66.42.29.145 - IPInfo

基本信息:

城市(city): Orlando

省份(region): Florida

国家(country): United States

运营商(isp): Telastic

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	Telnet Server BruteForce Attack	2020-01-06 04:24:55

相同子网IP讨论:

IP	类型	评论内容	时间
66.42.29.248	attackbots	Unauthorized connection attempt detected from IP address 66.42.29.248 to port 23	2020-07-22 14:49:32
66.42.29.0	attack	Unauthorized connection attempt detected from IP address 66.42.29.0 to port 23	2020-06-29 02:45:21
66.42.29.82	attack	Unauthorized connection attempt detected from IP address 66.42.29.82 to port 23	2020-06-13 08:27:58
66.42.29.165	attackbots	Unauthorized connection attempt detected from IP address 66.42.29.165 to port 5358	2020-05-13 04:16:40
66.42.29.72	attackbotsspam	Unauthorized connection attempt detected from IP address 66.42.29.72 to port 23	2020-04-13 04:02:55
66.42.29.159	attackspambots	Unauthorized connection attempt detected from IP address 66.42.29.159 to port 23	2020-01-06 18:09:12
66.42.29.220	attackspambots	Unauthorized connection attempt detected from IP address 66.42.29.220 to port 23 [J]	2020-01-05 23:55:43
66.42.29.157	attackbotsspam	Unauthorized connection attempt detected from IP address 66.42.29.157 to port 23	2020-01-05 23:26:00
66.42.29.157	attack	Unauthorized connection attempt detected from IP address 66.42.29.157 to port 23	2019-12-29 08:23:39

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.29.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5796
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.42.29.145.			IN	A

;; AUTHORITY SECTION:
.			536	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010501 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 06 04:24:51 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

Host 145.29.42.66.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 145.29.42.66.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
118.69.55.141	attack	SSH Invalid Login	2020-04-28 05:47:26
104.236.112.52	attackspambots	Apr 27 21:11:32 sigma sshd\[11568\]: Invalid user liupan from 104.236.112.52Apr 27 21:11:34 sigma sshd\[11568\]: Failed password for invalid user liupan from 104.236.112.52 port 45785 ssh2 ...	2020-04-28 05:45:26
212.52.164.33	attack	Port probing on unauthorized port 4984	2020-04-28 05:11:05
201.200.3.241	attackspambots	port scan and connect, tcp 80 (http)	2020-04-28 05:39:57
103.80.36.34	attack	Apr 28 03:45:35 webhost01 sshd[28884]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.80.36.34 Apr 28 03:45:37 webhost01 sshd[28884]: Failed password for invalid user user from 103.80.36.34 port 57204 ssh2 ...	2020-04-28 05:02:33
118.171.236.22	attackbotsspam	port scan and connect, tcp 23 (telnet)	2020-04-28 05:19:36
222.186.15.115	attack	v+ssh-bruteforce	2020-04-28 05:18:50
103.26.204.189	attackbots	Apr 28 03:48:00 itv-usvr-02 sshd[9961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.204.189 user=root Apr 28 03:52:05 itv-usvr-02 sshd[10065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.204.189 user=root Apr 28 03:57:25 itv-usvr-02 sshd[10225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.204.189 user=root	2020-04-28 05:27:00
222.186.42.137	attackbotsspam	04/27/2020-17:05:59.325939 222.186.42.137 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-28 05:10:36
222.186.173.154	attack	2020-04-27T21:14:49.542303abusebot-8.cloudsearch.cf sshd[15444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root 2020-04-27T21:14:51.637205abusebot-8.cloudsearch.cf sshd[15444]: Failed password for root from 222.186.173.154 port 46394 ssh2 2020-04-27T21:14:55.097709abusebot-8.cloudsearch.cf sshd[15444]: Failed password for root from 222.186.173.154 port 46394 ssh2 2020-04-27T21:14:49.542303abusebot-8.cloudsearch.cf sshd[15444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.154 user=root 2020-04-27T21:14:51.637205abusebot-8.cloudsearch.cf sshd[15444]: Failed password for root from 222.186.173.154 port 46394 ssh2 2020-04-27T21:14:55.097709abusebot-8.cloudsearch.cf sshd[15444]: Failed password for root from 222.186.173.154 port 46394 ssh2 2020-04-27T21:14:49.542303abusebot-8.cloudsearch.cf sshd[15444]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-04-28 05:30:00
46.27.181.85	attackbots	" "	2020-04-28 05:31:47
210.175.50.124	attack	Apr 27 22:23:40 srv01 sshd[23923]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.175.50.124 user=root Apr 27 22:23:42 srv01 sshd[23923]: Failed password for root from 210.175.50.124 port 30680 ssh2 Apr 27 22:27:42 srv01 sshd[24111]: Invalid user allen from 210.175.50.124 port 21616 Apr 27 22:27:42 srv01 sshd[24111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.175.50.124 Apr 27 22:27:42 srv01 sshd[24111]: Invalid user allen from 210.175.50.124 port 21616 Apr 27 22:27:44 srv01 sshd[24111]: Failed password for invalid user allen from 210.175.50.124 port 21616 ssh2 ...	2020-04-28 05:26:27
222.186.173.180	attack	2020-04-27T21:32:35.042775shield sshd\[12829\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.180 user=root 2020-04-27T21:32:36.480094shield sshd\[12829\]: Failed password for root from 222.186.173.180 port 64848 ssh2 2020-04-27T21:32:39.445789shield sshd\[12829\]: Failed password for root from 222.186.173.180 port 64848 ssh2 2020-04-27T21:32:42.498354shield sshd\[12829\]: Failed password for root from 222.186.173.180 port 64848 ssh2 2020-04-27T21:32:45.953966shield sshd\[12829\]: Failed password for root from 222.186.173.180 port 64848 ssh2	2020-04-28 05:37:04
180.76.178.46	attackspambots	Apr 27 21:15:46 h2646465 sshd[26383]: Invalid user rokas from 180.76.178.46 Apr 27 21:15:46 h2646465 sshd[26383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.178.46 Apr 27 21:15:46 h2646465 sshd[26383]: Invalid user rokas from 180.76.178.46 Apr 27 21:15:49 h2646465 sshd[26383]: Failed password for invalid user rokas from 180.76.178.46 port 38844 ssh2 Apr 27 22:02:55 h2646465 sshd[32487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.178.46 user=root Apr 27 22:02:57 h2646465 sshd[32487]: Failed password for root from 180.76.178.46 port 36836 ssh2 Apr 27 22:07:17 h2646465 sshd[676]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.178.46 user=root Apr 27 22:07:19 h2646465 sshd[676]: Failed password for root from 180.76.178.46 port 41586 ssh2 Apr 27 22:11:57 h2646465 sshd[1382]: Invalid user abner from 180.76.178.46 ...	2020-04-28 05:22:50
1.227.4.69	attack	Apr 27 22:11:43 debian-2gb-nbg1-2 kernel: \[10277233.322202\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=1.227.4.69 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=48 ID=39172 PROTO=TCP SPT=26421 DPT=23 WINDOW=39893 RES=0x00 SYN URGP=0	2020-04-28 05:34:52

最近上报的IP列表

54.183.202.175	49.51.12.230	116.2.227.115	222.165.217.35
45.172.230.8	150.198.63.97	45.5.203.183	107.125.175.151
99.88.70.165	74.243.171.23	37.6.142.124	89.69.216.191
31.41.84.17	116.123.120.195	31.25.135.69	75.224.61.248
103.36.5.251	27.2.64.208	109.39.59.3	191.168.188.87