66.42.95.208 - IPInfo

Basic Info

City: Atlanta

Region: Georgia

Country: United States

Internet Service Provider: Vultr Holdings LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	" "	2020-04-07 05:15:59

Comments on same subnet:

IP	Type	Details	Datetime
66.42.95.46	attackbotsspam	5060/udp [2020-09-18]1pkt	2020-09-18 23:41:16
66.42.95.46	attack	SIP/5060 Probe, Scan, BF, Hack -	2020-09-18 15:49:44
66.42.95.46	attackspam	Port Scan detected from 66.42.95.46 (US/United States/Georgia/Atlanta (Knight Park/Howell Station)/66.42.95.46.vultr.com). 4 hits in the last 15 seconds	2020-09-18 06:05:36
66.42.95.46	attackbotsspam	SIP Server BruteForce Attack	2020-09-17 01:26:09
66.42.95.46	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-16 17:42:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.42.95.208
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5165
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.42.95.208.			IN	A

;; AUTHORITY SECTION:
.			261	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040601 1800 900 604800 86400

;; Query time: 100 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 07 05:15:55 CST 2020
;; MSG SIZE  rcvd: 116

Host info

208.95.42.66.in-addr.arpa domain name pointer 66.42.95.208.vultr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
208.95.42.66.in-addr.arpa	name = 66.42.95.208.vultr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.148	attack	Dec 15 21:42:10 tdfoods sshd\[25785\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Dec 15 21:42:12 tdfoods sshd\[25785\]: Failed password for root from 218.92.0.148 port 9661 ssh2 Dec 15 21:42:29 tdfoods sshd\[25803\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Dec 15 21:42:32 tdfoods sshd\[25803\]: Failed password for root from 218.92.0.148 port 34229 ssh2 Dec 15 21:42:35 tdfoods sshd\[25803\]: Failed password for root from 218.92.0.148 port 34229 ssh2	2019-12-16 15:43:48
137.74.80.36	attack	SSH Login Bruteforce	2019-12-16 15:55:52
5.188.114.119	attack	Dec 16 08:29:49 root sshd[12342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.188.114.119 Dec 16 08:29:51 root sshd[12342]: Failed password for invalid user dan from 5.188.114.119 port 56522 ssh2 Dec 16 08:35:19 root sshd[12427]: Failed password for root from 5.188.114.119 port 36272 ssh2 ...	2019-12-16 15:38:04
80.211.169.93	attackbotsspam	Dec 16 08:58:44 localhost sshd\[29771\]: Invalid user moffet from 80.211.169.93 port 41712 Dec 16 08:58:44 localhost sshd\[29771\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.169.93 Dec 16 08:58:46 localhost sshd\[29771\]: Failed password for invalid user moffet from 80.211.169.93 port 41712 ssh2	2019-12-16 16:04:52
196.194.95.133	attack	1576477750 - 12/16/2019 07:29:10 Host: 196.194.95.133/196.194.95.133 Port: 445 TCP Blocked	2019-12-16 15:45:58
86.47.36.250	attack	Dec 16 08:11:53 v22018053744266470 sshd[12706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.47.36.250 Dec 16 08:11:55 v22018053744266470 sshd[12706]: Failed password for invalid user inglebert from 86.47.36.250 port 45092 ssh2 Dec 16 08:20:32 v22018053744266470 sshd[13300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=86.47.36.250 ...	2019-12-16 15:45:26
112.198.43.130	attack	Dec 16 08:58:37 jane sshd[25035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.198.43.130 Dec 16 08:58:39 jane sshd[25035]: Failed password for invalid user enderle from 112.198.43.130 port 58831 ssh2 ...	2019-12-16 16:00:39
149.56.100.237	attack	Dec 16 07:25:16 web8 sshd\[1094\]: Invalid user chandravathi from 149.56.100.237 Dec 16 07:25:16 web8 sshd\[1094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.100.237 Dec 16 07:25:19 web8 sshd\[1094\]: Failed password for invalid user chandravathi from 149.56.100.237 port 38022 ssh2 Dec 16 07:30:31 web8 sshd\[3794\]: Invalid user pcgo-admin from 149.56.100.237 Dec 16 07:30:31 web8 sshd\[3794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.100.237	2019-12-16 15:41:25
125.124.112.230	attackspam	Dec 15 21:48:16 web9 sshd\[24870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.112.230 user=root Dec 15 21:48:18 web9 sshd\[24870\]: Failed password for root from 125.124.112.230 port 35228 ssh2 Dec 15 21:54:55 web9 sshd\[25834\]: Invalid user test from 125.124.112.230 Dec 15 21:54:55 web9 sshd\[25834\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.112.230 Dec 15 21:54:56 web9 sshd\[25834\]: Failed password for invalid user test from 125.124.112.230 port 60608 ssh2	2019-12-16 16:00:06
171.34.173.49	attackbotsspam	Dec 16 07:19:28 pornomens sshd\[20830\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.34.173.49 user=root Dec 16 07:19:30 pornomens sshd\[20830\]: Failed password for root from 171.34.173.49 port 60887 ssh2 Dec 16 07:29:13 pornomens sshd\[20927\]: Invalid user gowith from 171.34.173.49 port 42249 Dec 16 07:29:13 pornomens sshd\[20927\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.34.173.49 ...	2019-12-16 15:42:37
221.229.219.188	attack	Dec 16 07:29:24 herz-der-gamer sshd[26457]: Invalid user host from 221.229.219.188 port 51528 Dec 16 07:29:24 herz-der-gamer sshd[26457]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.229.219.188 Dec 16 07:29:24 herz-der-gamer sshd[26457]: Invalid user host from 221.229.219.188 port 51528 Dec 16 07:29:26 herz-der-gamer sshd[26457]: Failed password for invalid user host from 221.229.219.188 port 51528 ssh2 ...	2019-12-16 15:30:29
39.35.0.113	attackbotsspam	1576477741 - 12/16/2019 07:29:01 Host: 39.35.0.113/39.35.0.113 Port: 445 TCP Blocked	2019-12-16 15:55:40
106.124.137.103	attackbots	Dec 16 08:46:10 ns381471 sshd[722]: Failed password for bin from 106.124.137.103 port 51281 ssh2	2019-12-16 15:55:20
137.59.48.129	attackspam	SPF Fail sender not permitted to send mail for @0sg.net / Sent mail to target address hacked/leaked from abandonia in 2016	2019-12-16 15:46:21
52.73.169.169	attackspam	12/16/2019-02:28:31.489302 52.73.169.169 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 52	2019-12-16 15:52:25

Recently Reported IPs

84.199.247.195	197.219.162.250	52.150.94.164	216.109.60.192
158.149.195.67	188.13.216.26	173.119.76.148	194.211.6.57
185.106.117.145	78.236.68.196	98.145.89.243	99.22.35.239
125.134.157.152	95.179.136.130	105.91.191.79	219.171.242.192
142.93.0.38	180.174.158.80	85.143.139.157	122.52.166.231