149.154.167.92

Basic Info

City: unknown

Region: unknown

Country: Antigua and Barbuda

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
149.154.167.222	botsattack	Vulnerability Scanner	2025-09-05 12:58:26
149.154.167.151	attack	Scan port	2024-02-29 22:33:37
149.154.167.43	attack	Scan port	2024-02-22 16:29:12
149.154.167.223	attack	Scan port	2024-02-20 21:21:53
149.154.167.151	attack	Scan port	2024-02-08 22:32:49
149.154.167.222	attack	Scan port	2024-01-17 22:27:30
149.154.167.222	attack	Scan port	2024-01-10 16:27:06
149.154.167.223	attack	Scan port	2024-01-05 20:12:57
149.154.167.222	attack	Scan port	2023-12-27 22:26:48
149.154.167.223	attack	Scan port	2023-11-22 13:43:37
149.154.167.223	attack	Scan port	2023-10-25 13:02:54
149.154.167.50	attack	trying to access non-authorized port	2020-07-26 01:54:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.154.167.92
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59571
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.154.167.92.			IN	A

;; AUTHORITY SECTION:
.			592	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021701 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 05:23:48 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 92.167.154.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 92.167.154.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.148.151.164	attack	Unauthorised access (Sep 28) SRC=180.148.151.164 LEN=40 TTL=47 ID=59712 TCP DPT=8080 WINDOW=2073 SYN Unauthorised access (Sep 27) SRC=180.148.151.164 LEN=40 TTL=47 ID=14882 TCP DPT=8080 WINDOW=2073 SYN Unauthorised access (Sep 26) SRC=180.148.151.164 LEN=40 TTL=47 ID=6053 TCP DPT=8080 WINDOW=2073 SYN Unauthorised access (Sep 26) SRC=180.148.151.164 LEN=40 TTL=47 ID=35237 TCP DPT=8080 WINDOW=2073 SYN Unauthorised access (Sep 25) SRC=180.148.151.164 LEN=40 TTL=47 ID=31203 TCP DPT=8080 WINDOW=2073 SYN Unauthorised access (Sep 24) SRC=180.148.151.164 LEN=40 TTL=47 ID=51678 TCP DPT=8080 WINDOW=2073 SYN Unauthorised access (Sep 24) SRC=180.148.151.164 LEN=40 TTL=47 ID=8129 TCP DPT=8080 WINDOW=2073 SYN Unauthorised access (Sep 22) SRC=180.148.151.164 LEN=40 TTL=47 ID=42291 TCP DPT=8080 WINDOW=2073 SYN Unauthorised access (Sep 22) SRC=180.148.151.164 LEN=40 TTL=47 ID=58176 TCP DPT=8080 WINDOW=2073 SYN	2019-09-28 07:12:29
159.203.201.55	attackbotsspam	" "	2019-09-28 06:54:38
46.161.39.219	attackspambots	2019-09-28T04:09:14.375066enmeeting.mahidol.ac.th sshd\[13162\]: Invalid user cdr from 46.161.39.219 port 41118 2019-09-28T04:09:14.394441enmeeting.mahidol.ac.th sshd\[13162\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.161.39.219 2019-09-28T04:09:16.662727enmeeting.mahidol.ac.th sshd\[13162\]: Failed password for invalid user cdr from 46.161.39.219 port 41118 ssh2 ...	2019-09-28 07:08:38
138.68.24.138	attack	www.goldgier.de 138.68.24.138 \[28/Sep/2019:00:36:25 +0200\] "POST /wp-login.php HTTP/1.1" 200 8727 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" www.goldgier.de 138.68.24.138 \[28/Sep/2019:00:36:27 +0200\] "POST /wp-login.php HTTP/1.1" 200 8727 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-09-28 07:09:57
46.38.144.32	attackspam	Sep 28 00:50:45 relay postfix/smtpd\[19514\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 28 00:51:13 relay postfix/smtpd\[30532\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 28 00:53:14 relay postfix/smtpd\[2011\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 28 00:53:42 relay postfix/smtpd\[25812\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 28 00:55:43 relay postfix/smtpd\[1174\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-28 06:58:56
106.12.47.216	attackbots	Sep 27 23:13:13 *** sshd[12967]: Invalid user webuser from 106.12.47.216	2019-09-28 07:33:26
161.97.207.146	attackbots	Sep 28 00:46:13 localhost sshd\[12099\]: Invalid user mgithinji from 161.97.207.146 port 37412 Sep 28 00:46:13 localhost sshd\[12099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.97.207.146 Sep 28 00:46:15 localhost sshd\[12099\]: Failed password for invalid user mgithinji from 161.97.207.146 port 37412 ssh2	2019-09-28 07:19:16
191.83.225.89	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/191.83.225.89/ AR - 1H : (87) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : AR NAME ASN : ASN22927 IP : 191.83.225.89 CIDR : 191.80.0.0/14 PREFIX COUNT : 244 UNIQUE IP COUNT : 4001024 WYKRYTE ATAKI Z ASN22927 : 1H - 4 3H - 9 6H - 10 12H - 14 24H - 27 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-28 07:34:47
200.44.50.155	attack	Sep 27 12:56:59 lcprod sshd\[5547\]: Invalid user vagrant from 200.44.50.155 Sep 27 12:56:59 lcprod sshd\[5547\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.44.50.155 Sep 27 12:57:01 lcprod sshd\[5547\]: Failed password for invalid user vagrant from 200.44.50.155 port 37822 ssh2 Sep 27 13:01:46 lcprod sshd\[6006\]: Invalid user dinesh from 200.44.50.155 Sep 27 13:01:46 lcprod sshd\[6006\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.44.50.155	2019-09-28 07:16:45
111.231.110.80	attackspambots	Sep 27 13:05:32 php1 sshd\[5782\]: Invalid user redmine from 111.231.110.80 Sep 27 13:05:32 php1 sshd\[5782\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.110.80 Sep 27 13:05:35 php1 sshd\[5782\]: Failed password for invalid user redmine from 111.231.110.80 port 25395 ssh2 Sep 27 13:09:55 php1 sshd\[6249\]: Invalid user icinga from 111.231.110.80 Sep 27 13:09:55 php1 sshd\[6249\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.110.80	2019-09-28 07:22:30
46.38.144.17	attackspambots	Sep 27 23:32:01 relay postfix/smtpd\[4068\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 23:32:18 relay postfix/smtpd\[7576\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 23:33:17 relay postfix/smtpd\[15200\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 23:33:34 relay postfix/smtpd\[21460\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 27 23:34:33 relay postfix/smtpd\[4068\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-28 07:14:09
81.30.208.114	attack	Sep 28 02:08:37 tuotantolaitos sshd[26238]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.30.208.114 Sep 28 02:08:39 tuotantolaitos sshd[26238]: Failed password for invalid user kk from 81.30.208.114 port 40692 ssh2 ...	2019-09-28 07:25:09
221.223.17.160	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/221.223.17.160/ CN - 1H : (1126) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4808 IP : 221.223.17.160 CIDR : 221.223.0.0/18 PREFIX COUNT : 1972 UNIQUE IP COUNT : 6728192 WYKRYTE ATAKI Z ASN4808 : 1H - 4 3H - 15 6H - 18 12H - 29 24H - 56 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-09-28 07:29:58
222.186.42.117	attackbotsspam	2019-09-27T23:04:37.201418hub.schaetter.us sshd\[6250\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.117 user=root 2019-09-27T23:04:38.876489hub.schaetter.us sshd\[6250\]: Failed password for root from 222.186.42.117 port 59520 ssh2 2019-09-27T23:04:41.032161hub.schaetter.us sshd\[6250\]: Failed password for root from 222.186.42.117 port 59520 ssh2 2019-09-27T23:04:42.788937hub.schaetter.us sshd\[6250\]: Failed password for root from 222.186.42.117 port 59520 ssh2 2019-09-27T23:11:31.477270hub.schaetter.us sshd\[6315\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.117 user=root ...	2019-09-28 07:11:43
155.94.254.64	attack	Lines containing failures of 155.94.254.64 Sep 26 23:57:32 myhost sshd[28870]: Invalid user ua from 155.94.254.64 port 36572 Sep 26 23:57:32 myhost sshd[28870]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.94.254.64 Sep 26 23:57:34 myhost sshd[28870]: Failed password for invalid user ua from 155.94.254.64 port 36572 ssh2 Sep 26 23:57:34 myhost sshd[28870]: Received disconnect from 155.94.254.64 port 36572:11: Bye Bye [preauth] Sep 26 23:57:34 myhost sshd[28870]: Disconnected from invalid user ua 155.94.254.64 port 36572 [preauth] Sep 27 00:07:46 myhost sshd[28963]: Invalid user cmsadmin from 155.94.254.64 port 58692 Sep 27 00:07:46 myhost sshd[28963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.94.254.64 Sep 27 00:07:49 myhost sshd[28963]: Failed password for invalid user cmsadmin from 155.94.254.64 port 58692 ssh2 Sep 27 00:07:49 myhost sshd[28963]: Received disconnect from 15........ ------------------------------	2019-09-28 07:32:26

Recently Reported IPs

68.172.16.236	107.180.40.55	107.180.40.56	107.180.40.62
107.180.41.126	107.180.41.171	107.180.41.158	107.180.41.150
107.180.41.226	107.180.41.153	107.180.41.157	107.180.41.227
107.180.41.149	107.180.41.236	107.180.41.238	107.180.41.239
107.180.41.245	107.180.41.249	107.180.41.250	107.180.41.246