167.104.253.66

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.104.253.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17802
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.104.253.66.			IN	A

;; AUTHORITY SECTION:
.			7	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022011001 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 11 03:48:32 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 66.253.104.167.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 66.253.104.167.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
101.78.229.4	attack	2020-08-16T01:34:12.462861morrigan.ad5gb.com sshd[218970]: Failed password for root from 101.78.229.4 port 48042 ssh2 2020-08-16T01:34:14.766080morrigan.ad5gb.com sshd[218970]: Disconnected from authenticating user root 101.78.229.4 port 48042 [preauth]	2020-08-16 17:07:31
167.114.203.73	attackbots	Aug 16 16:16:54 webhost01 sshd[14896]: Failed password for root from 167.114.203.73 port 56594 ssh2 Aug 16 16:20:46 webhost01 sshd[14961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.203.73 ...	2020-08-16 17:22:18
112.85.42.180	attack	SSH auth scanning - multiple failed logins	2020-08-16 17:08:20
167.71.117.84	attackspambots	SSH_bulk_scanner	2020-08-16 16:59:54
103.98.17.10	attack	SSH Brute Force	2020-08-16 17:12:03
117.186.96.54	attack	SSH_bulk_scanner	2020-08-16 17:28:05
2.57.122.196	attackbotsspam	2020-08-16T11:58:57.965007lavrinenko.info sshd[30372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.122.196 user=root 2020-08-16T11:58:59.978974lavrinenko.info sshd[30372]: Failed password for root from 2.57.122.196 port 55248 ssh2 2020-08-16T11:59:24.603576lavrinenko.info sshd[30411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.57.122.196 user=root 2020-08-16T11:59:26.657609lavrinenko.info sshd[30411]: Failed password for root from 2.57.122.196 port 42410 ssh2 2020-08-16T11:59:51.612599lavrinenko.info sshd[30420]: Invalid user ansible from 2.57.122.196 port 57786 ...	2020-08-16 17:03:13
148.72.207.135	attack	148.72.207.135 - - [16/Aug/2020:11:01:32 +0200] "GET /wp-login.php HTTP/1.1" 200 8691 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.72.207.135 - - [16/Aug/2020:11:01:34 +0200] "POST /wp-login.php HTTP/1.1" 200 8921 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.72.207.135 - - [16/Aug/2020:11:01:35 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-16 17:17:47
36.112.26.54	attack	TCP (SYN) 36.112.26.54:31633 -> port 1433, len 44	2020-08-16 17:26:00
190.203.224.50	attackbots	firewall-block, port(s): 445/tcp	2020-08-16 17:16:53
63.83.76.20	attackbotsspam	Aug 12 06:48:12 online-web-1 postfix/smtpd[1007576]: connect from juice.bicharter.com[63.83.76.20] Aug x@x Aug 12 06:48:17 online-web-1 postfix/smtpd[1007576]: disconnect from juice.bicharter.com[63.83.76.20] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Aug 12 06:48:31 online-web-1 postfix/smtpd[1007575]: connect from juice.bicharter.com[63.83.76.20] Aug x@x Aug 12 06:48:37 online-web-1 postfix/smtpd[1007575]: disconnect from juice.bicharter.com[63.83.76.20] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Aug 12 06:51:55 online-web-1 postfix/smtpd[1007575]: connect from juice.bicharter.com[63.83.76.20] Aug x@x Aug 12 06:52:01 online-web-1 postfix/smtpd[1007575]: disconnect from juice.bicharter.com[63.83.76.20] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 Aug 12 06:55:04 online-web-1 postfix/smtpd[1007575]: connect from juice.bicharter.com[63.83.76.20] Aug 12 06:55:05 online-web-1 postfix/smtpd[1007576]: connect from juice.bicharter.co........ -------------------------------	2020-08-16 17:09:08
212.47.237.75	attackbots	Tried sshing with brute force.	2020-08-16 17:10:43
111.229.118.227	attackspambots	Aug 16 05:39:55 ns382633 sshd\[20552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.118.227 user=root Aug 16 05:39:57 ns382633 sshd\[20552\]: Failed password for root from 111.229.118.227 port 44540 ssh2 Aug 16 05:43:50 ns382633 sshd\[21250\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.118.227 user=root Aug 16 05:43:52 ns382633 sshd\[21250\]: Failed password for root from 111.229.118.227 port 45000 ssh2 Aug 16 05:50:02 ns382633 sshd\[22073\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.118.227 user=root	2020-08-16 17:29:31
45.84.196.141	attackbots	[portscan] tcp/22 [SSH] in blocklist.de:'listed [ssh]' *(RWIN=65535)(08160949)	2020-08-16 17:32:26
107.170.63.221	attackbots	Aug 16 06:29:10 db sshd[24935]: User root from 107.170.63.221 not allowed because none of user's groups are listed in AllowGroups ...	2020-08-16 17:03:47

Recently Reported IPs

30.104.104.172	137.84.187.213	36.49.116.78	132.217.66.217
39.30.93.104	139.22.244.172	240.41.216.255	162.175.212.62
134.127.9.225	116.145.111.105	177.188.204.244	32.19.11.222
208.108.205.170	140.75.58.15	100.163.1.74	124.51.127.197
160.158.36.184	102.243.144.174	218.227.11.241	143.145.226.48