27.213.80.93 - IPInfo

基本信息:

城市(city): Yantai

省份(region): Shandong

国家(country): China

运营商(isp): China Unicom Shandong Province Network

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	(Dec 7) LEN=40 TTL=49 ID=22230 TCP DPT=8080 WINDOW=53334 SYN (Dec 6) LEN=40 TTL=49 ID=41995 TCP DPT=8080 WINDOW=53334 SYN (Dec 6) LEN=40 TTL=49 ID=459 TCP DPT=8080 WINDOW=53334 SYN (Dec 3) LEN=40 TTL=49 ID=3996 TCP DPT=8080 WINDOW=35629 SYN (Dec 3) LEN=40 TTL=49 ID=51916 TCP DPT=8080 WINDOW=5397 SYN (Dec 3) LEN=40 TTL=49 ID=38365 TCP DPT=8080 WINDOW=53334 SYN (Dec 2) LEN=40 TTL=49 ID=46361 TCP DPT=8080 WINDOW=39232 SYN (Dec 2) LEN=40 TTL=49 ID=44903 TCP DPT=8080 WINDOW=39232 SYN (Dec 2) LEN=40 TTL=49 ID=47038 TCP DPT=8080 WINDOW=53334 SYN (Dec 1) LEN=40 TTL=49 ID=37087 TCP DPT=8080 WINDOW=5397 SYN (Dec 1) LEN=40 TTL=49 ID=37905 TCP DPT=8080 WINDOW=62395 SYN (Dec 1) LEN=40 TTL=49 ID=50186 TCP DPT=8080 WINDOW=5397 SYN	2019-12-07 13:33:10
attack	Unauthorised access (Nov 16) SRC=27.213.80.93 LEN=40 TTL=49 ID=31777 TCP DPT=8080 WINDOW=39232 SYN Unauthorised access (Nov 16) SRC=27.213.80.93 LEN=40 TTL=49 ID=32956 TCP DPT=8080 WINDOW=39232 SYN Unauthorised access (Nov 16) SRC=27.213.80.93 LEN=40 TTL=49 ID=48642 TCP DPT=8080 WINDOW=62395 SYN Unauthorised access (Nov 15) SRC=27.213.80.93 LEN=40 TTL=46 ID=51830 TCP DPT=8080 WINDOW=5397 SYN Unauthorised access (Nov 13) SRC=27.213.80.93 LEN=40 TTL=47 ID=12608 TCP DPT=8080 WINDOW=5397 SYN Unauthorised access (Nov 13) SRC=27.213.80.93 LEN=40 TTL=49 ID=33648 TCP DPT=8080 WINDOW=62395 SYN Unauthorised access (Nov 12) SRC=27.213.80.93 LEN=40 TTL=49 ID=45283 TCP DPT=8080 WINDOW=5397 SYN Unauthorised access (Nov 12) SRC=27.213.80.93 LEN=40 TTL=49 ID=28036 TCP DPT=8080 WINDOW=62395 SYN Unauthorised access (Nov 11) SRC=27.213.80.93 LEN=40 TTL=49 ID=38955 TCP DPT=8080 WINDOW=35629 SYN	2019-11-17 01:05:48
attackbotsspam	Unauthorised access (Oct 17) SRC=27.213.80.93 LEN=40 TTL=49 ID=54059 TCP DPT=8080 WINDOW=35629 SYN Unauthorised access (Oct 15) SRC=27.213.80.93 LEN=40 TTL=49 ID=17143 TCP DPT=8080 WINDOW=62395 SYN Unauthorised access (Oct 14) SRC=27.213.80.93 LEN=40 TTL=49 ID=36631 TCP DPT=8080 WINDOW=39232 SYN	2019-10-18 00:55:19
attack	Unauthorised access (Oct 6) SRC=27.213.80.93 LEN=40 TTL=49 ID=43371 TCP DPT=8080 WINDOW=53334 SYN Unauthorised access (Oct 6) SRC=27.213.80.93 LEN=40 TTL=49 ID=15020 TCP DPT=8080 WINDOW=62395 SYN	2019-10-07 03:01:36

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 27.213.80.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55209
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;27.213.80.93.			IN	A

;; AUTHORITY SECTION:
.			463	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100601 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 07 03:01:26 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

Host 93.80.213.27.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 93.80.213.27.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
167.114.3.158	attackbotsspam	Aug 25 16:57:36 root sshd[24108]: Failed password for invalid user ashok from 167.114.3.158 port 44730 ssh2 ...	2020-08-25 22:34:54
119.45.12.105	attackbots	Invalid user carolina from 119.45.12.105 port 36404	2020-08-25 22:41:24
142.93.212.10	attackspam	Aug 25 16:48:53 Ubuntu-1404-trusty-64-minimal sshd\[23909\]: Invalid user web from 142.93.212.10 Aug 25 16:48:53 Ubuntu-1404-trusty-64-minimal sshd\[23909\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.10 Aug 25 16:48:55 Ubuntu-1404-trusty-64-minimal sshd\[23909\]: Failed password for invalid user web from 142.93.212.10 port 48330 ssh2 Aug 25 16:56:22 Ubuntu-1404-trusty-64-minimal sshd\[30047\]: Invalid user manager from 142.93.212.10 Aug 25 16:56:22 Ubuntu-1404-trusty-64-minimal sshd\[30047\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.212.10	2020-08-25 23:05:48
141.164.60.74	attackspambots	Lines containing failures of 141.164.60.74 Aug 24 17:54:02 online-web-2 sshd[3570666]: Invalid user jose from 141.164.60.74 port 54362 Aug 24 17:54:02 online-web-2 sshd[3570666]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.164.60.74 Aug 24 17:54:04 online-web-2 sshd[3570666]: Failed password for invalid user jose from 141.164.60.74 port 54362 ssh2 Aug 24 17:54:07 online-web-2 sshd[3570666]: Received disconnect from 141.164.60.74 port 54362:11: Bye Bye [preauth] Aug 24 17:54:07 online-web-2 sshd[3570666]: Disconnected from invalid user jose 141.164.60.74 port 54362 [preauth] Aug 24 18:09:59 online-web-2 sshd[3580700]: Invalid user aris from 141.164.60.74 port 43428 Aug 24 18:09:59 online-web-2 sshd[3580700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.164.60.74 Aug 24 18:10:01 online-web-2 sshd[3580700]: Failed password for invalid user aris from 141.164.60.74 port 43428 ssh2........ ------------------------------	2020-08-25 22:37:39
111.229.61.82	attackbots	Aug 25 16:12:50 buvik sshd[13018]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.61.82 Aug 25 16:12:52 buvik sshd[13018]: Failed password for invalid user zxb from 111.229.61.82 port 33358 ssh2 Aug 25 16:17:44 buvik sshd[13725]: Invalid user hyd from 111.229.61.82 ...	2020-08-25 22:43:33
106.13.29.92	attackbots	Aug 25 20:41:09 itv-usvr-02 sshd[31153]: Invalid user cyn from 106.13.29.92 port 58054 Aug 25 20:41:09 itv-usvr-02 sshd[31153]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.92 Aug 25 20:41:09 itv-usvr-02 sshd[31153]: Invalid user cyn from 106.13.29.92 port 58054 Aug 25 20:41:11 itv-usvr-02 sshd[31153]: Failed password for invalid user cyn from 106.13.29.92 port 58054 ssh2 Aug 25 20:50:09 itv-usvr-02 sshd[31519]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.29.92 user=root Aug 25 20:50:10 itv-usvr-02 sshd[31519]: Failed password for root from 106.13.29.92 port 40918 ssh2	2020-08-25 22:44:53
185.165.169.168	attackspam	SSH bruteforce	2020-08-25 23:00:19
91.121.134.201	attack	Invalid user martin from 91.121.134.201 port 57290	2020-08-25 22:49:00
103.40.240.249	attack	Invalid user gusiyu from 103.40.240.249 port 37846	2020-08-25 22:47:03
37.59.244.142	attack	Invalid user lei from 37.59.244.142 port 56708	2020-08-25 22:53:10
116.196.101.168	attackspam	Aug 25 15:13:29 kh-dev-server sshd[16508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.196.101.168 ...	2020-08-25 22:42:54
161.35.6.255	attackspam	2020-08-25T14:52:26+0200 Failed SSH Authentication/Brute Force Attack. (Server 9)	2020-08-25 23:04:09
197.253.124.133	attack	Aug 25 11:08:56 vps46666688 sshd[18478]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.124.133 Aug 25 11:08:58 vps46666688 sshd[18478]: Failed password for invalid user zx from 197.253.124.133 port 46896 ssh2 ...	2020-08-25 22:57:05
212.51.148.162	attackbotsspam	Invalid user teamspeak from 212.51.148.162 port 56720	2020-08-25 22:55:24
51.210.182.187	attack	Invalid user vmadmin from 51.210.182.187 port 35442	2020-08-25 22:50:46

最近上报的IP列表

91.59.190.202	41.47.189.42	96.244.70.164	223.117.165.88
80.232.201.52	109.200.133.175	119.183.246.20	99.192.179.114
44.69.4.86	73.41.187.4	218.178.58.160	3.185.241.138
177.92.247.15	69.38.124.148	62.210.142.196	154.229.222.26
188.88.224.246	125.104.165.74	157.245.136.253	91.20.70.167