66.57.45.97 - IPInfo

Basic Info

City: Lexington

Region: South Carolina

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.57.45.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24417
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.57.45.97.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024120901 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 10 10:03:58 CST 2024
;; MSG SIZE  rcvd: 104

Host info

97.45.57.66.in-addr.arpa domain name pointer syn-066-057-045-097.biz.spectrum.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
97.45.57.66.in-addr.arpa	name = syn-066-057-045-097.biz.spectrum.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
183.166.147.67	attackspambots	Aug 28 07:59:31 srv01 postfix/smtpd\[32492\]: warning: unknown\[183.166.147.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 28 07:59:43 srv01 postfix/smtpd\[32492\]: warning: unknown\[183.166.147.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 28 07:59:59 srv01 postfix/smtpd\[32492\]: warning: unknown\[183.166.147.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 28 08:00:19 srv01 postfix/smtpd\[32492\]: warning: unknown\[183.166.147.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 28 08:00:33 srv01 postfix/smtpd\[32492\]: warning: unknown\[183.166.147.67\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-28 17:45:15
41.218.221.22	attackbotsspam	Telnet Honeypot -> Telnet Bruteforce / Login	2020-08-28 17:25:07
103.253.146.142	attackspambots	TCP (SYN) 103.253.146.142:54501 -> port 25258, len 44	2020-08-28 17:44:42
118.175.93.103	attackbots	Detected by ModSecurity. Request URI: /xmlrpc.php	2020-08-28 17:48:52
200.194.15.145	attackspambots	port scan and connect, tcp 23 (telnet)	2020-08-28 17:35:18
206.253.224.75	attackbots	srvr2: (mod_security) mod_security (id:920350) triggered by 206.253.224.75 (DE/-/-): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/28 11:08:29 [error] 377966#0: 172733 [client 206.253.224.75] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/robots.txt"] [unique_id "159860570966.376346"] [ref "o0,14v160,14"], client: 206.253.224.75, [redacted] request: "GET /robots.txt HTTP/1.1" [redacted]	2020-08-28 17:40:04
222.186.175.217	attack	Aug 28 12:31:19 ift sshd\[25423\]: Failed password for root from 222.186.175.217 port 33518 ssh2Aug 28 12:31:29 ift sshd\[25423\]: Failed password for root from 222.186.175.217 port 33518 ssh2Aug 28 12:31:33 ift sshd\[25423\]: Failed password for root from 222.186.175.217 port 33518 ssh2Aug 28 12:31:39 ift sshd\[25453\]: Failed password for root from 222.186.175.217 port 32398 ssh2Aug 28 12:32:01 ift sshd\[25462\]: Failed password for root from 222.186.175.217 port 60020 ssh2 ...	2020-08-28 17:39:35
116.247.81.99	attackspambots	Banned for a week because repeated abuses, for example SSH, but not only	2020-08-28 17:13:42
209.159.195.253	attack	Brute forcing email accounts	2020-08-28 17:43:13
172.105.249.120	attackbotsspam	scan	2020-08-28 17:37:49
45.227.255.206	attack	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-08-28T08:52:45Z and 2020-08-28T09:05:16Z	2020-08-28 17:34:16
49.233.166.113	attack	$f2bV_matches	2020-08-28 17:51:34
118.99.94.96	attack	Brute Force	2020-08-28 17:35:36
129.227.129.171	attack	TCP (SYN) 129.227.129.171:48974 -> port 8003, len 44	2020-08-28 17:13:22
51.75.66.142	attackspam	Time: Fri Aug 28 07:27:41 2020 +0000 IP: 51.75.66.142 (142.ip-51-75-66.eu) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 28 07:09:08 ca-16-ede1 sshd[4563]: Invalid user lb from 51.75.66.142 port 59166 Aug 28 07:09:10 ca-16-ede1 sshd[4563]: Failed password for invalid user lb from 51.75.66.142 port 59166 ssh2 Aug 28 07:23:13 ca-16-ede1 sshd[6437]: Invalid user deploy from 51.75.66.142 port 34476 Aug 28 07:23:15 ca-16-ede1 sshd[6437]: Failed password for invalid user deploy from 51.75.66.142 port 34476 ssh2 Aug 28 07:27:36 ca-16-ede1 sshd[7140]: Failed password for root from 51.75.66.142 port 41230 ssh2	2020-08-28 17:36:32

Recently Reported IPs

86.5.218.37	17.121.198.164	82.224.44.52	96.219.250.127
56.225.242.197	114.83.107.202	13.4.159.240	177.195.59.173
247.189.162.7	241.75.237.124	172.230.31.235	176.107.138.204
73.15.218.175	181.237.209.209	239.121.203.171	48.144.133.116
55.65.156.171	3.92.26.39	40.13.184.206	184.71.169.36