66.42.53.133 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: Choopa LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	66.42.53.133 - - [02/Aug/2019:21:26:09 +0200] "POST /wp-login.php HTTP/1.1" 403 1598 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" f2d0db1c7551a8554cfe74cf11347a6a United States US California Hawthorne 66.42.53.133 - - [02/Aug/2019:21:26:11 +0200] "POST /wp-login.php HTTP/1.1" 403 1606 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" ee1ce41d77bf5c5c267027069a9b88a8 United States US California Hawthorne ...	2019-08-03 06:48:24
attack	...	2019-07-31 22:07:19

Type

Details

Datetime

attackspambots

66.42.53.133 - - [02/Aug/2019:21:26:09 +0200] "POST /wp-login.php HTTP/1.1" 403 1598 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" f2d0db1c7551a8554cfe74cf11347a6a United States US California Hawthorne 
66.42.53.133 - - [02/Aug/2019:21:26:11 +0200] "POST /wp-login.php HTTP/1.1" 403 1606 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" ee1ce41d77bf5c5c267027069a9b88a8 United States US California Hawthorne 
...

2019-08-03 06:48:24

attack

...

2019-07-31 22:07:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.53.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8444
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.42.53.133.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019073100 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 31 22:07:10 CST 2019
;; MSG SIZE  rcvd: 116

Host info

133.53.42.66.in-addr.arpa domain name pointer 66.42.53.133.vultr.com.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
133.53.42.66.in-addr.arpa	name = 66.42.53.133.vultr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.31.31.68	attackspambots	Feb 17 09:24:36 silence02 sshd[18508]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.31.68 Feb 17 09:24:38 silence02 sshd[18508]: Failed password for invalid user ts from 123.31.31.68 port 51254 ssh2 Feb 17 09:28:33 silence02 sshd[18727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.31.31.68	2020-02-17 16:31:57
196.218.30.63	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 16:56:35
185.4.132.135	attackbots	02/17/2020-09:06:04.398516 185.4.132.135 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 36	2020-02-17 16:18:27
196.218.55.48	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 16:14:56
180.241.47.190	attackspam	20/2/16@23:57:30: FAIL: Alarm-Network address from=180.241.47.190 ...	2020-02-17 16:37:11
108.163.220.51	attackspam	SSH login attempts.	2020-02-17 16:20:40
45.143.222.107	spam	[2020/02/17 15:47:35] [45.143.222.107:2100-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/02/17 15:47:37] [45.143.222.107:2101-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/02/17 15:47:38] [45.143.222.107:2101-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/02/17 15:47:40] [45.143.222.107:2100-0] User luxnet@luxnetcorp.com.tw AUTH fails. [2020/02/17 15:47:52] [45.143.222.107:2095-0] User luxnet@luxnetcorp.com.tw AUTH fails. [	2020-02-17 16:45:18
103.100.210.151	attackbotsspam	Feb 17 05:53:55 legacy sshd[6905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.100.210.151 Feb 17 05:53:57 legacy sshd[6905]: Failed password for invalid user tony from 103.100.210.151 port 40185 ssh2 Feb 17 05:57:13 legacy sshd[7094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.100.210.151 ...	2020-02-17 16:58:00
129.211.130.66	attackspam	(sshd) Failed SSH login from 129.211.130.66 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 17 06:56:48 ubnt-55d23 sshd[17300]: Invalid user testuser from 129.211.130.66 port 40477 Feb 17 06:56:49 ubnt-55d23 sshd[17300]: Failed password for invalid user testuser from 129.211.130.66 port 40477 ssh2	2020-02-17 16:23:14
187.185.70.10	attackspam	Feb 16 20:44:18 auw2 sshd\[2053\]: Invalid user security from 187.185.70.10 Feb 16 20:44:18 auw2 sshd\[2053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.185.70.10 Feb 16 20:44:21 auw2 sshd\[2053\]: Failed password for invalid user security from 187.185.70.10 port 58676 ssh2 Feb 16 20:47:54 auw2 sshd\[2375\]: Invalid user test from 187.185.70.10 Feb 16 20:47:54 auw2 sshd\[2375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.185.70.10	2020-02-17 16:33:02
141.98.80.71	attackspambots	Feb 17 01:51:55 firewall sshd[4421]: Invalid user admin from 141.98.80.71 Feb 17 01:51:57 firewall sshd[4421]: Failed password for invalid user admin from 141.98.80.71 port 60178 ssh2 Feb 17 01:57:36 firewall sshd[4633]: Invalid user admin from 141.98.80.71 ...	2020-02-17 16:26:55
222.186.175.212	attackspambots	Feb 17 00:58:04 debian sshd[32541]: Unable to negotiate with 222.186.175.212 port 15272: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] Feb 17 03:23:11 debian sshd[6787]: Unable to negotiate with 222.186.175.212 port 39984: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] ...	2020-02-17 16:31:41
23.23.105.248	attack	SSH login attempts.	2020-02-17 16:55:03
222.186.175.151	attack	$f2bV_matches	2020-02-17 16:28:49
134.209.147.198	attack	2020-02-16T23:47:38.4242681495-001 sshd[36184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 2020-02-16T23:47:38.4157031495-001 sshd[36184]: Invalid user liwei from 134.209.147.198 port 43034 2020-02-16T23:47:40.7405751495-001 sshd[36184]: Failed password for invalid user liwei from 134.209.147.198 port 43034 ssh2 2020-02-17T00:48:58.3146281495-001 sshd[39588]: Invalid user taniac from 134.209.147.198 port 51234 2020-02-17T00:48:58.3183821495-001 sshd[39588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.147.198 2020-02-17T00:48:58.3146281495-001 sshd[39588]: Invalid user taniac from 134.209.147.198 port 51234 2020-02-17T00:49:00.8301901495-001 sshd[39588]: Failed password for invalid user taniac from 134.209.147.198 port 51234 ssh2 2020-02-17T00:50:34.0486661495-001 sshd[39659]: Invalid user bind from 134.209.147.198 port 50642 2020-02-17T00:50:34.0572331495-001 sshd[39659]: pa ...	2020-02-17 16:51:09

Recently Reported IPs

108.185.59.142	110.50.84.222	112.213.109.149	194.116.34.84
188.211.152.176	104.158.60.192	78.110.75.225	85.109.145.237
223.31.41.82	85.105.17.4	126.48.208.154	80.240.100.26
93.218.112.162	253.13.91.78	104.236.66.228	78.44.42.121
86.196.190.245	36.83.26.36	182.253.63.31	188.244.144.118