66.42.7.9 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Telastic

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 66.42.7.9 to port 23	2020-01-05 09:07:18
attackbots	Unauthorized connection attempt detected from IP address 66.42.7.9 to port 23	2019-12-29 19:34:57

Comments on same subnet:

IP	Type	Details	Datetime
66.42.7.83	attack	Unauthorized connection attempt detected from IP address 66.42.7.83 to port 23	2020-06-01 00:56:49
66.42.7.83	attack	Unauthorized connection attempt detected from IP address 66.42.7.83 to port 23	2020-05-30 01:39:31
66.42.77.85	attackbotsspam	TCP 3389 (RDP)	2020-03-19 21:07:16
66.42.73.95	attackbots	WordPress brute force	2020-02-24 07:12:26
66.42.75.154	attack	Attempts to probe web pages for vulnerable PHP or other applications	2019-09-11 07:20:21

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.7.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11403
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.42.7.9.			IN	A

;; AUTHORITY SECTION:
.			159	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122900 1800 900 604800 86400

;; Query time: 260 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 29 19:42:17 CST 2019
;; MSG SIZE  rcvd: 113

Host info

Host 9.7.42.66.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 100.100.2.136, trying next server
;; Got SERVFAIL reply from 100.100.2.138, trying next server
Server:		100.100.2.138
Address:	100.100.2.138#53

** server can't find 9.7.42.66.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
142.93.199.72	attackbots	Sep 5 11:12:40 hcbb sshd\[1691\]: Invalid user tester from 142.93.199.72 Sep 5 11:12:40 hcbb sshd\[1691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.199.72 Sep 5 11:12:42 hcbb sshd\[1691\]: Failed password for invalid user tester from 142.93.199.72 port 60006 ssh2 Sep 5 11:17:10 hcbb sshd\[2095\]: Invalid user test2 from 142.93.199.72 Sep 5 11:17:10 hcbb sshd\[2095\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.199.72	2019-09-06 05:34:05
125.227.164.62	attackspam	Sep 5 16:16:05 aat-srv002 sshd[26732]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.227.164.62 Sep 5 16:16:07 aat-srv002 sshd[26732]: Failed password for invalid user oracle from 125.227.164.62 port 52604 ssh2 Sep 5 16:20:24 aat-srv002 sshd[26877]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.227.164.62 Sep 5 16:20:27 aat-srv002 sshd[26877]: Failed password for invalid user www from 125.227.164.62 port 39672 ssh2 ...	2019-09-06 05:36:55
51.38.237.78	attack	Sep 5 21:14:44 MK-Soft-VM4 sshd\[18753\]: Invalid user user from 51.38.237.78 port 41248 Sep 5 21:14:44 MK-Soft-VM4 sshd\[18753\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.237.78 Sep 5 21:14:46 MK-Soft-VM4 sshd\[18753\]: Failed password for invalid user user from 51.38.237.78 port 41248 ssh2 ...	2019-09-06 05:37:17
217.105.129.31	attackspam	Too many connections or unauthorized access detected from Oscar banned ip	2019-09-06 04:57:10
194.182.88.185	attack	fire	2019-09-06 05:17:24
106.52.187.75	attackspam	Sep 5 14:50:21 www sshd[29785]: Invalid user sinusbot1 from 106.52.187.75 Sep 5 14:50:21 www sshd[29785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.187.75 Sep 5 14:50:24 www sshd[29785]: Failed password for invalid user sinusbot1 from 106.52.187.75 port 43684 ssh2 Sep 5 14:50:24 www sshd[29785]: Received disconnect from 106.52.187.75: 11: Bye Bye [preauth] Sep 5 15:18:29 www sshd[30161]: Invalid user teste from 106.52.187.75 Sep 5 15:18:29 www sshd[30161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.187.75 Sep 5 15:18:31 www sshd[30161]: Failed password for invalid user teste from 106.52.187.75 port 34738 ssh2 Sep 5 15:18:31 www sshd[30161]: Received disconnect from 106.52.187.75: 11: Bye Bye [preauth] Sep 5 15:20:23 www sshd[30171]: Invalid user teste from 106.52.187.75 Sep 5 15:20:23 www sshd[30171]: pam_unix(sshd:auth): authentication failure; logname= ........ -------------------------------	2019-09-06 05:20:26
63.143.98.72	attackspambots	Telnet Server BruteForce Attack	2019-09-06 05:30:42
198.58.100.134	attackbotsspam	fire	2019-09-06 05:08:14
106.12.33.50	attackbots	Sep 5 22:11:05 rpi sshd[31844]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.50 Sep 5 22:11:08 rpi sshd[31844]: Failed password for invalid user welcome from 106.12.33.50 port 45468 ssh2	2019-09-06 05:30:20
58.87.67.226	attack	Sep 5 10:41:00 hcbb sshd\[31272\]: Invalid user test from 58.87.67.226 Sep 5 10:41:00 hcbb sshd\[31272\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.67.226 Sep 5 10:41:02 hcbb sshd\[31272\]: Failed password for invalid user test from 58.87.67.226 port 48530 ssh2 Sep 5 10:45:45 hcbb sshd\[31687\]: Invalid user webdata from 58.87.67.226 Sep 5 10:45:45 hcbb sshd\[31687\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.87.67.226	2019-09-06 05:05:29
107.155.48.14	attackspam	2019-09-05T21:24:29.275328abusebot-2.cloudsearch.cf sshd\[20362\]: Invalid user abc123456 from 107.155.48.14 port 53862	2019-09-06 05:26:39
27.192.103.151	attackspambots	Unauthorised access (Sep 5) SRC=27.192.103.151 LEN=40 TTL=49 ID=54691 TCP DPT=8080 WINDOW=30338 SYN Unauthorised access (Sep 5) SRC=27.192.103.151 LEN=40 TTL=49 ID=62635 TCP DPT=8080 WINDOW=30338 SYN Unauthorised access (Sep 5) SRC=27.192.103.151 LEN=40 TTL=49 ID=51189 TCP DPT=8080 WINDOW=56879 SYN Unauthorised access (Sep 4) SRC=27.192.103.151 LEN=40 TTL=49 ID=38421 TCP DPT=8080 WINDOW=57721 SYN Unauthorised access (Sep 3) SRC=27.192.103.151 LEN=40 TTL=49 ID=32339 TCP DPT=8080 WINDOW=30338 SYN Unauthorised access (Sep 2) SRC=27.192.103.151 LEN=40 TTL=49 ID=13271 TCP DPT=8080 WINDOW=56879 SYN	2019-09-06 05:25:20
198.143.155.138	attackbotsspam	Scanning random ports - tries to find possible vulnerable services	2019-09-06 05:15:29
27.193.128.16	attackbotsspam	Unauthorised access (Sep 5) SRC=27.193.128.16 LEN=40 TTL=49 ID=7730 TCP DPT=8080 WINDOW=7407 SYN Unauthorised access (Sep 4) SRC=27.193.128.16 LEN=40 TTL=49 ID=13608 TCP DPT=8080 WINDOW=7407 SYN Unauthorised access (Sep 4) SRC=27.193.128.16 LEN=40 TTL=46 ID=41449 TCP DPT=8080 WINDOW=4312 SYN Unauthorised access (Sep 3) SRC=27.193.128.16 LEN=40 TTL=49 ID=26010 TCP DPT=8080 WINDOW=49928 SYN Unauthorised access (Sep 2) SRC=27.193.128.16 LEN=40 TTL=49 ID=17187 TCP DPT=8080 WINDOW=49928 SYN	2019-09-06 05:10:52
153.36.236.35	attackspam	2019-09-05T21:06:29.345693abusebot-8.cloudsearch.cf sshd\[26487\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.236.35 user=root	2019-09-06 05:09:27

Recently Reported IPs

80.14.28.244	73.179.171.43	190.97.4.227	50.233.0.106
37.202.116.56	24.244.149.34	21.199.130.24	163.0.212.13
23.224.140.125	32.174.238.199	157.205.68.94	197.57.187.178
140.59.98.100	173.154.196.127	106.40.135.197	156.96.116.42
247.61.179.145	150.48.98.200	7.160.72.201	118.169.128.114