5.42.111.66 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Russian Federation

运营商(isp): CJSC Kolomna-Sviaz TV

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Automatic report - Port Scan Attack	2020-01-10 16:09:35

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.42.111.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50502
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.42.111.66.			IN	A

;; AUTHORITY SECTION:
.			382	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011000 1800 900 604800 86400

;; Query time: 93 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 10 16:09:32 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

66.111.42.5.in-addr.arpa domain name pointer 5-42-111-66.colomna.net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.111.42.5.in-addr.arpa	name = 5-42-111-66.colomna.net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
212.225.149.230	attack	Aug 29 20:18:35 web1 sshd\[11445\]: Invalid user sabin from 212.225.149.230 Aug 29 20:18:35 web1 sshd\[11445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.225.149.230 Aug 29 20:18:37 web1 sshd\[11445\]: Failed password for invalid user sabin from 212.225.149.230 port 49804 ssh2 Aug 29 20:22:55 web1 sshd\[11840\]: Invalid user apple from 212.225.149.230 Aug 29 20:22:55 web1 sshd\[11840\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.225.149.230	2019-08-30 15:57:33
80.48.169.150	attack	Aug 30 08:47:47 v22019058497090703 sshd[28476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.48.169.150 Aug 30 08:47:49 v22019058497090703 sshd[28476]: Failed password for invalid user egarcia from 80.48.169.150 port 41022 ssh2 Aug 30 08:52:03 v22019058497090703 sshd[28820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.48.169.150 ...	2019-08-30 16:08:47
120.52.152.15	attackspambots	Multiport scan : 4 ports scanned 19 1177 5001 18081	2019-08-30 16:30:00
5.132.115.161	attackspam	Aug 30 07:47:43 tuxlinux sshd[9714]: Invalid user eric from 5.132.115.161 port 39494 Aug 30 07:47:43 tuxlinux sshd[9714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.132.115.161 Aug 30 07:47:43 tuxlinux sshd[9714]: Invalid user eric from 5.132.115.161 port 39494 Aug 30 07:47:43 tuxlinux sshd[9714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.132.115.161 Aug 30 07:47:43 tuxlinux sshd[9714]: Invalid user eric from 5.132.115.161 port 39494 Aug 30 07:47:43 tuxlinux sshd[9714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.132.115.161 Aug 30 07:47:45 tuxlinux sshd[9714]: Failed password for invalid user eric from 5.132.115.161 port 39494 ssh2 ...	2019-08-30 15:46:41
121.157.229.23	attackbots	Aug 29 21:42:34 tdfoods sshd\[1023\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.157.229.23 user=proxy Aug 29 21:42:36 tdfoods sshd\[1023\]: Failed password for proxy from 121.157.229.23 port 51296 ssh2 Aug 29 21:47:25 tdfoods sshd\[1463\]: Invalid user emmy from 121.157.229.23 Aug 29 21:47:25 tdfoods sshd\[1463\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.157.229.23 Aug 29 21:47:27 tdfoods sshd\[1463\]: Failed password for invalid user emmy from 121.157.229.23 port 38210 ssh2	2019-08-30 15:57:50
112.172.147.34	attackbotsspam	Aug 30 03:59:02 ny01 sshd[5980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.172.147.34 Aug 30 03:59:04 ny01 sshd[5980]: Failed password for invalid user kristin from 112.172.147.34 port 36360 ssh2 Aug 30 04:03:58 ny01 sshd[6727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.172.147.34	2019-08-30 16:19:29
46.229.182.110	attack	Aug 30 08:33:52 ks10 sshd[30591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.229.182.110 Aug 30 08:33:54 ks10 sshd[30591]: Failed password for invalid user test from 46.229.182.110 port 51462 ssh2 ...	2019-08-30 16:01:26
107.170.249.6	attackspam	Aug 29 22:18:20 hcbb sshd\[7045\]: Invalid user icinga from 107.170.249.6 Aug 29 22:18:20 hcbb sshd\[7045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.249.6 Aug 29 22:18:21 hcbb sshd\[7045\]: Failed password for invalid user icinga from 107.170.249.6 port 35475 ssh2 Aug 29 22:24:19 hcbb sshd\[7528\]: Invalid user shoutcast from 107.170.249.6 Aug 29 22:24:19 hcbb sshd\[7528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.249.6	2019-08-30 16:28:05
62.234.154.64	attackspam	Aug 30 09:58:22 localhost sshd\[29156\]: Invalid user usuario from 62.234.154.64 port 50895 Aug 30 09:58:22 localhost sshd\[29156\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.154.64 Aug 30 09:58:23 localhost sshd\[29156\]: Failed password for invalid user usuario from 62.234.154.64 port 50895 ssh2	2019-08-30 16:11:07
206.189.89.196	attackbots	Aug 29 21:31:50 friendsofhawaii sshd\[3405\]: Invalid user myuser1 from 206.189.89.196 Aug 29 21:31:50 friendsofhawaii sshd\[3405\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.89.196 Aug 29 21:31:52 friendsofhawaii sshd\[3405\]: Failed password for invalid user myuser1 from 206.189.89.196 port 58936 ssh2 Aug 29 21:36:58 friendsofhawaii sshd\[3834\]: Invalid user cmuir from 206.189.89.196 Aug 29 21:36:58 friendsofhawaii sshd\[3834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.89.196	2019-08-30 15:43:06
222.186.42.117	attackspambots	Aug 30 09:45:09 eventyay sshd[5841]: Failed password for root from 222.186.42.117 port 19848 ssh2 Aug 30 09:45:18 eventyay sshd[5843]: Failed password for root from 222.186.42.117 port 59204 ssh2 Aug 30 09:45:20 eventyay sshd[5843]: Failed password for root from 222.186.42.117 port 59204 ssh2 ...	2019-08-30 15:51:11
86.208.16.197	attack	$f2bV_matches_ltvn	2019-08-30 16:21:10
125.167.255.54	attack	Aug 30 09:53:21 root sshd[5289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.167.255.54 Aug 30 09:53:23 root sshd[5289]: Failed password for invalid user pasquale from 125.167.255.54 port 18707 ssh2 Aug 30 09:58:47 root sshd[5349]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.167.255.54 ...	2019-08-30 16:18:26
35.204.222.34	attack	Aug 30 04:06:36 TORMINT sshd\[21924\]: Invalid user brian from 35.204.222.34 Aug 30 04:06:36 TORMINT sshd\[21924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.204.222.34 Aug 30 04:06:38 TORMINT sshd\[21924\]: Failed password for invalid user brian from 35.204.222.34 port 46590 ssh2 ...	2019-08-30 16:12:48
117.197.184.182	attack	Aug 30 07:40:18 mail1 sshd[16959]: Invalid user avanthi from 117.197.184.182 port 54586 Aug 30 07:40:18 mail1 sshd[16959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.197.184.182 Aug 30 07:40:20 mail1 sshd[16959]: Failed password for invalid user avanthi from 117.197.184.182 port 54586 ssh2 Aug 30 07:40:20 mail1 sshd[16959]: Connection closed by 117.197.184.182 port 54586 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.197.184.182	2019-08-30 16:30:36

最近上报的IP列表

177.190.145.196	209.132.157.67	2.226.12.12	103.74.123.41
61.250.146.33	220.80.184.135	103.143.127.3	14.102.2.21
124.158.179.36	141.215.123.24	42.56.70.168	140.63.117.72
140.43.28.10	71.116.247.124	37.52.200.164	203.62.168.75
38.106.34.139	227.5.80.163	173.236.155.141	160.205.250.55