63.194.1.66 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: AT&T

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
63.194.139.211	attackbotsspam	Unauthorized connection attempt detected from IP address 63.194.139.211 to port 8000 [J]	2020-01-25 03:12:53

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 63.194.1.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64514
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;63.194.1.66.			IN	A

;; AUTHORITY SECTION:
.			457	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022062100 1800 900 604800 86400

;; Query time: 45 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 21 20:25:17 CST 2022
;; MSG SIZE  rcvd: 104

Host info

66.1.194.63.in-addr.arpa domain name pointer adsl-63-194-1-66.dsl.lsan03.pacbell.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.1.194.63.in-addr.arpa	name = adsl-63-194-1-66.dsl.lsan03.pacbell.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
192.185.21.109	attackspam	SSH login attempts.	2020-07-10 02:57:47
36.75.215.12	attack	20/7/9@08:03:49: FAIL: Alarm-Network address from=36.75.215.12 ...	2020-07-10 02:58:33
177.137.96.15	attackspambots	Jul 9 06:15:38 pi sshd[11689]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.137.96.15 Jul 9 06:15:40 pi sshd[11689]: Failed password for invalid user flavi from 177.137.96.15 port 53486 ssh2	2020-07-10 02:42:03
212.35.189.20	attack	Unauthorized connection attempt from IP address 212.35.189.20 on Port 445(SMB)	2020-07-10 03:09:50
83.102.40.112	attackbotsspam	SSH login attempts.	2020-07-10 03:13:30
122.176.55.10	attack	Jul 8 18:28:55 reporting3 sshd[5922]: reveeclipse mapping checking getaddrinfo for abts-north-static-010.55.176.122.airtelbroadband.in [122.176.55.10] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 8 18:28:55 reporting3 sshd[5922]: Invalid user marri from 122.176.55.10 Jul 8 18:28:55 reporting3 sshd[5922]: Failed password for invalid user marri from 122.176.55.10 port 13714 ssh2 Jul 8 18:35:39 reporting3 sshd[11054]: reveeclipse mapping checking getaddrinfo for abts-north-static-010.55.176.122.airtelbroadband.in [122.176.55.10] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 8 18:35:39 reporting3 sshd[11054]: Invalid user hamano from 122.176.55.10 Jul 8 18:35:39 reporting3 sshd[11054]: Failed password for invalid user hamano from 122.176.55.10 port 44138 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=122.176.55.10	2020-07-10 02:42:21
13.233.81.58	attack	[ThuJul0914:01:25.8737752020][:error][pid15874:tid47201685403392][client13.233.81.58:50360][client13.233.81.58]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\\|boot\\\\\\\\.ini\\|web.config\)\\\\\\\\b\\|$\\|\^\\|\\\\\\\\.\\\\\\\\.$/etc/\\|/\\\\\\\\.$\?:history\\|bash_history\\|sh_history\\|env$\$\)"atREQUEST_FILENAME.[file"/etc/apache2/conf.d/modsec_rules/10_asl_rules.conf"][line"211"][id"390709"][rev"30"][msg"Atomicorp.comWAFRules:Attempttoaccessprotectedfileremotely"][data"/.env"][severity"CRITICAL"][hostname"mail.plr-bioggio.ch"][uri"/.env"][unique_id"XwcHFXKBGBZ4Kl2tIRZ9fAAAANE"][ThuJul0914:03:52.3755442020][:error][pid15679:tid47201685403392][client13.233.81.58:40076][client13.233.81.58]ModSecurity:Accessdeniedwithcode403$phase2$.Patternmatch"$\?:\\\\\\\\b\(\?:\\\\\\\\.\(\?:ht\(\?:access\\|passwd\\|group$\\|www_\?acl\)\\|global\\\\\\\\.asa\\|httpd\\\\\\\\.conf\	2020-07-10 02:48:22
118.24.36.247	attackspam	Jul 9 19:46:48 mail sshd[57901]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.36.247 Jul 9 19:46:49 mail sshd[57901]: Failed password for invalid user adeline from 118.24.36.247 port 50470 ssh2 ...	2020-07-10 02:42:42
177.134.172.102	attack	Jul 9 14:12:23 Tower sshd[7758]: Connection from 177.134.172.102 port 44597 on 192.168.10.220 port 22 rdomain "" Jul 9 14:12:24 Tower sshd[7758]: Invalid user dmsrtime from 177.134.172.102 port 44597 Jul 9 14:12:24 Tower sshd[7758]: error: Could not get shadow information for NOUSER Jul 9 14:12:24 Tower sshd[7758]: Failed password for invalid user dmsrtime from 177.134.172.102 port 44597 ssh2 Jul 9 14:12:25 Tower sshd[7758]: Received disconnect from 177.134.172.102 port 44597:11: Bye Bye [preauth] Jul 9 14:12:25 Tower sshd[7758]: Disconnected from invalid user dmsrtime 177.134.172.102 port 44597 [preauth]	2020-07-10 02:45:52
159.149.10.20	attackspam	SSH login attempts.	2020-07-10 02:41:07
62.99.90.10	attackbots	Jul 9 20:14:21 vpn01 sshd[31896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.99.90.10 Jul 9 20:14:23 vpn01 sshd[31896]: Failed password for invalid user abc123 from 62.99.90.10 port 41230 ssh2 ...	2020-07-10 03:02:52
45.228.215.139	attack	Unauthorized connection attempt detected from IP address 45.228.215.139 to port 26	2020-07-10 02:38:23
198.136.54.91	attack	SSH login attempts.	2020-07-10 03:06:22
51.79.145.158	attack	Jul 9 09:06:30 Host-KLAX-C sshd[1833]: Invalid user gerhardt from 51.79.145.158 port 33054 ...	2020-07-10 02:37:11
150.109.52.213	attack	SSH login attempts.	2020-07-10 02:52:49

Recently Reported IPs

133.43.62.3	249.105.128.111	59.162.52.138	161.35.80.208
149.108.84.54	207.191.192.43	213.68.182.55	159.65.90.70
29.253.221.233	61.244.241.225	122.67.41.73	31.8.92.172
72.103.205.152	220.249.162.108	10.0.95.65	176.254.0.54
161.110.66.255	75.61.117.177	141.117.33.223	242.76.212.224