166.62.122.244

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: GoDaddy.com LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	166.62.122.244 - - [03/Oct/2020:12:54:18 +0100] "POST /wp-login.php HTTP/1.1" 200 2175 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [03/Oct/2020:12:54:25 +0100] "POST /wp-login.php HTTP/1.1" 200 2207 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [03/Oct/2020:12:54:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2204 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-03 20:21:40
attack	CMS (WordPress or Joomla) login attempt.	2020-08-29 14:12:30
attackspam	166.62.122.244 - - [10/Aug/2020:00:32:37 +0200] "GET /wp-login.php HTTP/1.1" 200 5990 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [10/Aug/2020:00:32:40 +0200] "POST /wp-login.php HTTP/1.1" 200 6220 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [10/Aug/2020:00:32:41 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-10 06:35:30
attackbotsspam	CF RAY ID: 5bd7c9687eb5747a IP Class: noRecord URI: /xmlrpc.php	2020-08-08 16:25:17
attack	166.62.122.244 - - [01/Aug/2020:13:21:27 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [01/Aug/2020:13:21:28 +0100] "POST /wp/wp-login.php HTTP/1.1" 200 1846 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [01/Aug/2020:13:21:29 +0100] "POST /wp/xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-01 21:59:35
attackspambots	166.62.122.244 - - \[19/Jul/2020:21:53:41 +0200\] "POST /wp-login.php HTTP/1.0" 200 2797 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 166.62.122.244 - - \[19/Jul/2020:21:53:43 +0200\] "POST /wp-login.php HTTP/1.0" 200 2724 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 166.62.122.244 - - \[19/Jul/2020:21:53:46 +0200\] "POST /wp-login.php HTTP/1.0" 200 2762 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-07-20 06:38:09
attackbots	166.62.122.244 - - [17/Jul/2020:14:33:23 +0100] "POST /wp-login.php HTTP/1.1" 200 2081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [17/Jul/2020:14:33:25 +0100] "POST /wp-login.php HTTP/1.1" 200 2060 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [17/Jul/2020:14:33:27 +0100] "POST /wp-login.php HTTP/1.1" 200 2062 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-17 21:55:30
attack	Automatic report - XMLRPC Attack	2020-07-14 07:45:06
attack	[12/Jul/2020:05:55:18 +0200] Web-Request: "GET /wp-login.php", User-Agent: "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-07-12 13:21:04
attackbotsspam	Automatic report - WordPress Brute Force	2020-07-04 23:52:50
attackspambots	chaangnoifulda.de 166.62.122.244 [05/Jun/2020:15:06:26 +0200] "POST /wp-login.php HTTP/1.1" 200 6006 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" chaangnoifulda.de 166.62.122.244 [05/Jun/2020:15:06:28 +0200] "POST /wp-login.php HTTP/1.1" 200 5964 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-06 01:04:31
attackspam	166.62.122.244 - - [01/Jun/2020:07:20:11 +0200] "GET /wp-login.php HTTP/1.1" 200 6614 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [01/Jun/2020:07:20:13 +0200] "POST /wp-login.php HTTP/1.1" 200 6865 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [01/Jun/2020:07:20:14 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-01 18:19:20
attack	166.62.122.244 - - \[26/May/2020:09:31:57 +0200\] "POST /wp-login.php HTTP/1.0" 200 6400 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 166.62.122.244 - - \[26/May/2020:09:32:00 +0200\] "POST /wp-login.php HTTP/1.0" 200 6267 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 166.62.122.244 - - \[26/May/2020:09:32:02 +0200\] "POST /wp-login.php HTTP/1.0" 200 6263 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-05-26 17:36:57
attackbots	WordPress login Brute force / Web App Attack on client site.	2020-05-23 03:54:29
attack	Automatic report - WordPress Brute Force	2020-04-30 06:26:05
attackbots	166.62.122.244 - - \[28/Apr/2020:06:00:19 +0200\] "POST /wp-login.php HTTP/1.1" 200 9652 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 166.62.122.244 - - \[28/Apr/2020:06:00:27 +0200\] "POST /wp-login.php HTTP/1.1" 200 9521 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2020-04-28 14:48:56
attack	Automatic report - Banned IP Access	2020-04-26 14:47:59
attackspambots	Automatically reported by fail2ban report script (mx1)	2020-04-23 23:50:48
attackbotsspam	WordPress wp-login brute force :: 166.62.122.244 0.160 - [15/Jan/2020:05:15:27 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1806 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-01-15 15:59:04
attackspam	Automatic report - Banned IP Access	2019-12-25 06:39:38
attackspambots	166.62.122.244 - - [18/Dec/2019:09:30:08 +0100] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [18/Dec/2019:09:30:09 +0100] "POST /wp-login.php HTTP/1.1" 200 2298 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [18/Dec/2019:09:30:10 +0100] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [18/Dec/2019:09:30:11 +0100] "POST /wp-login.php HTTP/1.1" 200 2272 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [18/Dec/2019:09:30:11 +0100] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 166.62.122.244 - - [18/Dec/2019:09:30:12 +0100] "POST /wp-login.php HTTP/1.1" 200 2273 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-12-18 19:59:59
attack	fail2ban honeypot	2019-10-11 04:12:28
attackbotsspam	Automatic report - Banned IP Access	2019-10-08 01:06:24

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 166.62.122.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44510
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;166.62.122.244.			IN	A

;; AUTHORITY SECTION:
.			524	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100701 1800 900 604800 86400

;; Query time: 459 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 08 01:06:21 CST 2019
;; MSG SIZE  rcvd: 118

Host info

244.122.62.166.in-addr.arpa domain name pointer ip-166-62-122-244.ip.secureserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
244.122.62.166.in-addr.arpa	name = ip-166-62-122-244.ip.secureserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.138	attackspambots	$f2bV_matches	2019-11-29 01:17:08
197.52.2.50	attackbots	Nov 28 15:36:41 sso sshd[17563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.52.2.50 Nov 28 15:36:42 sso sshd[17563]: Failed password for invalid user admin from 197.52.2.50 port 49651 ssh2 ...	2019-11-29 01:00:13
203.147.69.12	attack	(imapd) Failed IMAP login from 203.147.69.12 (NC/New Caledonia/host-203-147-69-12.h22.canl.nc): 1 in the last 3600 secs	2019-11-29 00:57:45
104.92.95.64	attackspambots	11/28/2019-17:41:03.340795 104.92.95.64 Protocol: 6 SURICATA TLS invalid record/traffic	2019-11-29 01:13:32
51.75.23.62	attackbots	$f2bV_matches	2019-11-29 00:38:26
5.55.78.103	attack	port scan and connect, tcp 8080 (http-proxy)	2019-11-29 00:59:13
123.125.71.17	attackbots	Automatic report - Banned IP Access	2019-11-29 01:16:00
5.19.252.194	attackspam	Automatic report - Banned IP Access	2019-11-29 00:44:52
104.248.14.171	attackbots	Automatic report - Banned IP Access	2019-11-29 00:53:39
106.51.33.29	attack	$f2bV_matches	2019-11-29 00:43:17
218.92.0.173	attack	Nov 28 17:44:02 vpn01 sshd[15509]: Failed password for root from 218.92.0.173 port 64117 ssh2 Nov 28 17:44:15 vpn01 sshd[15509]: error: maximum authentication attempts exceeded for root from 218.92.0.173 port 64117 ssh2 [preauth] ...	2019-11-29 00:45:44
123.215.174.102	attackspam	2019-11-28T16:42:01.567842abusebot-5.cloudsearch.cf sshd\[25447\]: Invalid user administrador from 123.215.174.102 port 46083	2019-11-29 01:15:35
61.172.142.58	attackbots	Nov 28 15:37:15 zeus postfix/smtpd\[18303\]: warning: unknown\[61.172.142.58\]: SASL LOGIN authentication failed: authentication failure Nov 28 15:37:19 zeus postfix/smtpd\[18303\]: warning: unknown\[61.172.142.58\]: SASL LOGIN authentication failed: authentication failure Nov 28 15:37:22 zeus postfix/smtpd\[18303\]: warning: unknown\[61.172.142.58\]: SASL LOGIN authentication failed: authentication failure ...	2019-11-29 00:50:34
137.117.178.120	attack	Brute Force attack on Wordpress administrator access	2019-11-29 00:36:06
221.161.229.139	attackspam	2019-11-28T18:13:29.968068scmdmz1 sshd\[31202\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.161.229.139 user=root 2019-11-28T18:13:31.716366scmdmz1 sshd\[31202\]: Failed password for root from 221.161.229.139 port 54278 ssh2 2019-11-28T18:13:34.869306scmdmz1 sshd\[31202\]: Failed password for root from 221.161.229.139 port 54278 ssh2 ...	2019-11-29 01:18:06

Recently Reported IPs

118.178.181.130	199.91.239.131	179.166.162.216	92.141.245.115
219.164.66.30	14.218.60.196	123.70.231.52	251.120.57.255
152.237.184.237	2400:6180:0:d0::514:4001	188.93.109.7	35.154.103.207
195.192.226.180	171.96.232.112	37.120.217.85	27.165.123.87
187.58.191.1	197.249.87.189	93.76.249.193	103.133.107.130