66.59.53.158 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 66.59.53.158
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64989
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;66.59.53.158.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012700 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 14:47:28 CST 2025
;; MSG SIZE  rcvd: 105

Host info

158.53.59.66.in-addr.arpa domain name pointer 158.53.59.66.in-addr.crocker.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
158.53.59.66.in-addr.arpa	name = 158.53.59.66.in-addr.crocker.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.175.175.28	attack	Unauthorized connection attempt from IP address 45.175.175.28 on Port 445(SMB)	2020-08-22 02:57:36
36.110.68.138	attack	Aug 21 17:35:49 vps1 sshd[1156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.110.68.138 Aug 21 17:35:51 vps1 sshd[1156]: Failed password for invalid user hqy from 36.110.68.138 port 2470 ssh2 Aug 21 17:38:13 vps1 sshd[1204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.110.68.138 Aug 21 17:38:15 vps1 sshd[1204]: Failed password for invalid user user01 from 36.110.68.138 port 2471 ssh2 Aug 21 17:40:34 vps1 sshd[1282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.110.68.138 Aug 21 17:40:36 vps1 sshd[1282]: Failed password for invalid user tom from 36.110.68.138 port 2472 ssh2 ...	2020-08-22 02:47:32
202.91.71.2	attackspam	Unauthorized connection attempt from IP address 202.91.71.2 on Port 445(SMB)	2020-08-22 02:59:57
111.229.176.206	attackspam	$f2bV_matches	2020-08-22 02:31:01
95.70.159.223	attackbots	Unauthorized connection attempt from IP address 95.70.159.223 on Port 445(SMB)	2020-08-22 02:32:06
212.1.94.243	attackspam	Unauthorized connection attempt from IP address 212.1.94.243 on Port 445(SMB)	2020-08-22 02:56:28
218.92.0.145	attack	2020-08-21T21:56:44.273150afi-git.jinr.ru sshd[26019]: Failed password for root from 218.92.0.145 port 34335 ssh2 2020-08-21T21:56:47.667786afi-git.jinr.ru sshd[26019]: Failed password for root from 218.92.0.145 port 34335 ssh2 2020-08-21T21:56:51.142037afi-git.jinr.ru sshd[26019]: Failed password for root from 218.92.0.145 port 34335 ssh2 2020-08-21T21:56:51.142173afi-git.jinr.ru sshd[26019]: error: maximum authentication attempts exceeded for root from 218.92.0.145 port 34335 ssh2 [preauth] 2020-08-21T21:56:51.142187afi-git.jinr.ru sshd[26019]: Disconnecting: Too many authentication failures [preauth] ...	2020-08-22 03:09:06
222.186.42.213	attackspambots	2020-08-21T18:39:10.479283server.espacesoutien.com sshd[15057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.213 user=root 2020-08-21T18:39:13.123471server.espacesoutien.com sshd[15057]: Failed password for root from 222.186.42.213 port 59120 ssh2 2020-08-21T18:39:15.101459server.espacesoutien.com sshd[15057]: Failed password for root from 222.186.42.213 port 59120 ssh2 2020-08-21T18:39:17.681438server.espacesoutien.com sshd[15057]: Failed password for root from 222.186.42.213 port 59120 ssh2 ...	2020-08-22 02:48:06
123.206.108.50	attackspam	Aug 21 15:43:47 buvik sshd[16698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.108.50 Aug 21 15:43:49 buvik sshd[16698]: Failed password for invalid user user from 123.206.108.50 port 60350 ssh2 Aug 21 15:45:33 buvik sshd[16966]: Invalid user tg from 123.206.108.50 ...	2020-08-22 03:01:54
212.64.73.102	attackspam	fail2ban	2020-08-22 02:48:21
94.65.53.20	attackspambots	Automatic report - Port Scan Attack	2020-08-22 02:46:46
103.23.101.166	attack	srvr1: (mod_security) mod_security (id:942100) triggered by 103.23.101.166 (ID/-/-): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:01:53 [error] 482759#0: 840087 [client 103.23.101.166] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801131399.335128"] [ref ""], client: 103.23.101.166, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%29+AND+UPDATEXML%285947%2CCONCAT%280x2e%2C0x746545353047%2C%28SELECT+%28ELT%282836%3D2836%2C1%29%29%29%2C0x746545353047%29%2C5431%29--+YUZJ HTTP/1.1" [redacted]	2020-08-22 02:55:01
125.162.216.127	attack	Unauthorized connection attempt from IP address 125.162.216.127 on Port 445(SMB)	2020-08-22 02:51:02
189.7.217.23	attackspambots	Aug 21 21:25:07 gw1 sshd[8394]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.217.23 Aug 21 21:25:09 gw1 sshd[8394]: Failed password for invalid user kakuta from 189.7.217.23 port 56018 ssh2 ...	2020-08-22 02:57:58
5.150.247.132	attackspam	srvr1: (mod_security) mod_security (id:942100) triggered by 5.150.247.132 (SE/-/h-247-132.A328.priv.bahnhof.se): 1 in the last 3600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/21 12:01:42 [error] 482759#0: 840084 [client 5.150.247.132] ModSecurity: Access denied with code 406 (phase 2). [file "/etc/modsecurity.d/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "45"] [id "942100"] [rev ""] [msg ""] [redacted] [severity "0"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [tag "PCI/6.5.2"] [redacted] [uri "/forum/viewthread.php"] [unique_id "159801130283.685144"] [ref ""], client: 5.150.247.132, [redacted] request: "GET /forum/viewthread.php?thread_id=1122%29+OR+UPDATEXML%285947%2CCONCAT%280x2e%2C0x4d4554334764%2C%28SELECT+%28ELT%282836%3D2836%2C1%29%29%29%2C0x4d4554334764%29%2C5431%29%23+jEfb HTTP/1.1" [redacted]	2020-08-22 03:04:50

Recently Reported IPs

25.123.205.243	57.227.67.38	50.39.166.199	218.221.242.224
42.250.40.136	193.215.244.153	34.165.242.193	179.14.142.196
161.189.254.216	167.207.72.21	47.119.229.69	58.16.172.235
59.20.91.54	82.216.138.218	159.43.203.226	164.4.57.50
32.107.112.75	93.16.66.46	83.105.0.39	233.112.30.218