27.39.199.242 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): China

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 27.39.199.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10601
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;27.39.199.242.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022700 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Feb 27 19:52:02 CST 2025
;; MSG SIZE  rcvd: 106

HOST信息:

Host 242.199.39.27.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.199.39.27.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
58.47.9.146	attackspambots	Jul 30 05:52:21 root sshd[23894]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.47.9.146 Jul 30 05:52:23 root sshd[23894]: Failed password for invalid user deployer from 58.47.9.146 port 59424 ssh2 Jul 30 05:52:38 root sshd[23922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.47.9.146 ...	2020-07-30 15:29:04
212.83.132.45	attack	[2020-07-30 03:32:32] NOTICE[1248] chan_sip.c: Registration from '"860"' failed for '212.83.132.45:9522' - Wrong password [2020-07-30 03:32:32] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-30T03:32:32.846-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="860",SessionID="0x7f2720091b18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132.45/9522",Challenge="65acdead",ReceivedChallenge="65acdead",ReceivedHash="47efc2f08bc7e14c721e666a98848432" [2020-07-30 03:33:36] NOTICE[1248] chan_sip.c: Registration from '"867"' failed for '212.83.132.45:9846' - Wrong password [2020-07-30 03:33:36] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-30T03:33:36.779-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="867",SessionID="0x7f27200510e8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132 ...	2020-07-30 15:33:49
36.89.251.105	attackbotsspam	Jul 30 08:38:39 rocket sshd[21778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.251.105 Jul 30 08:38:41 rocket sshd[21778]: Failed password for invalid user grid from 36.89.251.105 port 55348 ssh2 Jul 30 08:43:39 rocket sshd[22555]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.89.251.105 ...	2020-07-30 15:52:27
196.171.39.7	spamattack	They took over somehow my domain. I believe they have some buggy DNS servers that allow it do such thing. While they do have my domain for a little while - they are using my company's real email address to send tons of emails to nonexistent email recipients (hotmail, yahoo, google, etc. (public mail providers)). After a little while I get back tons of NDRs in my SMTP gateways and in corresponding user mailbox. Now the tricky part - I have to be on time when NDRs come in my SMTP gateway - because I have to remove them as soon as possible or there will be another loop and I my SMTP gateway will banned to global spam lists (p.s. It is banned now)	2020-07-30 16:00:45
61.177.172.54	attack	Jul 30 00:55:48 dignus sshd[20392]: Failed password for root from 61.177.172.54 port 49139 ssh2 Jul 30 00:55:51 dignus sshd[20392]: Failed password for root from 61.177.172.54 port 49139 ssh2 Jul 30 00:55:54 dignus sshd[20392]: Failed password for root from 61.177.172.54 port 49139 ssh2 Jul 30 00:55:58 dignus sshd[20392]: Failed password for root from 61.177.172.54 port 49139 ssh2 Jul 30 00:56:01 dignus sshd[20392]: Failed password for root from 61.177.172.54 port 49139 ssh2 ...	2020-07-30 16:09:50
112.17.184.171	attack	2020-07-30T10:40:27.491075lavrinenko.info sshd[2506]: Invalid user wcp from 112.17.184.171 port 56414 2020-07-30T10:40:27.498403lavrinenko.info sshd[2506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.17.184.171 2020-07-30T10:40:27.491075lavrinenko.info sshd[2506]: Invalid user wcp from 112.17.184.171 port 56414 2020-07-30T10:40:28.920068lavrinenko.info sshd[2506]: Failed password for invalid user wcp from 112.17.184.171 port 56414 ssh2 2020-07-30T10:43:02.313950lavrinenko.info sshd[2636]: Invalid user bran from 112.17.184.171 port 53208 ...	2020-07-30 15:43:24
78.138.188.187	attack	Jul 30 00:33:41 dignus sshd[17871]: Failed password for invalid user guangyao from 78.138.188.187 port 45306 ssh2 Jul 30 00:38:10 dignus sshd[18391]: Invalid user zbh from 78.138.188.187 port 58930 Jul 30 00:38:10 dignus sshd[18391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.138.188.187 Jul 30 00:38:13 dignus sshd[18391]: Failed password for invalid user zbh from 78.138.188.187 port 58930 ssh2 Jul 30 00:42:37 dignus sshd[18912]: Invalid user user02 from 78.138.188.187 port 44334 ...	2020-07-30 16:05:04
180.71.47.198	attack	Invalid user litianhao from 180.71.47.198 port 59592	2020-07-30 16:08:21
222.76.203.58	attack	Invalid user teraria from 222.76.203.58 port 2222	2020-07-30 15:41:32
58.58.51.142	attackbotsspam	07/29/2020-23:51:51.324142 58.58.51.142 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-07-30 16:05:35
122.54.18.163	attackspambots	20/7/29@23:51:53: FAIL: Alarm-Network address from=122.54.18.163 ...	2020-07-30 16:03:45
51.178.40.97	attack	Jul 30 07:27:10 game-panel sshd[440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.40.97 Jul 30 07:27:12 game-panel sshd[440]: Failed password for invalid user gzw from 51.178.40.97 port 40530 ssh2 Jul 30 07:31:09 game-panel sshd[628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.40.97	2020-07-30 15:34:19
154.120.242.70	attackspam	Invalid user apps from 154.120.242.70 port 33248	2020-07-30 15:41:20
120.53.12.94	attackbotsspam	Jul 30 06:58:24 rush sshd[17218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.12.94 Jul 30 06:58:26 rush sshd[17218]: Failed password for invalid user emuser from 120.53.12.94 port 57278 ssh2 Jul 30 07:03:19 rush sshd[17310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.53.12.94 ...	2020-07-30 15:57:36
167.71.132.227	attackbots	167.71.132.227 - - [30/Jul/2020:07:30:03 +0100] "POST /wp-login.php HTTP/1.1" 200 2082 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.132.227 - - [30/Jul/2020:07:30:14 +0100] "POST /wp-login.php HTTP/1.1" 200 2060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.71.132.227 - - [30/Jul/2020:07:30:20 +0100] "POST /wp-login.php HTTP/1.1" 200 2062 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-30 15:50:46

最近上报的IP列表

60.178.64.99	122.172.223.247	65.110.39.239	17.23.197.159
251.185.220.119	143.123.186.235	175.46.135.37	19.83.93.87
115.188.192.132	228.208.26.14	222.137.210.234	91.119.192.169
217.80.187.0	229.109.77.158	173.227.8.169	164.174.135.19
171.111.75.9	39.151.181.187	214.23.172.107	247.96.254.28