66.191.0.147 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Charter Communications Inc

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Sep 3 00:51:26 itv-usvr-01 sshd[25010]: Invalid user user from 66.191.0.147 Sep 3 00:51:26 itv-usvr-01 sshd[25010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.191.0.147 Sep 3 00:51:26 itv-usvr-01 sshd[25010]: Invalid user user from 66.191.0.147 Sep 3 00:51:28 itv-usvr-01 sshd[25010]: Failed password for invalid user user from 66.191.0.147 port 50393 ssh2 Sep 3 00:51:26 itv-usvr-01 sshd[25010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.191.0.147 Sep 3 00:51:26 itv-usvr-01 sshd[25010]: Invalid user user from 66.191.0.147 Sep 3 00:51:28 itv-usvr-01 sshd[25010]: Failed password for invalid user user from 66.191.0.147 port 50393 ssh2 Sep 3 00:51:31 itv-usvr-01 sshd[25010]: Failed password for invalid user user from 66.191.0.147 port 50393 ssh2	2019-09-05 05:37:37
attackspambots	$f2bV_matches	2019-07-09 17:43:56
attackspam	2019-06-27T00:07:43.407263enmeeting.mahidol.ac.th sshd\[833\]: User root from 66-191-0-147.dhcp.knwc.wa.charter.com not allowed because not listed in AllowUsers 2019-06-27T00:07:43.531324enmeeting.mahidol.ac.th sshd\[833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66-191-0-147.dhcp.knwc.wa.charter.com user=root 2019-06-27T00:07:46.343407enmeeting.mahidol.ac.th sshd\[833\]: Failed password for invalid user root from 66.191.0.147 port 34163 ssh2 ...	2019-06-27 06:25:12

类型

评论内容

时间

attack

Sep  3 00:51:26 itv-usvr-01 sshd[25010]: Invalid user user from 66.191.0.147
Sep  3 00:51:26 itv-usvr-01 sshd[25010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.191.0.147
Sep  3 00:51:26 itv-usvr-01 sshd[25010]: Invalid user user from 66.191.0.147
Sep  3 00:51:28 itv-usvr-01 sshd[25010]: Failed password for invalid user user from 66.191.0.147 port 50393 ssh2
Sep  3 00:51:26 itv-usvr-01 sshd[25010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.191.0.147
Sep  3 00:51:26 itv-usvr-01 sshd[25010]: Invalid user user from 66.191.0.147
Sep  3 00:51:28 itv-usvr-01 sshd[25010]: Failed password for invalid user user from 66.191.0.147 port 50393 ssh2
Sep  3 00:51:31 itv-usvr-01 sshd[25010]: Failed password for invalid user user from 66.191.0.147 port 50393 ssh2

2019-09-05 05:37:37

attackspambots

$f2bV_matches

2019-07-09 17:43:56

attackspam

2019-06-27T00:07:43.407263enmeeting.mahidol.ac.th sshd\[833\]: User root from 66-191-0-147.dhcp.knwc.wa.charter.com not allowed because not listed in AllowUsers
2019-06-27T00:07:43.531324enmeeting.mahidol.ac.th sshd\[833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66-191-0-147.dhcp.knwc.wa.charter.com  user=root
2019-06-27T00:07:46.343407enmeeting.mahidol.ac.th sshd\[833\]: Failed password for invalid user root from 66.191.0.147 port 34163 ssh2
...

2019-06-27 06:25:12

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.191.0.147
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36064
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.191.0.147.			IN	A

;; AUTHORITY SECTION:
.			1635	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062602 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 27 06:25:06 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

147.0.191.66.in-addr.arpa domain name pointer 66-191-0-147.dhcp.knwc.wa.charter.com.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
147.0.191.66.in-addr.arpa	name = 66-191-0-147.dhcp.knwc.wa.charter.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
151.80.144.255	attackbotsspam	Nov 28 19:44:34 firewall sshd[25489]: Invalid user dubourdieu from 151.80.144.255 Nov 28 19:44:37 firewall sshd[25489]: Failed password for invalid user dubourdieu from 151.80.144.255 port 39668 ssh2 Nov 28 19:47:21 firewall sshd[25526]: Invalid user banks from 151.80.144.255 ...	2019-11-29 07:07:01
46.166.151.116	attackspambots	RDP Bruteforce	2019-11-29 07:16:00
165.22.182.168	attack	Nov 28 17:44:37 ny01 sshd[17745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.182.168 Nov 28 17:44:39 ny01 sshd[17745]: Failed password for invalid user hhhhh from 165.22.182.168 port 42762 ssh2 Nov 28 17:47:51 ny01 sshd[18017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.182.168	2019-11-29 06:53:45
84.94.236.118	attackspam	port scan/probe/communication attempt; port 23	2019-11-29 06:56:02
89.216.118.71	attackbotsspam	2019-11-28 16:47:51 H=cable-89-216-118-71.static.sbb.rs [89.216.118.71]:41068 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/89.216.118.71) 2019-11-28 16:47:51 H=cable-89-216-118-71.static.sbb.rs [89.216.118.71]:41068 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/89.216.118.71) 2019-11-28 16:47:52 H=cable-89-216-118-71.static.sbb.rs [89.216.118.71]:41068 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/89.216.118.71) ...	2019-11-29 06:53:22
159.89.115.126	attackbotsspam	Nov 29 04:11:45 vibhu-HP-Z238-Microtower-Workstation sshd\[6803\]: Invalid user kollman from 159.89.115.126 Nov 29 04:11:45 vibhu-HP-Z238-Microtower-Workstation sshd\[6803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.126 Nov 29 04:11:47 vibhu-HP-Z238-Microtower-Workstation sshd\[6803\]: Failed password for invalid user kollman from 159.89.115.126 port 45514 ssh2 Nov 29 04:17:49 vibhu-HP-Z238-Microtower-Workstation sshd\[7122\]: Invalid user apache from 159.89.115.126 Nov 29 04:17:49 vibhu-HP-Z238-Microtower-Workstation sshd\[7122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.115.126 ...	2019-11-29 06:54:05
108.189.182.36	attackspam	Automatic report - Banned IP Access	2019-11-29 07:04:15
45.195.151.220	attackspam	Nov 28 23:39:58 meumeu sshd[15066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.195.151.220 Nov 28 23:40:00 meumeu sshd[15066]: Failed password for invalid user name from 45.195.151.220 port 53257 ssh2 Nov 28 23:47:52 meumeu sshd[17859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.195.151.220 ...	2019-11-29 06:50:30
212.64.100.229	attackspambots	Nov 29 01:37:48 hosting sshd[28351]: Invalid user amelia from 212.64.100.229 port 45726 Nov 29 01:37:48 hosting sshd[28351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.100.229 Nov 29 01:37:48 hosting sshd[28351]: Invalid user amelia from 212.64.100.229 port 45726 Nov 29 01:37:50 hosting sshd[28351]: Failed password for invalid user amelia from 212.64.100.229 port 45726 ssh2 Nov 29 01:47:22 hosting sshd[29383]: Invalid user guest from 212.64.100.229 port 57886 ...	2019-11-29 07:06:41
13.80.112.16	attack	Nov 28 23:46:54 lnxweb61 sshd[29024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.80.112.16	2019-11-29 07:20:59
93.208.34.159	attack	Nov 29 00:05:35 mail postfix/smtpd[18937]: warning: p5DD0229F.dip0.t-ipconnect.de[93.208.34.159]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 00:07:52 mail postfix/smtpd[18950]: warning: p5DD0229F.dip0.t-ipconnect.de[93.208.34.159]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 00:08:13 mail postfix/smtpd[17363]: warning: p5DD0229F.dip0.t-ipconnect.de[93.208.34.159]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-29 07:18:28
95.5.199.105	attack	port scan/probe/communication attempt; port 23	2019-11-29 06:49:28
183.88.21.199	attack	Nov 28 22:47:43 thevastnessof sshd[26322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.88.21.199 ...	2019-11-29 06:57:14
122.152.208.242	attackbots	Nov 29 00:04:47 vps666546 sshd\[10490\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.208.242 user=root Nov 29 00:04:49 vps666546 sshd\[10490\]: Failed password for root from 122.152.208.242 port 59836 ssh2 Nov 29 00:09:24 vps666546 sshd\[10674\]: Invalid user svingen from 122.152.208.242 port 37144 Nov 29 00:09:24 vps666546 sshd\[10674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.208.242 Nov 29 00:09:26 vps666546 sshd\[10674\]: Failed password for invalid user svingen from 122.152.208.242 port 37144 ssh2 ...	2019-11-29 07:21:54
81.22.45.251	attackspam	Nov 29 00:15:26 mc1 kernel: \[6269149.523967\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.251 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=62636 PROTO=TCP SPT=52967 DPT=3667 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 29 00:16:58 mc1 kernel: \[6269241.207293\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.251 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=52332 PROTO=TCP SPT=52967 DPT=3364 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 29 00:22:43 mc1 kernel: \[6269586.823355\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.251 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=46239 PROTO=TCP SPT=52967 DPT=3271 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-29 07:26:49

最近上报的IP列表

1.109.50.199	1.30.24.158	190.111.239.48	210.153.228.122
185.234.219.124	170.197.148.182	233.83.234.137	177.11.115.141
104.3.231.239	197.87.234.20	170.0.51.169	245.247.17.218
192.219.25.194	248.184.146.13	159.65.92.3	242.51.245.48
60.237.101.27	232.212.167.171	215.27.88.149	121.232.19.17