66.42.5.164 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Telastic

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 66.42.5.164 to port 23	2020-04-13 04:03:16

Comments on same subnet:

IP	Type	Details	Datetime
66.42.55.203	attackspambots	66.42.55.203 - - [03/Sep/2020:07:45:15 +0100] "POST /wp-login.php HTTP/1.1" 200 1791 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 66.42.55.203 - - [03/Sep/2020:07:45:18 +0100] "POST /wp-login.php HTTP/1.1" 200 1772 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 66.42.55.203 - - [03/Sep/2020:07:45:19 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-03 23:10:39
66.42.55.203	attackspambots	66.42.55.203 - - [03/Sep/2020:06:39:06 +0100] "POST /wp-login.php HTTP/1.1" 200 2420 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 66.42.55.203 - - [03/Sep/2020:06:39:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 66.42.55.203 - - [03/Sep/2020:06:39:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2415 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-03 14:44:53
66.42.55.203	attack	66.42.55.203 - - [02/Sep/2020:22:46:26 +0100] "POST /wp-login.php HTTP/1.1" 200 1948 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 66.42.55.203 - - [02/Sep/2020:22:46:28 +0100] "POST /wp-login.php HTTP/1.1" 200 1890 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 66.42.55.203 - - [02/Sep/2020:22:46:31 +0100] "POST /wp-login.php HTTP/1.1" 200 1887 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-03 06:58:02
66.42.50.81	attack	WordPress wp-login brute force :: 66.42.50.81 0.124 - [10/Aug/2020:12:09:06 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1837 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-08-10 20:46:18
66.42.5.235	attackbotsspam	Unauthorized connection attempt detected from IP address 66.42.5.235 to port 23	2020-07-09 06:50:12
66.42.5.241	attackspambots	Unauthorized connection attempt detected from IP address 66.42.5.241 to port 23	2020-07-09 06:07:59
66.42.5.241	attack	Unauthorized connection attempt detected from IP address 66.42.5.241 to port 23	2020-07-07 04:04:23
66.42.5.20	attackbots	Unauthorized connection attempt detected from IP address 66.42.5.20 to port 23	2020-05-13 03:01:00
66.42.5.20	attack	Unauthorized connection attempt detected from IP address 66.42.5.20 to port 23	2020-05-04 16:45:03
66.42.52.214	attackbots	[Aegis] @ 2019-07-26 05:30:25 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2020-04-29 20:22:51
66.42.56.21	attackbots	66.42.56.21 - - \[22/Apr/2020:09:27:32 +0200\] "POST /wp-login.php HTTP/1.0" 200 6811 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 66.42.56.21 - - \[22/Apr/2020:09:27:35 +0200\] "POST /wp-login.php HTTP/1.0" 200 6809 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 66.42.56.21 - - \[22/Apr/2020:09:27:37 +0200\] "POST /wp-login.php HTTP/1.0" 200 6657 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-04-22 19:26:46
66.42.52.160	attackspam	Automatic report - XMLRPC Attack	2020-04-22 19:05:09
66.42.56.21	attackspam	Apr 21 23:49:37 wordpress wordpress(www.ruhnke.cloud)[97586]: Blocked authentication attempt for admin from ::ffff:66.42.56.21	2020-04-22 06:11:39
66.42.52.160	attackspambots	ENG,WP GET /wp-login.php	2020-04-22 03:58:45
66.42.56.21	attack	Automatic report - XMLRPC Attack	2020-04-01 19:37:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.5.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46456
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.42.5.164.			IN	A

;; AUTHORITY SECTION:
.			339	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041201 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 13 04:03:11 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 164.5.42.66.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.138, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 164.5.42.66.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
88.248.3.85	attack	Unauthorized connection attempt from IP address 88.248.3.85 on Port 445(SMB)	2019-11-14 02:53:01
36.78.73.152	attack	Unauthorized connection attempt from IP address 36.78.73.152 on Port 445(SMB)	2019-11-14 03:19:40
112.85.42.232	attackspambots	F2B jail: sshd. Time: 2019-11-13 20:05:17, Reported by: VKReport	2019-11-14 03:10:13
61.148.194.162	attackbotsspam	2019-11-13T18:34:10.259042abusebot-5.cloudsearch.cf sshd\[27276\]: Invalid user cforziati from 61.148.194.162 port 45258	2019-11-14 02:59:23
45.82.153.42	attackspambots	11/13/2019-19:36:13.979585 45.82.153.42 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 44	2019-11-14 03:06:34
111.38.25.89	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-14 03:17:05
124.165.247.42	attackspambots	Unauthorized connection attempt from IP address 124.165.247.42	2019-11-14 03:01:19
190.3.108.42	attack	Unauthorized connection attempt from IP address 190.3.108.42 on Port 445(SMB)	2019-11-14 03:21:15
2.134.148.106	attack	Unauthorized connection attempt from IP address 2.134.148.106 on Port 445(SMB)	2019-11-14 03:30:58
156.17.41.50	attack	SSH/22 MH Probe, BF, Hack -	2019-11-14 02:53:29
213.39.53.241	attackspambots	2019-11-13T17:25:15.367398abusebot-5.cloudsearch.cf sshd\[26832\]: Invalid user xm from 213.39.53.241 port 37848	2019-11-14 03:23:50
137.74.80.36	attackbots	2019-11-13T17:20:50.760384abusebot-2.cloudsearch.cf sshd\[1052\]: Invalid user miyagaki from 137.74.80.36 port 38634	2019-11-14 03:29:56
201.47.217.98	attack	Unauthorized connection attempt from IP address 201.47.217.98 on Port 445(SMB)	2019-11-14 03:02:55
122.117.142.155	attackbotsspam	Connection by 122.117.142.155 on port: 23 got caught by honeypot at 11/13/2019 1:47:08 PM	2019-11-14 02:51:09
91.216.61.99	attackbots	Unauthorized connection attempt from IP address 91.216.61.99 on Port 445(SMB)	2019-11-14 03:29:34

Recently Reported IPs

2.242.95.36	237.153.147.207	210.111.140.186	240.135.183.3
22.252.248.232	2.233.127.102	160.146.31.66	221.178.108.201
2.36.194.126	0.176.9.28	220.93.162.232	220.79.66.63
209.163.242.130	201.114.189.100	200.153.154.5	200.55.239.87
197.202.62.82	187.34.250.201	187.11.223.180	186.236.96.124