106.97.131.27 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Korea (the Republic of)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.97.131.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42144
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;106.97.131.27.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012900 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 17:54:32 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 27.131.97.106.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 27.131.97.106.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
142.93.52.3	attackbots	142.93.52.3 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 16 07:43:32 server2 sshd[30326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.28.132.211 user=root Sep 16 07:43:34 server2 sshd[30326]: Failed password for root from 119.28.132.211 port 57056 ssh2 Sep 16 07:43:52 server2 sshd[30379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.217.161 user=root Sep 16 07:43:24 server2 sshd[30269]: Failed password for root from 142.93.52.3 port 60144 ssh2 Sep 16 07:43:19 server2 sshd[30128]: Failed password for root from 119.250.158.217 port 62043 ssh2 Sep 16 07:43:22 server2 sshd[30269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.52.3 user=root IP Addresses Blocked: 119.28.132.211 (HK/Hong Kong/-) 134.175.217.161 (CN/China/-)	2020-09-16 23:30:14
139.198.17.31	attack	Sep 16 18:03:43 itv-usvr-01 sshd[19686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.17.31 user=root Sep 16 18:03:45 itv-usvr-01 sshd[19686]: Failed password for root from 139.198.17.31 port 52818 ssh2 Sep 16 18:06:54 itv-usvr-01 sshd[19810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.198.17.31 user=root Sep 16 18:06:56 itv-usvr-01 sshd[19810]: Failed password for root from 139.198.17.31 port 58880 ssh2 Sep 16 18:10:08 itv-usvr-01 sshd[20044]: Invalid user uftp from 139.198.17.31	2020-09-16 23:37:58
165.22.215.192	attack	Invalid user rosenblum from 165.22.215.192 port 50804	2020-09-16 23:35:40
106.54.140.250	attack	Sep 16 17:40:46 eventyay sshd[20645]: Failed password for root from 106.54.140.250 port 48644 ssh2 Sep 16 17:44:24 eventyay sshd[20746]: Failed password for root from 106.54.140.250 port 57652 ssh2 Sep 16 17:47:57 eventyay sshd[20830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.140.250 ...	2020-09-16 23:48:36
49.247.20.23	attackbots	Sep 16 15:55:33 ns382633 sshd\[2437\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.20.23 user=root Sep 16 15:55:35 ns382633 sshd\[2437\]: Failed password for root from 49.247.20.23 port 36224 ssh2 Sep 16 16:00:08 ns382633 sshd\[3361\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.20.23 user=root Sep 16 16:00:10 ns382633 sshd\[3361\]: Failed password for root from 49.247.20.23 port 43690 ssh2 Sep 16 16:04:04 ns382633 sshd\[4192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.20.23 user=root	2020-09-16 23:17:29
106.12.151.250	attack	Sep 16 03:42:35 Tower sshd[34082]: Connection from 106.12.151.250 port 51708 on 192.168.10.220 port 22 rdomain "" Sep 16 03:42:38 Tower sshd[34082]: Failed password for root from 106.12.151.250 port 51708 ssh2 Sep 16 03:42:38 Tower sshd[34082]: Received disconnect from 106.12.151.250 port 51708:11: Bye Bye [preauth] Sep 16 03:42:38 Tower sshd[34082]: Disconnected from authenticating user root 106.12.151.250 port 51708 [preauth]	2020-09-16 23:36:43
198.211.117.96	attack	198.211.117.96 - - [16/Sep/2020:15:17:15 +0100] "POST /wp-login.php HTTP/1.1" 200 1905 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.211.117.96 - - [16/Sep/2020:15:17:16 +0100] "POST /wp-login.php HTTP/1.1" 200 1954 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 198.211.117.96 - - [16/Sep/2020:15:17:18 +0100] "POST /wp-login.php HTTP/1.1" 200 1949 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-16 23:46:58
182.176.132.99	attack	Unauthorized connection attempt from IP address 182.176.132.99 on Port 445(SMB)	2020-09-16 23:49:37
45.140.17.78	attackspam	[portscan] Port scan	2020-09-16 23:20:23
163.172.29.120	attackspambots	2020-09-16T17:26:44.011679cyberdyne sshd[1188223]: Invalid user zbomc from 163.172.29.120 port 55856 2020-09-16T17:26:44.017290cyberdyne sshd[1188223]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.29.120 2020-09-16T17:26:44.011679cyberdyne sshd[1188223]: Invalid user zbomc from 163.172.29.120 port 55856 2020-09-16T17:26:45.857329cyberdyne sshd[1188223]: Failed password for invalid user zbomc from 163.172.29.120 port 55856 ssh2 ...	2020-09-16 23:28:22
183.131.126.58	attackspambots	$f2bV_matches	2020-09-16 23:26:02
200.73.131.100	attack	SSH brute-force attempt	2020-09-16 23:24:14
141.101.69.235	attack	SSH Bruteforce attempt	2020-09-16 23:30:40
180.158.14.140	attackbotsspam	Sep 16 03:16:37 www6-3 sshd[31494]: Invalid user www from 180.158.14.140 port 2126 Sep 16 03:16:37 www6-3 sshd[31494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.158.14.140 Sep 16 03:16:39 www6-3 sshd[31494]: Failed password for invalid user www from 180.158.14.140 port 2126 ssh2 Sep 16 03:16:39 www6-3 sshd[31494]: Received disconnect from 180.158.14.140 port 2126:11: Bye Bye [preauth] Sep 16 03:16:39 www6-3 sshd[31494]: Disconnected from 180.158.14.140 port 2126 [preauth] Sep 16 03:19:41 www6-3 sshd[31766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.158.14.140 user=r.r Sep 16 03:19:43 www6-3 sshd[31766]: Failed password for r.r from 180.158.14.140 port 2127 ssh2 Sep 16 03:19:43 www6-3 sshd[31766]: Received disconnect from 180.158.14.140 port 2127:11: Bye Bye [preauth] Sep 16 03:19:43 www6-3 sshd[31766]: Disconnected from 180.158.14.140 port 2127 [preauth] ........ ---------------------------------------------	2020-09-16 23:32:20
181.114.195.121	attackbots	$f2bV_matches	2020-09-16 23:52:21

最近上报的IP列表

175.180.217.116	49.201.12.61	71.69.249.122	198.54.124.186
90.57.24.44	214.252.16.12	71.1.143.140	98.45.5.229
83.2.98.183	81.175.168.164	245.189.162.209	60.109.46.93
17.28.211.65	12.107.162.125	173.57.109.189	238.152.138.122
149.221.40.103	130.68.236.123	168.246.11.210	171.3.170.154