66.68.187.145 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): United States

运营商(isp): Charter Communications Inc

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspam	Invalid user cmc from 66.68.187.145 port 39850	2020-08-18 18:14:08
attackbots	Aug 11 13:58:00 marvibiene sshd[20468]: Failed password for root from 66.68.187.145 port 53606 ssh2 Aug 11 14:09:53 marvibiene sshd[21072]: Failed password for root from 66.68.187.145 port 34314 ssh2	2020-08-11 21:37:00
attackspambots	2020-07-30T14:06:39.382543v22018076590370373 sshd[18954]: Failed password for root from 66.68.187.145 port 38024 ssh2 2020-07-30T14:11:00.182963v22018076590370373 sshd[13681]: Invalid user kcyong from 66.68.187.145 port 51712 2020-07-30T14:11:00.188522v22018076590370373 sshd[13681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.68.187.145 2020-07-30T14:11:00.182963v22018076590370373 sshd[13681]: Invalid user kcyong from 66.68.187.145 port 51712 2020-07-30T14:11:02.787658v22018076590370373 sshd[13681]: Failed password for invalid user kcyong from 66.68.187.145 port 51712 ssh2 ...	2020-07-30 22:43:28
attack	SSH Invalid Login	2020-07-30 05:58:40
attackspambots	Jul 28 22:18:04 host sshd[5713]: Invalid user vnc from 66.68.187.145 port 58042 ...	2020-07-29 04:36:19
attackspam	Total attacks: 2	2020-07-27 07:24:26
attack	Fail2Ban - SSH Bruteforce Attempt	2020-07-19 21:24:26
attackbotsspam	Invalid user admin from 66.68.187.145 port 47708	2020-07-18 07:10:46
attackbots	detected by Fail2Ban	2020-07-16 02:12:22
attack	2020-07-07T23:04:34.925693abusebot-7.cloudsearch.cf sshd[21200]: Invalid user public from 66.68.187.145 port 38298 2020-07-07T23:04:34.929481abusebot-7.cloudsearch.cf sshd[21200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-68-187-145.austin.res.rr.com 2020-07-07T23:04:34.925693abusebot-7.cloudsearch.cf sshd[21200]: Invalid user public from 66.68.187.145 port 38298 2020-07-07T23:04:37.647861abusebot-7.cloudsearch.cf sshd[21200]: Failed password for invalid user public from 66.68.187.145 port 38298 ssh2 2020-07-07T23:07:47.552160abusebot-7.cloudsearch.cf sshd[21207]: Invalid user gulliver from 66.68.187.145 port 35350 2020-07-07T23:07:47.556097abusebot-7.cloudsearch.cf sshd[21207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-68-187-145.austin.res.rr.com 2020-07-07T23:07:47.552160abusebot-7.cloudsearch.cf sshd[21207]: Invalid user gulliver from 66.68.187.145 port 35350 2020-07-07T23:07:4 ...	2020-07-08 08:58:30
attackbots	DATE:2020-05-16 04:25:21, IP:66.68.187.145, PORT:ssh SSH brute force auth (docker-dc)	2020-05-16 12:27:19
attack	5x Failed Password	2020-04-26 19:43:34
attackspambots	Apr 23 13:25:33 vlre-nyc-1 sshd\[13372\]: Invalid user ubuntu from 66.68.187.145 Apr 23 13:25:33 vlre-nyc-1 sshd\[13372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.68.187.145 Apr 23 13:25:35 vlre-nyc-1 sshd\[13372\]: Failed password for invalid user ubuntu from 66.68.187.145 port 53900 ssh2 Apr 23 13:28:54 vlre-nyc-1 sshd\[13405\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.68.187.145 user=root Apr 23 13:28:56 vlre-nyc-1 sshd\[13405\]: Failed password for root from 66.68.187.145 port 48226 ssh2 Apr 23 13:30:57 vlre-nyc-1 sshd\[13443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.68.187.145 user=root Apr 23 13:30:59 vlre-nyc-1 sshd\[13443\]: Failed password for root from 66.68.187.145 port 52958 ssh2 Apr 23 13:33:00 vlre-nyc-1 sshd\[13466\]: Invalid user ty from 66.68.187.145 Apr 23 13:33:00 vlre-nyc-1 sshd\[13466\]: pam_unix\(sshd:a ...	2020-04-26 07:44:18
attackspambots	" "	2020-04-21 14:19:52
attackbots	Apr 15 15:15:27 game-panel sshd[22793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.68.187.145 Apr 15 15:15:29 game-panel sshd[22793]: Failed password for invalid user oem from 66.68.187.145 port 47454 ssh2 Apr 15 15:19:23 game-panel sshd[22962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.68.187.145	2020-04-15 23:21:52
attackspambots	2020-04-14 UTC: (43x) - bathory,bruno,db2,fake,girl,isaac,nobody,player,rawlinson,rdavidson,root(29x),server,tester,unidata,xavier	2020-04-15 19:37:00
attack	Apr 14 08:46:14 server sshd[18928]: Failed password for root from 66.68.187.145 port 44986 ssh2 Apr 14 08:50:35 server sshd[20083]: Failed password for invalid user user from 66.68.187.145 port 49558 ssh2 Apr 14 08:52:35 server sshd[20606]: Failed password for invalid user suoh from 66.68.187.145 port 53396 ssh2	2020-04-14 15:36:04
attackbotsspam	Apr 11 17:06:33 ncomp sshd[12628]: Invalid user apache from 66.68.187.145 Apr 11 17:06:33 ncomp sshd[12628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.68.187.145 Apr 11 17:06:33 ncomp sshd[12628]: Invalid user apache from 66.68.187.145 Apr 11 17:06:36 ncomp sshd[12628]: Failed password for invalid user apache from 66.68.187.145 port 45550 ssh2	2020-04-12 01:58:01
attackspam	2020-04-04T19:11:04.320321shield sshd\[13213\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-68-187-145.austin.res.rr.com user=root 2020-04-04T19:11:06.144293shield sshd\[13213\]: Failed password for root from 66.68.187.145 port 36248 ssh2 2020-04-04T19:15:11.334564shield sshd\[13810\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-68-187-145.austin.res.rr.com user=root 2020-04-04T19:15:13.067850shield sshd\[13810\]: Failed password for root from 66.68.187.145 port 46074 ssh2 2020-04-04T19:19:14.219029shield sshd\[14732\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-68-187-145.austin.res.rr.com user=root	2020-04-05 04:23:29

相同子网IP讨论:

IP	类型	评论内容	时间
66.68.187.140	attackbots	SSH login attempts.	2020-10-01 07:47:51
66.68.187.140	attack	Invalid user ftptest from 66.68.187.140 port 53444	2020-10-01 00:17:41
66.68.187.140	attackspambots	$f2bV_matches	2020-09-30 16:38:30
66.68.187.140	attack	Invalid user hduser from 66.68.187.140 port 44006	2020-09-12 20:29:00
66.68.187.140	attackbots	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-12 12:31:30
66.68.187.140	attack	[ssh] SSH attack	2020-09-12 04:20:42
66.68.187.140	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-03T14:45:35Z and 2020-09-03T14:55:51Z	2020-09-03 23:15:04
66.68.187.140	attack	Sep 3 12:47:44 itv-usvr-02 sshd[13720]: Invalid user cumulus from 66.68.187.140 port 45294 Sep 3 12:47:44 itv-usvr-02 sshd[13720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.68.187.140 Sep 3 12:47:44 itv-usvr-02 sshd[13720]: Invalid user cumulus from 66.68.187.140 port 45294 Sep 3 12:47:46 itv-usvr-02 sshd[13720]: Failed password for invalid user cumulus from 66.68.187.140 port 45294 ssh2 Sep 3 12:51:44 itv-usvr-02 sshd[13865]: Invalid user dxp from 66.68.187.140 port 53324	2020-09-03 14:48:53
66.68.187.140	attackbotsspam	Sep 2 17:28:45 scw-focused-cartwright sshd[13665]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.68.187.140 Sep 2 17:28:47 scw-focused-cartwright sshd[13665]: Failed password for invalid user fedora from 66.68.187.140 port 53658 ssh2	2020-09-03 07:02:22
66.68.187.140	attack	Sep 1 14:44:30 lnxmail61 sshd[28245]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.68.187.140	2020-09-01 21:11:59
66.68.187.140	attack	$lgm	2020-08-30 07:41:41
66.68.187.140	attackbots	Aug 29 13:19:22 l02a sshd[24219]: Invalid user admin from 66.68.187.140 Aug 29 13:19:22 l02a sshd[24219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-68-187-140.austin.res.rr.com Aug 29 13:19:22 l02a sshd[24219]: Invalid user admin from 66.68.187.140 Aug 29 13:19:25 l02a sshd[24219]: Failed password for invalid user admin from 66.68.187.140 port 45184 ssh2	2020-08-30 01:57:03
66.68.187.140	attack	Aug 24 14:53:28 gutwein sshd[624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-68-187-140.austin.res.rr.com Aug 24 14:53:30 gutwein sshd[624]: Failed password for invalid user kk from 66.68.187.140 port 53802 ssh2 Aug 24 14:53:30 gutwein sshd[624]: Received disconnect from 66.68.187.140: 11: Bye Bye [preauth] Aug 24 14:56:12 gutwein sshd[1218]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-68-187-140.austin.res.rr.com Aug 24 14:56:15 gutwein sshd[1218]: Failed password for invalid user caffe from 66.68.187.140 port 36910 ssh2 Aug 24 14:56:15 gutwein sshd[1218]: Received disconnect from 66.68.187.140: 11: Bye Bye [preauth] Aug 24 14:58:14 gutwein sshd[1652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=cpe-66-68-187-140.austin.res.rr.com Aug 24 14:58:16 gutwein sshd[1652]: Failed password for invalid user helper from 66.68.187.140........ -------------------------------	2020-08-27 09:34:56

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.68.187.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56447
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.68.187.145.			IN	A

;; AUTHORITY SECTION:
.			538	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040300 1800 900 604800 86400

;; Query time: 80 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Apr 04 00:03:58 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

145.187.68.66.in-addr.arpa domain name pointer cpe-66-68-187-145.austin.res.rr.com.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.187.68.66.in-addr.arpa	name = cpe-66-68-187-145.austin.res.rr.com.

Authoritative answers can be found from:

IP	类型	评论内容	时间
66.154.107.47	attackbots	Invalid user kdomanski from 66.154.107.47 port 33138	2020-04-02 14:37:29
222.186.173.238	attack	Apr 2 02:21:53 plusreed sshd[19347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Apr 2 02:21:55 plusreed sshd[19347]: Failed password for root from 222.186.173.238 port 5892 ssh2 ...	2020-04-02 14:25:41
222.186.30.167	attackbots	04/02/2020-02:35:14.770376 222.186.30.167 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-02 14:49:08
118.141.162.15	attack	Unauthorized connection attempt detected from IP address 118.141.162.15 to port 1433	2020-04-02 14:47:50
106.12.209.57	attackbotsspam	$f2bV_matches	2020-04-02 14:40:29
203.98.191.200	attack	Brute Force	2020-04-02 14:55:51
222.186.30.57	attackbots	Total attacks: 144	2020-04-02 14:41:06
45.76.121.64	attackspambots	[portscan] Port scan	2020-04-02 14:43:09
129.211.133.174	attackspambots	Apr 2 06:24:52 ourumov-web sshd\[14215\]: Invalid user user from 129.211.133.174 port 43948 Apr 2 06:24:52 ourumov-web sshd\[14215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.133.174 Apr 2 06:24:54 ourumov-web sshd\[14215\]: Failed password for invalid user user from 129.211.133.174 port 43948 ssh2 ...	2020-04-02 15:00:38
49.235.115.221	attackbots	Apr 2 07:01:36 server sshd[15470]: Failed password for root from 49.235.115.221 port 44268 ssh2 Apr 2 07:07:35 server sshd[17101]: Failed password for root from 49.235.115.221 port 46054 ssh2 Apr 2 07:13:35 server sshd[18671]: Failed password for root from 49.235.115.221 port 47846 ssh2	2020-04-02 14:19:27
174.63.20.105	attackbotsspam	Apr 2 02:11:24 NPSTNNYC01T sshd[29387]: Failed password for root from 174.63.20.105 port 36748 ssh2 Apr 2 02:15:19 NPSTNNYC01T sshd[29716]: Failed password for root from 174.63.20.105 port 48896 ssh2 ...	2020-04-02 14:30:59
111.9.56.34	attack	2020-04-02T06:08:58.288447abusebot-3.cloudsearch.cf sshd[12495]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.9.56.34 user=root 2020-04-02T06:09:00.223339abusebot-3.cloudsearch.cf sshd[12495]: Failed password for root from 111.9.56.34 port 46716 ssh2 2020-04-02T06:13:05.060235abusebot-3.cloudsearch.cf sshd[12741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.9.56.34 user=root 2020-04-02T06:13:06.904592abusebot-3.cloudsearch.cf sshd[12741]: Failed password for root from 111.9.56.34 port 36620 ssh2 2020-04-02T06:17:12.378199abusebot-3.cloudsearch.cf sshd[12950]: Invalid user student from 111.9.56.34 port 54758 2020-04-02T06:17:12.385896abusebot-3.cloudsearch.cf sshd[12950]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.9.56.34 2020-04-02T06:17:12.378199abusebot-3.cloudsearch.cf sshd[12950]: Invalid user student from 111.9.56.34 port 54758 2020-04-0 ...	2020-04-02 14:59:20
51.255.51.127	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-04-02 14:38:48
41.224.59.78	attack	Invalid user zhanggy from 41.224.59.78 port 32970	2020-04-02 14:19:53
76.127.17.138	attackbots	Apr 2 05:58:25 * sshd[26089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.127.17.138	2020-04-02 14:33:31

最近上报的IP列表

236.68.255.108	239.216.34.15	92.9.60.100	102.43.48.193
48.33.83.167	192.184.9.177	6.64.120.238	210.8.35.45
254.2.210.231	102.96.106.55	124.83.35.125	123.27.88.206
24.201.162.53	96.246.114.250	143.107.254.74	118.93.170.3
9.66.213.152	112.13.200.154	200.60.8.13	35.99.26.69