64.61.149.66 - IPInfo

Basic Info

City: New York

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 64.61.149.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52999
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;64.61.149.66.			IN	A

;; AUTHORITY SECTION:
.			436	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092302 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Sep 24 09:35:55 CST 2020
;; MSG SIZE  rcvd: 116

Host info

66.149.61.64.in-addr.arpa domain name pointer static-64-61-149-66.isp.broadviewnet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.149.61.64.in-addr.arpa	name = static-64-61-149-66.isp.broadviewnet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.208.94	attackspam	Apr 21 06:22:08 srv01 sshd[14608]: Invalid user test from 106.12.208.94 port 58130 Apr 21 06:22:08 srv01 sshd[14608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.208.94 Apr 21 06:22:08 srv01 sshd[14608]: Invalid user test from 106.12.208.94 port 58130 Apr 21 06:22:11 srv01 sshd[14608]: Failed password for invalid user test from 106.12.208.94 port 58130 ssh2 Apr 21 06:25:27 srv01 sshd[18087]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.208.94 user=root Apr 21 06:25:30 srv01 sshd[18087]: Failed password for root from 106.12.208.94 port 45452 ssh2 ...	2020-04-21 15:17:29
34.92.63.3	attackspambots	Invalid user test from 34.92.63.3 port 38814	2020-04-21 15:31:17
116.109.22.150	attack	Triggered: repeated knocking on closed ports.	2020-04-21 15:22:53
106.13.17.8	attack	Dec 22 01:48:09 woltan sshd[6030]: Failed password for invalid user apache from 106.13.17.8 port 36946 ssh2	2020-04-21 15:40:20
134.209.194.17	attackspam	xmlrpc attack	2020-04-21 15:24:26
192.99.57.32	attackbots	Apr 20 23:01:27 mockhub sshd[11355]: Failed password for root from 192.99.57.32 port 50806 ssh2 Apr 20 23:05:56 mockhub sshd[11564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.57.32 ...	2020-04-21 15:18:58
101.0.73.82	attackbots	Wordpress malicious attack:[octaxmlrpc]	2020-04-21 15:13:28
27.124.40.118	attack	$f2bV_matches	2020-04-21 15:24:50
150.95.31.150	attackspambots	Invalid user test from 150.95.31.150 port 60732	2020-04-21 15:39:37
178.154.200.6	attackspam	[Tue Apr 21 10:53:08.225679 2020] [:error] [pid 24119:tid 139755073300224] [client 178.154.200.6:43362] [client 178.154.200.6] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xp5uJCfh1M@rIwqrTZPeoAAAAZY"] ...	2020-04-21 15:52:34
117.173.67.119	attackspambots	Apr 21 03:46:34 marvibiene sshd[26201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.173.67.119 user=root Apr 21 03:46:36 marvibiene sshd[26201]: Failed password for root from 117.173.67.119 port 3228 ssh2 Apr 21 03:54:03 marvibiene sshd[26454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.173.67.119 user=root Apr 21 03:54:05 marvibiene sshd[26454]: Failed password for root from 117.173.67.119 port 3229 ssh2 ...	2020-04-21 15:11:51
213.81.69.250	attack	trying to access non-authorized port	2020-04-21 15:34:31
189.210.19.195	attack	Port scanning	2020-04-21 15:15:34
77.40.86.159	attack	failed_logins	2020-04-21 15:47:58
67.205.162.223	attackbots	SSH brutforce	2020-04-21 15:33:57

Recently Reported IPs

89.132.70.220	134.249.185.163	69.6.58.216	112.231.164.253
185.254.124.133	120.59.124.147	108.185.213.42	39.215.148.228
106.161.228.32	175.17.61.40	3.13.71.46	45.185.121.94
182.117.158.255	161.21.64.31	181.188.93.23	186.219.236.153
93.180.152.28	153.133.193.175	83.0.31.50	201.211.226.224