42.200.66.164 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Hong Kong

运营商(isp): PCCW IMS Ltd

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Oct 12 13:02:43 staging sshd[338320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 user=root Oct 12 13:02:46 staging sshd[338320]: Failed password for root from 42.200.66.164 port 60126 ssh2 Oct 12 13:04:08 staging sshd[338349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 user=root Oct 12 13:04:10 staging sshd[338349]: Failed password for root from 42.200.66.164 port 52244 ssh2 ...	2020-10-12 21:04:52
attack	Scanned 3 times in the last 24 hours on port 22	2020-10-12 12:34:31
attack	Aug 20 23:58:37 master sshd[6266]: Failed password for root from 42.200.66.164 port 39022 ssh2	2020-08-21 06:12:39
attack	Aug 17 07:55:44 eventyay sshd[15635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 Aug 17 07:55:47 eventyay sshd[15635]: Failed password for invalid user marin from 42.200.66.164 port 56628 ssh2 Aug 17 08:00:12 eventyay sshd[15731]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 ...	2020-08-17 16:11:52
attackspam	Aug 10 20:31:31 IngegnereFirenze sshd[1146]: User root from 42.200.66.164 not allowed because not listed in AllowUsers ...	2020-08-11 05:15:07
attackbotsspam	2020-08-07T05:47:51.848154amanda2.illicoweb.com sshd\[2013\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-66-164.static.imsbiz.com user=root 2020-08-07T05:47:54.411118amanda2.illicoweb.com sshd\[2013\]: Failed password for root from 42.200.66.164 port 51570 ssh2 2020-08-07T05:55:44.955167amanda2.illicoweb.com sshd\[3605\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-66-164.static.imsbiz.com user=root 2020-08-07T05:55:46.785674amanda2.illicoweb.com sshd\[3605\]: Failed password for root from 42.200.66.164 port 42438 ssh2 2020-08-07T05:57:42.338706amanda2.illicoweb.com sshd\[3970\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-66-164.static.imsbiz.com user=root ...	2020-08-07 13:14:10
attackbots	ssh brute force	2020-08-04 15:33:41
attackspambots	Jul 31 16:45:51 NPSTNNYC01T sshd[22459]: Failed password for root from 42.200.66.164 port 39296 ssh2 Jul 31 16:50:13 NPSTNNYC01T sshd[22761]: Failed password for root from 42.200.66.164 port 51144 ssh2 ...	2020-08-01 05:44:28
attackbotsspam	2020-07-29T16:13:53.478956vps751288.ovh.net sshd\[17042\]: Invalid user syy from 42.200.66.164 port 39642 2020-07-29T16:13:53.486329vps751288.ovh.net sshd\[17042\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-66-164.static.imsbiz.com 2020-07-29T16:13:55.056555vps751288.ovh.net sshd\[17042\]: Failed password for invalid user syy from 42.200.66.164 port 39642 ssh2 2020-07-29T16:15:36.396436vps751288.ovh.net sshd\[17087\]: Invalid user dove from 42.200.66.164 port 36008 2020-07-29T16:15:36.404308vps751288.ovh.net sshd\[17087\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-66-164.static.imsbiz.com	2020-07-29 22:58:30
attackspambots	B: Abusive ssh attack	2020-07-29 16:44:40
attackspambots	Invalid user xr from 42.200.66.164 port 34576	2020-07-16 13:24:15
attackspam	k+ssh-bruteforce	2020-07-01 20:18:46
attackbots	Jun 24 09:21:49 l03 sshd[29406]: Invalid user python from 42.200.66.164 port 47552 ...	2020-06-24 16:52:09
attack	Jun 19 00:08:00 OPSO sshd\[27968\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 user=root Jun 19 00:08:02 OPSO sshd\[27968\]: Failed password for root from 42.200.66.164 port 56652 ssh2 Jun 19 00:11:49 OPSO sshd\[28896\]: Invalid user elsearch from 42.200.66.164 port 57966 Jun 19 00:11:49 OPSO sshd\[28896\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 Jun 19 00:11:52 OPSO sshd\[28896\]: Failed password for invalid user elsearch from 42.200.66.164 port 57966 ssh2	2020-06-19 09:03:55
attackspambots	Jun 1 22:03:01 sip sshd[488]: Failed password for root from 42.200.66.164 port 58496 ssh2 Jun 1 22:13:57 sip sshd[4581]: Failed password for root from 42.200.66.164 port 54836 ssh2	2020-06-02 06:53:17
attack	bruteforce detected	2020-05-27 17:27:07
attack	May 26 18:53:06 eventyay sshd[12822]: Failed password for root from 42.200.66.164 port 49538 ssh2 May 26 18:55:25 eventyay sshd[12881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 May 26 18:55:27 eventyay sshd[12881]: Failed password for invalid user riki from 42.200.66.164 port 52830 ssh2 ...	2020-05-27 01:16:52
attackspam	May 20 20:20:17 onepixel sshd[546768]: Invalid user efa from 42.200.66.164 port 35482 May 20 20:20:17 onepixel sshd[546768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 May 20 20:20:17 onepixel sshd[546768]: Invalid user efa from 42.200.66.164 port 35482 May 20 20:20:19 onepixel sshd[546768]: Failed password for invalid user efa from 42.200.66.164 port 35482 ssh2 May 20 20:22:46 onepixel sshd[547088]: Invalid user lant from 42.200.66.164 port 49078	2020-05-21 04:34:21
attack	May 9 23:13:58 home sshd[25234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 May 9 23:14:00 home sshd[25234]: Failed password for invalid user group3 from 42.200.66.164 port 57234 ssh2 May 9 23:17:13 home sshd[25710]: Failed password for root from 42.200.66.164 port 52558 ssh2 ...	2020-05-10 05:21:58
attackbots	2020-05-08T21:50:33.295123shield sshd\[6717\]: Invalid user xjt from 42.200.66.164 port 45918 2020-05-08T21:50:33.299271shield sshd\[6717\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-66-164.static.imsbiz.com 2020-05-08T21:50:35.771876shield sshd\[6717\]: Failed password for invalid user xjt from 42.200.66.164 port 45918 ssh2 2020-05-08T21:52:41.481607shield sshd\[7093\]: Invalid user marlon from 42.200.66.164 port 51840 2020-05-08T21:52:41.485391shield sshd\[7093\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42-200-66-164.static.imsbiz.com	2020-05-09 06:26:56
attackspam	SSH bruteforce	2020-04-30 07:52:12
attackspambots	Apr 25 20:00:28 prox sshd[11364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 Apr 25 20:00:29 prox sshd[11364]: Failed password for invalid user git from 42.200.66.164 port 44652 ssh2	2020-04-26 02:37:06
attackspambots	Invalid user erp from 42.200.66.164 port 33880	2020-04-24 17:44:32
attackbotsspam	k+ssh-bruteforce	2020-04-23 02:54:02
attackbots	Apr 20 16:24:43 localhost sshd\[8628\]: Invalid user developer from 42.200.66.164 port 57342 Apr 20 16:24:43 localhost sshd\[8628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 Apr 20 16:24:45 localhost sshd\[8628\]: Failed password for invalid user developer from 42.200.66.164 port 57342 ssh2 ...	2020-04-21 01:02:06
attackspam	Apr 13 20:57:47 vlre-nyc-1 sshd\[21902\]: Invalid user ternero from 42.200.66.164 Apr 13 20:57:47 vlre-nyc-1 sshd\[21902\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 Apr 13 20:57:49 vlre-nyc-1 sshd\[21902\]: Failed password for invalid user ternero from 42.200.66.164 port 48084 ssh2 Apr 13 21:01:34 vlre-nyc-1 sshd\[22003\]: Invalid user carter from 42.200.66.164 Apr 13 21:01:34 vlre-nyc-1 sshd\[22003\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 ...	2020-04-14 05:27:56
attackspam	SSH Brute-Force attacks	2020-04-10 06:28:43
attackbotsspam	(sshd) Failed SSH login from 42.200.66.164 (HK/Hong Kong/42-200-66-164.static.imsbiz.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 7 14:46:03 amsweb01 sshd[10224]: Invalid user ubuntu from 42.200.66.164 port 47564 Apr 7 14:46:06 amsweb01 sshd[10224]: Failed password for invalid user ubuntu from 42.200.66.164 port 47564 ssh2 Apr 7 14:50:33 amsweb01 sshd[10770]: Invalid user user from 42.200.66.164 port 59286 Apr 7 14:50:35 amsweb01 sshd[10770]: Failed password for invalid user user from 42.200.66.164 port 59286 ssh2 Apr 7 14:54:38 amsweb01 sshd[11173]: Invalid user user from 42.200.66.164 port 39014	2020-04-08 00:59:53
attackbots	Apr 1 18:24:22 prox sshd[7030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 Apr 1 18:24:24 prox sshd[7030]: Failed password for invalid user ws from 42.200.66.164 port 51884 ssh2	2020-04-04 09:29:28
attack	Apr 1 12:45:06 web8 sshd\[23351\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 user=root Apr 1 12:45:07 web8 sshd\[23351\]: Failed password for root from 42.200.66.164 port 53130 ssh2 Apr 1 12:49:25 web8 sshd\[25513\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 user=root Apr 1 12:49:27 web8 sshd\[25513\]: Failed password for root from 42.200.66.164 port 60734 ssh2 Apr 1 12:54:13 web8 sshd\[28112\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.200.66.164 user=root	2020-04-02 00:07:04

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 42.200.66.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16733
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;42.200.66.164.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 06 20:48:43 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

164.66.200.42.in-addr.arpa domain name pointer 42-200-66-164.static.imsbiz.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
164.66.200.42.in-addr.arpa	name = 42-200-66-164.static.imsbiz.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
192.186.3.200	attackspambots	07/20/2020-16:41:05.010072 192.186.3.200 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-07-21 08:16:27
211.219.18.186	attackspam	Jul 21 01:29:21 vpn01 sshd[16569]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.219.18.186 Jul 21 01:29:23 vpn01 sshd[16569]: Failed password for invalid user adam from 211.219.18.186 port 44440 ssh2 ...	2020-07-21 07:54:39
117.103.168.204	attackbots	Jul 20 21:41:32 ajax sshd[12400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.103.168.204 Jul 20 21:41:34 ajax sshd[12400]: Failed password for invalid user odoo from 117.103.168.204 port 33358 ssh2	2020-07-21 07:49:13
159.65.216.161	attackspam	Jul 20 19:03:35 ny01 sshd[881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.216.161 Jul 20 19:03:37 ny01 sshd[881]: Failed password for invalid user dad from 159.65.216.161 port 51086 ssh2 Jul 20 19:09:19 ny01 sshd[1556]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.216.161	2020-07-21 07:51:21
190.5.228.74	attackspambots	Invalid user shashi from 190.5.228.74 port 39773	2020-07-21 08:03:06
41.249.250.209	attack	2020-07-21T01:44:23.905419ks3355764 sshd[4416]: Invalid user chs from 41.249.250.209 port 58586 2020-07-21T01:44:26.068338ks3355764 sshd[4416]: Failed password for invalid user chs from 41.249.250.209 port 58586 ssh2 ...	2020-07-21 07:56:16
218.78.81.255	attackbots	SSH brute force	2020-07-21 08:19:52
188.128.39.113	attackbots	Invalid user zcx from 188.128.39.113 port 39662	2020-07-21 08:05:05
156.96.117.183	attackspambots	[2020-07-20 19:05:01] NOTICE[1277][C-000017ae] chan_sip.c: Call from '' (156.96.117.183:56179) to extension '0046423112952' rejected because extension not found in context 'public'. [2020-07-20 19:05:01] SECURITY[1295] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-20T19:05:01.525-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0046423112952",SessionID="0x7f175416a8f8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156.96.117.183/56179",ACLName="no_extension_match" [2020-07-20 19:05:16] NOTICE[1277][C-000017b0] chan_sip.c: Call from '' (156.96.117.183:53834) to extension '01146423112952' rejected because extension not found in context 'public'. [2020-07-20 19:05:16] SECURITY[1295] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-07-20T19:05:16.802-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01146423112952",SessionID="0x7f175441b988",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/156 ...	2020-07-21 07:52:49
167.172.207.89	attackspambots	2020-07-20T17:43:16.598165linuxbox-skyline sshd[106014]: Invalid user lij from 167.172.207.89 port 32920 ...	2020-07-21 07:43:47
138.68.75.113	attackbots	552. On Jul 20 2020 experienced a Brute Force SSH login attempt -> 48 unique times by 138.68.75.113.	2020-07-21 07:44:08
119.40.96.120	attack	Unauthorized connection attempt from IP address 119.40.96.120 on port 3389	2020-07-21 07:54:10
195.154.176.37	attack	$f2bV_matches	2020-07-21 08:00:48
129.226.74.89	attackbotsspam	Jul 21 01:50:09 vps639187 sshd\[450\]: Invalid user omc from 129.226.74.89 port 34926 Jul 21 01:50:09 vps639187 sshd\[450\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.74.89 Jul 21 01:50:10 vps639187 sshd\[450\]: Failed password for invalid user omc from 129.226.74.89 port 34926 ssh2 ...	2020-07-21 08:18:40
106.13.184.139	attackspambots	Jul 21 01:38:25 eventyay sshd[22188]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.184.139 Jul 21 01:38:27 eventyay sshd[22188]: Failed password for invalid user jackieg from 106.13.184.139 port 54716 ssh2 Jul 21 01:47:36 eventyay sshd[22740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.184.139 ...	2020-07-21 07:56:37

最近上报的IP列表

117.196.89.148	82.118.242.69	61.214.224.103	41.36.153.1
121.254.26.153	67.192.198.28	195.154.242.13	121.128.200.146
84.92.56.31	180.126.130.76	165.22.163.74	113.116.50.126
187.85.210.50	179.111.82.219	178.33.156.9	68.183.187.234
180.254.197.90	36.70.17.78	202.187.221.111	106.13.109.19

基本信息:

用户上报:

相同子网IP讨论:

WHOIS信息:

DIG信息:

HOST信息:

NSLOOKUP信息:

相关IP信息:

最新评论:

最近上报的IP列表