JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 66.167.169.107

66.167.169.107 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 32%: ?

32%

ISP	Cyber Internet Services (Pvt) Ltd.
Usage Type	Fixed Line ISP
ASN	AS9541
Hostname(s)	h-66-167-169-107.dnvt.co.globalcapacity.com
Domain Name	cyber.net.pk
Country	🇵🇰 Pakistan
City	Lahore, Punjab

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 66.167.169.107

Whois 66.167.169.107

IP Abuse Reports for 66.167.169.107:

This IP address has been reported a total of 18 times from 7 distinct sources. 66.167.169.107 was first reported on March 15th 2026, and the most recent report was 1 week ago.

Old Reports: The most recent abuse report for this IP address is from 1 week ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇬🇧 PeravixGroup	2026-06-01 13:25:40 (1 week ago)	Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8080. Severity: CRI ... show more Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8080. Severity: CRITICAL. Aaran.cloud show less	Hacking IoT Targeted
🇷🇸 Scan	2026-06-01 07:34:18 (1 week ago)	MultiHost/MultiPort Probe, Scan, Hack -	Port Scan Hacking
🇺🇸 MPL	2026-05-31 19:08:40 (1 week ago)	tcp/52869 (8 or more attempts)	Port Scan
🇺🇸 RAP	2026-05-27 02:09:12 (2 weeks ago)	2026-05-27 02:09:12 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
🇬🇧 PeravixGroup	2026-05-20 18:41:15 (3 weeks ago)	Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8443. Severity: CRI ... show more Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8443. Severity: CRITICAL. Aaran.cloud show less	Hacking IoT Targeted
🇺🇸 RAP	2026-05-20 10:17:12 (3 weeks ago)	2026-05-20 10:17:12 UTC Unauthorized activity to TCP port 8080. Web App	Port Scan Web App Attack
Anonymous	2026-05-18 10:07:26 (3 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-05-12 07:46:39 (4 weeks ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 MPL	2026-05-02 17:01:47 (1 month ago)	tcp/8080 (4 or more attempts)	Port Scan
🇺🇸 MPL	2026-04-29 22:02:30 (1 month ago)	tcp/80 (8 or more attempts)	Port Scan
🇬🇧 PeravixGroup	2026-04-27 19:42:46 (1 month ago)	Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8080. Severity: CRI ... show more Honeypot detection: Mozi IoT botnet payload delivery / infection attempt on port 8080. Severity: CRITICAL. Aaran.cloud show less	Hacking IoT Targeted
🇬🇧 PeravixGroup	2026-04-24 17:55:15 (1 month ago)	HoneyPot hit - Aaran.cloud \| Rce Attempt \| command injection \| POST /picsdesc.xml HTTP/1.1 Content-L ... show more HoneyPot hit - Aaran.cloud \| Rce Attempt \| command injection \| POST /picsdesc.xml HTTP/1.1 Content-Length: 630 Accept-Encoding: gzip, deflate SOAPAction: urn:schem show less	IoT Targeted Hacking
Anonymous	2026-04-23 03:31:40 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
Anonymous	2026-04-20 10:00:31 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host
🇺🇸 TPI-Abuse	2026-04-05 14:43:43 (2 months ago)	(mod_security) mod_security (id:210730) triggered by 66.167.169.107 (h-66-167-169-107.dnvt.co.global ... show more (mod_security) mod_security (id:210730) triggered by 66.167.169.107 (h-66-167-169-107.dnvt.co.globalcapacity.com): 1 in the last 300 secs; Ports: *; Direction: 1; Trigger: LF_MODSEC; Logs: [Sun Apr 05 10:43:39.158177 2026] [security2:error] [pid 25772:tid 25772] [client 66.167.169.107:47920] ModSecurity: Access denied with code 403 (phase 2). Match of "pmFromFile userdata_wl_extensions" against "TX:extension" required. [file "/etc/apache2/conf.d/modsec_vendor_configs/comodo_apache/10_HTTP_HTTP.conf"] [line "27"] [id "210730"] [rev "5"] [msg "COMODO WAF: URL file extension is restricted by policy\|\|phantomkennels.com\|F\|2"] [data "[email protected]"] [severity "CRITICAL"] [tag "CWAF"] [tag "HTTP"] [hostname "phantomkennels.com"] [uri "/[email protected]"] [unique_id "adJ1G1a5Unv4KDbPiHBiCwAAABo"] show less	Brute-Force Bad Web Bot Web App Attack

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇺🇬 196.0.120.6

🇺🇸 173.239.240.76

🇺🇸 150.107.38.38

🇵🇰 119.73.103.207

🇨🇳 118.195.209.46

🇬🇧 118.26.104.212

🇵🇰 103.244.174.8

🇭🇰 43.255.118.11

🇺🇸 205.210.31.74

🇧🇬 151.237.115.206

🇫🇷 141.101.68.101

🇨🇳 120.77.205.149

🇦🇺 110.239.31.191

🇺🇸 104.210.140.129

🇺🇸 91.230.168.89

🇺🇸 66.132.224.225

🇮🇪 52.17.125.64

🇨🇦 20.151.134.71

🇰🇷 14.40.114.86

🇰🇷 222.232.176.7