166.70.20.132 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
166.70.207.2	attackbotsspam	$f2bV_matches	2020-09-06 20:28:55
166.70.207.2	attackspambots	Unauthorized access detected from black listed ip!	2020-09-06 12:08:42
166.70.207.2	attackbots	2020-09-05 11:52:12.702595-0500 localhost sshd[43329]: Failed password for root from 166.70.207.2 port 47256 ssh2	2020-09-06 04:32:20
166.70.207.2	attackbotsspam	Sep 1 13:34:37 shivevps sshd[31267]: Did not receive identification string from 166.70.207.2 port 52868 ...	2020-09-01 21:19:18
166.70.207.2	attack	Automatic report - Banned IP Access	2020-08-12 01:14:34
166.70.202.88	attack	" "	2020-03-21 07:34:26
166.70.207.2	attack	01/23/2020-05:42:54.003693 166.70.207.2 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 15	2020-01-23 14:23:01
166.70.202.88	attackspam	unauthorized connection attempt	2020-01-09 18:51:07
166.70.207.2	attackbotsspam	Oct 24 03:54:43 thevastnessof sshd[3055]: Failed password for root from 166.70.207.2 port 44338 ssh2 ...	2019-10-24 13:08:15
166.70.207.2	attack	Oct 22 20:04:15 rotator sshd\[19791\]: Failed password for root from 166.70.207.2 port 44052 ssh2Oct 22 20:04:18 rotator sshd\[19791\]: Failed password for root from 166.70.207.2 port 44052 ssh2Oct 22 20:04:21 rotator sshd\[19791\]: Failed password for root from 166.70.207.2 port 44052 ssh2Oct 22 20:04:24 rotator sshd\[19791\]: Failed password for root from 166.70.207.2 port 44052 ssh2Oct 22 20:04:27 rotator sshd\[19791\]: Failed password for root from 166.70.207.2 port 44052 ssh2Oct 22 20:04:30 rotator sshd\[19791\]: Failed password for root from 166.70.207.2 port 44052 ssh2 ...	2019-10-23 02:44:30
166.70.207.2	attackspambots	Oct 22 01:09:52 rotator sshd\[16594\]: Failed password for root from 166.70.207.2 port 36278 ssh2Oct 22 01:09:56 rotator sshd\[16594\]: Failed password for root from 166.70.207.2 port 36278 ssh2Oct 22 01:09:58 rotator sshd\[16594\]: Failed password for root from 166.70.207.2 port 36278 ssh2Oct 22 01:10:01 rotator sshd\[16594\]: Failed password for root from 166.70.207.2 port 36278 ssh2Oct 22 01:10:04 rotator sshd\[16594\]: Failed password for root from 166.70.207.2 port 36278 ssh2Oct 22 01:10:07 rotator sshd\[16594\]: Failed password for root from 166.70.207.2 port 36278 ssh2 ...	2019-10-22 07:20:08
166.70.207.2	attackbots	Oct 20 14:04:21 rotator sshd\[4600\]: Failed password for root from 166.70.207.2 port 36540 ssh2Oct 20 14:04:24 rotator sshd\[4600\]: Failed password for root from 166.70.207.2 port 36540 ssh2Oct 20 14:04:27 rotator sshd\[4600\]: Failed password for root from 166.70.207.2 port 36540 ssh2Oct 20 14:04:30 rotator sshd\[4600\]: Failed password for root from 166.70.207.2 port 36540 ssh2Oct 20 14:04:33 rotator sshd\[4600\]: Failed password for root from 166.70.207.2 port 36540 ssh2Oct 20 14:04:36 rotator sshd\[4600\]: Failed password for root from 166.70.207.2 port 36540 ssh2 ...	2019-10-20 21:09:49
166.70.207.2	attack	Oct 12 18:12:55 vpn01 sshd[15673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.70.207.2 Oct 12 18:12:57 vpn01 sshd[15673]: Failed password for invalid user adonis from 166.70.207.2 port 40658 ssh2 ...	2019-10-13 05:57:06
166.70.207.2	attack	Automatic report - XMLRPC Attack	2019-10-07 14:17:41
166.70.207.2	attackbots	2019-10-02T08:21:36.912024abusebot.cloudsearch.cf sshd\[14246\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=166.70.207.2 user=root	2019-10-02 19:32:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 166.70.20.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37588
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;166.70.20.132.			IN	A

;; AUTHORITY SECTION:
.			486	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062202 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 23 06:13:04 CST 2022
;; MSG SIZE  rcvd: 106

Host info

132.20.70.166.in-addr.arpa domain name pointer 166-70-20-132.xmission.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
132.20.70.166.in-addr.arpa	name = 166-70-20-132.xmission.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.104.254.76	attackspam	PHI,WP GET /wp-login.php	2019-11-08 23:27:54
45.227.253.141	attackbotsspam	Nov 8 15:49:50 srv01 postfix/smtpd\[14466\]: warning: unknown\[45.227.253.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 8 15:49:58 srv01 postfix/smtpd\[13265\]: warning: unknown\[45.227.253.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 8 15:52:24 srv01 postfix/smtpd\[14466\]: warning: unknown\[45.227.253.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 8 15:52:32 srv01 postfix/smtpd\[13265\]: warning: unknown\[45.227.253.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 8 15:52:36 srv01 postfix/smtpd\[14466\]: warning: unknown\[45.227.253.141\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-08 23:00:13
197.156.67.250	attack	Nov 8 15:33:01 jane sshd[14630]: Failed password for root from 197.156.67.250 port 49798 ssh2 Nov 8 15:41:15 jane sshd[22900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.67.250 ...	2019-11-08 23:14:48
37.223.19.84	attackspambots	Brute force attempt	2019-11-08 23:11:42
1.34.251.58	attack	11/08/2019-15:41:04.289221 1.34.251.58 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 6	2019-11-08 23:26:11
176.112.228.94	attack	Chat Spam	2019-11-08 22:54:08
51.83.71.72	attackspambots	Nov 8 15:43:42 mail postfix/smtpd[17068]: warning: 72.ip-51-83-71.eu[51.83.71.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 8 15:48:51 mail postfix/smtpd[20289]: warning: 72.ip-51-83-71.eu[51.83.71.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 8 15:50:52 mail postfix/smtpd[18952]: warning: 72.ip-51-83-71.eu[51.83.71.72]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-08 22:54:27
79.183.208.202	attack	Brute force attempt	2019-11-08 22:49:35
106.12.91.209	attack	Nov 8 15:35:56 * sshd[17366]: Failed password for root from 106.12.91.209 port 57876 ssh2	2019-11-08 23:17:10
110.139.145.86	attackspam	Port 1433 Scan	2019-11-08 23:00:40
203.110.179.26	attackspambots	Nov 8 15:32:38 markkoudstaal sshd[23825]: Failed password for root from 203.110.179.26 port 60087 ssh2 Nov 8 15:37:19 markkoudstaal sshd[24225]: Failed password for root from 203.110.179.26 port 48656 ssh2 Nov 8 15:41:55 markkoudstaal sshd[24675]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.110.179.26	2019-11-08 22:46:47
106.13.134.164	attackspam	Nov 8 04:52:09 tdfoods sshd\[2170\]: Invalid user car123 from 106.13.134.164 Nov 8 04:52:09 tdfoods sshd\[2170\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.164 Nov 8 04:52:11 tdfoods sshd\[2170\]: Failed password for invalid user car123 from 106.13.134.164 port 58672 ssh2 Nov 8 04:57:26 tdfoods sshd\[2563\]: Invalid user mk@123 from 106.13.134.164 Nov 8 04:57:26 tdfoods sshd\[2563\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.164	2019-11-08 23:09:48
49.88.112.77	attackspam	2019-11-08T14:41:38.852396abusebot-3.cloudsearch.cf sshd\[10423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.77 user=root	2019-11-08 22:58:39
159.65.27.252	attackbotsspam	159.65.27.252 was recorded 5 times by 3 hosts attempting to connect to the following ports: 80. Incident counter (4h, 24h, all-time): 5, 27, 41	2019-11-08 22:49:18
212.56.120.140	attackbotsspam	RDP Bruteforce	2019-11-08 22:57:44

Recently Reported IPs

180.76.57.24	169.229.28.190	137.226.108.41	169.229.39.115
137.226.203.167	137.226.239.240	137.226.63.6	137.226.202.222
112.47.16.30	137.226.102.83	137.226.162.143	180.76.227.22
180.76.219.173	180.76.54.238	169.229.179.225	137.226.65.77
180.76.58.246	180.76.57.251	189.45.167.88	137.226.233.36