 67.205.135.127 Aug 27 20:44:37 php1 sshd\[24843\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.135.127 Aug 27 20:44:39 php1 sshd\[24843\]: Failed password for invalid user gamma from 67.205.135.127 port 41058 ssh2 Aug 27 20:48:32 php1 sshd\[25162\]: Invalid user kettle from 67.205.135.127 Aug 27 20:48:32 php1 sshd\[25162\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.135.127	2019-08-28 17:23:34
182.31.65.31	attackbotsspam	Telnet Server BruteForce Attack	2019-08-28 17:39:43
218.92.0.163	attackspambots	Aug 27 19:50:14 lcprod sshd\[30268\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.163 user=root Aug 27 19:50:16 lcprod sshd\[30268\]: Failed password for root from 218.92.0.163 port 7572 ssh2 Aug 27 19:50:26 lcprod sshd\[30268\]: Failed password for root from 218.92.0.163 port 7572 ssh2 Aug 27 19:50:28 lcprod sshd\[30268\]: Failed password for root from 218.92.0.163 port 7572 ssh2 Aug 27 19:50:31 lcprod sshd\[30294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.163 user=root	2019-08-28 17:54:31
141.98.80.73	attackspambots	2019-08-2810:22:39dovecot_plainauthenticatorfailedfor$[141.98.80.73]$[141.98.80.73]:14298:535Incorrectauthenticationdata$set_id=tintas@helcom.net$2019-08-2810:22:47dovecot_plainauthenticatorfailedfor$[141.98.80.73]$[141.98.80.73]:47814:535Incorrectauthenticationdata$set_id=tintas$2019-08-2810:39:18dovecot_plainauthenticatorfailedfor$[141.98.80.73]$[141.98.80.73]:59234:535Incorrectauthenticationdata$set_id=bruno.rosenberger@inerta.eu$2019-08-2810:39:26dovecot_plainauthenticatorfailedfor$[141.98.80.73]$[141.98.80.73]:1558:535Incorrectauthenticationdata$set_id=bruno.rosenberger$2019-08-2810:48:49dovecot_plainauthenticatorfailedfor$[141.98.80.73]$[141.98.80.73]:26996:535Incorrectauthenticationdata$set_id=info@benesserequino.com$2019-08-2810:48:57dovecot_plainauthenticatorfailedfor$[141.98.80.73]$[141.98.80.73]:9514:535Incorrectauthenticationdata$set_id=info$2019-08-2811:09:18dovecot_plainauthenticatorfailedfor$[141.98.80.73]$[141.98.80.73]:58270:535Incorrectauthenticationdata\(set_id=sec	2019-08-28 17:57:46
138.68.4.175	attackspambots	2019-08-28T04:55:02.176872abusebot-7.cloudsearch.cf sshd\[15542\]: Invalid user mdom from 138.68.4.175 port 38376	2019-08-28 17:39:19
200.117.185.232	attackbots	$f2bV_matches_ltvn	2019-08-28 18:17:24

最近上报的IP列表

95.6.61.129	81.9.24.36	79.133.238.10	178.22.170.219
171.235.49.185	177.106.38.194	180.116.52.93	125.165.207.170
52.58.115.20	104.244.73.130	2.197.157.45	58.218.200.27
45.235.5.1	89.214.226.33	77.79.190.82	114.94.156.173
189.195.143.166	74.31.238.70	210.65.60.231	45.76.33.2