142.158.152.72

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 142.158.152.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11059
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;142.158.152.72.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022200 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 22 19:56:10 CST 2025
;; MSG SIZE  rcvd: 107

Host info

72.152.158.142.in-addr.arpa domain name pointer dn-142-158-152-72.lhsc.on.ca.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.152.158.142.in-addr.arpa	name = dn-142-158-152-72.lhsc.on.ca.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.48.83.139	attackspambots	Feb 17 03:17:13 server sshd\[23813\]: Invalid user prashant from 103.48.83.139 Feb 17 03:17:13 server sshd\[23813\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.48.83.139 Feb 17 03:17:14 server sshd\[23813\]: Failed password for invalid user prashant from 103.48.83.139 port 41006 ssh2 Feb 17 03:34:48 server sshd\[26961\]: Invalid user ispconfig from 103.48.83.139 Feb 17 03:34:48 server sshd\[26961\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.48.83.139 ...	2020-02-17 10:49:53
194.25.134.25	attack	SSH login attempts.	2020-02-17 13:36:51
165.22.240.146	attackspambots	Feb 17 01:23:22 legacy sshd[18156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.240.146 Feb 17 01:23:24 legacy sshd[18156]: Failed password for invalid user teamspeak3 from 165.22.240.146 port 58058 ssh2 Feb 17 01:26:46 legacy sshd[18344]: Failed password for sshd from 165.22.240.146 port 58304 ssh2 ...	2020-02-17 10:47:17
85.209.3.200	attack	RDP Bruteforce	2020-02-17 13:15:33
104.218.63.74	attackbots	Automatic report - Banned IP Access	2020-02-17 13:25:24
196.219.189.179	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 13:23:05
182.1.115.182	attackspam	[Mon Feb 17 05:23:14.630935 2020] [:error] [pid 22230:tid 139656805431040] [client 182.1.115.182:62470] [client 182.1.115.182] ModSecurity: Access denied with code 403 (phase 4). Pattern match "^5\\\\d{2}$" at RESPONSE_STATUS. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/RESPONSE-950-DATA-LEAKAGES.conf"] [line "118"] [id "950100"] [msg "The Application Returned a 500-Level Status Code"] [data "Matched Data: 500 found within RESPONSE_STATUS: 500"] [severity "ERROR"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-disclosure"] [tag "WASCTC/WASC-13"] [tag "OWASP_TOP_10/A6"] [tag "PCI/6.5.6"] [tag "paranoia-level/2"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/index.php/citra-satelit-bmkg"] [unique_id "XknAyUDcx7KffueAQ4GEkgAAAAE"], referer: https://www.google.com/ ...	2020-02-17 10:48:28
91.185.193.101	attackspambots	$f2bV_matches	2020-02-17 13:35:15
185.175.93.101	attackbotsspam	Port scan on 5 port(s): 5907 5908 5909 5917 5920	2020-02-17 13:07:44
77.37.176.241	attackspam	Unauthorized connection attempt from IP address 77.37.176.241 on Port 445(SMB)	2020-02-17 10:50:59
94.102.74.34	attack	SSH login attempts	2020-02-17 10:52:05
218.92.0.178	attackbots	Feb 17 04:59:46 sd-84780 sshd[20441]: Failed password for root from 218.92.0.178 port 29296 ssh2 Feb 17 04:59:49 sd-84780 sshd[20441]: Failed password for root from 218.92.0.178 port 29296 ssh2 Feb 17 04:59:52 sd-84780 sshd[20441]: Failed password for root from 218.92.0.178 port 29296 ssh2 ...	2020-02-17 13:03:12
117.193.36.98	attack	20/2/16@23:59:41: FAIL: Alarm-Network address from=117.193.36.98 20/2/16@23:59:41: FAIL: Alarm-Network address from=117.193.36.98 ...	2020-02-17 13:18:59
45.143.221.37	attack	02/16/2020-23:59:51.760888 45.143.221.37 Protocol: 17 ET SCAN Sipvicious Scan	2020-02-17 13:05:45
176.113.70.60	attack	176.113.70.60 was recorded 21 times by 7 hosts attempting to connect to the following ports: 1900. Incident counter (4h, 24h, all-time): 21, 85, 2271	2020-02-17 10:48:47

Recently Reported IPs

17.44.89.217	137.221.252.99	109.15.130.82	192.96.201.231
217.201.105.150	59.118.115.121	19.130.218.104	203.210.181.215
83.247.103.121	79.71.5.67	9.87.17.49	25.92.192.129
204.95.163.43	157.124.162.73	76.91.189.194	54.49.100.26
35.17.11.195	195.189.214.28	197.217.9.13	9.45.253.122