66.42.6.51 - IPInfo

Basic Info

City: Clermont

Region: Florida

Country: United States

Internet Service Provider: Telastic

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 66.42.6.51 to port 23	2020-01-06 04:02:47

Comments on same subnet:

IP	Type	Details	Datetime
66.42.63.85	attackbotsspam	Scanning for exploits - /backup/wp-admin/	2020-08-15 00:16:21
66.42.61.43	attackspambots	Unauthorized connection attempt detected from IP address 66.42.61.43 to port 5900	2020-05-31 20:44:17
66.42.6.34	attack	Unauthorized connection attempt detected from IP address 66.42.6.34 to port 23	2020-04-13 00:46:18
66.42.62.21	attackbots	Automatic report - WordPress Brute Force	2020-03-12 00:28:29
66.42.60.18	attackbotsspam	WordPress brute force	2020-02-24 07:12:47
66.42.60.235	attackbots	Aug 19 18:45:17 hcbb sshd\[19512\]: Invalid user everdata from 66.42.60.235 Aug 19 18:45:17 hcbb sshd\[19512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.42.60.235 Aug 19 18:45:19 hcbb sshd\[19512\]: Failed password for invalid user everdata from 66.42.60.235 port 59598 ssh2 Aug 19 18:53:58 hcbb sshd\[20319\]: Invalid user elly from 66.42.60.235 Aug 19 18:53:58 hcbb sshd\[20319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.42.60.235	2019-08-20 17:07:57
66.42.60.235	attackspam	Aug 19 15:04:32 hcbb sshd\[29717\]: Invalid user eula from 66.42.60.235 Aug 19 15:04:32 hcbb sshd\[29717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.42.60.235 Aug 19 15:04:34 hcbb sshd\[29717\]: Failed password for invalid user eula from 66.42.60.235 port 39708 ssh2 Aug 19 15:11:55 hcbb sshd\[30520\]: Invalid user sg from 66.42.60.235 Aug 19 15:11:55 hcbb sshd\[30520\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.42.60.235	2019-08-20 09:28:32
66.42.63.66	attack	firewall-block, port(s): 3389/tcp	2019-08-08 20:37:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.6.51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43465
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.42.6.51.			IN	A

;; AUTHORITY SECTION:
.			379	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010501 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 06 04:02:42 CST 2020
;; MSG SIZE  rcvd: 114

Host info

Host 51.6.42.66.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 51.6.42.66.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
63.245.119.130	attack	port scan and connect, tcp 23 (telnet)	2020-04-21 07:03:23
49.235.83.156	attack	Invalid user test from 49.235.83.156 port 41952	2020-04-21 07:26:07
195.231.3.208	attack	Apr 21 00:23:38 mail.srvfarm.net postfix/smtpd[2492195]: lost connection after CONNECT from unknown[195.231.3.208] Apr 21 00:23:38 mail.srvfarm.net postfix/smtpd[2492196]: lost connection after CONNECT from unknown[195.231.3.208] Apr 21 00:23:38 mail.srvfarm.net postfix/smtpd[2328594]: lost connection after CONNECT from unknown[195.231.3.208] Apr 21 00:23:38 mail.srvfarm.net postfix/smtpd[2328591]: lost connection after CONNECT from unknown[195.231.3.208] Apr 21 00:23:39 mail.srvfarm.net postfix/smtpd[2492197]: lost connection after CONNECT from unknown[195.231.3.208]	2020-04-21 06:50:29
61.244.196.102	attack	61.244.196.102 - - [21/Apr/2020:00:25:05 +0300] "POST /wp-login.php HTTP/1.1" 200 2171 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-21 07:14:54
175.29.188.9	attackbotsspam	Brute force attempt	2020-04-21 06:55:41
46.101.204.20	attackspambots	Apr 21 00:15:10 sshd\[32045\]: User root from 46.101.204.20 not allowed because not listed in AllowUsersApr 21 00:15:13 sshd\[32045\]: Failed password for invalid user root from 46.101.204.20 port 42024 ssh2 ...	2020-04-21 06:59:58
78.128.113.99	attack	Brute force attack stopped by firewall	2020-04-21 06:52:23
88.230.67.186	attack	Unauthorized connection attempt detected from IP address 88.230.67.186 to port 445	2020-04-21 07:02:38
77.42.77.30	attack	Automatic report - Port Scan Attack	2020-04-21 07:09:41
188.40.130.251	attack	hosting phishing website: stkaragiannis.gr/.well-known/tik	2020-04-21 06:57:20
130.185.155.34	attack	(sshd) Failed SSH login from 130.185.155.34 (SE/Sweden/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 20 23:46:12 ubnt-55d23 sshd[10403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=130.185.155.34 user=root Apr 20 23:46:14 ubnt-55d23 sshd[10403]: Failed password for root from 130.185.155.34 port 51712 ssh2	2020-04-21 06:54:44
175.24.57.194	attackspambots	Apr 20 21:43:29 ns382633 sshd\[27882\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.57.194 user=root Apr 20 21:43:31 ns382633 sshd\[27882\]: Failed password for root from 175.24.57.194 port 52364 ssh2 Apr 20 21:54:18 ns382633 sshd\[30093\]: Invalid user postgresql from 175.24.57.194 port 37758 Apr 20 21:54:18 ns382633 sshd\[30093\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.57.194 Apr 20 21:54:20 ns382633 sshd\[30093\]: Failed password for invalid user postgresql from 175.24.57.194 port 37758 ssh2	2020-04-21 07:18:18
185.225.36.211	attack	Spam	2020-04-21 07:12:54
106.12.89.160	attack	Apr 21 00:29:56 plex sshd[4451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.160 Apr 21 00:29:56 plex sshd[4451]: Invalid user vn from 106.12.89.160 port 36458 Apr 21 00:29:58 plex sshd[4451]: Failed password for invalid user vn from 106.12.89.160 port 36458 ssh2 Apr 21 00:34:23 plex sshd[4594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.89.160 user=root Apr 21 00:34:25 plex sshd[4594]: Failed password for root from 106.12.89.160 port 47866 ssh2	2020-04-21 06:59:18
2001:e68:5059:781c:12be:f5ff:fe31:1778	attackspambots	attempts made to access microsoft email after using zoom. Botscan IMAP/POP3 detected from China/Malaysia/Thailand. 4/12/2020 6:11 PM Unsuccessful sign-in China Device/ Windows Browser/app Firefox IP address 59.173.53.125 Automatic Malaysia Protocol: IMAP IP:2001:e68:5059:781c:12be:f5ff:fe31:1778 Time: Yesterday 11:57 PM Malaysia Type: Unsuccessful Protocol:IMAP IP:183.88.219.206 Time:4/5/2020 1:11 AM Thailand Type: Unsuccessful Protocol:IMAP IP:223.215.177.90 Time:4/5/2020 12:39 AM China Type: Unsuccessful Protocol:IMAP IP:210.48.204.118 Time:4/3/2020 10:49 AM Malaysia Type: Unsuccessful Protocol:POP3 IP:240e:3a0:6e04:4434:942c:a58e:660e:5fe Time:3/28/2020 10:34 AM Not available Type: Unsuccessful Protocol:POP3 IP:240e:3a0:c001:957c:c8b3:ec00:cc6a:2dc2 Time:3/26/2020 6:17 AM China Type: Unsuccessful Protocol:IMAP IP:36.27.30.220 Time:3/25/2020 9:56 PM China Type: Unsuccessful Protocol:IMAP IP:240e:390:1040:11b0:245:5db3:7100:1937 Time:3/25/2020 9:56 PM China Type: Unsuccessful	2020-04-21 07:08:24

Recently Reported IPs

133.203.123.9	178.192.79.241	24.224.51.12	155.9.128.224
181.166.91.230	102.156.164.221	23.31.182.113	111.141.85.205
13.42.146.208	23.25.9.237	79.12.168.115	63.117.176.136
175.68.35.91	220.184.139.188	36.97.217.24	187.66.246.69
216.174.223.41	218.146.74.57	67.67.83.106	31.248.252.158