66.214.1.242 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
66.214.160.49	attackbotsspam	Aug 13 16:24:53 josie sshd[24566]: Invalid user admin from 66.214.160.49 Aug 13 16:24:53 josie sshd[24566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.214.160.49 Aug 13 16:24:54 josie sshd[24566]: Failed password for invalid user admin from 66.214.160.49 port 43742 ssh2 Aug 13 16:24:54 josie sshd[24568]: Received disconnect from 66.214.160.49: 11: Bye Bye Aug 13 16:24:55 josie sshd[24578]: Invalid user admin from 66.214.160.49 Aug 13 16:24:55 josie sshd[24578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.214.160.49 Aug 13 16:24:57 josie sshd[24578]: Failed password for invalid user admin from 66.214.160.49 port 43821 ssh2 Aug 13 16:24:57 josie sshd[24579]: Received disconnect from 66.214.160.49: 11: Bye Bye Aug 13 16:24:58 josie sshd[24602]: Invalid user admin from 66.214.160.49 Aug 13 16:24:58 josie sshd[24602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu........ -------------------------------	2020-08-14 08:49:36
66.214.128.80	attack	Automatic report - Port Scan Attack	2019-11-18 20:35:18
66.214.125.12	attackspam	firewall-block, port(s): 445/tcp	2019-09-03 17:22:51
66.214.125.12	attack	firewall-block, port(s): 445/tcp	2019-07-27 22:02:57
66.214.125.12	attackbotsspam	19/7/19@21:28:26: FAIL: Alarm-Intrusion address from=66.214.125.12 ...	2019-07-20 15:05:41
66.214.125.12	attack	SMB Server BruteForce Attack	2019-07-11 09:39:02
66.214.125.12	attackbots	SMB Server BruteForce Attack	2019-06-25 02:09:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.214.1.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4441
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.214.1.242.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025031300 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 13 18:59:18 CST 2025
;; MSG SIZE  rcvd: 105

Host info

242.1.214.66.in-addr.arpa domain name pointer syn-066-214-001-242.inf.spectrum.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
242.1.214.66.in-addr.arpa	name = syn-066-214-001-242.inf.spectrum.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.241.169.184	attackbotsspam	Mar 7 23:06:10 DAAP sshd[3504]: Invalid user loyal from 192.241.169.184 port 44272 Mar 7 23:06:10 DAAP sshd[3504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.169.184 Mar 7 23:06:10 DAAP sshd[3504]: Invalid user loyal from 192.241.169.184 port 44272 Mar 7 23:06:11 DAAP sshd[3504]: Failed password for invalid user loyal from 192.241.169.184 port 44272 ssh2 Mar 7 23:14:59 DAAP sshd[3667]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.241.169.184 user=root Mar 7 23:15:01 DAAP sshd[3667]: Failed password for root from 192.241.169.184 port 53080 ssh2 ...	2020-03-08 07:36:15
185.164.138.21	attack	Mar 7 23:41:53 MK-Soft-VM3 sshd[1402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.164.138.21 Mar 7 23:41:55 MK-Soft-VM3 sshd[1402]: Failed password for invalid user user from 185.164.138.21 port 34838 ssh2 ...	2020-03-08 07:40:51
106.2.4.99	attackbotsspam	Mar 8 03:49:12 gw1 sshd[6481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.2.4.99 Mar 8 03:49:14 gw1 sshd[6481]: Failed password for invalid user centos from 106.2.4.99 port 37706 ssh2 ...	2020-03-08 06:59:29
139.59.62.22	attack	Mar 7 22:05:03 124388 sshd[14365]: Invalid user ts3 from 139.59.62.22 port 33904 Mar 7 22:05:03 124388 sshd[14365]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.62.22 Mar 7 22:05:03 124388 sshd[14365]: Invalid user ts3 from 139.59.62.22 port 33904 Mar 7 22:05:05 124388 sshd[14365]: Failed password for invalid user ts3 from 139.59.62.22 port 33904 ssh2 Mar 7 22:08:35 124388 sshd[14493]: Invalid user chendaocheng from 139.59.62.22 port 35278	2020-03-08 07:34:24
188.208.120.242	attackbots	1583618978 - 03/07/2020 23:09:38 Host: 188.208.120.242/188.208.120.242 Port: 445 TCP Blocked	2020-03-08 07:02:20
92.118.38.58	attackspambots	2020-03-07 23:49:56 dovecot_login authenticator failed for $User$ \[92.118.38.58\]: 535 Incorrect authentication data $set_id=mmorgan@no-server.de$ 2020-03-07 23:49:56 dovecot_login authenticator failed for $User$ \[92.118.38.58\]: 535 Incorrect authentication data $set_id=mmorgan@no-server.de$ 2020-03-07 23:50:04 dovecot_login authenticator failed for $User$ \[92.118.38.58\]: 535 Incorrect authentication data $set_id=mmorgan@no-server.de$ 2020-03-07 23:50:04 dovecot_login authenticator failed for $User$ \[92.118.38.58\]: 535 Incorrect authentication data $set_id=mmorgan@no-server.de$ 2020-03-07 23:50:26 dovecot_login authenticator failed for $User$ \[92.118.38.58\]: 535 Incorrect authentication data $set_id=mbell@no-server.de$ 2020-03-07 23:50:26 dovecot_login authenticator failed for $User$ \[92.118.38.58\]: 535 Incorrect authentication data $set_id=mbell@no-server.de$ ...	2020-03-08 07:05:20
149.56.19.4	attack	wp-login.php	2020-03-08 07:33:25
80.82.77.132	attackbots	Port Scan detected from 80.82.77.132 (NL/Netherlands/-). 11 hits in the last 96 seconds	2020-03-08 07:39:08
222.186.175.150	attack	Multiple SSH login attempts.	2020-03-08 07:25:39
192.161.161.170	attack	Mar 7 22:49:59 hermescis postfix/smtpd[16317]: NOQUEUE: reject: RCPT from unknown[192.161.161.170]: 550 5.1.1 : Recipient address rejected:* from=<425@l.phiscamsk.casa> to= proto=ESMTP helo=	2020-03-08 07:38:11
88.156.122.72	attack	$f2bV_matches	2020-03-08 07:09:16
119.192.55.100	attackspambots	Mar 7 13:18:10 tdfoods sshd\[23972\]: Invalid user ftp from 119.192.55.100 Mar 7 13:18:10 tdfoods sshd\[23972\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.192.55.100 Mar 7 13:18:12 tdfoods sshd\[23972\]: Failed password for invalid user ftp from 119.192.55.100 port 44098 ssh2 Mar 7 13:24:23 tdfoods sshd\[24400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.192.55.100 user=www-data Mar 7 13:24:25 tdfoods sshd\[24400\]: Failed password for www-data from 119.192.55.100 port 33727 ssh2	2020-03-08 07:39:52
178.89.82.225	attackspam	1583618911 - 03/07/2020 23:08:31 Host: 178.89.82.225/178.89.82.225 Port: 445 TCP Blocked	2020-03-08 07:37:30
117.89.13.188	attackbots	Lines containing failures of 117.89.13.188 Mar 6 16:37:59 UTC__SANYALnet-Labs__cac1 sshd[18498]: Connection from 117.89.13.188 port 33564 on 104.167.106.93 port 22 Mar 6 16:38:01 UTC__SANYALnet-Labs__cac1 sshd[18498]: reveeclipse mapping checking getaddrinfo for 188.13.89.117.broad.nj.js.dynamic.163data.com.cn [117.89.13.188] failed - POSSIBLE BREAK-IN ATTEMPT! Mar 6 16:38:01 UTC__SANYALnet-Labs__cac1 sshd[18498]: User r.r from 117.89.13.188 not allowed because not listed in AllowUsers Mar 6 16:38:02 UTC__SANYALnet-Labs__cac1 sshd[18498]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.89.13.188 user=r.r Mar 6 16:38:04 UTC__SANYALnet-Labs__cac1 sshd[18498]: Failed password for invalid user r.r from 117.89.13.188 port 33564 ssh2 Mar 6 16:38:04 UTC__SANYALnet-Labs__cac1 sshd[18498]: Received disconnect from 117.89.13.188 port 33564:11: Bye Bye [preauth] Mar 6 16:38:04 UTC__SANYALnet-Labs__cac1 sshd[18498]: Disconnected fr........ ------------------------------	2020-03-08 07:13:01
61.54.184.18	attackbotsspam	Telnet Server BruteForce Attack	2020-03-08 06:55:22

Recently Reported IPs

208.220.230.156	168.50.71.255	154.5.233.130	81.201.85.63
57.99.40.145	234.12.167.55	44.192.111.187	217.55.97.169
238.54.233.183	184.221.81.70	62.126.250.205	218.100.35.188
69.61.49.84	249.116.151.33	123.159.120.212	74.206.72.98
118.155.181.192	40.139.226.93	42.12.12.129	211.172.2.205