197.253.66.91 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Ghana

Internet Service Provider: Ghana Government

Hostname: unknown

Organization: GGoC1-AS

Usage Type: Government

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Trying to deliver email spam, but blocked by RBL	2019-07-03 02:00:38

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.253.66.91
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42436
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;197.253.66.91.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jul 03 02:00:30 CST 2019
;; MSG SIZE  rcvd: 117

Host info

91.66.253.197.in-addr.arpa domain name pointer dhcp1091.nita.gov.gh.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
91.66.253.197.in-addr.arpa	name = dhcp1091.nita.gov.gh.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.235.94.172	attackbots	Apr 3 01:48:52 ewelt sshd[32723]: Failed password for root from 49.235.94.172 port 49710 ssh2 Apr 3 01:50:17 ewelt sshd[335]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.94.172 user=root Apr 3 01:50:19 ewelt sshd[335]: Failed password for root from 49.235.94.172 port 38340 ssh2 Apr 3 01:51:48 ewelt sshd[415]: Invalid user ea from 49.235.94.172 port 55208 ...	2020-04-03 09:17:42
180.71.47.198	attackbots	(sshd) Failed SSH login from 180.71.47.198 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 3 02:10:47 amsweb01 sshd[27657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.71.47.198 user=root Apr 3 02:10:48 amsweb01 sshd[27657]: Failed password for root from 180.71.47.198 port 44754 ssh2 Apr 3 02:18:12 amsweb01 sshd[31027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.71.47.198 user=root Apr 3 02:18:14 amsweb01 sshd[31027]: Failed password for root from 180.71.47.198 port 58174 ssh2 Apr 3 02:20:31 amsweb01 sshd[31391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.71.47.198 user=root	2020-04-03 09:18:16
158.222.234.146	attackbotsspam	port scan and connect, tcp 81 (hosts2-ns)	2020-04-03 09:34:33
31.186.8.90	attackbotsspam	Automatic report - XMLRPC Attack	2020-04-03 10:22:25
149.129.121.162	attackspambots	Netflix is gifting 4,000 premium accounts. Carl, you are 1 of the selected recipients: streamnow14.info/pHpK4Ymslu	2020-04-03 09:16:12
185.37.212.6	attack	2020-04-02T21:48:28.238Z CLOSE host=185.37.212.6 port=60000 fd=4 time=30.024 bytes=40 ...	2020-04-03 09:36:37
218.255.139.66	attackspambots	2020-04-02T22:18:17.042964shield sshd\[1924\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.255.139.66 user=root 2020-04-02T22:18:18.864738shield sshd\[1924\]: Failed password for root from 218.255.139.66 port 33651 ssh2 2020-04-02T22:21:23.542909shield sshd\[2650\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.255.139.66 user=root 2020-04-02T22:21:25.563885shield sshd\[2650\]: Failed password for root from 218.255.139.66 port 25794 ssh2 2020-04-02T22:24:21.102316shield sshd\[3540\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.255.139.66 user=root	2020-04-03 09:39:57
116.212.236.142	attackspambots	$f2bV_matches	2020-04-03 10:13:26
193.183.102.168	attackbots	193.183.102.168 - - \[02/Apr/2020:23:43:03 +0200\] "GET / HTTP/1.1" 301 832 "-" "Mozilla/5.0 $compatible\; Googlebot/2.1\; +http://www.google.com/bot.html$" 193.183.102.168 - - \[02/Apr/2020:23:43:03 +0200\] "GET / HTTP/1.1" 301 4535 "-" "Mozilla/5.0 $compatible\; Googlebot/2.1\; +http://www.google.com/bot.html$" 193.183.102.168 - - \[02/Apr/2020:23:43:03 +0200\] "GET /de/ HTTP/1.1" 200 17092 "-" "Mozilla/5.0 $compatible\; Googlebot/2.1\; +http://www.google.com/bot.html$" ...	2020-04-03 09:31:48
185.85.238.244	attackspam	Website administration hacking try	2020-04-03 09:26:04
8.209.73.223	attackbotsspam	Apr 3 02:13:22 eventyay sshd[20466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=8.209.73.223 Apr 3 02:13:24 eventyay sshd[20466]: Failed password for invalid user chengwenlei from 8.209.73.223 port 39162 ssh2 Apr 3 02:18:50 eventyay sshd[20703]: Failed password for root from 8.209.73.223 port 50552 ssh2 ...	2020-04-03 10:07:41
119.126.91.213	attack	trying to access non-authorized port	2020-04-03 09:48:02
185.176.27.174	attackbots	04/02/2020-21:26:52.352071 185.176.27.174 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-04-03 09:47:35
159.65.13.233	attackspambots	Invalid user www from 159.65.13.233 port 49862	2020-04-03 10:19:17
88.113.212.202	attackspambots	Automatic report - Port Scan Attack	2020-04-03 10:03:25

Recently Reported IPs

35.163.38.90	46.12.254.55	88.15.91.104	53.205.19.24
54.170.42.10	189.240.35.21	52.214.253.155	37.165.26.82
49.199.109.19	132.142.221.182	79.60.18.222	139.218.86.130
89.24.231.94	98.183.9.211	198.242.57.213	75.158.112.239
189.240.105.161	149.66.211.120	52.229.21.220	196.218.48.162