66.41.89.159 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.41.89.159
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15554
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.41.89.159.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022600 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Feb 26 20:02:07 CST 2025
;; MSG SIZE  rcvd: 105

Host info

159.89.41.66.in-addr.arpa domain name pointer c-66-41-89-159.hsd1.mn.comcast.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
159.89.41.66.in-addr.arpa	name = c-66-41-89-159.hsd1.mn.comcast.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.203.30.120	attack	firewall-block, port(s): 2463/tcp	2020-03-17 04:57:26
54.240.14.85	attackspam	Mar 16 15:37:53 mail postfix/smtpd[23258]: lost connection after MAIL from a14-85.smtp-out.amazonses.com[54.240.14.85]	2020-03-17 04:54:33
185.153.199.243	attack	Mar 16 21:37:17 [host] kernel: [1020706.416128] [U Mar 16 21:38:51 [host] kernel: [1020800.287879] [U Mar 16 21:40:17 [host] kernel: [1020885.937078] [U Mar 16 21:40:37 [host] kernel: [1020906.233696] [U Mar 16 21:43:04 [host] kernel: [1021053.090102] [U Mar 16 22:02:23 [host] kernel: [1022211.652051] [U	2020-03-17 05:39:18
222.186.19.221	attackspam	firewall-block, port(s): 389/udp	2020-03-17 04:55:56
61.177.21.66	attackbots	1433/tcp 1433/tcp [2020-02-24/03-16]2pkt	2020-03-17 05:13:59
123.124.71.107	attackbotsspam	03/16/2020-10:37:08.979522 123.124.71.107 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-03-17 05:31:41
188.214.135.22	attackbots	9996/tcp 3334/tcp 3343/tcp... [2020-03-14/16]157pkt,157pt.(tcp)	2020-03-17 05:11:08
50.250.116.235	attackbots	Mar 16 16:37:49 ws24vmsma01 sshd[65948]: Failed password for root from 50.250.116.235 port 38766 ssh2 ...	2020-03-17 05:35:48
103.140.132.141	attack	103.140.132.141 - - [16/Mar/2020:14:37:47 +0000] "POST /wp-login.php HTTP/1.1" 200 6627 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 103.140.132.141 - - [16/Mar/2020:14:37:50 +0000] "POST /wp-login.php HTTP/1.1" 200 6496 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-17 04:58:02
202.166.219.238	attackspam	Mar 16 13:25:02 home sshd[10456]: Invalid user lijin from 202.166.219.238 port 45634 Mar 16 13:25:02 home sshd[10456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.166.219.238 Mar 16 13:25:02 home sshd[10456]: Invalid user lijin from 202.166.219.238 port 45634 Mar 16 13:25:04 home sshd[10456]: Failed password for invalid user lijin from 202.166.219.238 port 45634 ssh2 Mar 16 13:58:03 home sshd[10750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.166.219.238 user=root Mar 16 13:58:04 home sshd[10750]: Failed password for root from 202.166.219.238 port 38858 ssh2 Mar 16 14:05:54 home sshd[10811]: Invalid user vpn from 202.166.219.238 port 49782 Mar 16 14:05:54 home sshd[10811]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.166.219.238 Mar 16 14:05:54 home sshd[10811]: Invalid user vpn from 202.166.219.238 port 49782 Mar 16 14:05:56 home sshd[10811]: Failed password for inv	2020-03-17 05:27:28
139.199.59.31	attackbots	Mar 16 12:56:02 vps46666688 sshd[16956]: Failed password for root from 139.199.59.31 port 65252 ssh2 ...	2020-03-17 05:01:23
62.210.185.4	attack	62.210.185.4 - - [16/Mar/2020:23:08:28 +0300] "POST /wp-login.php HTTP/1.1" 200 2790 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-03-17 05:06:32
185.176.27.190	attack	03/16/2020-16:55:11.654731 185.176.27.190 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2020-03-17 05:02:48
117.157.80.52	attackspambots	Lines containing failures of 117.157.80.52 Mar 16 19:32:30 shared05 sshd[16440]: Invalid user user from 117.157.80.52 port 55214 Mar 16 19:32:30 shared05 sshd[16440]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.157.80.52 Mar 16 19:32:32 shared05 sshd[16440]: Failed password for invalid user user from 117.157.80.52 port 55214 ssh2 Mar 16 19:32:32 shared05 sshd[16440]: Received disconnect from 117.157.80.52 port 55214:11: Normal Shutdown [preauth] Mar 16 19:32:32 shared05 sshd[16440]: Disconnected from invalid user user 117.157.80.52 port 55214 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=117.157.80.52	2020-03-17 05:37:59
120.71.145.209	attackspam	Mar 16 20:10:44 [host] sshd[24823]: pam_unix(sshd: Mar 16 20:10:46 [host] sshd[24823]: Failed passwor Mar 16 20:14:35 [host] sshd[24998]: pam_unix(sshd:	2020-03-17 05:31:55

Recently Reported IPs

35.37.153.224	230.12.31.27	38.50.236.109	38.238.171.13
179.231.14.102	43.126.16.13	69.148.225.196	57.134.121.145
144.165.43.7	130.4.72.104	235.52.191.55	173.203.217.6
62.46.171.179	204.67.130.231	190.209.91.8	210.134.2.119
76.79.241.242	65.240.61.252	241.208.61.8	70.62.188.15