166.0.241.42 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America (the)

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 166.0.241.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31508
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;166.0.241.42.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012100 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 00:17:45 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 42.241.0.166.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.241.0.166.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
80.211.158.23	attack	Oct 6 06:32:30 shadeyouvpn sshd[15778]: Address 80.211.158.23 maps to jbwastats.pl, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 6 06:32:30 shadeyouvpn sshd[15778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.158.23 user=r.r Oct 6 06:32:32 shadeyouvpn sshd[15778]: Failed password for r.r from 80.211.158.23 port 40772 ssh2 Oct 6 06:32:32 shadeyouvpn sshd[15778]: Received disconnect from 80.211.158.23: 11: Bye Bye [preauth] Oct 6 06:36:29 shadeyouvpn sshd[19024]: Address 80.211.158.23 maps to jbwastats.pl, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 6 06:36:29 shadeyouvpn sshd[19024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.158.23 user=r.r Oct 6 06:36:31 shadeyouv .... truncated .... Oct 6 06:32:30 shadeyouvpn sshd[15778]: Address 80.211.158.23 maps to jbwastats.pl, but this does not map back to ........ -------------------------------	2019-10-11 16:43:26
192.160.102.170	attackspam	Automatic report - XMLRPC Attack	2019-10-11 16:51:53
58.254.132.239	attackbots	Oct 11 10:31:02 jane sshd[18965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.254.132.239 Oct 11 10:31:04 jane sshd[18965]: Failed password for invalid user Execute123 from 58.254.132.239 port 55891 ssh2 ...	2019-10-11 16:49:17
27.128.230.190	attackspambots	Oct 11 10:41:53 mail sshd[3374]: Failed password for root from 27.128.230.190 port 38470 ssh2 Oct 11 10:44:57 mail sshd[4603]: Failed password for root from 27.128.230.190 port 35988 ssh2	2019-10-11 17:06:19
47.91.247.6	attackbots	47.91.247.6 - - [11/Oct/2019:05:51:11 +0200] "POST /wp-login.php HTTP/1.1" 200 2111 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.91.247.6 - - [11/Oct/2019:05:51:14 +0200] "POST /wp-login.php HTTP/1.1" 200 2092 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-10-11 16:55:14
112.73.74.50	attackbots	Oct 11 08:01:36 vps647732 sshd[23474]: Failed password for root from 112.73.74.50 port 55932 ssh2 ...	2019-10-11 16:51:33
73.96.37.242	attackbots	DATE:2019-10-11 05:51:41, IP:73.96.37.242, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-10-11 16:36:35
119.196.83.30	attackbots	Oct 11 12:13:24 gw1 sshd[24190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.196.83.30 Oct 11 12:13:26 gw1 sshd[24190]: Failed password for invalid user export from 119.196.83.30 port 54400 ssh2 ...	2019-10-11 16:54:55
178.128.246.123	attack	Oct 11 09:02:15 MK-Soft-VM4 sshd[30022]: Failed password for root from 178.128.246.123 port 55568 ssh2 ...	2019-10-11 17:04:01
36.111.171.108	attackbotsspam	$f2bV_matches	2019-10-11 17:14:50
212.64.106.151	attackbots	Oct 11 09:24:13 apollo sshd\[24847\]: Failed password for root from 212.64.106.151 port 43709 ssh2Oct 11 09:33:09 apollo sshd\[24902\]: Failed password for root from 212.64.106.151 port 38951 ssh2Oct 11 09:36:59 apollo sshd\[24923\]: Failed password for root from 212.64.106.151 port 37922 ssh2 ...	2019-10-11 17:09:40
139.159.180.115	attackbotsspam	REQUESTED PAGE: /4932a0d1/admin.php	2019-10-11 17:10:09
113.199.182.168	attackspambots	Brute force attempt	2019-10-11 16:57:43
125.64.8.5	attack	Oct 6 08:43:56 sanyalnet-cloud-vps3 sshd[23554]: Connection from 125.64.8.5 port 35128 on 45.62.248.66 port 22 Oct 6 08:43:59 sanyalnet-cloud-vps3 sshd[23554]: reveeclipse mapping checking getaddrinfo for 5.8.64.125.broad.dy.sc.dynamic.163data.com.cn [125.64.8.5] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 6 08:43:59 sanyalnet-cloud-vps3 sshd[23554]: User r.r from 125.64.8.5 not allowed because not listed in AllowUsers Oct 6 08:43:59 sanyalnet-cloud-vps3 sshd[23554]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.64.8.5 user=r.r Oct 6 08:44:01 sanyalnet-cloud-vps3 sshd[23554]: Failed password for invalid user r.r from 125.64.8.5 port 35128 ssh2 Oct 6 08:44:01 sanyalnet-cloud-vps3 sshd[23554]: Received disconnect from 125.64.8.5: 11: Bye Bye [preauth] Oct 6 09:01:58 sanyalnet-cloud-vps3 sshd[23949]: Connection from 125.64.8.5 port 60578 on 45.62.248.66 port 22 Oct 6 09:02:00 sanyalnet-cloud-vps3 sshd[23949]: reveeclipse m........ -------------------------------	2019-10-11 16:51:12
221.122.67.66	attack	fail2ban	2019-10-11 16:49:46

最近上报的IP列表

148.49.189.150	172.211.203.47	57.176.200.13	69.122.146.218
135.0.9.173	221.125.135.30	35.204.31.163	167.36.125.208
107.197.251.100	157.133.241.11	117.157.33.17	37.145.248.98
135.188.96.2	141.84.226.126	181.129.170.193	245.247.25.33
125.204.171.90	219.248.93.109	241.49.107.49	86.107.78.167