66.223.164.130

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
66.223.164.237	attackbotsspam	Aug 22 07:53:04 pve1 sshd[1141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.223.164.237 Aug 22 07:53:06 pve1 sshd[1141]: Failed password for invalid user nagios from 66.223.164.237 port 9045 ssh2 ...	2020-08-22 14:53:38
66.223.164.237	attackspambots	Aug 21 08:06:36 Tower sshd[3434]: Connection from 66.223.164.237 port 1202 on 192.168.10.220 port 22 rdomain "" Aug 21 08:06:37 Tower sshd[3434]: Invalid user testuser from 66.223.164.237 port 1202 Aug 21 08:06:37 Tower sshd[3434]: error: Could not get shadow information for NOUSER Aug 21 08:06:37 Tower sshd[3434]: Failed password for invalid user testuser from 66.223.164.237 port 1202 ssh2 Aug 21 08:06:37 Tower sshd[3434]: Received disconnect from 66.223.164.237 port 1202:11: Bye Bye [preauth] Aug 21 08:06:37 Tower sshd[3434]: Disconnected from invalid user testuser 66.223.164.237 port 1202 [preauth]	2020-08-21 21:41:28
66.223.164.237	attackspambots	Aug 17 13:20:03 santamaria sshd\[28414\]: Invalid user www from 66.223.164.237 Aug 17 13:20:03 santamaria sshd\[28414\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.223.164.237 Aug 17 13:20:05 santamaria sshd\[28414\]: Failed password for invalid user www from 66.223.164.237 port 54097 ssh2 ...	2020-08-17 20:55:46
66.223.164.237	attack	SSH Brute-Force. Ports scanning.	2020-08-17 06:20:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.223.164.130
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25786
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.223.164.130.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012900 1800 900 604800 86400

;; Query time: 44 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 18:58:36 CST 2025
;; MSG SIZE  rcvd: 107

Host info

130.164.223.66.in-addr.arpa domain name pointer 130-164-223-66.gci.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
130.164.223.66.in-addr.arpa	name = 130-164-223-66.gci.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.253.110.36	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08041230)	2019-08-04 23:18:17
185.175.93.104	attackspam	08/04/2019-10:07:02.025136 185.175.93.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-08-04 22:25:41
124.158.9.169	attackspambots	Aug 4 15:28:54 localhost sshd\[6276\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.158.9.169 user=root Aug 4 15:28:56 localhost sshd\[6276\]: Failed password for root from 124.158.9.169 port 61809 ssh2 ...	2019-08-04 22:34:00
188.0.190.22	attackbotsspam	[portscan] tcp/139 [NetBIOS Session Service] [SMB remote code execution attempt: port tcp/445] [scan/connect: 2 time(s)] *(RWIN=1024)(08041230)	2019-08-04 22:55:02
45.127.186.204	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08041230)	2019-08-04 23:11:43
212.48.157.141	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 10:44:50,064 INFO [amun_request_handler] PortScan Detected on Port: 445 (212.48.157.141)	2019-08-04 22:48:57
104.154.176.142	attackspambots	loopsrockreggae.com 104.154.176.142 \[04/Aug/2019:12:53:52 +0200\] "POST /wp-login.php HTTP/1.1" 200 5615 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" loopsrockreggae.com 104.154.176.142 \[04/Aug/2019:12:53:53 +0200\] "POST /wp-login.php HTTP/1.1" 200 5583 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-08-04 22:45:05
187.189.102.70	attackbotsspam	[portscan] tcp/23 [TELNET] *(RWIN=14600)(08041230)	2019-08-04 22:55:59
104.128.48.61	attackbotsspam	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08041230)	2019-08-04 23:06:06
202.10.79.181	attack	[SMB remote code execution attempt: port tcp/445] *(RWIN=1024)(08041230)	2019-08-04 23:19:46
123.16.135.21	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 10:46:33,504 INFO [amun_request_handler] PortScan Detected on Port: 445 (123.16.135.21)	2019-08-04 22:46:51
185.176.27.162	attack	9993/tcp 54321/tcp 13000/tcp... [2019-06-04/08-04]1892pkt,1520pt.(tcp)	2019-08-04 22:56:45
125.25.2.171	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-04 10:50:37,563 INFO [amun_request_handler] PortScan Detected on Port: 445 (125.25.2.171)	2019-08-04 22:33:38
129.211.83.206	attack	Aug 4 16:24:39 srv03 sshd\[28157\]: Invalid user esther from 129.211.83.206 port 55502 Aug 4 16:24:39 srv03 sshd\[28157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.83.206 Aug 4 16:24:41 srv03 sshd\[28157\]: Failed password for invalid user esther from 129.211.83.206 port 55502 ssh2	2019-08-04 22:33:20
176.102.16.54	attack	[SMB remote code execution attempt: port tcp/445] [scan/connect: 2 time(s)] *(RWIN=8192)(08041230)	2019-08-04 22:58:39

Recently Reported IPs

252.43.191.197	173.200.118.152	28.83.9.3	9.206.242.215
231.23.120.12	16.134.137.1	150.74.180.46	148.217.1.218
59.107.225.193	72.108.192.40	116.194.93.230	44.81.252.105
117.92.124.41	171.190.201.65	70.117.58.166	234.132.67.126
219.207.178.10	237.151.150.148	53.99.250.7	52.150.39.99