66.42.92.180 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Vultr Holdings LLC

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Data Center/Web Hosting/Transit

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbots	ET SCAN MS Terminal Server Traffic on Non-standard Port - port: 1000 proto: TCP cat: Attempted Information Leak	2019-12-11 07:08:53

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.92.180
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14711
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.42.92.180.			IN	A

;; AUTHORITY SECTION:
.			288	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121002 1800 900 604800 86400

;; Query time: 343 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 11 07:08:49 CST 2019
;; MSG SIZE  rcvd: 116

HOST信息:

180.92.42.66.in-addr.arpa domain name pointer 66.42.92.180.vultr.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
180.92.42.66.in-addr.arpa	name = 66.42.92.180.vultr.com.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
31.167.170.61	attackbots	May 14 00:13:47 sshd\[1971\]: Invalid user ml from 31.167.170.61May 14 00:13:49 sshd\[1971\]: Failed password for invalid user ml from 31.167.170.61 port 38382 ssh2 ...	2020-05-14 07:55:42
42.236.10.81	attack	Automatic report - Banned IP Access	2020-05-14 08:02:14
122.160.76.224	attack	May 13 18:06:05 ws24vmsma01 sshd[101494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.160.76.224 May 13 18:06:08 ws24vmsma01 sshd[101494]: Failed password for invalid user sumit from 122.160.76.224 port 42344 ssh2 ...	2020-05-14 07:57:37
128.199.158.182	attack	Automatic report - Banned IP Access	2020-05-14 07:52:43
46.105.99.163	attackbotsspam	46.105.99.163 - - \[14/May/2020:01:18:18 +0200\] "POST /wp-login.php HTTP/1.0" 200 6884 "-" "Mozilla/5.0 $Windows NT 10.0\; WOW64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/46.0.2490.80 Safari/537.36" 46.105.99.163 - - \[14/May/2020:01:18:37 +0200\] "POST /wp-login.php HTTP/1.0" 200 6884 "-" "Mozilla/5.0 $Windows NT 10.0\; WOW64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/46.0.2490.80 Safari/537.36" 46.105.99.163 - - \[14/May/2020:01:18:48 +0200\] "POST /wp-login.php HTTP/1.0" 200 6884 "-" "Mozilla/5.0 $Windows NT 10.0\; WOW64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/46.0.2490.80 Safari/537.36"	2020-05-14 08:14:20
106.12.47.171	attackbotsspam	May 13 18:24:18 ny01 sshd[22839]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.171 May 13 18:24:20 ny01 sshd[22839]: Failed password for invalid user sprint from 106.12.47.171 port 45474 ssh2 May 13 18:27:00 ny01 sshd[23571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.47.171	2020-05-14 08:18:03
52.172.4.141	attackbotsspam	Ssh brute force	2020-05-14 08:15:37
190.187.112.3	attack	May 13 23:59:10 server sshd[3852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.187.112.3 May 13 23:59:12 server sshd[3852]: Failed password for invalid user donald from 190.187.112.3 port 42962 ssh2 May 14 00:02:00 server sshd[5100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.187.112.3 ...	2020-05-14 07:49:19
109.227.63.3	attackbotsspam	$f2bV_matches	2020-05-14 08:24:22
13.71.21.123	attackspambots	Invalid user test123 from 13.71.21.123 port 1024	2020-05-14 07:56:44
118.97.23.33	attackbotsspam	May 14 02:38:20 hosting sshd[17829]: Invalid user jenkins from 118.97.23.33 port 45295 May 14 02:38:20 hosting sshd[17829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.97.23.33 May 14 02:38:20 hosting sshd[17829]: Invalid user jenkins from 118.97.23.33 port 45295 May 14 02:38:22 hosting sshd[17829]: Failed password for invalid user jenkins from 118.97.23.33 port 45295 ssh2 May 14 02:47:29 hosting sshd[18720]: Invalid user manju from 118.97.23.33 port 43588 ...	2020-05-14 08:01:12
218.92.0.168	attack	May 13 23:44:21 sshgateway sshd\[26601\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.168 user=root May 13 23:44:23 sshgateway sshd\[26601\]: Failed password for root from 218.92.0.168 port 46072 ssh2 May 13 23:44:35 sshgateway sshd\[26601\]: error: maximum authentication attempts exceeded for root from 218.92.0.168 port 46072 ssh2 \[preauth\]	2020-05-14 07:49:53
191.31.24.151	attackbotsspam	May 13 10:54:06 vzhost sshd[29346]: reveeclipse mapping checking getaddrinfo for 191.31.24.151.dynamic.adsl.gvt.net.br [191.31.24.151] failed - POSSIBLE BREAK-IN ATTEMPT! May 13 10:54:06 vzhost sshd[29346]: Invalid user al from 191.31.24.151 May 13 10:54:06 vzhost sshd[29346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.31.24.151 May 13 10:54:08 vzhost sshd[29346]: Failed password for invalid user al from 191.31.24.151 port 39145 ssh2 May 13 11:05:36 vzhost sshd[32229]: reveeclipse mapping checking getaddrinfo for 191.31.24.151.dynamic.adsl.gvt.net.br [191.31.24.151] failed - POSSIBLE BREAK-IN ATTEMPT! May 13 11:05:36 vzhost sshd[32229]: Invalid user esc from 191.31.24.151 May 13 11:05:36 vzhost sshd[32229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.31.24.151 May 13 11:05:39 vzhost sshd[32229]: Failed password for invalid user esc from 191.31.24.151 port 46612 ssh2 May 13........ -------------------------------	2020-05-14 08:08:32
170.210.83.126	attack	May 14 00:33:02 home sshd[17410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.210.83.126 May 14 00:33:03 home sshd[17410]: Failed password for invalid user tax from 170.210.83.126 port 39140 ssh2 May 14 00:37:42 home sshd[18059]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=170.210.83.126 ...	2020-05-14 08:03:45
14.215.51.241	attack	May 14 01:22:35 [host] sshd[8006]: Invalid user zi May 14 01:22:35 [host] sshd[8006]: pam_unix(sshd:a May 14 01:22:36 [host] sshd[8006]: Failed password	2020-05-14 08:04:23

最近上报的IP列表

97.74.236.9	179.178.83.31	122.54.198.147	170.238.123.148
212.92.123.232	219.93.6.3	36.89.232.235	46.116.149.172
39.130.175.6	37.147.29.187	188.114.6.222	194.208.252.219
69.229.6.31	246.118.4.173	87.70.97.73	93.205.154.187
191.217.137.114	116.133.221.150	6.141.56.121	254.211.58.149