161.97.66.104 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
161.97.66.235	attackspambots	TCP (SYN) 161.97.66.235:37190 -> port 23, len 40	2020-06-12 16:06:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 161.97.66.104
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39776
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;161.97.66.104.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 03:54:54 CST 2022
;; MSG SIZE  rcvd: 106

Host info

104.66.97.161.in-addr.arpa domain name pointer vmi401002.contaboserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
104.66.97.161.in-addr.arpa	name = vmi401002.contaboserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
171.35.161.192	attack	Jun 29 01:51:46 pankow postfix/smtpd[1059]: warning: hostname 192.161.35.171.adsl-pool.jx.chinaunicom.com does not resolve to address 171.35.161.192 Jun 29 01:51:46 pankow postfix/smtpd[1059]: connect from unknown[171.35.161.192] Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=171.35.161.192	2019-06-29 09:36:47
139.59.82.78	attack	Jun 29 03:48:01 core01 sshd\[28475\]: Invalid user debian from 139.59.82.78 port 42050 Jun 29 03:48:01 core01 sshd\[28475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.82.78 ...	2019-06-29 10:00:24
211.159.149.29	attack	Jun 29 02:03:24 localhost sshd\[1233\]: Invalid user postgres from 211.159.149.29 port 50574 Jun 29 02:03:24 localhost sshd\[1233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.149.29 Jun 29 02:03:26 localhost sshd\[1233\]: Failed password for invalid user postgres from 211.159.149.29 port 50574 ssh2	2019-06-29 09:56:28
191.53.222.55	attack	Distributed brute force attack	2019-06-29 09:56:44
168.228.149.104	attack	SMTP-sasl brute force ...	2019-06-29 10:00:05
14.231.102.177	attack	SSH Bruteforce Attack	2019-06-29 09:31:03
218.89.187.46	attack	Unauthorised access (Jun 29) SRC=218.89.187.46 LEN=40 TTL=51 ID=41092 TCP DPT=23 WINDOW=11795 SYN	2019-06-29 09:39:29
175.139.167.242	attack	Looking for resource vulnerabilities	2019-06-29 09:51:56
139.59.17.173	attackspam	SSH Bruteforce	2019-06-29 10:00:46
185.234.219.89	attackspam	Rude login attack (5 tries in 1d)	2019-06-29 09:27:04
5.28.159.10	attack	Jun 29 01:04:55 isowiki sshd[28128]: Invalid user admin from 5.28.159.10 Jun 29 01:04:55 isowiki sshd[28128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.28.159.10 Jun 29 01:04:57 isowiki sshd[28128]: Failed password for invalid user admin from 5.28.159.10 port 58459 ssh2 Jun 29 01:04:59 isowiki sshd[28128]: Failed password for invalid user admin from 5.28.159.10 port 58459 ssh2 Jun 29 01:05:01 isowiki sshd[28128]: Failed password for invalid user admin from 5.28.159.10 port 58459 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=5.28.159.10	2019-06-29 09:26:43
113.173.23.62	attackbots	Jun 29 01:18:56 rhein postfix/smtpd[25622]: warning: hostname static.vnpt.vn does not resolve to address 113.173.23.62 Jun 29 01:18:56 rhein postfix/smtpd[25622]: connect from unknown[113.173.23.62] Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x Jun x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.173.23.62	2019-06-29 09:48:48
51.68.220.136	attackbots	Jun 29 01:21:41 rpi sshd\[2201\]: Invalid user sshopenvpn from 51.68.220.136 port 43668 Jun 29 01:21:41 rpi sshd\[2201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.68.220.136 Jun 29 01:21:43 rpi sshd\[2201\]: Failed password for invalid user sshopenvpn from 51.68.220.136 port 43668 ssh2	2019-06-29 10:04:28
51.68.216.186	attackbotsspam	Port scan on 2 port(s): 139 445	2019-06-29 09:43:02
124.41.211.27	attack	Jun 29 01:42:35 localhost sshd\[70896\]: Invalid user hg from 124.41.211.27 port 40264 Jun 29 01:42:35 localhost sshd\[70896\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.41.211.27 Jun 29 01:42:37 localhost sshd\[70896\]: Failed password for invalid user hg from 124.41.211.27 port 40264 ssh2 Jun 29 01:45:17 localhost sshd\[70979\]: Invalid user nue from 124.41.211.27 port 57412 Jun 29 01:45:17 localhost sshd\[70979\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.41.211.27 ...	2019-06-29 10:01:03

Recently Reported IPs

202.53.141.161	47.119.163.33	88.218.67.67	177.36.176.213
77.68.43.174	64.227.162.63	213.157.191.81	46.216.34.62
75.127.11.52	200.194.20.188	103.101.17.172	211.36.141.91
143.198.229.248	60.167.170.108	52.40.170.201	168.121.104.224
37.49.225.230	41.90.68.87	112.47.141.177	222.137.238.92