66.42.4.5 - IPInfo

基本信息:

城市(city): Kissimmee

省份(region): Florida

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

IP	类型	评论内容	时间
66.42.4.100	attackspam	Unauthorized connection attempt detected from IP address 66.42.4.100 to port 23	2020-07-22 19:44:32
66.42.42.168	attackspam	Unauthorized connection attempt detected from IP address 66.42.42.168 to port 80 [T]	2020-07-22 01:37:00
66.42.4.100	attackbotsspam	Unauthorized connection attempt detected from IP address 66.42.4.100 to port 23	2020-05-31 21:14:41
66.42.49.38	attackspambots	Automatic report - XMLRPC Attack	2020-05-16 08:28:50
66.42.4.100	attack	Unauthorized connection attempt detected from IP address 66.42.4.100 to port 23	2020-05-13 04:56:31
66.42.49.175	attack	[portscan] Port scan	2020-05-11 07:02:06
66.42.43.150	attack	Invalid user test1 from 66.42.43.150 port 33682	2020-04-23 07:56:15
66.42.43.150	attackbotsspam	Invalid user postgres from 66.42.43.150 port 40324	2020-04-21 14:24:50
66.42.43.150	attack	$f2bV_matches	2020-04-21 02:20:41
66.42.43.150	attackbotsspam	Invalid user postgres from 66.42.43.150 port 40324	2020-04-20 15:44:23
66.42.43.150	attackspam	Apr 18 22:10:31 ncomp sshd[23348]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.42.43.150 user=root Apr 18 22:10:33 ncomp sshd[23348]: Failed password for root from 66.42.43.150 port 33082 ssh2 Apr 18 22:20:41 ncomp sshd[23979]: Invalid user test04 from 66.42.43.150	2020-04-19 04:48:11
66.42.43.150	attack	Unauthorized connection attempt detected from IP address 66.42.43.150 to port 22 [T]	2020-04-18 15:49:13
66.42.4.196	attack	Unauthorized connection attempt detected from IP address 66.42.4.196 to port 23	2020-04-13 04:39:53
66.42.4.164	attack	Unauthorized connection attempt detected from IP address 66.42.4.164 to port 23	2020-04-13 03:23:18
66.42.43.150	attack	SSH Brute Force	2020-04-11 07:28:04

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.4.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23665
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.42.4.5.			IN	A

;; AUTHORITY SECTION:
.			330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022092600 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Sep 27 00:49:31 CST 2022
;; MSG SIZE  rcvd: 102

HOST信息:

Host 5.4.42.66.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 5.4.42.66.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
112.21.191.252	attackspam	2019-11-01 19:44:39 server sshd[63751]: Failed password for invalid user root from 112.21.191.252 port 53470 ssh2	2019-11-03 00:13:51
49.235.108.92	attack	Lines containing failures of 49.235.108.92 Nov 1 15:06:27 shared03 sshd[31376]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.108.92 user=r.r Nov 1 15:06:29 shared03 sshd[31376]: Failed password for r.r from 49.235.108.92 port 42958 ssh2 Nov 1 15:06:30 shared03 sshd[31376]: Received disconnect from 49.235.108.92 port 42958:11: Bye Bye [preauth] Nov 1 15:06:30 shared03 sshd[31376]: Disconnected from authenticating user r.r 49.235.108.92 port 42958 [preauth] Nov 1 15:18:59 shared03 sshd[1488]: Invalid user sk from 49.235.108.92 port 47154 Nov 1 15:18:59 shared03 sshd[1488]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.108.92 Nov 1 15:19:01 shared03 sshd[1488]: Failed password for invalid user sk from 49.235.108.92 port 47154 ssh2 Nov 1 15:19:01 shared03 sshd[1488]: Received disconnect from 49.235.108.92 port 47154:11: Bye Bye [preauth] Nov 1 15:19:01 shared03 sshd[1........ ------------------------------	2019-11-03 00:09:21
180.248.210.151	attackbots	Nov 2 02:04:41 xb0 sshd[20928]: Failed password for invalid user halt from 180.248.210.151 port 17270 ssh2 Nov 2 02:04:41 xb0 sshd[20928]: Received disconnect from 180.248.210.151: 11: Bye Bye [preauth] Nov 2 02:09:44 xb0 sshd[20261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.248.210.151 user=r.r Nov 2 02:09:46 xb0 sshd[20261]: Failed password for r.r from 180.248.210.151 port 64911 ssh2 Nov 2 02:09:46 xb0 sshd[20261]: Received disconnect from 180.248.210.151: 11: Bye Bye [preauth] Nov 2 02:14:17 xb0 sshd[21543]: Failed password for invalid user gl from 180.248.210.151 port 55693 ssh2 Nov 2 02:14:17 xb0 sshd[21543]: Received disconnect from 180.248.210.151: 11: Bye Bye [preauth] Nov 2 02:18:27 xb0 sshd[19460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.248.210.151 user=r.r Nov 2 02:18:29 xb0 sshd[19460]: Failed password for r.r from 180.248.210.151 port 45561 ss........ -------------------------------	2019-11-03 00:37:58
190.48.89.176	attackbots	Unauthorised access (Nov 2) SRC=190.48.89.176 LEN=40 TOS=0x10 PREC=0x40 TTL=52 ID=42649 TCP DPT=8080 WINDOW=47570 SYN Unauthorised access (Nov 2) SRC=190.48.89.176 LEN=40 TOS=0x10 PREC=0x40 TTL=52 ID=44787 TCP DPT=8080 WINDOW=47570 SYN	2019-11-03 00:07:20
193.32.160.147	attack	2019-11-02T16:59:34.185421mail01 postfix/smtpd[30216]: NOQUEUE: reject: RCPT from unknown[193.32.160.147]: 550	2019-11-03 00:27:07
45.175.54.116	attackspambots	Automatic report - Port Scan Attack	2019-11-03 00:31:26
47.106.187.68	attackbotsspam	PostgreSQL port 5432	2019-11-03 00:43:22
87.107.161.158	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/87.107.161.158/ IR - 1H : (134) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IR NAME ASN : ASN41881 IP : 87.107.161.158 CIDR : 87.107.160.0/19 PREFIX COUNT : 133 UNIQUE IP COUNT : 103424 ATTACKS DETECTED ASN41881 : 1H - 2 3H - 2 6H - 3 12H - 4 24H - 6 DateTime : 2019-11-02 12:53:23 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-03 00:39:53
182.76.165.66	attack	Nov 2 09:33:36 plusreed sshd[24000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.76.165.66 user=root Nov 2 09:33:38 plusreed sshd[24000]: Failed password for root from 182.76.165.66 port 48930 ssh2 ...	2019-11-03 00:06:21
149.202.210.31	attackbotsspam	Nov 2 15:54:17 vserver sshd\[11880\]: Failed password for root from 149.202.210.31 port 60512 ssh2Nov 2 15:58:05 vserver sshd\[11929\]: Failed password for root from 149.202.210.31 port 43630 ssh2Nov 2 16:01:36 vserver sshd\[12008\]: Invalid user cforziati from 149.202.210.31Nov 2 16:01:38 vserver sshd\[12008\]: Failed password for invalid user cforziati from 149.202.210.31 port 54412 ssh2 ...	2019-11-03 00:30:12
202.191.56.69	attack	Nov 2 18:04:25 www4 sshd\[15448\]: Invalid user a from 202.191.56.69 Nov 2 18:04:25 www4 sshd\[15448\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.191.56.69 Nov 2 18:04:27 www4 sshd\[15448\]: Failed password for invalid user a from 202.191.56.69 port 58200 ssh2 ...	2019-11-03 00:15:26
106.12.108.208	attackspam	Automatic report - Banned IP Access	2019-11-03 00:33:00
188.225.46.124	attack	Nov 2 00:30:40 server2 sshd[26589]: reveeclipse mapping checking getaddrinfo for vds-ct98490.servereweb.ru [188.225.46.124] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 2 00:30:40 server2 sshd[26589]: Invalid user pp from 188.225.46.124 Nov 2 00:30:40 server2 sshd[26589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.225.46.124 Nov 2 00:30:42 server2 sshd[26589]: Failed password for invalid user pp from 188.225.46.124 port 48824 ssh2 Nov 2 00:30:42 server2 sshd[26589]: Received disconnect from 188.225.46.124: 11: Bye Bye [preauth] Nov 2 00:38:37 server2 sshd[27032]: reveeclipse mapping checking getaddrinfo for vds-ct98490.servereweb.ru [188.225.46.124] failed - POSSIBLE BREAK-IN ATTEMPT! Nov 2 00:38:37 server2 sshd[27032]: Invalid user gw from 188.225.46.124 Nov 2 00:38:37 server2 sshd[27032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.225.46.124 ........ ----------------------------------------------- https:	2019-11-03 00:22:22
212.92.106.116	attack	RDP Brute-Force (Grieskirchen RZ2)	2019-11-03 00:44:13
200.194.28.116	attackbots	2019-11-02T14:18:17.306713abusebot.cloudsearch.cf sshd\[27982\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.194.28.116 user=root	2019-11-02 23:59:25

最近上报的IP列表

252.15.60.63	226.56.225.39	177.130.171.87	38.25.16.110
44.56.5.99	64.225.19.51	219.127.199.11	47.44.169.144
45.61.184.204	152.112.43.41	56.236.81.246	85.239.38.180
98.126.243.58	95.69.158.157	2.66.31.85	74.244.25.155
176.124.16.247	9.122.227.160	20.12.147.85	40.99.202.242