159.175.66.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.175.66.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2756
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.175.66.12.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 13:36:54 CST 2022
;; MSG SIZE  rcvd: 106

Host info

12.66.175.159.in-addr.arpa domain name pointer origin-www.airmilesshop.ca.
12.66.175.159.in-addr.arpa domain name pointer airmilesshop.ca.
12.66.175.159.in-addr.arpa domain name pointer www.airmilesshop.ca.
12.66.175.159.in-addr.arpa domain name pointer origin-lto-www.airmilesshops.ca.
12.66.175.159.in-addr.arpa domain name pointer www-lto.airmilesshop.ca.
12.66.175.159.in-addr.arpa domain name pointer origin-www.airmilesshops.ca.
12.66.175.159.in-addr.arpa domain name pointer airmilesshops.ca.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.66.175.159.in-addr.arpa	name = origin-www.airmilesshop.ca.
12.66.175.159.in-addr.arpa	name = airmilesshop.ca.
12.66.175.159.in-addr.arpa	name = www.airmilesshop.ca.
12.66.175.159.in-addr.arpa	name = origin-lto-www.airmilesshops.ca.
12.66.175.159.in-addr.arpa	name = www-lto.airmilesshop.ca.
12.66.175.159.in-addr.arpa	name = origin-www.airmilesshops.ca.
12.66.175.159.in-addr.arpa	name = airmilesshops.ca.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
195.123.212.199	attackspam	"Test Inject 10529'a=0"	2020-10-06 02:43:30
185.39.10.25	attack	TCP (SYN) 185.39.10.25:41852 -> port 6000, len 44	2020-10-06 02:57:44
210.206.92.137	attack	prod11 ...	2020-10-06 02:34:29
222.244.139.132	attack	2020-10-04T20:43:08.708234vps-d63064a2 sshd[37749]: User root from 222.244.139.132 not allowed because not listed in AllowUsers 2020-10-04T20:43:10.625645vps-d63064a2 sshd[37749]: Failed password for invalid user root from 222.244.139.132 port 42919 ssh2 2020-10-04T20:47:11.526195vps-d63064a2 sshd[37758]: User root from 222.244.139.132 not allowed because not listed in AllowUsers 2020-10-04T20:47:11.554750vps-d63064a2 sshd[37758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.244.139.132 user=root 2020-10-04T20:47:11.526195vps-d63064a2 sshd[37758]: User root from 222.244.139.132 not allowed because not listed in AllowUsers 2020-10-04T20:47:13.470948vps-d63064a2 sshd[37758]: Failed password for invalid user root from 222.244.139.132 port 42536 ssh2 ...	2020-10-06 02:41:34
14.29.254.239	attackbots	detected by Fail2Ban	2020-10-06 02:58:42
113.69.131.41	attack	CN CN/China/- Failures: 5 smtpauth	2020-10-06 02:32:22
85.208.213.114	attackbots	Oct 5 15:33:37 shivevps sshd[16763]: Failed password for root from 85.208.213.114 port 8464 ssh2 Oct 5 15:39:51 shivevps sshd[17180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=85.208.213.114 user=root Oct 5 15:39:53 shivevps sshd[17180]: Failed password for root from 85.208.213.114 port 8610 ssh2 ...	2020-10-06 02:56:46
217.23.10.20	attackspambots	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-10-05T18:05:59Z and 2020-10-05T18:42:38Z	2020-10-06 02:50:47
79.173.90.153	attackbotsspam	contact form abuse	2020-10-06 02:31:56
210.245.12.209	attackspam	Listed on dnsbl-sorbs plus abuseat.org and barracudaCentral / proto=6 . srcport=46347 . dstport=3389 RDP . (3500)	2020-10-06 02:43:05
212.64.33.244	attack	Oct 5 06:53:25 NPSTNNYC01T sshd[2545]: Failed password for root from 212.64.33.244 port 45368 ssh2 Oct 5 06:58:21 NPSTNNYC01T sshd[2901]: Failed password for root from 212.64.33.244 port 42918 ssh2 ...	2020-10-06 02:53:36
223.99.22.141	attack	SSH Brute Force	2020-10-06 02:57:13
133.242.231.162	attack	Oct 5 18:05:39 nopemail auth.info sshd[16999]: Disconnected from authenticating user root 133.242.231.162 port 38094 [preauth] ...	2020-10-06 02:56:33
108.31.57.114	attackbots	Oct 5 14:20:03 ny01 sshd[18155]: Failed password for root from 108.31.57.114 port 54038 ssh2 Oct 5 14:23:34 ny01 sshd[18558]: Failed password for root from 108.31.57.114 port 59622 ssh2	2020-10-06 02:50:22
193.70.89.118	attackspam	WordPress login Brute force / Web App Attack on client site.	2020-10-06 02:43:46

Recently Reported IPs

159.162.103.195	159.162.23.15	159.179.169.15	159.178.62.56
159.168.141.78	159.180.62.12	159.18.94.145	159.182.111.20
159.180.132.176	159.182.25.12	159.18.103.198	159.183.191.183
159.18.103.196	159.182.64.49	159.192.110.228	159.192.107.17
159.190.0.50	159.192.131.194	159.192.149.167	159.192.161.102