159.89.161.146

Basic Info

City: Bengaluru

Region: Karnataka

Country: India

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
159.89.161.2	attack	Port Scan ...	2020-08-01 13:01:48
159.89.161.2	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: talktime.rtpl.co.in.	2020-07-16 03:04:09
159.89.161.2	attackspambots	17226/tcp 326/tcp 19196/tcp... [2020-06-22/07-08]55pkt,19pt.(tcp)	2020-07-08 20:31:07
159.89.161.2	attackspam	" "	2020-07-08 17:07:46
159.89.161.2	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: talktime.rtpl.co.in.	2020-07-01 19:10:40
159.89.161.141	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-05-17 06:42:04
159.89.161.154	attack	$f2bV_matches	2020-03-24 06:50:58

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       159.89.0.0 - 159.89.255.255
CIDR:           159.89.0.0/16
NetName:        DIGITALOCEAN-159-89-0-0
NetHandle:      NET-159-89-0-0-1
Parent:         NET159 (NET-159-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   DigitalOcean, LLC (DO-13)
RegDate:        2017-07-07
Updated:        2020-04-03
Comment:        Routing and Peering Policy can be found at https://www.as14061.net
Comment:        
Comment:        Please submit abuse reports at https://www.digitalocean.com/company/contact/#abuse
Ref:            https://rdap.arin.net/registry/ip/159.89.0.0



OrgName:        DigitalOcean, LLC
OrgId:          DO-13
Address:        105 Edgeview Drive, Suite 425
City:           Broomfield
StateProv:      CO
PostalCode:     80021
Country:        US
RegDate:        2012-05-14
Updated:        2025-04-11
Ref:            https://rdap.arin.net/registry/entity/DO-13


OrgAbuseHandle: DIGIT19-ARIN
OrgAbuseName:   DigitalOcean Abuse
OrgAbusePhone:  +1-646-827-4366 
OrgAbuseEmail:  abuse@digitalocean.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/DIGIT19-ARIN

OrgNOCHandle: NOC32014-ARIN
OrgNOCName:   Network Operations Center
OrgNOCPhone:  +1-646-827-4366 
OrgNOCEmail:  noc@digitalocean.com
OrgNOCRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN

OrgTechHandle: NOC32014-ARIN
OrgTechName:   Network Operations Center
OrgTechPhone:  +1-646-827-4366 
OrgTechEmail:  noc@digitalocean.com
OrgTechRef:    https://rdap.arin.net/registry/entity/NOC32014-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 159.89.161.146
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58040
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;159.89.161.146.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025111002 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 11 09:32:40 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 146.161.89.159.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 146.161.89.159.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
68.183.110.49	attackspam	Time: Fri Oct 2 19:33:46 2020 +0000 IP: 68.183.110.49 (US/United States/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Oct 2 19:25:47 29-1 sshd[29209]: Invalid user hadoop from 68.183.110.49 port 54366 Oct 2 19:25:49 29-1 sshd[29209]: Failed password for invalid user hadoop from 68.183.110.49 port 54366 ssh2 Oct 2 19:29:43 29-1 sshd[29781]: Invalid user web from 68.183.110.49 port 33660 Oct 2 19:29:45 29-1 sshd[29781]: Failed password for invalid user web from 68.183.110.49 port 33660 ssh2 Oct 2 19:33:41 29-1 sshd[30363]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.110.49 user=root	2020-10-03 04:39:11
66.70.189.203	attackspam	Oct 2 20:28:29 vps-51d81928 sshd[522886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.189.203 Oct 2 20:28:29 vps-51d81928 sshd[522886]: Invalid user apc from 66.70.189.203 port 39264 Oct 2 20:28:30 vps-51d81928 sshd[522886]: Failed password for invalid user apc from 66.70.189.203 port 39264 ssh2 Oct 2 20:33:12 vps-51d81928 sshd[522967]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=66.70.189.203 user=root Oct 2 20:33:14 vps-51d81928 sshd[522967]: Failed password for root from 66.70.189.203 port 47704 ssh2 ...	2020-10-03 04:35:07
125.44.14.0	attackbotsspam	Listed on zen-spamhaus also abuseat.org / proto=6 . srcport=42223 . dstport=5555 . (3843)	2020-10-03 04:30:00
123.21.81.118	attackbots	Bruteforce detected by fail2ban	2020-10-03 04:33:51
154.209.228.248	attackbotsspam	Oct 2 20:11:42 haigwepa sshd[13179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.209.228.248 Oct 2 20:11:44 haigwepa sshd[13179]: Failed password for invalid user anand from 154.209.228.248 port 47442 ssh2 ...	2020-10-03 04:33:33
123.127.244.100	attackspam	Unauthorized SSH login attempts	2020-10-03 04:20:19
157.230.42.76	attack	Oct 2 21:09:26 gw1 sshd[13229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.42.76 Oct 2 21:09:28 gw1 sshd[13229]: Failed password for invalid user mc2 from 157.230.42.76 port 37479 ssh2 ...	2020-10-03 04:15:50
104.131.60.112	attackbots	$f2bV_matches	2020-10-03 04:42:18
106.53.220.103	attackbots	Oct 2 20:50:25 sshd\[13409\]: User root from 106.53.220.103 not allowed because not listed in AllowUsersOct 2 20:50:27 sshd\[13409\]: Failed password for invalid user root from 106.53.220.103 port 34690 ssh2 ...	2020-10-03 04:28:52
51.77.146.156	attack	2020-10-02T20:04:30.288268centos sshd[10339]: Failed password for invalid user test from 51.77.146.156 port 51474 ssh2 2020-10-02T20:08:35.836346centos sshd[10614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.146.156 user=root 2020-10-02T20:08:38.271031centos sshd[10614]: Failed password for root from 51.77.146.156 port 46900 ssh2 ...	2020-10-03 04:39:38
125.121.169.12	attackbotsspam	Oct 1 20:36:27 CT3029 sshd[7768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.121.169.12 user=r.r Oct 1 20:36:30 CT3029 sshd[7768]: Failed password for r.r from 125.121.169.12 port 35924 ssh2 Oct 1 20:36:30 CT3029 sshd[7768]: Received disconnect from 125.121.169.12 port 35924:11: Bye Bye [preauth] Oct 1 20:36:30 CT3029 sshd[7768]: Disconnected from 125.121.169.12 port 35924 [preauth] Oct 1 20:36:54 CT3029 sshd[7770]: Invalid user tiago from 125.121.169.12 port 39270 Oct 1 20:36:54 CT3029 sshd[7770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.121.169.12 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=125.121.169.12	2020-10-03 04:25:49
103.154.234.244	attack	SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2020-10-03 04:47:25
104.206.128.6	attackbots	Telnet/23 MH Probe, Scan, BF, Hack -	2020-10-03 04:43:15
117.5.152.161	attackbotsspam	Oct 1 20:33:40 XXX sshd[13822]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:40 XXX sshd[13824]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:40 XXX sshd[13823]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:40 XXX sshd[13825]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:40 XXX sshd[13826]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:40 XXX sshd[13827]: Did not receive identification string from 117.5.152.161 Oct 1 20:33:44 XXX sshd[13845]: Address 117.5.152.161 maps to localhost, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 1 20:33:44 XXX sshd[13845]: Invalid user nagesh from 117.5.152.161 Oct 1 20:33:44 XXX sshd[13844]: Address 117.5.152.161 maps to localhost, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 1 20:33:44 XXX sshd[13844]: Invalid user nagesh from 117.5.152.161 Oct 1 20:........ -------------------------------	2020-10-03 04:21:00
204.93.157.55	attackspam	20 attempts against mh-misbehave-ban on flame	2020-10-03 04:39:58

Recently Reported IPs

194.187.179.188	117.189.11.210	112.52.19.68	112.32.149.112
111.1.106.81	165.22.220.61	169.150.203.195	8.211.52.151
1.188.10.116	183.7.149.191	195.184.76.204	119.28.76.230
100.27.10.200	91.231.89.86	91.196.152.100	149.40.55.20
149.40.56.20	124.23.133.16	147.185.132.174	219.136.104.163