27.224.136.149

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
27.224.136.14	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-06-18 22:53:52
27.224.136.50	attackbotsspam	Web Server Scan. RayID: 5964cc050ec2778e, UA: Mozilla/4.038533357 Mozilla/4.0 (compatible; MSIE 7.0; Windows NT 5.1) QQBrowser/6.0, Country: CN	2020-05-21 04:29:33
27.224.136.152	attackbots	Unauthorized connection attempt detected from IP address 27.224.136.152 to port 22 [J]	2020-03-02 19:18:05
27.224.136.136	attack	Unauthorized connection attempt detected from IP address 27.224.136.136 to port 8082 [J]	2020-03-02 16:27:08
27.224.136.174	attackspambots	Unauthorized connection attempt detected from IP address 27.224.136.174 to port 22 [J]	2020-03-02 15:17:13
27.224.136.250	attack	Unauthorized connection attempt detected from IP address 27.224.136.250 to port 22 [J]	2020-03-02 15:16:47
27.224.136.103	attack	400 BAD REQUEST	2020-02-01 06:14:45
27.224.136.188	attack	Unauthorized connection attempt detected from IP address 27.224.136.188 to port 8000 [J]	2020-01-27 14:55:21
27.224.136.16	attack	Unauthorized connection attempt detected from IP address 27.224.136.16 to port 6666 [J]	2020-01-22 08:20:57
27.224.136.213	attackbots	Unauthorized connection attempt detected from IP address 27.224.136.213 to port 80 [J]	2020-01-19 16:43:07
27.224.136.209	attackspambots	Unauthorized connection attempt detected from IP address 27.224.136.209 to port 80 [J]	2020-01-19 15:47:16
27.224.136.160	attackspambots	Unauthorized connection attempt detected from IP address 27.224.136.160 to port 8080 [T]	2020-01-16 07:26:30
27.224.136.227	attack	Unauthorized connection attempt detected from IP address 27.224.136.227 to port 80 [J]	2020-01-14 16:25:09
27.224.136.9	attackbotsspam	Unauthorized connection attempt detected from IP address 27.224.136.9 to port 8888 [T]	2020-01-10 09:29:35
27.224.136.44	attack	Unauthorized connection attempt detected from IP address 27.224.136.44 to port 82 [T]	2020-01-10 09:04:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 27.224.136.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4284
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;27.224.136.149.			IN	A

;; AUTHORITY SECTION:
.			329	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 17:39:45 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 149.136.224.27.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.136.224.27.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.4.188.99	attackbotsspam	Exploid host for vulnerabilities on 13-10-2019 12:45:22.	2019-10-14 03:10:39
119.10.115.36	attack	Jun 7 13:13:22 yesfletchmain sshd\[25412\]: Invalid user gfa from 119.10.115.36 port 59921 Jun 7 13:13:22 yesfletchmain sshd\[25412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.10.115.36 Jun 7 13:13:24 yesfletchmain sshd\[25412\]: Failed password for invalid user gfa from 119.10.115.36 port 59921 ssh2 Jun 7 13:22:03 yesfletchmain sshd\[25558\]: Invalid user testftp from 119.10.115.36 port 42901 Jun 7 13:22:03 yesfletchmain sshd\[25558\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.10.115.36 ...	2019-10-14 02:48:13
101.89.139.49	attackbots	Oct 10 22:10:34 * sshd[27179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.139.49 user=r.r Oct 10 22:10:36 * sshd[27179]: Failed password for r.r from 101.89.139.49 port 27473 ssh2 Oct 10 22:10:36 * sshd[27179]: Received disconnect from 101.89.139.49: 11: Bye Bye [preauth] Oct 10 22:19:29 * sshd[27801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.139.49 user=r.r Oct 10 22:19:31 * sshd[27801]: Failed password for r.r from 101.89.139.49 port 56212 ssh2 Oct 10 22:19:31 * sshd[27801]: Received disconnect from 101.89.139.49: 11: Bye Bye [preauth] Oct 10 22:24:08 * sshd[28168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.89.139.49 user=r.r Oct 10 22:24:09 * sshd[28168]: Failed password for r.r from 101.89.139.49 port 29415 ssh2 Oct 10 22:24:10 *** sshd[28168]: Received disconnect from 101.89.139.49: 11: Bye By........ -------------------------------	2019-10-14 02:45:15
182.253.251.74	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 13-10-2019 12:45:24.	2019-10-14 03:07:52
79.106.48.105	attack	Oct 13 20:15:08 imap-login: Info: Disconnected $auth failed, 1 attempts in 5 secs$: user=\, method=PLAIN, rip=79.106.48.105, lip=192.168.100.101, session=\\ Oct 13 20:15:15 imap-login: Info: Disconnected $auth failed, 1 attempts in 8 secs$: user=\, method=PLAIN, rip=79.106.48.105, lip=192.168.100.101, session=\\ Oct 13 20:15:15 imap-login: Info: Disconnected $auth failed, 1 attempts in 8 secs$: user=\, method=PLAIN, rip=79.106.48.105, lip=192.168.100.101, session=\<9AAou86UiQBPajBp\>\ Oct 13 20:15:17 imap-login: Info: Disconnected $auth failed, 1 attempts in 8 secs$: user=\, method=PLAIN, rip=79.106.48.105, lip=192.168.100.101, session=\\ Oct 13 20:15:37 imap-login: Info: Disconnected $no auth attempts in 0 secs$: user=\<\>, rip=79.106.48.105, lip=192.168.100.101, session=\\ Oct 13 20:15:40 imap-login: Info: Disconnected \(auth failed	2019-10-14 02:55:37
125.124.152.59	attackspambots	Oct 13 20:17:11 markkoudstaal sshd[31399]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.152.59 Oct 13 20:17:13 markkoudstaal sshd[31399]: Failed password for invalid user 321 from 125.124.152.59 port 44272 ssh2 Oct 13 20:22:02 markkoudstaal sshd[31904]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.152.59	2019-10-14 02:33:21
133.167.100.109	attack	Oct 10 22:49:11 xb0 sshd[31870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.167.100.109 user=r.r Oct 10 22:49:13 xb0 sshd[31870]: Failed password for r.r from 133.167.100.109 port 37078 ssh2 Oct 10 22:49:13 xb0 sshd[31870]: Received disconnect from 133.167.100.109: 11: Bye Bye [preauth] Oct 10 23:05:52 xb0 sshd[20954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.167.100.109 user=r.r Oct 10 23:05:53 xb0 sshd[20954]: Failed password for r.r from 133.167.100.109 port 60384 ssh2 Oct 10 23:05:54 xb0 sshd[20954]: Received disconnect from 133.167.100.109: 11: Bye Bye [preauth] Oct 10 23:10:06 xb0 sshd[3016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.167.100.109 user=r.r Oct 10 23:10:08 xb0 sshd[3016]: Failed password for r.r from 133.167.100.109 port 46394 ssh2 Oct 10 23:10:09 xb0 sshd[3016]: Received disconnect from 133.167.100......... -------------------------------	2019-10-14 02:47:20
50.239.143.100	attackspambots	Oct 13 11:38:10 localhost sshd\[19498\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100 user=root Oct 13 11:38:11 localhost sshd\[19498\]: Failed password for root from 50.239.143.100 port 38116 ssh2 Oct 13 11:41:47 localhost sshd\[19717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100 user=root Oct 13 11:41:49 localhost sshd\[19717\]: Failed password for root from 50.239.143.100 port 50750 ssh2 Oct 13 11:45:36 localhost sshd\[19851\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.239.143.100 user=root ...	2019-10-14 02:53:07
186.0.88.181	attack	Exploid host for vulnerabilities on 13-10-2019 12:45:24.	2019-10-14 03:06:58
201.95.192.170	attackbots	Exploid host for vulnerabilities on 13-10-2019 12:45:27.	2019-10-14 03:02:30
54.38.82.14	attackbotsspam	$f2bV_matches	2019-10-14 02:37:30
87.27.253.213	attackbots	Automatic report - Port Scan Attack	2019-10-14 02:50:32
167.99.168.27	attack	WordPress login Brute force / Web App Attack on client site.	2019-10-14 03:14:09
178.62.234.122	attackbotsspam	Oct 13 16:58:18 * sshd[29531]: Failed password for root from 178.62.234.122 port 32790 ssh2	2019-10-14 02:38:51
182.50.132.86	attackbots	Automatic report - XMLRPC Attack	2019-10-14 02:57:35

Recently Reported IPs

203.113.117.51	103.161.177.77	201.32.173.218	177.53.69.153
81.25.51.12	197.234.13.77	34.89.128.53	46.73.180.255
194.158.73.81	183.94.140.38	213.190.6.138	27.213.121.87
198.144.190.139	71.190.189.195	186.33.71.22	85.132.106.84
190.180.154.143	222.137.232.74	185.132.250.212	82.142.29.154