68.240.234.166

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.240.234.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8156
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;68.240.234.166.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400

;; Query time: 13 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 19:20:16 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 166.234.240.68.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 166.234.240.68.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.163.109.153	attackspambots	0,55-02/02 [bc01/m07] PostRequest-Spammer scoring: luanda	2019-11-04 15:57:16
112.213.98.252	attackspambots	[MonNov0407:40:00.7972412019][:error][pid31635:tid139667630384896][client112.213.98.252:18637][client112.213.98.252]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\\\\\\\\\(chr\?\\\\\\\\\(\?[0-9]{1\,3}\?\\\\\\\\\)\\|\?=\?f\(\?:open\\|write\)\?\\\\\\\\\(\\|\\\\\\\\b\(\?:passthru\\|serialize\\|php_uname\\|phpinfo\\|shell_exec\\|preg_\\\\\\\\w \\|mysql_query\\|exec\\|eval\\|base64_decode\\|decode_base64\\|rot13\\|base64_url_decode\\|gz\(\?:inflate\\|decode\\|uncompress\)\\|strrev\\|zlib_\\\\\\\\w \)\\\\\\\\b\?\(\?..."atARGS:admin.[file"/usr/local/apache.ea3/conf/modsec_rules/10_asl_rules.conf"][line"767"][id"340095"][rev"53"][msg"Atomicorp.comWAFRules:AttackBlocked-PHPfunctioninArgument-thismaybeanattack."][data"die\(@md5\,ARGS:admin"][severity"CRITICAL"][hostname"148.251.104.88"][uri"/5868fb94/admin.php"][unique_id"Xb-HwLR30xTUElkOp96lcwAAABI"][MonNov0407:40:01.2559932019][:error][pid31770:tid139667697526528][client112.213.98.252:18825][client112.213.98.252]ModSecurity:Accessdeniedwithcode403	2019-11-04 15:38:48
202.179.75.153	attack	php WP PHPmyadamin ABUSE blocked for 12h	2019-11-04 15:46:41
54.39.246.33	attackbots	Nov 3 21:28:54 web1 sshd\[10504\]: Invalid user prueba from 54.39.246.33 Nov 3 21:28:54 web1 sshd\[10504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.246.33 Nov 3 21:28:56 web1 sshd\[10504\]: Failed password for invalid user prueba from 54.39.246.33 port 39760 ssh2 Nov 3 21:32:52 web1 sshd\[10833\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.246.33 user=root Nov 3 21:32:54 web1 sshd\[10833\]: Failed password for root from 54.39.246.33 port 50272 ssh2	2019-11-04 15:42:42
183.238.233.110	attackspambots	Nov 4 09:42:49 sauna sshd[220326]: Failed password for root from 183.238.233.110 port 4064 ssh2 ...	2019-11-04 15:48:38
36.112.137.55	attackbotsspam	Nov 4 08:24:41 legacy sshd[30189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.112.137.55 Nov 4 08:24:42 legacy sshd[30189]: Failed password for invalid user watanabe from 36.112.137.55 port 41293 ssh2 Nov 4 08:30:03 legacy sshd[30342]: Failed password for root from 36.112.137.55 port 59491 ssh2 ...	2019-11-04 15:54:19
223.30.217.133	attack	SMB Server BruteForce Attack	2019-11-04 16:00:14
67.55.92.88	attackbots	Nov 4 07:56:32 srv01 sshd[10396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.55.92.88 user=root Nov 4 07:56:34 srv01 sshd[10396]: Failed password for root from 67.55.92.88 port 41306 ssh2 Nov 4 08:00:19 srv01 sshd[10598]: Invalid user kslewin from 67.55.92.88 Nov 4 08:00:19 srv01 sshd[10598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.55.92.88 Nov 4 08:00:19 srv01 sshd[10598]: Invalid user kslewin from 67.55.92.88 Nov 4 08:00:21 srv01 sshd[10598]: Failed password for invalid user kslewin from 67.55.92.88 port 51306 ssh2 ...	2019-11-04 15:59:41
222.186.175.148	attackspam	Nov 4 08:40:01 meumeu sshd[776]: Failed password for root from 222.186.175.148 port 19412 ssh2 Nov 4 08:40:23 meumeu sshd[776]: error: maximum authentication attempts exceeded for root from 222.186.175.148 port 19412 ssh2 [preauth] Nov 4 08:40:34 meumeu sshd[857]: Failed password for root from 222.186.175.148 port 32528 ssh2 ...	2019-11-04 15:46:27
46.38.144.32	attack	2019-11-04T08:52:11.064566mail01 postfix/smtpd[12339]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T08:52:21.087223mail01 postfix/smtpd[30844]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-04T08:53:09.170076mail01 postfix/smtpd[30844]: warning: unknown[46.38.144.32]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-04 15:53:50
178.128.52.97	attackbots	Nov 4 07:26:29 vps691689 sshd[20850]: Failed password for root from 178.128.52.97 port 47344 ssh2 Nov 4 07:30:23 vps691689 sshd[20908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.52.97 ...	2019-11-04 15:58:06
185.209.0.51	attack	11/04/2019-07:30:09.789598 185.209.0.51 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-04 15:33:03
222.186.190.92	attackbotsspam	Nov 4 08:42:33 MK-Soft-VM7 sshd[30312]: Failed password for root from 222.186.190.92 port 7880 ssh2 Nov 4 08:42:38 MK-Soft-VM7 sshd[30312]: Failed password for root from 222.186.190.92 port 7880 ssh2 ...	2019-11-04 15:46:02
188.80.22.177	attack	Automatic report - XMLRPC Attack	2019-11-04 15:57:35
119.207.126.21	attack	Lines containing failures of 119.207.126.21 Nov 4 01:24:38 shared11 sshd[2026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.207.126.21 user=r.r Nov 4 01:24:41 shared11 sshd[2026]: Failed password for r.r from 119.207.126.21 port 54864 ssh2 Nov 4 01:24:41 shared11 sshd[2026]: Received disconnect from 119.207.126.21 port 54864:11: Bye Bye [preauth] Nov 4 01:24:41 shared11 sshd[2026]: Disconnected from authenticating user r.r 119.207.126.21 port 54864 [preauth] Nov 4 01:36:55 shared11 sshd[6339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.207.126.21 user=r.r Nov 4 01:36:57 shared11 sshd[6339]: Failed password for r.r from 119.207.126.21 port 41060 ssh2 Nov 4 01:36:57 shared11 sshd[6339]: Received disconnect from 119.207.126.21 port 41060:11: Bye Bye [preauth] Nov 4 01:36:57 shared11 sshd[6339]: Disconnected from authenticating user r.r 119.207.126.21 port 41060 [preaut........ ------------------------------	2019-11-04 16:07:56

Recently Reported IPs

195.43.57.35	81.203.73.249	82.172.186.174	52.208.238.143
137.245.93.106	45.233.39.166	119.193.158.69	34.31.217.88
139.127.192.87	192.224.74.88	182.204.169.149	81.119.81.85
193.70.168.222	45.173.238.179	140.117.99.140	96.22.184.69
4.131.68.74	214.103.131.231	163.201.148.61	55.7.197.179