City: New York City
Region: New York
Country: United States
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 149.119.0.0 - 149.119.255.255
CIDR: 149.119.0.0/16
NetName: COGENT-149-119-16
NetHandle: NET-149-119-0-0-1
Parent: NET149 (NET-149-0-0-0-0)
NetType: Direct Allocation
OriginAS:
Organization: Cogent Communications, LLC (COGC)
RegDate: 1992-01-28
Updated: 2025-09-23
Ref: https://rdap.arin.net/registry/ip/149.119.0.0
OrgName: Cogent Communications, LLC
OrgId: COGC
Address: 2450 N Street NW
City: Washington
StateProv: DC
PostalCode: 20037
Country: US
RegDate: 2000-05-30
Updated: 2025-09-23
Comment: Geofeed https://geofeed.cogentco.com/geofeed.csv
Ref: https://rdap.arin.net/registry/entity/COGC
ReferralServer: rwhois://rwhois.cogentco.com:4321
OrgTechHandle: IPALL-ARIN
OrgTechName: IP Allocation
OrgTechPhone: +1-877-875-4311
OrgTechEmail: ipalloc@cogentco.com
OrgTechRef: https://rdap.arin.net/registry/entity/IPALL-ARIN
OrgAbuseHandle: COGEN-ARIN
OrgAbuseName: Cogent Abuse
OrgAbusePhone: +1-877-875-4311
OrgAbuseEmail: abuse@cogentco.com
OrgAbuseRef: https://rdap.arin.net/registry/entity/COGEN-ARIN
OrgNOCHandle: ZC108-ARIN
OrgNOCName: Cogent Communications
OrgNOCPhone: +1-877-875-4311
OrgNOCEmail: noc@cogentco.com
OrgNOCRef: https://rdap.arin.net/registry/entity/ZC108-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
Found a referral to rwhois.cogentco.com:4321.
%rwhois V-1.5:0010b0:00 rwhois.cogentco.com (CGNT rwhoisd 1.2.2)
network:ID:NET4-9577800012
network:Network-Name:NET4-9577800012
network:IP-Network:149.119.128.0/18
network:Org-Name:SparkTech LTD
network:Street-Address:25 BROADWAY
network:City:NEW YORK
network:State:NY
network:Country:US
network:Postal-Code:10004
network:Tech-Contact:ZC108-ARIN
network:Updated:2025-07-07 19:20:41
%ok; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.119.147.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26470
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;149.119.147.142. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026040700 1800 900 604800 86400
;; Query time: 9 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 07 16:54:04 CST 2026
;; MSG SIZE rcvd: 108Host 142.147.119.149.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 142.147.119.149.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 74.82.47.15 | attack | 8080/tcp 11211/tcp 4786/tcp... [2019-10-25/12-23]42pkt,10pt.(tcp),2pt.(udp) |
2019-12-24 06:16:28 |
| 122.5.46.22 | attackbotsspam | Dec 23 06:31:08 sachi sshd\[6291\]: Invalid user franciszek from 122.5.46.22 Dec 23 06:31:08 sachi sshd\[6291\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.5.46.22 Dec 23 06:31:10 sachi sshd\[6291\]: Failed password for invalid user franciszek from 122.5.46.22 port 52050 ssh2 Dec 23 06:39:33 sachi sshd\[6990\]: Invalid user canute from 122.5.46.22 Dec 23 06:39:33 sachi sshd\[6990\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.5.46.22 |
2019-12-24 06:21:10 |
| 129.146.147.62 | attackbots | Brute force attempt |
2019-12-24 06:00:57 |
| 94.255.130.161 | attackbots | 9001/tcp 9000/tcp 26/tcp... [2019-11-28/12-23]27pkt,4pt.(tcp) |
2019-12-24 06:04:28 |
| 83.17.109.6 | attackspambots | Invalid user zimbra from 83.17.109.6 port 33957 |
2019-12-24 06:06:53 |
| 79.124.62.27 | attack | Dec 23 22:45:39 debian-2gb-nbg1-2 kernel: \[790283.206250\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=79.124.62.27 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=64045 PROTO=TCP SPT=52326 DPT=8008 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-12-24 05:51:11 |
| 81.211.18.114 | attackbotsspam | 81.211.18.114 - - [23/Dec/2019:09:53:28 -0500] "GET /index.cfm?page=../../../../../etc/passwd&manufacturerID=15&collectionID=161 HTTP/1.1" 200 19255 "https:// /index.cfm?page=../../../../../etc/passwd&manufacturerID=15&collectionID=161" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ... |
2019-12-24 06:24:27 |
| 128.14.181.66 | attackbotsspam | Scanning random ports - tries to find possible vulnerable services |
2019-12-24 06:13:29 |
| 129.150.102.94 | attackbots | Feb 19 04:48:36 dillonfme sshd\[24319\]: Invalid user spark from 129.150.102.94 port 43784 Feb 19 04:48:36 dillonfme sshd\[24319\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.150.102.94 Feb 19 04:48:37 dillonfme sshd\[24319\]: Failed password for invalid user spark from 129.150.102.94 port 43784 ssh2 Feb 19 04:53:29 dillonfme sshd\[24529\]: Invalid user tomcat from 129.150.102.94 port 39357 Feb 19 04:53:29 dillonfme sshd\[24529\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.150.102.94 ... |
2019-12-24 05:52:10 |
| 51.38.128.30 | attack | Dec 23 06:14:14 php1 sshd\[20076\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.128.30 user=root Dec 23 06:14:15 php1 sshd\[20076\]: Failed password for root from 51.38.128.30 port 59410 ssh2 Dec 23 06:20:03 php1 sshd\[20558\]: Invalid user guest from 51.38.128.30 Dec 23 06:20:03 php1 sshd\[20558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.128.30 Dec 23 06:20:05 php1 sshd\[20558\]: Failed password for invalid user guest from 51.38.128.30 port 35724 ssh2 |
2019-12-24 06:07:35 |
| 106.75.30.102 | attackspambots | firewall-block, port(s): 5400/tcp |
2019-12-24 06:19:44 |
| 123.138.111.240 | attackbots | MultiHost/MultiPort Probe, Scan, Hack - |
2019-12-24 05:56:59 |
| 1.55.94.121 | attack | 1577112821 - 12/23/2019 15:53:41 Host: 1.55.94.121/1.55.94.121 Port: 445 TCP Blocked |
2019-12-24 06:13:56 |
| 103.76.22.115 | attackspambots | Dec 23 16:30:53 srv206 sshd[3774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.76.22.115 user=root Dec 23 16:30:55 srv206 sshd[3774]: Failed password for root from 103.76.22.115 port 57462 ssh2 Dec 23 16:43:32 srv206 sshd[3849]: Invalid user 3e from 103.76.22.115 ... |
2019-12-24 06:06:27 |
| 145.239.198.218 | attackbotsspam | Dec 23 21:04:24 gw1 sshd[29446]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.198.218 Dec 23 21:04:27 gw1 sshd[29446]: Failed password for invalid user elisen from 145.239.198.218 port 32910 ssh2 ... |
2019-12-24 05:50:28 |