66.102.134.199

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Add2Net Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port Scan: TCP/445	2019-09-14 12:44:57

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.102.134.199
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3926
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.102.134.199.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091302 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Sep 14 12:44:51 CST 2019
;; MSG SIZE  rcvd: 118

Host info

199.134.102.66.in-addr.arpa domain name pointer haw-66-102-134-199.lunarcolo.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
199.134.102.66.in-addr.arpa	name = haw-66-102-134-199.lunarcolo.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.186.247.126	attackbots	Lines containing failures of 185.186.247.126 Mar 26 13:12:17 kopano sshd[29652]: Invalid user roosevelt from 185.186.247.126 port 37224 Mar 26 13:12:17 kopano sshd[29652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.186.247.126 Mar 26 13:12:19 kopano sshd[29652]: Failed password for invalid user roosevelt from 185.186.247.126 port 37224 ssh2 Mar 26 13:12:19 kopano sshd[29652]: Received disconnect from 185.186.247.126 port 37224:11: Bye Bye [preauth] Mar 26 13:12:19 kopano sshd[29652]: Disconnected from invalid user roosevelt 185.186.247.126 port 37224 [preauth] Mar 26 13:18:30 kopano sshd[29842]: Invalid user deploy from 185.186.247.126 port 59529 Mar 26 13:18:30 kopano sshd[29842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.186.247.126 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=185.186.247.126	2020-03-27 04:12:04
84.58.203.178	attack	Mar 26 13:14:12 server010 sshd[24624]: Invalid user navi from 84.58.203.178 Mar 26 13:14:12 server010 sshd[24624]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.58.203.178 Mar 26 13:14:14 server010 sshd[24624]: Failed password for invalid user navi from 84.58.203.178 port 34052 ssh2 Mar 26 13:18:08 server010 sshd[24766]: Invalid user user from 84.58.203.178 Mar 26 13:18:08 server010 sshd[24766]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.58.203.178 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=84.58.203.178	2020-03-27 04:09:32
200.56.44.192	attackspambots	Mar 27 02:06:42 itv-usvr-01 sshd[3454]: Invalid user faq from 200.56.44.192 Mar 27 02:06:42 itv-usvr-01 sshd[3454]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.56.44.192 Mar 27 02:06:42 itv-usvr-01 sshd[3454]: Invalid user faq from 200.56.44.192 Mar 27 02:06:44 itv-usvr-01 sshd[3454]: Failed password for invalid user faq from 200.56.44.192 port 39790 ssh2 Mar 27 02:13:54 itv-usvr-01 sshd[4362]: Invalid user marcello from 200.56.44.192	2020-03-27 04:01:05
118.187.4.172	attackbots	Mar 26 16:14:56 cloud sshd[24894]: Failed password for ftp from 118.187.4.172 port 38044 ssh2 Mar 26 16:24:26 cloud sshd[25062]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.187.4.172	2020-03-27 04:16:03
129.204.21.49	attack	20 attempts against mh-ssh on cloud	2020-03-27 04:07:31
180.76.135.15	attackbots	SSH invalid-user multiple login try	2020-03-27 04:10:43
217.182.70.150	attackbotsspam	web-1 [ssh] SSH Attack	2020-03-27 03:59:22
149.154.71.44	attackbots	Mar 26 20:39:54 debian-2gb-nbg1-2 kernel: \[7510668.322491\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=149.154.71.44 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=10693 DF PROTO=TCP SPT=50118 DPT=80 WINDOW=0 RES=0x00 RST URGP=0 Mar 26 20:39:54 debian-2gb-nbg1-2 kernel: \[7510668.341507\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=149.154.71.44 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=51 ID=10694 DF PROTO=TCP SPT=50118 DPT=80 WINDOW=0 RES=0x00 RST URGP=0	2020-03-27 03:49:42
80.14.99.14	attackbots	(sshd) Failed SSH login from 80.14.99.14 (FR/France/laubervilliers-659-1-124-14.w80-14.abo.wanadoo.fr): 5 in the last 3600 secs	2020-03-27 04:04:07
203.195.231.79	attackspambots	Mar 26 18:47:26 host01 sshd[29146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.231.79 Mar 26 18:47:28 host01 sshd[29146]: Failed password for invalid user alvarie from 203.195.231.79 port 54922 ssh2 Mar 26 18:49:52 host01 sshd[29497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.231.79 ...	2020-03-27 04:06:41
212.64.70.2	attackbots	Mar 26 18:58:01 serwer sshd\[22594\]: Invalid user naga from 212.64.70.2 port 50152 Mar 26 18:58:01 serwer sshd\[22594\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.70.2 Mar 26 18:58:03 serwer sshd\[22594\]: Failed password for invalid user naga from 212.64.70.2 port 50152 ssh2 ...	2020-03-27 03:41:03
106.54.114.143	attackbots	Mar 26 10:34:40 lanister sshd[28967]: Invalid user webftp from 106.54.114.143 Mar 26 10:34:40 lanister sshd[28967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.114.143 Mar 26 10:34:40 lanister sshd[28967]: Invalid user webftp from 106.54.114.143 Mar 26 10:34:42 lanister sshd[28967]: Failed password for invalid user webftp from 106.54.114.143 port 60870 ssh2	2020-03-27 03:47:40
189.3.152.194	attack	Brute-force attempt banned	2020-03-27 03:56:50
94.102.56.215	attack	94.102.56.215 was recorded 17 times by 9 hosts attempting to connect to the following ports: 41123,41141,41119,41117. Incident counter (4h, 24h, all-time): 17, 44, 8793	2020-03-27 04:00:19
159.203.184.54	attackspambots	Automatic report - XMLRPC Attack	2020-03-27 03:46:13

Recently Reported IPs

205.158.161.213	192.171.100.38	169.230.129.225	78.177.173.225
213.202.120.38	97.133.108.190	209.181.78.59	206.253.38.205
227.205.216.29	201.217.80.226	198.27.84.34	187.44.127.233
186.195.18.138	5.157.27.157	186.115.71.10	175.150.17.142
167.71.198.106	155.64.38.80	206.135.5.96	164.109.183.4