66.42.4.100 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States of America

运营商(isp): Telastic

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Unauthorized connection attempt detected from IP address 66.42.4.100 to port 23	2020-07-22 19:44:32
attackbotsspam	Unauthorized connection attempt detected from IP address 66.42.4.100 to port 23	2020-05-31 21:14:41
attack	Unauthorized connection attempt detected from IP address 66.42.4.100 to port 23	2020-05-13 04:56:31

类型

评论内容

时间

attackspam

Unauthorized connection attempt detected from IP address 66.42.4.100 to port 23

2020-07-22 19:44:32

attackbotsspam

Unauthorized connection attempt detected from IP address 66.42.4.100 to port 23

2020-05-31 21:14:41

attack

Unauthorized connection attempt detected from IP address 66.42.4.100 to port 23

2020-05-13 04:56:31

相同子网IP讨论:

IP	类型	评论内容	时间
66.42.42.168	attackspam	Unauthorized connection attempt detected from IP address 66.42.42.168 to port 80 [T]	2020-07-22 01:37:00
66.42.49.38	attackspambots	Automatic report - XMLRPC Attack	2020-05-16 08:28:50
66.42.49.175	attack	[portscan] Port scan	2020-05-11 07:02:06
66.42.43.150	attack	Invalid user test1 from 66.42.43.150 port 33682	2020-04-23 07:56:15
66.42.43.150	attackbotsspam	Invalid user postgres from 66.42.43.150 port 40324	2020-04-21 14:24:50
66.42.43.150	attack	$f2bV_matches	2020-04-21 02:20:41
66.42.43.150	attackbotsspam	Invalid user postgres from 66.42.43.150 port 40324	2020-04-20 15:44:23
66.42.43.150	attackspam	Apr 18 22:10:31 ncomp sshd[23348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.42.43.150 user=root Apr 18 22:10:33 ncomp sshd[23348]: Failed password for root from 66.42.43.150 port 33082 ssh2 Apr 18 22:20:41 ncomp sshd[23979]: Invalid user test04 from 66.42.43.150	2020-04-19 04:48:11
66.42.43.150	attack	Unauthorized connection attempt detected from IP address 66.42.43.150 to port 22 [T]	2020-04-18 15:49:13
66.42.4.196	attack	Unauthorized connection attempt detected from IP address 66.42.4.196 to port 23	2020-04-13 04:39:53
66.42.4.164	attack	Unauthorized connection attempt detected from IP address 66.42.4.164 to port 23	2020-04-13 03:23:18
66.42.43.150	attack	SSH Brute Force	2020-04-11 07:28:04
66.42.43.150	attackspambots	Apr 10 13:59:42 server sshd[10498]: Failed password for invalid user apache from 66.42.43.150 port 43516 ssh2 Apr 10 14:05:34 server sshd[12180]: Failed password for invalid user kmiller from 66.42.43.150 port 42836 ssh2 Apr 10 14:09:25 server sshd[13194]: Failed password for root from 66.42.43.150 port 46246 ssh2	2020-04-10 23:06:51
66.42.43.150	attackspam	$f2bV_matches	2020-04-05 08:59:06
66.42.43.150	attackspam	Mar 29 21:04:58 pkdns2 sshd\[21487\]: Invalid user ebd from 66.42.43.150Mar 29 21:05:00 pkdns2 sshd\[21487\]: Failed password for invalid user ebd from 66.42.43.150 port 36784 ssh2Mar 29 21:08:23 pkdns2 sshd\[21692\]: Invalid user fjseclib from 66.42.43.150Mar 29 21:08:25 pkdns2 sshd\[21692\]: Failed password for invalid user fjseclib from 66.42.43.150 port 33352 ssh2Mar 29 21:11:48 pkdns2 sshd\[21864\]: Invalid user postgres from 66.42.43.150Mar 29 21:11:50 pkdns2 sshd\[21864\]: Failed password for invalid user postgres from 66.42.43.150 port 58152 ssh2 ...	2020-03-30 02:21:17

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.4.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23080
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.42.4.100.			IN	A

;; AUTHORITY SECTION:
.			293	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051201 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 13 04:56:27 CST 2020
;; MSG SIZE  rcvd: 115

HOST信息:

Host 100.4.42.66.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 100.4.42.66.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
192.144.148.163	attack	Nov 13 16:03:08 localhost sshd\[22187\]: Invalid user snoopy99 from 192.144.148.163 Nov 13 16:03:08 localhost sshd\[22187\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.148.163 Nov 13 16:03:10 localhost sshd\[22187\]: Failed password for invalid user snoopy99 from 192.144.148.163 port 34198 ssh2 Nov 13 16:08:40 localhost sshd\[22419\]: Invalid user sabrina from 192.144.148.163 Nov 13 16:08:40 localhost sshd\[22419\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.148.163 ...	2019-11-13 23:12:22
46.38.144.179	attack	2019-11-13T16:15:29.122161mail01 postfix/smtpd[30791]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-13T16:15:38.478284mail01 postfix/smtpd[3046]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-13T16:15:55.062718mail01 postfix/smtpd[3088]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-13 23:23:14
222.73.36.73	attackbotsspam	Nov 13 15:51:41 amit sshd\[506\]: Invalid user guest from 222.73.36.73 Nov 13 15:51:41 amit sshd\[506\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.73.36.73 Nov 13 15:51:43 amit sshd\[506\]: Failed password for invalid user guest from 222.73.36.73 port 33714 ssh2 ...	2019-11-13 23:23:33
162.241.178.219	attackbotsspam	Nov 13 05:03:37 hpm sshd\[22777\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.178.219 user=root Nov 13 05:03:38 hpm sshd\[22777\]: Failed password for root from 162.241.178.219 port 54544 ssh2 Nov 13 05:07:26 hpm sshd\[23101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.178.219 user=bin Nov 13 05:07:28 hpm sshd\[23101\]: Failed password for bin from 162.241.178.219 port 34238 ssh2 Nov 13 05:11:20 hpm sshd\[23533\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.178.219 user=root	2019-11-13 23:17:13
104.211.75.180	attackbotsspam	2019-11-13T09:36:46.6081241495-001 sshd\[47833\]: Invalid user firefox from 104.211.75.180 port 53184 2019-11-13T09:36:46.6190371495-001 sshd\[47833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.75.180 2019-11-13T09:36:48.9394581495-001 sshd\[47833\]: Failed password for invalid user firefox from 104.211.75.180 port 53184 ssh2 2019-11-13T09:41:10.6389011495-001 sshd\[47975\]: Invalid user alphonso from 104.211.75.180 port 62848 2019-11-13T09:41:10.6458351495-001 sshd\[47975\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.211.75.180 2019-11-13T09:41:12.5395811495-001 sshd\[47975\]: Failed password for invalid user alphonso from 104.211.75.180 port 62848 ssh2 ...	2019-11-13 23:20:46
91.183.90.237	attackbots	2019-11-13T14:51:55.719666abusebot-5.cloudsearch.cf sshd\[25767\]: Invalid user robert from 91.183.90.237 port 49922	2019-11-13 23:18:25
192.241.185.120	attackspambots	Nov 13 15:52:21 vmanager6029 sshd\[22624\]: Invalid user asterisk from 192.241.185.120 port 58835 Nov 13 15:52:21 vmanager6029 sshd\[22624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.185.120 Nov 13 15:52:23 vmanager6029 sshd\[22624\]: Failed password for invalid user asterisk from 192.241.185.120 port 58835 ssh2	2019-11-13 23:03:57
120.70.103.40	attackspam	Nov 12 06:43:35 euve59663 sshd[8395]: Invalid user vcsa from 120.70.103= .40 Nov 12 06:43:35 euve59663 sshd[8395]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D120.= 70.103.40=20 Nov 12 06:43:37 euve59663 sshd[8395]: Failed password for invalid user = vcsa from 120.70.103.40 port 47094 ssh2 Nov 12 06:43:38 euve59663 sshd[8395]: Received disconnect from 120.70.1= 03.40: 11: Bye Bye [preauth] Nov 12 07:05:45 euve59663 sshd[5045]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D120.= 70.103.40 user=3Dr.r Nov 12 07:05:47 euve59663 sshd[5045]: Failed password for r.r from 120= .70.103.40 port 45362 ssh2 Nov 12 07:05:48 euve59663 sshd[5045]: Received disconnect from 120.70.1= 03.40: 11: Bye Bye [preauth] Nov 12 07:10:58 euve59663 sshd[5076]: pam_unix(sshd:auth): authenticati= on failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D120.= 70.103.40 user=3D........ -------------------------------	2019-11-13 22:56:51
177.39.32.151	attackspam	Unauthorized connection attempt from IP address 177.39.32.151 on Port 445(SMB)	2019-11-13 22:52:14
144.217.161.78	attackbots	2019-11-13T05:50:05.3641281495-001 sshd\[39842\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.ip-144-217-161.net user=root 2019-11-13T05:50:07.5554031495-001 sshd\[39842\]: Failed password for root from 144.217.161.78 port 45508 ssh2 2019-11-13T05:54:30.8367631495-001 sshd\[39970\]: Invalid user chenmu from 144.217.161.78 port 53674 2019-11-13T05:54:30.8455011495-001 sshd\[39970\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.ip-144-217-161.net 2019-11-13T05:54:33.0325601495-001 sshd\[39970\]: Failed password for invalid user chenmu from 144.217.161.78 port 53674 ssh2 2019-11-13T05:58:14.5055101495-001 sshd\[40103\]: Invalid user freire from 144.217.161.78 port 33606 2019-11-13T05:58:14.5130751495-001 sshd\[40103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.ip-144-217-161.net ...	2019-11-13 22:46:57
88.214.26.19	attack	Connection by 88.214.26.19 on port: 3307 got caught by honeypot at 11/13/2019 1:52:42 PM	2019-11-13 22:53:29
84.244.180.7	attackspambots	2019-11-13T15:43:16.154764mail01 postfix/smtpd[21419]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-13T15:52:18.421868mail01 postfix/smtpd[25229]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-13T15:52:22.148356mail01 postfix/smtpd[25230]: warning: opzetborstelshop.nl[84.244.180.7]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-13 23:04:24
5.135.101.228	attackbots	Nov 13 15:39:27 dedicated sshd[27282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.101.228 Nov 13 15:39:27 dedicated sshd[27282]: Invalid user apache from 5.135.101.228 port 51370 Nov 13 15:39:29 dedicated sshd[27282]: Failed password for invalid user apache from 5.135.101.228 port 51370 ssh2 Nov 13 15:42:53 dedicated sshd[27828]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.101.228 user=root Nov 13 15:42:54 dedicated sshd[27828]: Failed password for root from 5.135.101.228 port 60300 ssh2	2019-11-13 22:45:11
222.186.175.215	attack	Nov 13 12:57:27 ws12vmsma01 sshd[34549]: Failed password for root from 222.186.175.215 port 2266 ssh2 Nov 13 12:57:30 ws12vmsma01 sshd[34549]: Failed password for root from 222.186.175.215 port 2266 ssh2 Nov 13 12:57:34 ws12vmsma01 sshd[34549]: Failed password for root from 222.186.175.215 port 2266 ssh2 ...	2019-11-13 23:00:33
62.210.31.99	attackspam	$f2bV_matches	2019-11-13 22:40:06

最近上报的IP列表

207.102.152.26	201.253.11.236	70.253.136.173	201.202.31.170
198.108.66.211	127.193.82.39	43.189.217.133	196.64.203.209
190.230.31.16	187.178.64.172	186.179.219.86	186.46.38.154
181.113.32.170	179.89.60.3	178.206.162.129	177.195.8.25
170.82.108.189	85.110.18.197	115.42.77.114	74.208.236.55