220.167.104.53

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

% [whois.apnic.net]
% Whois data copyright terms    http://www.apnic.net/db/dbcopyright.html

% Information related to '220.166.0.0 - 220.167.127.255'

% Abuse contact for '220.166.0.0 - 220.167.127.255' is 'anti-spam@chinatelecom.cn'

inetnum:        220.166.0.0 - 220.167.127.255
netname:        CHINANET-SC
descr:          CHINANET sichuan province network
descr:          Data Communication Division
descr:          China Telecom
country:        CN
admin-c:        CH93-AP
tech-c:         XS16-AP
mnt-by:         MAINT-CHINANET
mnt-lower:      MAINT-CHINANET-SC
status:         ALLOCATED NON-PORTABLE
last-modified:  2008-09-04T06:52:05Z
source:         APNIC

person:         Chinanet Hostmaster
nic-hdl:        CH93-AP
e-mail:         anti-spam@chinatelecom.cn
address:        No.31 ,jingrong street,beijing
address:        100032
phone:          +86-10-58501724
fax-no:         +86-10-58501724
country:        CN
mnt-by:         MAINT-CHINANET
last-modified:  2022-02-28T06:53:44Z
source:         APNIC

person:         Xiaodong Shi
nic-hdl:        XS16-AP
e-mail:         scipadmin2013@189.cn
address:        No.72,Wen Miao Qian Str.
address:        Data Communication Bureau Of Sichuan Province
address:        Chengdu
address:        PR China
phone:          +86-28-6190785
fax-no:         +86-28-6190641
country:        CN
mnt-by:         MAINT-CHINANET-SC
last-modified:  2013-12-30T01:32:36Z
source:         APNIC

% This query was served by the APNIC Whois Service version 1.88.47 (WHOIS-AU4)

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.167.104.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24896
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;220.167.104.53.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026041200 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 12 21:53:00 CST 2026
;; MSG SIZE  rcvd: 107

Host info

53.104.167.220.in-addr.arpa domain name pointer 53.104.167.220.dial.dy.sc.dynamic.163data.com.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.104.167.220.in-addr.arpa	name = 53.104.167.220.dial.dy.sc.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.252.6.217	attackbots	Automatic report - Banned IP Access	2020-06-08 06:48:53
178.128.108.100	attack	2020-06-07T20:22:01.063729shield sshd\[32458\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.108.100 user=root 2020-06-07T20:22:03.738223shield sshd\[32458\]: Failed password for root from 178.128.108.100 port 43026 ssh2 2020-06-07T20:24:06.149711shield sshd\[32635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.108.100 user=root 2020-06-07T20:24:08.648979shield sshd\[32635\]: Failed password for root from 178.128.108.100 port 48110 ssh2 2020-06-07T20:26:09.259175shield sshd\[312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.108.100 user=root	2020-06-08 06:29:29
173.219.87.30	attackspambots	Jun 7 19:35:27 online-web-vs-1 sshd[1186230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.219.87.30 user=r.r Jun 7 19:35:29 online-web-vs-1 sshd[1186230]: Failed password for r.r from 173.219.87.30 port 53928 ssh2 Jun 7 19:35:29 online-web-vs-1 sshd[1186230]: Received disconnect from 173.219.87.30 port 53928:11: Bye Bye [preauth] Jun 7 19:35:29 online-web-vs-1 sshd[1186230]: Disconnected from 173.219.87.30 port 53928 [preauth] Jun 7 19:37:26 online-web-vs-1 sshd[1186275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.219.87.30 user=r.r Jun 7 19:37:28 online-web-vs-1 sshd[1186275]: Failed password for r.r from 173.219.87.30 port 33293 ssh2 Jun 7 19:37:28 online-web-vs-1 sshd[1186275]: Received disconnect from 173.219.87.30 port 33293:11: Bye Bye [preauth] Jun 7 19:37:28 online-web-vs-1 sshd[1186275]: Disconnected from 173.219.87.30 port 33293 [preauth] Jun 7 19:38:41 ........ -------------------------------	2020-06-08 06:37:49
206.81.12.209	attack	Jun 8 00:17:29 journals sshd\[30867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.12.209 user=root Jun 8 00:17:31 journals sshd\[30867\]: Failed password for root from 206.81.12.209 port 57398 ssh2 Jun 8 00:20:47 journals sshd\[31318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.12.209 user=root Jun 8 00:20:49 journals sshd\[31318\]: Failed password for root from 206.81.12.209 port 60694 ssh2 Jun 8 00:24:02 journals sshd\[31590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.12.209 user=root ...	2020-06-08 06:28:37
52.191.174.199	attackspam	Jun 8 00:15:27 eventyay sshd[4853]: Failed password for root from 52.191.174.199 port 47328 ssh2 Jun 8 00:19:15 eventyay sshd[4927]: Failed password for root from 52.191.174.199 port 51338 ssh2 ...	2020-06-08 06:29:43
77.68.122.192	attackbots	[SunJun0722:25:29.8077862020][:error][pid7833:tid46962446599936][client77.68.122.192:63515][client77.68.122.192]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:MSIE6.0detected\(DisableifyouwanttoallowMSIE6\)"][severity"WARNING"][hostname"lighthouse-accessoires.ch"][uri"/apps/phpinfo.php"][unique_id"Xt1NOfEhuq1Sg86EXnAsjgAAABM"][SunJun0722:25:29.9391812020][:error][pid31263:tid46962429789952][client77.68.122.192:63542][client77.68.122.192]ModSecurity:Accessdeniedwithcode403\(phase2\).Matchof"rx\(MSWebServicesClientProtocol\\|WormlyBot\\|webauth@cmcm\\\\\\\\.com\)"against"REQUEST_HEADERS:User-Agent"required.[file"/usr/local/apache.ea3/conf/modsec_rules/20_asl_useragents.conf"][line"402"][id"397989"][rev"1"][msg"Atomicorp.comWAFRules:M	2020-06-08 07:04:07
162.243.137.221	attackbotsspam	Honeypot hit.	2020-06-08 06:52:53
112.85.42.174	attackspam	Jun 8 00:50:25 abendstille sshd\[29737\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root Jun 8 00:50:25 abendstille sshd\[29734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.174 user=root Jun 8 00:50:26 abendstille sshd\[29737\]: Failed password for root from 112.85.42.174 port 44326 ssh2 Jun 8 00:50:26 abendstille sshd\[29734\]: Failed password for root from 112.85.42.174 port 20415 ssh2 Jun 8 00:50:29 abendstille sshd\[29737\]: Failed password for root from 112.85.42.174 port 44326 ssh2 ...	2020-06-08 06:55:54
139.59.45.45	attack	Jun 7 23:34:36 ajax sshd[12406]: Failed password for root from 139.59.45.45 port 50616 ssh2	2020-06-08 06:53:27
217.160.75.142	attack	Jun 7 22:17:33 vps sshd[1318]: Failed password for root from 217.160.75.142 port 39758 ssh2 Jun 7 22:22:48 vps sshd[1606]: Failed password for root from 217.160.75.142 port 36678 ssh2 ...	2020-06-08 06:34:16
145.239.95.241	attackspam	2020-06-07T23:32:32.569783vps773228.ovh.net sshd[26025]: Failed password for root from 145.239.95.241 port 53656 ssh2 2020-06-07T23:35:42.262380vps773228.ovh.net sshd[26097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=241.ip-145-239-95.eu user=root 2020-06-07T23:35:44.539628vps773228.ovh.net sshd[26097]: Failed password for root from 145.239.95.241 port 56764 ssh2 2020-06-07T23:38:58.428100vps773228.ovh.net sshd[26147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=241.ip-145-239-95.eu user=root 2020-06-07T23:39:00.946228vps773228.ovh.net sshd[26147]: Failed password for root from 145.239.95.241 port 59870 ssh2 ...	2020-06-08 06:33:28
192.227.158.41	attack	2020-06-07T20:25:36Z - RDP login failed multiple times. (192.227.158.41)	2020-06-08 06:50:28
185.53.91.28	attackbots	Jun 8 00:42:48 debian kernel: [468726.628135] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=185.53.91.28 DST=89.252.131.35 LEN=439 TOS=0x00 PREC=0x00 TTL=49 ID=1966 DF PROTO=UDP SPT=5123 DPT=5060 LEN=419	2020-06-08 07:00:07
134.175.219.41	attackbotsspam	This client attempted to login to an administrator account on a Website, or abused from another resource.	2020-06-08 07:09:37
52.168.10.65	attack	07.06.2020 23:57:15 - RDP Login Fail Detected by https://www.elinox.de/RDP-Wächter	2020-06-08 07:04:40

Recently Reported IPs

190.194.63.159	190.194.63.86	20.220.147.82	192.241.222.196
192.168.1.240	121.8.28.79	2606:4700:10::6814:6541	2606:4700:10::6816:4461
2606:4700:10::6816:648	2606:4700:10::6816:394	2606:4700:10::6816:1852	2606:4700:10::ac43:1434
2606:4700:10::6814:4555	2606:4700:10::6816:3505	195.178.110.103	104.187.62.77
134.35.157.180	110.78.156.87	2606:4700:10::6816:4602	2606:4700:10::ac43:1392