66.99.48.130 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Illinois Century Network

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Oct 1 21:18:02 vps sshd[22544]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.99.48.130 Oct 1 21:18:04 vps sshd[22544]: Failed password for invalid user user from 66.99.48.130 port 39208 ssh2 Oct 1 21:31:02 vps sshd[23161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.99.48.130 ...	2020-10-02 04:46:22
attackspam	$f2bV_matches	2020-10-01 21:02:56
attackbots	$f2bV_matches	2020-10-01 13:16:40
attackbotsspam	2020-09-24T21:44:14.696430abusebot.cloudsearch.cf sshd[18173]: Invalid user mysql from 66.99.48.130 port 41984 2020-09-24T21:44:14.701952abusebot.cloudsearch.cf sshd[18173]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.99.48.130 2020-09-24T21:44:14.696430abusebot.cloudsearch.cf sshd[18173]: Invalid user mysql from 66.99.48.130 port 41984 2020-09-24T21:44:16.046267abusebot.cloudsearch.cf sshd[18173]: Failed password for invalid user mysql from 66.99.48.130 port 41984 ssh2 2020-09-24T21:50:28.659835abusebot.cloudsearch.cf sshd[18246]: Invalid user nikhil from 66.99.48.130 port 51878 2020-09-24T21:50:28.666430abusebot.cloudsearch.cf sshd[18246]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.99.48.130 2020-09-24T21:50:28.659835abusebot.cloudsearch.cf sshd[18246]: Invalid user nikhil from 66.99.48.130 port 51878 2020-09-24T21:50:30.688180abusebot.cloudsearch.cf sshd[18246]: Failed password for invalid ...	2020-09-25 06:21:55

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.99.48.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20662
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.99.48.130.			IN	A

;; AUTHORITY SECTION:
.			292	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092401 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 25 06:21:53 CST 2020
;; MSG SIZE  rcvd: 116

Host info

130.48.99.66.in-addr.arpa domain name pointer bess-proxy.sfhsnet.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.48.99.66.in-addr.arpa	name = bess-proxy.sfhsnet.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
84.51.118.73	attack	[portscan] tcp/139 [NetBIOS Session Service] [portscan] tcp/21 [FTP] [SMB remote code execution attempt: port tcp/445] [scan/connect: 8 time(s)] *(RWIN=64240)(09161116)	2019-09-17 02:42:56
210.212.78.34	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(09161116)	2019-09-17 02:46:08
200.40.136.140	attackbots	[SMB remote code execution attempt: port tcp/445] *(RWIN=64240)(09161116)	2019-09-17 02:47:44
61.219.82.220	attack	[portscan] tcp/23 [TELNET] *(RWIN=62664)(09161116)	2019-09-17 02:58:56
125.138.86.30	attackbotsspam	[portscan] tcp/23 [TELNET] [scan/connect: 2 time(s)] *(RWIN=37764)(09161116)	2019-09-17 02:52:52
212.0.149.87	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 11:02:43,062 INFO [shellcode_manager] (212.0.149.87) no match, writing hexdump (06cb1cdc794ded1faa9f8ed0bf4f6df0 :10711) - SMB (Unknown)	2019-09-17 02:45:49
93.76.60.154	attackspambots	[portscan] tcp/1433 [MsSQL] *(RWIN=8192)(09161116)	2019-09-17 02:41:56
157.44.54.182	attackspambots	[SMB remote code execution attempt: port tcp/445] *(RWIN=8192)(09161116)	2019-09-17 02:39:23
202.171.77.194	attackspam	Chat Spam	2019-09-17 02:46:35
210.176.62.116	attackspam	Sep 16 08:54:47 web1 sshd\[1287\]: Invalid user skeng from 210.176.62.116 Sep 16 08:54:47 web1 sshd\[1287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.176.62.116 Sep 16 08:54:50 web1 sshd\[1287\]: Failed password for invalid user skeng from 210.176.62.116 port 54454 ssh2 Sep 16 08:59:57 web1 sshd\[1877\]: Invalid user cuo from 210.176.62.116 Sep 16 08:59:57 web1 sshd\[1877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.176.62.116	2019-09-17 03:05:04
46.101.81.143	attackspambots	Sep 16 18:06:39 XXXXXX sshd[56024]: Invalid user balu from 46.101.81.143 port 44062	2019-09-17 03:06:15
51.254.141.18	attack	$f2bV_matches	2019-09-17 03:08:53
103.77.207.90	attackbotsspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(09161116)	2019-09-17 02:54:41
51.75.255.166	attack	$f2bV_matches	2019-09-17 03:06:01
180.66.34.140	attackbots	Sep 16 20:11:14 XXX sshd[38992]: Invalid user ofsaa from 180.66.34.140 port 47516	2019-09-17 03:05:24

Recently Reported IPs

209.194.8.124	240.210.175.224	18.114.216.92	7.123.4.175
107.115.132.0	37.44.244.100	6.83.94.18	178.254.5.124
47.145.92.232	86.216.155.93	235.225.144.80	168.126.80.46
206.84.232.156	36.90.167.203	13.89.236.77	203.106.190.174
230.251.87.106	187.188.11.234	132.36.32.117	119.219.250.180