64.42.187.66 - IPInfo

基本信息:

城市(city): Bonney Lake

省份(region): Washington

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 64.42.187.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60108
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;64.42.187.66.			IN	A

;; AUTHORITY SECTION:
.			259	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070401 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jul 05 07:06:19 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 66.187.42.64.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 66.187.42.64.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
138.68.5.192	attackbots	Sep 29 23:51:07 OPSO sshd\[16054\]: Invalid user lisa from 138.68.5.192 port 46326 Sep 29 23:51:07 OPSO sshd\[16054\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.5.192 Sep 29 23:51:08 OPSO sshd\[16054\]: Failed password for invalid user lisa from 138.68.5.192 port 46326 ssh2 Sep 29 23:57:34 OPSO sshd\[17091\]: Invalid user pgsql1 from 138.68.5.192 port 36564 Sep 29 23:57:34 OPSO sshd\[17091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.5.192	2020-09-30 06:09:22
101.71.3.53	attack	20 attempts against mh-ssh on cloud	2020-09-30 06:28:34
120.131.3.191	attackbots	Sep 29 20:18:00 marvibiene sshd[528]: Invalid user library from 120.131.3.191 port 22282 Sep 29 20:18:03 marvibiene sshd[528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.131.3.191 Sep 29 20:18:00 marvibiene sshd[528]: Invalid user library from 120.131.3.191 port 22282 Sep 29 20:18:05 marvibiene sshd[528]: Failed password for invalid user library from 120.131.3.191 port 22282 ssh2	2020-09-30 06:30:25
139.155.85.67	attackbotsspam	Invalid user allison from 139.155.85.67 port 58114	2020-09-30 06:12:56
123.234.188.104	attackspambots	port scan and connect, tcp 23 (telnet)	2020-09-30 06:04:53
37.252.187.140	attackbots	2020-09-29T07:19:46.386899correo.[domain] sshd[24871]: Invalid user alfred from 37.252.187.140 port 57348 2020-09-29T07:19:48.476433correo.[domain] sshd[24871]: Failed password for invalid user alfred from 37.252.187.140 port 57348 ssh2 2020-09-29T07:21:35.740210correo.[domain] sshd[25109]: Invalid user hadoop from 37.252.187.140 port 51036 ...	2020-09-30 06:32:32
51.210.182.187	attack	SSH BruteForce Attack	2020-09-30 06:21:31
112.85.42.67	attackspambots	Sep 29 23:52:10 mail sshd[31436]: refused connect from 112.85.42.67 (112.85.42.67) Sep 29 23:53:03 mail sshd[31474]: refused connect from 112.85.42.67 (112.85.42.67) Sep 29 23:53:55 mail sshd[31497]: refused connect from 112.85.42.67 (112.85.42.67) Sep 29 23:54:51 mail sshd[31568]: refused connect from 112.85.42.67 (112.85.42.67) Sep 29 23:55:43 mail sshd[31605]: refused connect from 112.85.42.67 (112.85.42.67) ...	2020-09-30 06:15:40
65.74.233.242	attackbots	Malicious Traffic/Form Submission	2020-09-30 06:06:16
202.189.238.235	attackspambots	srvr2: (mod_security) mod_security (id:920350) triggered by 202.189.238.235 (IN/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/28 22:38:08 [error] 890067#0: 830037 [client 202.189.238.235] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "160132548810.733798"] [ref "o0,16v21,16"], client: 202.189.238.235, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-09-30 06:23:04
140.143.193.52	attack	Invalid user oracle from 140.143.193.52 port 38014	2020-09-30 06:00:50
192.35.168.120	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-09-30 06:27:17
98.23.122.25	attackspambots	Automatic report - Banned IP Access	2020-09-30 06:26:41
51.15.125.53	attackbotsspam	Banned for a week because repeated abuses, for example SSH, but not only	2020-09-30 06:34:11
201.99.106.67	attack	Invalid user ansible from 201.99.106.67 port 48097	2020-09-30 06:24:52

最近上报的IP列表

104.148.184.159	63.108.214.126	81.198.187.247	196.65.218.248
217.216.254.46	93.189.41.229	69.118.51.198	217.118.186.160
63.13.232.245	77.192.102.203	18.158.83.26	62.200.91.97
63.78.56.198	46.9.119.38	58.221.139.164	1.169.175.25
39.195.122.24	63.11.225.208	27.252.114.99	182.84.26.38