JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 157.66.255.53

157.66.255.53 was found in our database!

This IP was reported 16 times. Confidence of Abuse is 41%: ?

41%

ISP	RUTILEA, Inc.
Usage Type	Data Center/Web Hosting/Transit
ASN	AS151390
Domain Name	rutilea.com
Country	🇯🇵 Japan
City	Tokyo, Tokyo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 157.66.255.53

Whois 157.66.255.53

IP Abuse Reports for 157.66.255.53:

This IP address has been reported a total of 16 times from 15 distinct sources. 157.66.255.53 was first reported on May 1st 2026, and the most recent report was 4 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 4 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-06 06:00:00 (4 weeks ago)	Confirmed malicious by STILWaters CTI platform (score=85, sources=1)	Hacking Brute-Force SSH
🇨🇳 ThreatBook.io	2026-05-05 00:28:11 (1 month ago)	2026-05-04 21:08:13 / 2026-05-04 11:32:43 /	Web App Attack
🇺🇸 heyzg	2026-05-04 15:57:30 (1 month ago)	HTTP honeypot \| Command Execution \| 3 cmds, 1 HTTP, 2s	Hacking SSH
Anonymous	2026-05-04 15:53:27 (1 month ago)	May 4 10:24:10 localhost kernel: [106250024.348949] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:9 ... show more May 4 10:24:10 localhost kernel: [106250024.348949] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=157.66.255.53 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=43 ID=28515 DF PROTO=TCP SPT=35820 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 May 4 10:24:10 localhost kernel: [106250024.348968] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=157.66.255.53 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=43 ID=28515 DF PROTO=TCP SPT=35820 DPT=6379 SEQ=705693856 ACK=0 WINDOW=64240 RES=0x00 SYN URGP=0 OPT (020404B00402080AEDB51EA40000000001030307) May 4 11:53:27 localhost kernel: [106255380.568830] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1e:08:00 SRC=157.66.255.53 DST=[mungedIP2] LEN=60 TOS=0x00 PREC=0x40 TTL=43 ID=1961 DF PROTO=TCP SPT=50568 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 May 4 11:53:27 localhost kernel: [106255380.568861] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:00:00:0c:9f:f0:1 show less	Port Scan
Anonymous	2026-05-04 15:52:05 (1 month ago)	2026-05-04T16:52:04.549821+01:00 vps kernel: [39650119.451993] [PORTSCAN DETECTED] IN=ens3 OUT= MAC= ... show more 2026-05-04T16:52:04.549821+01:00 vps kernel: [39650119.451993] [PORTSCAN DETECTED] IN=ens3 OUT= MAC=fa:16:3e:66:f6:24:02:37:19:0d:c2:f3:08:00 SRC=157.66.255.53 DST=54.37.14.118 LEN=60 TOS=0x00 PREC=0x00 TTL=43 ID=38739 DF PROTO=TCP SPT=57472 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Brute-Force
🇺🇸 drewf.ink	2026-05-04 15:50:58 (1 month ago)	[15:50] Port scanning. Port(s) scanned: TCP/6379	Port Scan
🇺🇸 LotPhantom	2026-05-04 15:49:18 (1 month ago)	2026-05-04T15:49:16.334251+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1 ... show more 2026-05-04T15:49:16.334251+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=157.66.255.53 DST=157.230.217.55 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=57663 DF PROTO=TCP SPT=46536 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-04T15:49:17.373608+00:00 bridginggaps kernel: [UFW BLOCK] IN=eth0 OUT= MAC=2e:bc:64:1d:2c:e1:fe:00:00:00:01:01:08:00 SRC=157.66.255.53 DST=157.230.217.55 LEN=60 TOS=0x00 PREC=0x00 TTL=42 ID=57664 DF PROTO=TCP SPT=46536 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 ... show less	Port Scan Hacking
🇯🇵 Execoop	2026-05-04 14:27:46 (1 month ago)	HTTP honeypot \| Command Execution \| 3 cmds, 1 HTTP	Hacking SSH
🇩🇪 femboy.cat	2026-05-04 14:24:52 (1 month ago)	Port scan to tcp/6379 from 157.66.255.53	Brute-Force
🇫🇷 Little Iguana	2026-05-04 14:24:46 (1 month ago)	trying to access non-authorized port	Port Scan
🇫🇷 zulzeen	2026-05-04 14:24:28 (1 month ago)	[incypit-web] Blocked by SysWarden Firewall [BLOCK] (Database/Cache Attack)	Hacking Brute-Force
🇩🇪 phil2k	2026-05-04 14:20:46 (1 month ago)	fail2ban:firewall:2026-05-04T15:56:43.899246+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> ... show more fail2ban:firewall:2026-05-04T15:56:43.899246+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> OUT= MAC=<ANONYMIZED_MAC> SRC=157.66.255.53 DST=<PRIVATE_IPv4> LEN=60 TOS=0x00 PREC=0x00 TTL=38 ID=33850 DF PROTO=TCP SPT=54494 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 2026-05-04T16:20:44.400759+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> OUT= MAC=<ANONYMIZED_MAC> SRC=157.66.255.53 DST=<PRIVATE_IPv4> LEN=60 TOS=0x00 PREC=0x00 TTL=38 ID=17248 DF PROTO=TCP SPT=42030 DPT=6379 WINDOW=64240 RES=0x00 SYN URGP=0 show less	DDoS Attack Port Scan Brute-Force
🇩🇪 iNetWorker	2026-05-04 13:57:53 (1 month ago)	trying to access non-authorized port	Port Scan
🇺🇸 drewf.ink	2026-05-04 13:56:48 (1 month ago)	[13:56] Port scanning. Port(s) scanned: TCP/6379	Port Scan
Anonymous	2026-05-04 11:45:36 (1 month ago)	Unauthorized connection attempt	Port Scan Hacking Exploited Host

Showing 1 to 15 of 16 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇨🇳 171.38.247.74

🇰🇷 125.140.145.62

🇮🇳 122.179.89.192

🇰🇬 80.72.176.171

🇧🇪 34.76.137.97

🇮🇷 5.116.65.212

🇺🇸 195.184.76.199

🇲🇽 186.96.145.241

🇮🇷 185.26.234.52

🇰🇿 176.64.29.207

🇧🇩 172.68.163.165

🇳🇱 167.71.68.116

🇺🇸 162.216.149.88

🇨🇳 115.190.165.143

🇺🇸 97.176.72.138

🇮🇷 94.183.122.69

🇧🇷 45.238.101.91

🇵🇰 39.33.99.252

🇧🇪 35.195.22.236

🇵🇰 119.73.103.147