66.189.219.80 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: Charter Communications Inc

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	US_Charter Charter_<177>1586437282 [1:2403410:56586] ET CINS Active Threat Intelligence Poor Reputation IP TCP group 56 [Classification: Misc Attack] [Priority: 2]: {TCP} 66.189.219.80:52238	2020-04-10 00:43:01
attack	1433	2019-12-04 00:17:45

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.189.219.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28098
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;66.189.219.80.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Tue May 07 05:28:47 +08 2019
;; MSG SIZE  rcvd: 117

Host info

80.219.189.66.in-addr.arpa domain name pointer 66-189-219-80.static.mdfd.or.charter.com.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
80.219.189.66.in-addr.arpa	name = 66-189-219-80.static.mdfd.or.charter.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
207.154.213.152	attack	Feb 25 01:31:55 MK-Soft-VM4 sshd[28857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.154.213.152 Feb 25 01:31:57 MK-Soft-VM4 sshd[28857]: Failed password for invalid user bdos from 207.154.213.152 port 41726 ssh2 ...	2020-02-25 09:11:18
36.229.202.213	attackbotsspam	suspicious action Mon, 24 Feb 2020 20:23:33 -0300	2020-02-25 09:40:34
222.186.30.35	attackspam	Feb 25 01:59:03 localhost sshd\[26112\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.35 user=root Feb 25 01:59:06 localhost sshd\[26112\]: Failed password for root from 222.186.30.35 port 54280 ssh2 Feb 25 01:59:08 localhost sshd\[26112\]: Failed password for root from 222.186.30.35 port 54280 ssh2	2020-02-25 09:05:24
143.131.201.152	attack	Honeypot attack, port: 5555, PTR: cli-8f83c998.wholesale.adamo.es.	2020-02-25 09:18:20
218.92.0.158	attackspambots	Feb 24 21:24:42 firewall sshd[29799]: Failed password for root from 218.92.0.158 port 41234 ssh2 Feb 24 21:24:42 firewall sshd[29799]: error: maximum authentication attempts exceeded for root from 218.92.0.158 port 41234 ssh2 [preauth] Feb 24 21:24:42 firewall sshd[29799]: Disconnecting: Too many authentication failures [preauth] ...	2020-02-25 09:06:11
218.104.231.2	attackspambots	Failed password for invalid user admin1 from 218.104.231.2 port 52952 ssh2 Invalid user linux from 218.104.231.2 port 49494 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.104.231.2 Failed password for invalid user linux from 218.104.231.2 port 49494 ssh2 Invalid user jboss from 218.104.231.2 port 46261	2020-02-25 09:14:07
218.92.0.173	attack	SSH-BruteForce	2020-02-25 09:20:46
189.223.60.215	attackspam	Honeypot attack, port: 445, PTR: 189.223.60.215.dsl.dyn.telnor.net.	2020-02-25 09:41:24
37.19.94.157	attackbots	suspicious action Mon, 24 Feb 2020 20:23:54 -0300	2020-02-25 09:15:31
217.55.225.207	attack	Lines containing failures of 217.55.225.207 Feb 25 00:13:14 shared11 sshd[14159]: Invalid user pocAdmin from 217.55.225.207 port 61206 Feb 25 00:13:14 shared11 sshd[14159]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.55.225.207 Feb 25 00:13:16 shared11 sshd[14159]: Failed password for invalid user pocAdmin from 217.55.225.207 port 61206 ssh2 Feb 25 00:13:16 shared11 sshd[14159]: Connection closed by invalid user pocAdmin 217.55.225.207 port 61206 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=217.55.225.207	2020-02-25 09:42:37
116.102.129.178	attack	Automatic report - Port Scan Attack	2020-02-25 09:23:37
139.196.153.220	attack	(sshd) Failed SSH login from 139.196.153.220 (CN/China/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 25 00:23:37 ubnt-55d23 sshd[32065]: Invalid user f4 from 139.196.153.220 port 18160 Feb 25 00:23:40 ubnt-55d23 sshd[32065]: Failed password for invalid user f4 from 139.196.153.220 port 18160 ssh2	2020-02-25 09:27:16
223.17.86.88	attackspambots	Honeypot attack, port: 5555, PTR: 88-86-17-223-on-nets.com.	2020-02-25 09:37:52
1.64.14.7	attack	Honeypot attack, port: 5555, PTR: 1-64-14-007.static.netvigator.com.	2020-02-25 09:04:59
218.92.0.148	attack	Feb 25 02:05:22 dedicated sshd[19112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root Feb 25 02:05:24 dedicated sshd[19112]: Failed password for root from 218.92.0.148 port 24293 ssh2	2020-02-25 09:07:42

Recently Reported IPs

185.53.178.6	241.58.29.253	54.212.165.182	229.180.10.33
134.209.39.208	42.133.169.153	209.97.153.175	143.183.94.55
35.4.76.250	189.80.219.186	112.101.70.185	124.108.52.122
59.37.137.3	89.37.192.194	196.2.147.24	182.92.170.102
6.116.159.244	104.20.183.183	212.174.57.202	25.207.65.133