66.103.14.210 - IPInfo

Basic Info

City: Miami

Region: Florida

Country: United States

Internet Service Provider: Hotwire Communications

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	ET CINS Active Threat Intelligence Poor Reputation IP group 66 - port: 60001 proto: TCP cat: Misc Attack	2020-06-13 06:28:31

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.103.14.210
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4002
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.103.14.210.			IN	A

;; AUTHORITY SECTION:
.			513	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061201 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 13 06:28:26 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 210.14.103.66.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 210.14.103.66.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
115.207.110.20	attack	Banned for posting to wp-login.php without referer {"log":"househuntercarolina","testcookie":"1","redirect_to":"http:\/\/househuntercarolina.com\/wp-admin\/","wp-submit":"Log In","pwd":"househuntercarolina1"}	2019-07-07 06:06:11
51.68.230.54	attack	Jul 6 23:46:56 srv-4 sshd\[6042\]: Invalid user wind from 51.68.230.54 Jul 6 23:46:56 srv-4 sshd\[6042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.230.54 Jul 6 23:46:58 srv-4 sshd\[6042\]: Failed password for invalid user wind from 51.68.230.54 port 41252 ssh2 ...	2019-07-07 06:04:01
103.10.210.252	attackspam	DATE:2019-07-06 15:16:44, IP:103.10.210.252, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-07-07 05:51:35
116.225.77.51	attackspam	Brute force SMTP login attempts.	2019-07-07 05:45:19
209.17.96.58	attack	8888/tcp 8080/tcp 9000/tcp... [2019-05-06/07-06]136pkt,13pt.(tcp),1pt.(udp)	2019-07-07 06:06:56
191.53.254.241	attack	SMTP-sasl brute force ...	2019-07-07 05:53:26
47.91.90.132	attack	2019-07-06T16:27:16.735244cavecanem sshd[8077]: Invalid user sandbox from 47.91.90.132 port 58626 2019-07-06T16:27:16.737762cavecanem sshd[8077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.91.90.132 2019-07-06T16:27:16.735244cavecanem sshd[8077]: Invalid user sandbox from 47.91.90.132 port 58626 2019-07-06T16:27:19.164302cavecanem sshd[8077]: Failed password for invalid user sandbox from 47.91.90.132 port 58626 ssh2 2019-07-06T16:31:29.121547cavecanem sshd[9366]: Invalid user db from 47.91.90.132 port 56482 2019-07-06T16:31:29.125555cavecanem sshd[9366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.91.90.132 2019-07-06T16:31:29.121547cavecanem sshd[9366]: Invalid user db from 47.91.90.132 port 56482 2019-07-06T16:31:30.948497cavecanem sshd[9366]: Failed password for invalid user db from 47.91.90.132 port 56482 ssh2 2019-07-06T16:35:41.280717cavecanem sshd[10743]: Invalid user chong from 47.91. ...	2019-07-07 06:07:45
144.140.214.68	attack	Jul 6 14:17:57 MK-Soft-VM5 sshd\[27054\]: Invalid user sourire from 144.140.214.68 port 43028 Jul 6 14:17:57 MK-Soft-VM5 sshd\[27054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.140.214.68 Jul 6 14:17:59 MK-Soft-VM5 sshd\[27054\]: Failed password for invalid user sourire from 144.140.214.68 port 43028 ssh2 ...	2019-07-07 05:55:37
91.121.82.64	attack	91.121.82.64 - - [06/Jul/2019:22:07:39 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.82.64 - - [06/Jul/2019:22:07:40 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.82.64 - - [06/Jul/2019:22:07:40 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.82.64 - - [06/Jul/2019:22:07:40 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.82.64 - - [06/Jul/2019:22:07:41 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 91.121.82.64 - - [06/Jul/2019:22:07:41 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-07 06:25:58
162.243.142.92	attackspam	06.07.2019 13:17:07 Connection to port 5900 blocked by firewall	2019-07-07 05:45:40
185.36.81.169	attack	2019-07-01T14:38:19.113213 X postfix/smtpd[59781]: warning: unknown[185.36.81.169]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-07-01T15:48:39.128667 X postfix/smtpd[10929]: warning: unknown[185.36.81.169]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-07-01T16:59:13.217771 X postfix/smtpd[17152]: warning: unknown[185.36.81.169]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-07 06:20:50
180.241.47.189	attackspambots	Unauthorised access (Jul 6) SRC=180.241.47.189 LEN=52 TTL=116 ID=26811 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-07 06:02:35
77.234.46.201	attackbotsspam	Web App Attack	2019-07-07 06:05:03
91.121.179.17	attack	Jul 6 23:12:35 ns37 sshd[8852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.179.17 Jul 6 23:12:37 ns37 sshd[8852]: Failed password for invalid user user from 91.121.179.17 port 59962 ssh2 Jul 6 23:16:17 ns37 sshd[9055]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.179.17	2019-07-07 06:15:11
200.133.125.244	attackspambots	Jul 7 02:41:24 itv-usvr-02 sshd[26823]: Invalid user adela from 200.133.125.244 port 54354 Jul 7 02:41:24 itv-usvr-02 sshd[26823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.133.125.244 Jul 7 02:41:24 itv-usvr-02 sshd[26823]: Invalid user adela from 200.133.125.244 port 54354 Jul 7 02:41:26 itv-usvr-02 sshd[26823]: Failed password for invalid user adela from 200.133.125.244 port 54354 ssh2 Jul 7 02:44:41 itv-usvr-02 sshd[26835]: Invalid user master from 200.133.125.244 port 42429	2019-07-07 06:14:35

Recently Reported IPs

165.11.123.83	208.251.109.40	46.209.126.44	1.59.99.130
188.39.23.173	84.194.180.108	116.226.198.97	197.71.149.160
60.215.112.65	42.180.208.12	66.48.234.194	169.209.142.229
49.65.164.17	34.219.186.141	45.192.159.154	176.139.15.96
85.11.81.157	118.72.111.44	223.12.79.128	12.37.242.28