66.42.6.51 - IPInfo

基本信息:

城市(city): Clermont

省份(region): Florida

国家(country): United States

运营商(isp): Telastic

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	Unauthorized connection attempt detected from IP address 66.42.6.51 to port 23	2020-01-06 04:02:47

相同子网IP讨论:

IP	类型	评论内容	时间
66.42.63.85	attackbotsspam	Scanning for exploits - /backup/wp-admin/	2020-08-15 00:16:21
66.42.61.43	attackspambots	Unauthorized connection attempt detected from IP address 66.42.61.43 to port 5900	2020-05-31 20:44:17
66.42.6.34	attack	Unauthorized connection attempt detected from IP address 66.42.6.34 to port 23	2020-04-13 00:46:18
66.42.62.21	attackbots	Automatic report - WordPress Brute Force	2020-03-12 00:28:29
66.42.60.18	attackbotsspam	WordPress brute force	2020-02-24 07:12:47
66.42.60.235	attackbots	Aug 19 18:45:17 hcbb sshd\[19512\]: Invalid user everdata from 66.42.60.235 Aug 19 18:45:17 hcbb sshd\[19512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.42.60.235 Aug 19 18:45:19 hcbb sshd\[19512\]: Failed password for invalid user everdata from 66.42.60.235 port 59598 ssh2 Aug 19 18:53:58 hcbb sshd\[20319\]: Invalid user elly from 66.42.60.235 Aug 19 18:53:58 hcbb sshd\[20319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.42.60.235	2019-08-20 17:07:57
66.42.60.235	attackspam	Aug 19 15:04:32 hcbb sshd\[29717\]: Invalid user eula from 66.42.60.235 Aug 19 15:04:32 hcbb sshd\[29717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.42.60.235 Aug 19 15:04:34 hcbb sshd\[29717\]: Failed password for invalid user eula from 66.42.60.235 port 39708 ssh2 Aug 19 15:11:55 hcbb sshd\[30520\]: Invalid user sg from 66.42.60.235 Aug 19 15:11:55 hcbb sshd\[30520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.42.60.235	2019-08-20 09:28:32
66.42.63.66	attack	firewall-block, port(s): 3389/tcp	2019-08-08 20:37:22

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.6.51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43465
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.42.6.51.			IN	A

;; AUTHORITY SECTION:
.			379	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010501 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 06 04:02:42 CST 2020
;; MSG SIZE  rcvd: 114

HOST信息:

Host 51.6.42.66.in-addr.arpa not found: 2(SERVFAIL)

NSLOOKUP信息:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 51.6.42.66.in-addr.arpa: SERVFAIL

最新评论:

IP	类型	评论内容	时间
69.94.135.181	attackbotsspam	Mar 19 22:28:23 mail.srvfarm.net postfix/smtpd[2325951]: NOQUEUE: reject: RCPT from unknown[69.94.135.181]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 19 22:28:23 mail.srvfarm.net postfix/smtpd[2325916]: NOQUEUE: reject: RCPT from unknown[69.94.135.181]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 19 22:28:23 mail.srvfarm.net postfix/smtpd[2325870]: NOQUEUE: reject: RCPT from unknown[69.94.135.181]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 19 22:28:23 mail.srvfarm.net postfi	2020-03-20 08:09:09
165.22.216.185	attackspambots	WordPress login Brute force / Web App Attack on client site.	2020-03-20 08:34:19
104.131.91.148	attackspambots	Mar 19 23:15:08 v22019058497090703 sshd[948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.91.148 Mar 19 23:15:09 v22019058497090703 sshd[948]: Failed password for invalid user smart from 104.131.91.148 port 57939 ssh2 ...	2020-03-20 08:46:22
206.81.12.242	attackbots	Mar 20 01:33:01 ks10 sshd[3185500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.12.242 Mar 20 01:33:03 ks10 sshd[3185500]: Failed password for invalid user ubuntu from 206.81.12.242 port 59888 ssh2 ...	2020-03-20 08:48:40
218.92.0.148	attackbots	Mar 20 01:15:45 vps647732 sshd[10786]: Failed password for root from 218.92.0.148 port 36721 ssh2 Mar 20 01:15:59 vps647732 sshd[10786]: error: maximum authentication attempts exceeded for root from 218.92.0.148 port 36721 ssh2 [preauth] ...	2020-03-20 08:21:05
122.51.2.33	attack	k+ssh-bruteforce	2020-03-20 08:22:01
218.94.54.84	attackbotsspam	SSH / Telnet Brute Force Attempts on Honeypot	2020-03-20 08:36:31
77.42.87.3	attack	Mar 19 22:50:47 debian-2gb-nbg1-2 kernel: \[6913752.513507\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=77.42.87.3 DST=195.201.40.59 LEN=44 TOS=0x00 PREC=0x00 TTL=49 ID=26281 PROTO=TCP SPT=54659 DPT=5555 WINDOW=45291 RES=0x00 SYN URGP=0	2020-03-20 08:51:44
193.58.109.157	attackbots	[Thu Mar 19 18:50:44.021736 2020] [:error] [pid 8428] [client 193.58.109.157:37577] script '/var/www/www.periodicos.unifra.br/xmlrpc.php' not found or unable to stat [Thu Mar 19 18:50:47.029111 2020] [:error] [pid 8433] [client 193.58.109.157:42941] script '/var/www/www.periodicos.unifra.br/xmlrpc.php' not found or unable to stat [Thu Mar 19 18:50:50.245882 2020] [:error] [pid 8437] [client 193.58.109.157:57719] script '/var/www/www.periodicos.unifra.br/xmlrpc.php' not found or unable to stat ...	2020-03-20 08:43:08
119.29.152.172	attackbotsspam	no	2020-03-20 08:44:17
118.45.190.167	attackbots	Mar 20 01:20:40 odroid64 sshd\[7359\]: Invalid user user from 118.45.190.167 Mar 20 01:20:40 odroid64 sshd\[7359\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.45.190.167 ...	2020-03-20 08:38:55
93.228.48.136	attackspambots	Chat Spam	2020-03-20 08:46:37
129.205.112.253	attack	Mar 20 00:09:22 mail sshd[26047]: Invalid user test3 from 129.205.112.253 Mar 20 00:09:22 mail sshd[26047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.112.253 Mar 20 00:09:22 mail sshd[26047]: Invalid user test3 from 129.205.112.253 Mar 20 00:09:24 mail sshd[26047]: Failed password for invalid user test3 from 129.205.112.253 port 39700 ssh2 ...	2020-03-20 08:42:32
104.236.244.98	attackspam	Mar 19 22:51:47 sshd\[18588\]: User root from 104.236.244.98 not allowed because not listed in AllowUsersMar 19 22:51:49 sshd\[18588\]: Failed password for invalid user root from 104.236.244.98 port 51590 ssh2 ...	2020-03-20 08:12:19
54.38.18.211	attackbotsspam	SASL PLAIN auth failed: ruser=...	2020-03-20 08:25:44

最近上报的IP列表

133.203.123.9	178.192.79.241	24.224.51.12	155.9.128.224
181.166.91.230	102.156.164.221	23.31.182.113	111.141.85.205
13.42.146.208	23.25.9.237	79.12.168.115	63.117.176.136
175.68.35.91	220.184.139.188	36.97.217.24	187.66.246.69
216.174.223.41	218.146.74.57	67.67.83.106	31.248.252.158