66.252.83.59 - IPInfo

Basic Info

City: Romney

Region: Indiana

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
66.252.83.57	attack	DATE:2019-08-15 11:29:38, IP:66.252.83.57, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-08-15 17:55:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.252.83.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43307
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.252.83.59.			IN	A

;; AUTHORITY SECTION:
.			366	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020071001 1800 900 604800 86400

;; Query time: 51 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 11 08:13:13 CST 2020
;; MSG SIZE  rcvd: 116

Host info

59.83.252.66.in-addr.arpa domain name pointer 66-252-83-59.rev.omnicity.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
59.83.252.66.in-addr.arpa	name = 66-252-83-59.rev.omnicity.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
74.121.190.27	attack	\[2019-12-09 10:03:27\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-09T10:03:27.929-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="00048627490012",SessionID="0x7f26c45487c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.121.190.27/52681",ACLName="no_extension_match" \[2019-12-09 10:03:55\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-09T10:03:55.540-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="48627490012",SessionID="0x7f26c5edd138",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.121.190.27/62846",ACLName="no_extension_match" \[2019-12-09 10:04:53\] SECURITY\[2765\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-12-09T10:04:53.676-0500",Severity="Error",Service="SIP",EventVersion="1",AccountID="948627490012",SessionID="0x7f26c5edd138",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/74.121.190.27/63284",ACLName="no_extension_m	2019-12-09 23:19:49
204.48.19.178	attackbots	Dec 9 20:28:25 gw1 sshd[20674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=204.48.19.178 Dec 9 20:28:27 gw1 sshd[20674]: Failed password for invalid user shreekant from 204.48.19.178 port 46720 ssh2 ...	2019-12-09 23:32:43
140.143.0.254	attack	Dec 9 15:49:38 vps647732 sshd[29748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.0.254 Dec 9 15:49:39 vps647732 sshd[29748]: Failed password for invalid user eugen from 140.143.0.254 port 56364 ssh2 ...	2019-12-09 22:58:41
123.206.17.68	attackspam	2019-12-09T15:04:46.909671abusebot-2.cloudsearch.cf sshd\[16529\]: Invalid user changyoung from 123.206.17.68 port 36396	2019-12-09 23:30:22
123.20.89.1	attackspambots	Dec 6 23:05:58 mail postfix/smtpd[895]: warning: unknown[123.20.89.1]: SASL PLAIN authentication failed: Dec 6 23:05:59 mail postfix/smtpd[1887]: warning: unknown[123.20.89.1]: SASL PLAIN authentication failed: Dec 6 23:14:08 mail postfix/smtpd[3727]: warning: unknown[123.20.89.1]: SASL PLAIN authentication failed:	2019-12-09 23:18:30
69.94.158.96	attackbotsspam	Dec 9 16:04:54 smtp postfix/smtpd[77823]: NOQUEUE: reject: RCPT from frog.swingthelamp.com[69.94.158.96]: 554 5.7.1 Service unavailable; Client host [69.94.158.96] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= ...	2019-12-09 23:24:04
159.65.176.156	attackspam	Dec 9 05:25:16 kapalua sshd\[4126\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.176.156 user=root Dec 9 05:25:18 kapalua sshd\[4126\]: Failed password for root from 159.65.176.156 port 49218 ssh2 Dec 9 05:32:40 kapalua sshd\[4819\]: Invalid user admin from 159.65.176.156 Dec 9 05:32:40 kapalua sshd\[4819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.176.156 Dec 9 05:32:42 kapalua sshd\[4819\]: Failed password for invalid user admin from 159.65.176.156 port 53320 ssh2	2019-12-09 23:38:29
91.191.223.229	attack	SSH authentication failure x 6 reported by Fail2Ban ...	2019-12-09 23:07:39
79.3.6.207	attackspambots	Dec 9 11:57:54 firewall sshd[31617]: Failed password for invalid user temp from 79.3.6.207 port 64736 ssh2 Dec 9 12:04:52 firewall sshd[31794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.3.6.207 user=root Dec 9 12:04:54 firewall sshd[31794]: Failed password for root from 79.3.6.207 port 56492 ssh2 ...	2019-12-09 23:21:36
103.42.87.23	attackbots	Unauthorized connection attempt detected from IP address 103.42.87.23 to port 445	2019-12-09 23:04:16
210.92.105.120	attack	Dec 6 23:05:37 mail sshd[1851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.105.120 Dec 6 23:05:39 mail sshd[1851]: Failed password for invalid user edelstein from 210.92.105.120 port 35092 ssh2 Dec 6 23:12:49 mail sshd[3604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.92.105.120	2019-12-09 23:14:58
198.211.114.102	attack	Dec 9 16:15:52 meumeu sshd[21115]: Failed password for root from 198.211.114.102 port 49906 ssh2 Dec 9 16:21:16 meumeu sshd[21846]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.114.102 Dec 9 16:21:18 meumeu sshd[21846]: Failed password for invalid user gibbie from 198.211.114.102 port 58788 ssh2 ...	2019-12-09 23:24:47
185.176.27.246	attack	Dec 9 18:04:56 debian-2gb-vpn-nbg1-1 kernel: [282283.706489] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.246 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=28350 PROTO=TCP SPT=51915 DPT=1573 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-09 23:16:05
196.192.110.66	attack	2019-12-09T14:42:03.725090shield sshd\[16107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.192.110.66 user=daemon 2019-12-09T14:42:06.491635shield sshd\[16107\]: Failed password for daemon from 196.192.110.66 port 40638 ssh2 2019-12-09T14:49:38.058116shield sshd\[18257\]: Invalid user belot from 196.192.110.66 port 50566 2019-12-09T14:49:38.062367shield sshd\[18257\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.192.110.66 2019-12-09T14:49:39.625035shield sshd\[18257\]: Failed password for invalid user belot from 196.192.110.66 port 50566 ssh2	2019-12-09 22:58:23
139.199.66.206	attackbotsspam	Dec 6 23:03:59 mail sshd[1437]: Failed password for root from 139.199.66.206 port 52504 ssh2 Dec 6 23:10:11 mail sshd[3129]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.66.206 Dec 6 23:10:13 mail sshd[3129]: Failed password for invalid user aclocal from 139.199.66.206 port 43720 ssh2	2019-12-09 23:18:04

Recently Reported IPs

199.20.81.51	182.2.33.203	193.58.194.233	213.25.115.218
120.16.252.157	68.252.149.200	86.32.177.217	197.168.255.23
78.210.141.40	108.247.131.115	126.202.223.179	12.219.184.18
137.205.174.114	72.221.164.34	195.111.77.213	93.230.106.142
2.239.136.133	68.78.209.224	92.100.78.247	1.46.114.162