66.42.108.136 - IPInfo

基本信息:

城市(city): Los Angeles

省份(region): California

国家(country): United States

运营商(isp): Vultr Holdings LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 02-01-2020 14:50:10.	2020-01-03 06:11:09
attackspambots	Unauthorized connection attempt detected from IP address 66.42.108.136 to port 445	2019-12-30 05:05:32
attackspam	Unauthorized connection attempt detected from IP address 66.42.108.136 to port 445	2019-12-29 17:44:50
attackspambots	Unauthorized connection attempt detected from IP address 66.42.108.136 to port 445	2019-12-29 09:12:18
attackspam	Unauthorized connection attempt detected from IP address 66.42.108.136 to port 445	2019-12-29 03:31:27

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.108.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53490
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.42.108.136.			IN	A

;; AUTHORITY SECTION:
.			509	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122800 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 29 03:31:23 CST 2019
;; MSG SIZE  rcvd: 117

HOST信息:

136.108.42.66.in-addr.arpa domain name pointer 66.42.108.136.vultr.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
136.108.42.66.in-addr.arpa	name = 66.42.108.136.vultr.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
122.51.83.60	attack	$f2bV_matches	2019-12-21 04:38:42
167.114.210.86	attackbots	Dec 20 21:50:25 vps58358 sshd\[20129\]: Invalid user tamara from 167.114.210.86Dec 20 21:50:27 vps58358 sshd\[20129\]: Failed password for invalid user tamara from 167.114.210.86 port 34604 ssh2Dec 20 21:55:00 vps58358 sshd\[20181\]: Invalid user vernon from 167.114.210.86Dec 20 21:55:03 vps58358 sshd\[20181\]: Failed password for invalid user vernon from 167.114.210.86 port 40264 ssh2Dec 20 21:59:35 vps58358 sshd\[20225\]: Invalid user yacov from 167.114.210.86Dec 20 21:59:38 vps58358 sshd\[20225\]: Failed password for invalid user yacov from 167.114.210.86 port 45662 ssh2 ...	2019-12-21 05:08:53
128.199.177.16	attackspambots	Invalid user tarje from 128.199.177.16 port 36174	2019-12-21 04:38:06
47.105.126.122	attackspambots	Unauthorized connection attempt detected from IP address 47.105.126.122 to port 8081	2019-12-21 04:59:55
95.47.99.11	attackspam	2019-12-20T20:30:34.384281shield sshd\[10879\]: Invalid user walesca from 95.47.99.11 port 45791 2019-12-20T20:30:34.389600shield sshd\[10879\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.47.99.11 2019-12-20T20:30:36.239651shield sshd\[10879\]: Failed password for invalid user walesca from 95.47.99.11 port 45791 ssh2 2019-12-20T20:35:43.363273shield sshd\[12701\]: Invalid user teja from 95.47.99.11 port 49169 2019-12-20T20:35:43.368959shield sshd\[12701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.47.99.11	2019-12-21 04:45:50
82.229.243.217	attackbotsspam	Dec 19 08:14:49 lola sshd[11295]: Invalid user sophie from 82.229.243.217 Dec 19 08:14:49 lola sshd[11295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=sge91-2-82-229-243-217.fbx.proxad.net Dec 19 08:14:51 lola sshd[11295]: Failed password for invalid user sophie from 82.229.243.217 port 42682 ssh2 Dec 19 08:14:51 lola sshd[11295]: Received disconnect from 82.229.243.217: 11: Bye Bye [preauth] Dec 19 10:11:23 lola sshd[29020]: Invalid user frank from 82.229.243.217 Dec 19 10:11:23 lola sshd[29020]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=sge91-2-82-229-243-217.fbx.proxad.net Dec 19 10:11:24 lola sshd[29020]: Failed password for invalid user frank from 82.229.243.217 port 53120 ssh2 Dec 19 10:11:25 lola sshd[29020]: Received disconnect from 82.229.243.217: 11: Bye Bye [preauth] Dec 19 10:17:11 lola sshd[29748]: Invalid user borcic from 82.229.243.217 Dec 19 10:17:11 lola sshd[29........ -------------------------------	2019-12-21 04:52:29
87.164.180.66	attack	Dec 20 21:36:19 localhost sshd\[1648\]: Invalid user support from 87.164.180.66 port 39508 Dec 20 21:36:19 localhost sshd\[1648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.164.180.66 Dec 20 21:36:22 localhost sshd\[1648\]: Failed password for invalid user support from 87.164.180.66 port 39508 ssh2	2019-12-21 05:05:32
40.92.253.46	attack	Dec 20 17:49:01 debian-2gb-vpn-nbg1-1 kernel: [1231700.322347] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.253.46 DST=78.46.192.101 LEN=52 TOS=0x02 PREC=0x00 TTL=111 ID=274 DF PROTO=TCP SPT=11712 DPT=25 WINDOW=8192 RES=0x00 CWR ECE SYN URGP=0	2019-12-21 05:02:00
217.7.251.206	attackspambots	Dec 20 21:37:05 * sshd[21438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.7.251.206 Dec 20 21:37:07 * sshd[21438]: Failed password for invalid user test from 217.7.251.206 port 27792 ssh2	2019-12-21 05:11:22
49.235.23.20	attackspam	Dec 20 16:13:32 unicornsoft sshd\[6120\]: Invalid user stoeffler from 49.235.23.20 Dec 20 16:13:32 unicornsoft sshd\[6120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.23.20 Dec 20 16:13:33 unicornsoft sshd\[6120\]: Failed password for invalid user stoeffler from 49.235.23.20 port 52166 ssh2	2019-12-21 04:44:47
129.204.199.91	attackbotsspam	Invalid user delhi8 from 129.204.199.91 port 50440	2019-12-21 05:02:51
128.199.128.215	attackspambots	Dec 20 16:52:02 MK-Soft-VM7 sshd[18869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.128.215 Dec 20 16:52:04 MK-Soft-VM7 sshd[18869]: Failed password for invalid user devamary from 128.199.128.215 port 45588 ssh2 ...	2019-12-21 04:32:38
159.138.157.71	attackspam	[Fri Dec 20 21:48:49.145255 2019] [ssl:info] [pid 23410:tid 140202337060608] [client 159.138.157.71:41728] AH02033: No hostname was provided via SNI for a name based virtual host ...	2019-12-21 05:09:22
178.33.236.23	attackspambots	Invalid user calderwood from 178.33.236.23 port 43818	2019-12-21 05:02:32
35.160.48.160	attackspambots	12/20/2019-21:39:15.147595 35.160.48.160 Protocol: 6 SURICATA TLS invalid record/traffic	2019-12-21 04:50:17

最近上报的IP列表

41.36.46.73	35.193.129.95	78.232.141.32	12.221.2.130
180.29.194.197	2.110.41.186	66.126.96.145	77.211.76.75
222.106.6.80	65.209.37.159	58.225.99.248	14.21.168.186
213.108.116.120	171.249.84.65	3.22.59.49	211.192.157.4
60.146.246.135	150.147.88.163	87.31.58.254	200.0.91.29