200.52.6.66 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: Axtel S.A.B. de C.V.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2020-05-13 20:46:14

Comments on same subnet:

IP	Type	Details	Datetime
200.52.60.192	attack	Sep 28 22:38:03 mellenthin postfix/smtpd[9356]: NOQUEUE: reject: RCPT from unknown[200.52.60.192]: 554 5.7.1 Service unavailable; Client host [200.52.60.192] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/200.52.60.192; from= to= proto=ESMTP helo=	2020-09-29 22:51:59
200.52.60.192	attackbots	Sep 28 22:38:03 mellenthin postfix/smtpd[9356]: NOQUEUE: reject: RCPT from unknown[200.52.60.192]: 554 5.7.1 Service unavailable; Client host [200.52.60.192] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/200.52.60.192; from= to= proto=ESMTP helo=	2020-09-29 15:09:40
200.52.67.82	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-09-19 03:19:02
200.52.61.134	attackspambots	Automatic report - Port Scan Attack	2020-05-10 14:45:49
200.52.66.6	attackspambots	2019-07-09 04:52:33 1hkgF6-00044J-3m SMTP connection from \(6.66.52.200.in-addr.arpa\) \[200.52.66.6\]:61643 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-09 04:52:48 1hkgFK-00044b-M9 SMTP connection from \(6.66.52.200.in-addr.arpa\) \[200.52.66.6\]:43974 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-09 04:52:57 1hkgFU-00044s-Ct SMTP connection from \(6.66.52.200.in-addr.arpa\) \[200.52.66.6\]:53102 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-30 00:00:52
200.52.61.232	attack	unauthorized connection attempt	2020-01-28 19:41:30
200.52.61.16	attack	Unauthorized connection attempt detected from IP address 200.52.61.16 to port 23 [J]	2020-01-27 15:00:47
200.52.61.180	attackbotsspam	Port Scan detected from 200.52.61.180 (MX/Mexico/aol-dial-200-52-61-180.zone-0.ip.static-ftth.axtel.net.mx). 4 hits in the last 150 seconds	2020-01-22 14:29:55
200.52.60.193	attack	Automatic report - Port Scan Attack	2019-10-09 02:53:37
200.52.60.241	attackbots	Automatic report - Port Scan Attack	2019-09-14 16:57:43
200.52.60.227	attackbotsspam	Automatic report - Port Scan Attack	2019-07-25 05:24:56

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.52.6.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53201
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.52.6.66.			IN	A

;; AUTHORITY SECTION:
.			377	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051300 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 13 20:46:04 CST 2020
;; MSG SIZE  rcvd: 115

Host info

66.6.52.200.in-addr.arpa domain name pointer as5-200-52-6-66.mtyxl.static.axtel.net.
66.6.52.200.in-addr.arpa domain name pointer as5-200-52-6-66.mtyxl.axtel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.6.52.200.in-addr.arpa	name = as5-200-52-6-66.mtyxl.axtel.net.
66.6.52.200.in-addr.arpa	name = as5-200-52-6-66.mtyxl.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
74.69.76.25	attackbotsspam	Nov 28 02:09:46 vpn sshd[12105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.69.76.25 Nov 28 02:09:47 vpn sshd[12105]: Failed password for invalid user dan from 74.69.76.25 port 47392 ssh2 Nov 28 02:16:24 vpn sshd[12127]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.69.76.25	2020-01-05 15:09:35
76.187.208.47	attackspam	Mar 2 02:08:30 vpn sshd[16017]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.187.208.47 Mar 2 02:08:32 vpn sshd[16017]: Failed password for invalid user pz from 76.187.208.47 port 46974 ssh2 Mar 2 02:11:46 vpn sshd[16025]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.187.208.47	2020-01-05 14:54:01
92.221.145.57	attackbots	20 attempts against mh-misbehave-ban on pluto.magehost.pro	2020-01-05 15:08:49
75.144.18.129	attack	Dec 2 01:51:05 vpn sshd[19391]: Failed password for backup from 75.144.18.129 port 59210 ssh2 Dec 2 01:58:21 vpn sshd[19452]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.144.18.129 Dec 2 01:58:23 vpn sshd[19452]: Failed password for invalid user mwang from 75.144.18.129 port 50096 ssh2	2020-01-05 15:04:22
75.150.217.97	attack	Jan 2 18:32:53 vpn sshd[20221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.150.217.97 Jan 2 18:32:55 vpn sshd[20221]: Failed password for invalid user le from 75.150.217.97 port 58134 ssh2 Jan 2 18:35:34 vpn sshd[20235]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.150.217.97	2020-01-05 15:03:35
14.184.17.100	attack	Jan 5 05:56:30 163-172-32-151 sshd[31504]: Invalid user admin from 14.184.17.100 port 43166 ...	2020-01-05 14:51:02
76.25.119.25	attackbotsspam	Mar 23 20:27:27 vpn sshd[1483]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.25.119.25 Mar 23 20:27:30 vpn sshd[1483]: Failed password for invalid user kraft from 76.25.119.25 port 38280 ssh2 Mar 23 20:31:59 vpn sshd[1503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.25.119.25	2020-01-05 14:50:40
78.29.24.74	attackbotsspam	Unauthorized connection attempt detected from IP address 78.29.24.74 to port 445	2020-01-05 15:31:51
73.92.59.104	attackbotsspam	Mar 4 09:40:12 vpn sshd[30482]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.92.59.104 Mar 4 09:40:14 vpn sshd[30482]: Failed password for invalid user pj from 73.92.59.104 port 34682 ssh2 Mar 4 09:46:25 vpn sshd[30521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=73.92.59.104	2020-01-05 15:19:35
75.150.252.237	attackbots	Jan 3 05:12:02 vpn sshd[22633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.150.252.237 Jan 3 05:12:04 vpn sshd[22633]: Failed password for invalid user user from 75.150.252.237 port 48041 ssh2 Jan 3 05:14:38 vpn sshd[22639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.150.252.237	2020-01-05 15:03:03
76.70.14.3	attackspambots	invalid user	2020-01-05 15:23:13
74.213.77.196	attack	Mar 16 01:40:54 vpn sshd[23913]: Invalid user pi from 74.213.77.196 Mar 16 01:40:54 vpn sshd[23913]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.213.77.196 Mar 16 01:40:55 vpn sshd[23915]: Invalid user pi from 74.213.77.196 Mar 16 01:40:55 vpn sshd[23915]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.213.77.196 Mar 16 01:40:57 vpn sshd[23913]: Failed password for invalid user pi from 74.213.77.196 port 54274 ssh2	2020-01-05 15:10:35
74.63.250.6	attackspambots	Mar 14 01:06:12 vpn sshd[17985]: Failed password for root from 74.63.250.6 port 44020 ssh2 Mar 14 01:09:37 vpn sshd[18006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.63.250.6 Mar 14 01:09:39 vpn sshd[18006]: Failed password for invalid user nagios from 74.63.250.6 port 36520 ssh2	2020-01-05 15:11:06
117.121.38.246	attackspam	Unauthorized connection attempt detected from IP address 117.121.38.246 to port 2220 [J]	2020-01-05 15:25:30
218.104.204.101	attackspam	Unauthorized connection attempt detected from IP address 218.104.204.101 to port 2220 [J]	2020-01-05 14:51:57

Recently Reported IPs

79.106.125.14	5.196.171.101	2.135.39.134	176.119.28.196
34.72.16.199	2.134.183.238	103.129.220.94	74.6.134.125
183.89.212.244	36.79.255.85	47.107.43.232	134.122.14.226
36.48.144.158	178.62.234.124	1.55.154.239	189.213.158.198
218.166.99.248	148.251.135.249	114.217.58.52	114.226.52.55