66.59.104.27 - IPInfo

基本信息:

城市(city): Mechanicsburg

省份(region): Pennsylvania

国家(country): United States

运营商(isp): unknown

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

暂无关于此IP的讨论, 沙发请点上方按钮

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.59.104.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61215
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.59.104.27.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022001 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 21 08:08:24 CST 2025
;; MSG SIZE  rcvd: 105

HOST信息:

Host 27.104.59.66.in-addr.arpa. not found: 3(NXDOMAIN)

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 27.104.59.66.in-addr.arpa: NXDOMAIN

最新评论:

IP	类型	评论内容	时间
202.86.172.66	attack	Unauthorized connection attempt from IP address 202.86.172.66 on Port 445(SMB)	2020-09-11 03:52:01
123.163.116.6	attack	Brute forcing email accounts	2020-09-11 03:39:17
210.245.34.243	attack	Sep 10 14:57:30 cp sshd[10653]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.245.34.243	2020-09-11 03:42:42
46.31.221.116	attackbots	Sep 9 23:18:25 gospond sshd[3540]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.31.221.116 user=root Sep 9 23:18:27 gospond sshd[3540]: Failed password for root from 46.31.221.116 port 35154 ssh2 ...	2020-09-11 03:19:21
212.52.131.9	attack	Sep 10 16:13:02 ns382633 sshd\[18884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.52.131.9 user=root Sep 10 16:13:04 ns382633 sshd\[18884\]: Failed password for root from 212.52.131.9 port 36818 ssh2 Sep 10 16:20:40 ns382633 sshd\[20361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.52.131.9 user=root Sep 10 16:20:42 ns382633 sshd\[20361\]: Failed password for root from 212.52.131.9 port 33902 ssh2 Sep 10 16:26:33 ns382633 sshd\[21298\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.52.131.9 user=root	2020-09-11 03:27:13
181.52.249.177	attackbotsspam	Sep 10 19:13:45 game-panel sshd[10434]: Failed password for root from 181.52.249.177 port 45144 ssh2 Sep 10 19:16:22 game-panel sshd[10588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.52.249.177 Sep 10 19:16:24 game-panel sshd[10588]: Failed password for invalid user rr from 181.52.249.177 port 35988 ssh2	2020-09-11 03:40:05
14.232.160.213	attack	Sep 10 19:12:48 minden010 sshd[17823]: Failed password for root from 14.232.160.213 port 60984 ssh2 Sep 10 19:17:26 minden010 sshd[18339]: Failed password for root from 14.232.160.213 port 54542 ssh2 ...	2020-09-11 03:11:48
45.142.120.53	attackbotsspam	Sep 7 20:46:59 web02.agentur-b-2.de postfix/smtpd[667478]: warning: unknown[45.142.120.53]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:47:42 web02.agentur-b-2.de postfix/smtpd[664212]: warning: unknown[45.142.120.53]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:48:15 web02.agentur-b-2.de postfix/smtpd[664212]: warning: unknown[45.142.120.53]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:48:53 web02.agentur-b-2.de postfix/smtpd[668216]: warning: unknown[45.142.120.53]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 7 20:49:32 web02.agentur-b-2.de postfix/smtpd[667478]: warning: unknown[45.142.120.53]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-09-11 03:34:54
83.97.20.35	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 9 proto: tcp cat: Misc Attackbytes: 60	2020-09-11 03:29:09
36.85.215.75	attack	Unauthorized connection attempt from IP address 36.85.215.75 on Port 445(SMB)	2020-09-11 03:43:47
210.77.68.221	attack	Sep 10 20:34:47 jane sshd[6458]: Failed password for root from 210.77.68.221 port 63994 ssh2 ...	2020-09-11 03:43:00
49.51.251.227	attackspam	Sep 8 08:36:55 server6 sshd[14502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.251.227 user=r.r Sep 8 08:36:57 server6 sshd[14502]: Failed password for r.r from 49.51.251.227 port 58070 ssh2 Sep 8 08:36:57 server6 sshd[14502]: Received disconnect from 49.51.251.227: 11: Bye Bye [preauth] Sep 8 08:49:14 server6 sshd[16405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.251.227 user=r.r Sep 8 08:49:15 server6 sshd[16405]: Failed password for r.r from 49.51.251.227 port 43228 ssh2 Sep 8 08:49:16 server6 sshd[16405]: Received disconnect from 49.51.251.227: 11: Bye Bye [preauth] Sep 8 08:52:56 server6 sshd[4035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.51.251.227 user=r.r Sep 8 08:52:58 server6 sshd[4035]: Failed password for r.r from 49.51.251.227 port 49256 ssh2 Sep 8 08:52:58 server6 sshd[4035]: Received disconne........ -------------------------------	2020-09-11 03:24:41
142.93.182.7	attackbots	142.93.182.7 - - [10/Sep/2020:17:24:11 +0100] "POST /wp-login.php HTTP/1.1" 200 4399 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.182.7 - - [10/Sep/2020:17:24:16 +0100] "POST /wp-login.php HTTP/1.1" 200 4399 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 142.93.182.7 - - [10/Sep/2020:17:24:16 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-11 03:33:57
5.78.105.168	attackspam	(imapd) Failed IMAP login from 5.78.105.168 (IR/Iran/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Sep 10 04:06:38 ir1 dovecot[3110802]: imap-login: Aborted login (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=5.78.105.168, lip=5.63.12.44, session=	2020-09-11 03:49:12
14.152.49.218	attack	SSH Brute Force	2020-09-11 03:23:59

最近上报的IP列表

238.44.176.61	135.117.20.17	104.152.145.208	70.146.248.106
73.223.64.186	87.164.159.219	96.173.34.127	64.85.19.227
119.23.214.139	129.216.155.76	93.199.88.204	26.3.156.137
174.247.136.155	196.14.10.210	95.226.4.2	33.144.36.17
91.248.140.204	192.217.245.116	213.129.15.158	7.78.95.192