107.197.221.231

基本信息:

城市(city): Torrance

省份(region): California

国家(country): United States

运营商(isp): AT&T

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 107.197.221.231
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23003
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;107.197.221.231.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 10:23:26 CST 2025
;; MSG SIZE  rcvd: 108

HOST信息:

231.221.197.107.in-addr.arpa domain name pointer 107-197-221-231.lightspeed.irvnca.sbcglobal.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
231.221.197.107.in-addr.arpa	name = 107-197-221-231.lightspeed.irvnca.sbcglobal.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
36.133.97.208	attackbots	Oct 6 07:12:03 v2202009116398126984 sshd[1980754]: Failed password for root from 36.133.97.208 port 32918 ssh2 Oct 6 07:12:00 v2202009116398126984 sshd[1980754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.97.208 user=root Oct 6 07:12:03 v2202009116398126984 sshd[1980754]: Failed password for root from 36.133.97.208 port 32918 ssh2 Oct 6 07:15:34 v2202009116398126984 sshd[1980924]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.133.97.208 user=root Oct 6 07:15:36 v2202009116398126984 sshd[1980924]: Failed password for root from 36.133.97.208 port 48544 ssh2 ...	2020-10-07 04:13:14
139.59.5.179	attack	139.59.5.179 - - [06/Oct/2020:19:11:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2426 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.5.179 - - [06/Oct/2020:19:11:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2407 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 139.59.5.179 - - [06/Oct/2020:19:11:33 +0100] "POST /wp-login.php HTTP/1.1" 200 2441 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-07 04:09:06
192.241.237.31	attack	[Tue Oct 06 03:48:24.950594 2020] [:error] [pid 6208:tid 140651857442560] [client 192.241.237.31:55972] [client 192.241.237.31] ModSecurity: Access denied with code 403 (phase 2). Matched phrase "zgrab" at REQUEST_HEADERS:User-Agent. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-913-SCANNER-DETECTION.conf"] [line "55"] [id "913100"] [msg "Found User-Agent associated with security scanner"] [data "Matched Data: zgrab found within REQUEST_HEADERS:User-Agent: mozilla/5.0 zgrab/0.x"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-reputation-scanner"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/118/224/541/310"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/hudson"] [unique_id "X3uGl-VgaohnzmtSmyRpRQAAAOg"] ...	2020-10-07 04:12:14
112.85.42.180	attackbots	Oct 6 21:31:43 db sshd[14911]: User root from 112.85.42.180 not allowed because none of user's groups are listed in AllowGroups ...	2020-10-07 03:39:44
96.114.71.147	attackbots	Oct 6 15:41:51 vlre-nyc-1 sshd\[14415\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.114.71.147 user=root Oct 6 15:41:53 vlre-nyc-1 sshd\[14415\]: Failed password for root from 96.114.71.147 port 40166 ssh2 Oct 6 15:45:37 vlre-nyc-1 sshd\[14470\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.114.71.147 user=root Oct 6 15:45:39 vlre-nyc-1 sshd\[14470\]: Failed password for root from 96.114.71.147 port 47894 ssh2 Oct 6 15:49:21 vlre-nyc-1 sshd\[14540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=96.114.71.147 user=root ...	2020-10-07 04:05:43
106.75.153.31	attackbotsspam	$f2bV_matches	2020-10-07 04:09:58
46.101.249.232	attackbotsspam	Invalid user noc from 46.101.249.232 port 59196	2020-10-07 04:03:51
136.37.99.146	attack	$f2bV_matches	2020-10-07 03:40:27
200.38.224.156	attackspam	port	2020-10-07 04:04:35
165.232.47.2	attackbotsspam	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-10-07 04:10:27
165.22.33.32	attackbotsspam	(sshd) Failed SSH login from 165.22.33.32 (US/United States/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 6 10:24:58 optimus sshd[8490]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.33.32 user=root Oct 6 10:24:59 optimus sshd[8490]: Failed password for root from 165.22.33.32 port 55738 ssh2 Oct 6 10:28:34 optimus sshd[9573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.33.32 user=root Oct 6 10:28:36 optimus sshd[9573]: Failed password for root from 165.22.33.32 port 33456 ssh2 Oct 6 10:32:18 optimus sshd[10796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.33.32 user=root	2020-10-07 04:01:30
115.84.91.44	attackspam	Attempted Brute Force (dovecot)	2020-10-07 03:47:58
116.62.47.179	attack	LAV,DEF GET /phpmyadmin/index.php	2020-10-07 03:47:06
222.186.180.130	attackbots	2020-10-06T21:50:02.851650vps773228.ovh.net sshd[24474]: Failed password for root from 222.186.180.130 port 22882 ssh2 2020-10-06T21:50:04.834666vps773228.ovh.net sshd[24474]: Failed password for root from 222.186.180.130 port 22882 ssh2 2020-10-06T21:50:06.757554vps773228.ovh.net sshd[24474]: Failed password for root from 222.186.180.130 port 22882 ssh2 2020-10-06T21:50:09.347057vps773228.ovh.net sshd[24476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130 user=root 2020-10-06T21:50:11.909568vps773228.ovh.net sshd[24476]: Failed password for root from 222.186.180.130 port 41339 ssh2 ...	2020-10-07 03:57:56
152.32.72.122	attackspam	2020-10-06T12:07:11.842633vps773228.ovh.net sshd[18332]: Failed password for root from 152.32.72.122 port 6171 ssh2 2020-10-06T12:12:08.886489vps773228.ovh.net sshd[18374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.72.122 user=root 2020-10-06T12:12:11.016424vps773228.ovh.net sshd[18374]: Failed password for root from 152.32.72.122 port 4710 ssh2 2020-10-06T12:17:12.087383vps773228.ovh.net sshd[18406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.32.72.122 user=root 2020-10-06T12:17:14.286101vps773228.ovh.net sshd[18406]: Failed password for root from 152.32.72.122 port 3398 ssh2 ...	2020-10-07 03:59:33

最近上报的IP列表

50.121.99.116	123.197.108.104	232.58.11.140	25.208.62.126
227.41.245.219	87.13.18.116	149.223.41.201	94.47.5.208
144.222.134.175	238.153.31.175	194.101.196.147	131.115.73.159
131.241.52.116	218.95.64.237	199.7.180.220	167.167.222.150
139.207.121.124	214.170.19.190	75.209.31.166	30.246.52.242