115.239.1.149 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
115.239.194.82	attack	Unauthorized connection attempt detected from IP address 115.239.194.82 to port 445	2020-07-09 05:40:06
115.239.1.91	attackspambots	Unauthorized connection attempt detected from IP address 115.239.1.91 to port 445 [T]	2020-02-01 19:00:53
115.239.180.202	attackspam	Unauthorized connection attempt from IP address 115.239.180.202 on Port 445(SMB)	2020-01-10 04:10:17
115.239.108.63	attack	Port Scan: TCP/445	2019-09-25 07:39:47
115.239.173.170	attackspambots	"Account brute force using dictionary attack against Exchange Online"	2019-08-06 03:45:21
115.239.173.170	attack	failed_logins	2019-07-17 01:34:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 115.239.1.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44669
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;115.239.1.149.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012102 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 10:12:38 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 149.1.239.115.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.1.239.115.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
60.182.99.182	attackspam	Aug 22 09:28:10 srv01 postfix/smtpd\[29729\]: warning: unknown\[60.182.99.182\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 22 09:32:17 srv01 postfix/smtpd\[5824\]: warning: unknown\[60.182.99.182\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 22 09:32:29 srv01 postfix/smtpd\[5824\]: warning: unknown\[60.182.99.182\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 22 09:32:46 srv01 postfix/smtpd\[5824\]: warning: unknown\[60.182.99.182\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 22 09:33:07 srv01 postfix/smtpd\[5824\]: warning: unknown\[60.182.99.182\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-08-22 16:17:40
176.106.132.131	attack	Aug 22 10:06:26 ns381471 sshd[22296]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.106.132.131 Aug 22 10:06:29 ns381471 sshd[22296]: Failed password for invalid user downloader from 176.106.132.131 port 33152 ssh2	2020-08-22 16:28:59
210.217.32.25	attackspambots	Multiple unauthorized connection attempts towards o365. User-agent: BAV2ROPC. Last attempt at 2020-08-08T06:19:49.000Z UTC	2020-08-22 16:29:53
222.186.175.150	attackbotsspam	Aug 22 10:17:48 melroy-server sshd[19448]: Failed password for root from 222.186.175.150 port 5892 ssh2 Aug 22 10:17:53 melroy-server sshd[19448]: Failed password for root from 222.186.175.150 port 5892 ssh2 ...	2020-08-22 16:24:16
180.183.121.222	attack	Port probing on unauthorized port 445	2020-08-22 16:02:19
218.92.0.185	attackbots	Aug 22 11:22:45 ift sshd\[15875\]: Failed password for root from 218.92.0.185 port 50378 ssh2Aug 22 11:23:02 ift sshd\[15875\]: Failed password for root from 218.92.0.185 port 50378 ssh2Aug 22 11:23:09 ift sshd\[15899\]: Failed password for root from 218.92.0.185 port 14832 ssh2Aug 22 11:23:13 ift sshd\[15899\]: Failed password for root from 218.92.0.185 port 14832 ssh2Aug 22 11:23:16 ift sshd\[15899\]: Failed password for root from 218.92.0.185 port 14832 ssh2 ...	2020-08-22 16:32:04
192.241.239.39	attack	[Tue Jul 21 01:39:24 2020] - DDoS Attack From IP: 192.241.239.39 Port: 37112	2020-08-22 16:20:19
118.27.33.70	attackbots	Email rejected due to spam filtering	2020-08-22 16:14:02
139.59.3.170	attackbotsspam	sshd jail - ssh hack attempt	2020-08-22 16:31:25
47.105.39.215	attackbotsspam	2020-08-22T08:15:48.401275mail.standpoint.com.ua sshd[27386]: Failed password for invalid user ben from 47.105.39.215 port 47038 ssh2 2020-08-22T08:17:35.944686mail.standpoint.com.ua sshd[27684]: Invalid user spike from 47.105.39.215 port 57148 2020-08-22T08:17:35.948780mail.standpoint.com.ua sshd[27684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.105.39.215 2020-08-22T08:17:35.944686mail.standpoint.com.ua sshd[27684]: Invalid user spike from 47.105.39.215 port 57148 2020-08-22T08:17:37.534456mail.standpoint.com.ua sshd[27684]: Failed password for invalid user spike from 47.105.39.215 port 57148 ssh2 ...	2020-08-22 16:21:13
89.248.168.112	attackspam	TCP (SYN) 89.248.168.112:47070 -> port 4000, len 44	2020-08-22 16:36:53
163.172.136.227	attackspambots	Invalid user tzq from 163.172.136.227 port 34210	2020-08-22 16:37:59
190.64.135.122	attack	Aug 22 07:59:47 xeon sshd[61378]: Failed password for invalid user office from 190.64.135.122 port 50904 ssh2	2020-08-22 16:37:20
185.220.101.212	attackspambots	(mod_security) mod_security (id:210492) triggered by 185.220.101.212 (DE/Germany/-): 5 in the last 3600 secs	2020-08-22 16:05:11
123.125.21.125	attackspam	Aug 22 05:46:56 nextcloud sshd\[10691\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.125.21.125 user=root Aug 22 05:46:58 nextcloud sshd\[10691\]: Failed password for root from 123.125.21.125 port 33248 ssh2 Aug 22 05:50:36 nextcloud sshd\[14126\]: Invalid user o from 123.125.21.125	2020-08-22 16:10:07

Recently Reported IPs

77.163.55.144	143.175.240.180	200.170.77.241	83.203.188.53
242.206.113.146	231.207.213.130	248.59.243.226	132.98.186.125
12.202.51.33	243.2.170.193	204.254.223.141	75.92.102.22
28.102.90.229	139.118.205.248	236.78.155.107	157.92.78.76
172.142.172.170	45.12.161.99	32.198.95.176	146.156.4.209