149.56.20.143 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
149.56.20.226	attackspam	149.56.20.226 - - [25/Mar/2020:05:01:08 +0000] "POST /wp-login.php HTTP/1.1" 200 6627 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 149.56.20.226 - - [25/Mar/2020:05:01:09 +0000] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-03-25 13:36:08
149.56.20.226	attack	149.56.20.226 - - \[13/Mar/2020:23:04:11 +0100\] "POST /wp-login.php HTTP/1.0" 200 6666 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 149.56.20.226 - - \[13/Mar/2020:23:04:14 +0100\] "POST /wp-login.php HTTP/1.0" 200 6664 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 149.56.20.226 - - \[13/Mar/2020:23:04:15 +0100\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2020-03-14 08:43:16
149.56.20.183	attackbotsspam	Dec 9 09:19:18 v22018076590370373 sshd[18606]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.20.183 ...	2020-02-01 21:51:06
149.56.20.183	attack	$f2bV_matches	2019-12-21 06:22:46
149.56.20.183	attackbotsspam	Dec 20 00:38:21 ArkNodeAT sshd\[20625\]: Invalid user varoujan from 149.56.20.183 Dec 20 00:38:21 ArkNodeAT sshd\[20625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.20.183 Dec 20 00:38:23 ArkNodeAT sshd\[20625\]: Failed password for invalid user varoujan from 149.56.20.183 port 39610 ssh2	2019-12-20 08:35:37
149.56.20.183	attackspambots	Jun 5 17:04:19 vtv3 sshd[25741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.20.183 Jun 5 17:16:36 vtv3 sshd[31752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.20.183 user=nobody Jun 5 17:16:37 vtv3 sshd[31752]: Failed password for nobody from 149.56.20.183 port 55336 ssh2 Jun 5 17:19:23 vtv3 sshd[333]: Invalid user vradu from 149.56.20.183 port 50514 Jun 5 17:19:23 vtv3 sshd[333]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.20.183 Jun 5 17:19:26 vtv3 sshd[333]: Failed password for invalid user vradu from 149.56.20.183 port 50514 ssh2 Jun 5 17:29:42 vtv3 sshd[5774]: Invalid user mellisa from 149.56.20.183 port 57478 Jun 5 17:29:42 vtv3 sshd[5774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.20.183 Jun 5 17:29:44 vtv3 sshd[5774]: Failed password for invalid user mellisa from 149.56.20.183 port 57478	2019-12-15 15:11:31
149.56.20.183	attackbots	SSH Brute-Forcing (server2)	2019-12-14 07:27:26
149.56.20.183	attackspam	Nov 7 07:57:35 ns381471 sshd[1000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.20.183 Nov 7 07:57:36 ns381471 sshd[1000]: Failed password for invalid user edcwsxqaz from 149.56.20.183 port 37192 ssh2	2019-11-07 18:32:48
149.56.20.183	attackspam	Automated report - ssh fail2ban: Sep 17 02:21:11 authentication failure Sep 17 02:21:12 wrong password, user=guym, port=56328, ssh2 Sep 17 02:25:02 authentication failure	2019-09-17 08:33:32
149.56.202.72	attack	TCP src-port=44667 dst-port=25 abuseat-org zen-spamhaus truncate-gbudb (1)	2019-09-16 15:29:39
149.56.202.72	attack	Spam	2019-09-13 00:59:43
149.56.20.183	attackspam	Sep 8 18:53:23 hpm sshd\[20027\]: Invalid user bot123 from 149.56.20.183 Sep 8 18:53:23 hpm sshd\[20027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns529103.ip-149-56-20.net Sep 8 18:53:25 hpm sshd\[20027\]: Failed password for invalid user bot123 from 149.56.20.183 port 51288 ssh2 Sep 8 18:59:38 hpm sshd\[20590\]: Invalid user bots123 from 149.56.20.183 Sep 8 18:59:38 hpm sshd\[20590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns529103.ip-149-56-20.net	2019-09-09 13:14:54
149.56.20.183	attack	Aug 31 04:39:43 www5 sshd\[8814\]: Invalid user net from 149.56.20.183 Aug 31 04:39:43 www5 sshd\[8814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.20.183 Aug 31 04:39:46 www5 sshd\[8814\]: Failed password for invalid user net from 149.56.20.183 port 57894 ssh2 ...	2019-08-31 09:48:47
149.56.20.183	attackbotsspam	Invalid user xing from 149.56.20.183 port 53568	2019-08-30 08:10:49
149.56.20.183	attack	Invalid user xing from 149.56.20.183 port 53568	2019-08-28 19:54:22

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.56.20.143
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30449
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.56.20.143.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:39:20 CST 2022
;; MSG SIZE  rcvd: 106

Host info

143.20.56.149.in-addr.arpa domain name pointer lnx02.servidor5.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
143.20.56.149.in-addr.arpa	name = lnx02.servidor5.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.59.149.183	attackbotsspam	Sep 1 18:42:49 mail sshd\[26964\]: Failed password for invalid user myl from 139.59.149.183 port 59122 ssh2 Sep 1 18:59:01 mail sshd\[27264\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.149.183 user=root ...	2019-09-02 10:00:31
177.69.213.236	attack	Sep 1 15:50:00 php1 sshd\[24834\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.69.213.236 user=mysql Sep 1 15:50:01 php1 sshd\[24834\]: Failed password for mysql from 177.69.213.236 port 60888 ssh2 Sep 1 15:55:03 php1 sshd\[25358\]: Invalid user helpdesk from 177.69.213.236 Sep 1 15:55:03 php1 sshd\[25358\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.69.213.236 Sep 1 15:55:05 php1 sshd\[25358\]: Failed password for invalid user helpdesk from 177.69.213.236 port 48956 ssh2	2019-09-02 09:56:20
58.115.161.172	attackbots	Sep 1 19:25:39 pornomens sshd\[1781\]: Invalid user admin from 58.115.161.172 port 53652 Sep 1 19:25:39 pornomens sshd\[1781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.115.161.172 Sep 1 19:25:41 pornomens sshd\[1781\]: Failed password for invalid user admin from 58.115.161.172 port 53652 ssh2 ...	2019-09-02 10:39:40
94.191.77.31	attack	2019-09-02T04:31:39.183440enmeeting.mahidol.ac.th sshd\[21950\]: User mailnull from 94.191.77.31 not allowed because not listed in AllowUsers 2019-09-02T04:31:39.202092enmeeting.mahidol.ac.th sshd\[21950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.77.31 user=mailnull 2019-09-02T04:31:41.188477enmeeting.mahidol.ac.th sshd\[21950\]: Failed password for invalid user mailnull from 94.191.77.31 port 45454 ssh2 ...	2019-09-02 10:25:06
115.159.111.193	attackbots	Automated report - ssh fail2ban: Sep 1 21:29:37 authentication failure Sep 1 21:29:39 wrong password, user=mcm, port=21127, ssh2 Sep 1 21:31:55 authentication failure	2019-09-02 10:41:31
218.92.0.212	attackspambots	Sep 2 04:19:58 mail sshd\[14670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Sep 2 04:20:01 mail sshd\[14670\]: Failed password for root from 218.92.0.212 port 18537 ssh2 Sep 2 04:20:04 mail sshd\[14670\]: Failed password for root from 218.92.0.212 port 18537 ssh2 Sep 2 04:20:07 mail sshd\[14670\]: Failed password for root from 218.92.0.212 port 18537 ssh2 Sep 2 04:20:10 mail sshd\[14670\]: Failed password for root from 218.92.0.212 port 18537 ssh2	2019-09-02 10:50:01
148.70.206.90	attackbots	Telnet login attempt	2019-09-02 10:04:15
218.98.40.146	attack	Sep 2 02:20:11 ip-172-31-1-72 sshd\[25101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.146 user=root Sep 2 02:20:13 ip-172-31-1-72 sshd\[25101\]: Failed password for root from 218.98.40.146 port 35727 ssh2 Sep 2 02:20:20 ip-172-31-1-72 sshd\[25105\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.98.40.146 user=root Sep 2 02:20:23 ip-172-31-1-72 sshd\[25105\]: Failed password for root from 218.98.40.146 port 47971 ssh2 Sep 2 02:20:25 ip-172-31-1-72 sshd\[25105\]: Failed password for root from 218.98.40.146 port 47971 ssh2	2019-09-02 10:42:53
211.20.154.217	attack	Trying ports that it shouldn't be.	2019-09-02 10:42:21
68.183.204.162	attackbots	Sep 2 02:07:20 MK-Soft-VM5 sshd\[29258\]: Invalid user tester from 68.183.204.162 port 48834 Sep 2 02:07:20 MK-Soft-VM5 sshd\[29258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.204.162 Sep 2 02:07:23 MK-Soft-VM5 sshd\[29258\]: Failed password for invalid user tester from 68.183.204.162 port 48834 ssh2 ...	2019-09-02 10:36:31
113.80.86.62	attackbotsspam	Sep 1 21:07:27 server sshd\[25183\]: Invalid user qh from 113.80.86.62 port 59828 Sep 1 21:07:27 server sshd\[25183\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.80.86.62 Sep 1 21:07:29 server sshd\[25183\]: Failed password for invalid user qh from 113.80.86.62 port 59828 ssh2 Sep 1 21:12:55 server sshd\[22091\]: Invalid user team2 from 113.80.86.62 port 52749 Sep 1 21:12:55 server sshd\[22091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.80.86.62	2019-09-02 10:24:11
142.93.235.214	attackspam	Sep 1 23:12:24 SilenceServices sshd[4155]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.214 Sep 1 23:12:27 SilenceServices sshd[4155]: Failed password for invalid user deployer from 142.93.235.214 port 46120 ssh2 Sep 1 23:20:12 SilenceServices sshd[10313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.235.214	2019-09-02 09:54:33
5.39.92.185	attackspam	Sep 1 10:49:20 hiderm sshd\[22150\]: Invalid user administrador from 5.39.92.185 Sep 1 10:49:20 hiderm sshd\[22150\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ks3279282.kimsufi.com Sep 1 10:49:22 hiderm sshd\[22150\]: Failed password for invalid user administrador from 5.39.92.185 port 54818 ssh2 Sep 1 10:53:38 hiderm sshd\[22519\]: Invalid user corina from 5.39.92.185 Sep 1 10:53:38 hiderm sshd\[22519\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ks3279282.kimsufi.com	2019-09-02 09:46:21
113.11.136.28	attackbots	Sep 1 11:25:47 mail postfix/postscreen[85312]: PREGREET 19 after 0.61 from [113.11.136.28]:47239: EHLO lrmmotors.it ...	2019-09-02 10:26:35
159.89.235.61	attack	$f2bV_matches	2019-09-02 10:12:07

Recently Reported IPs

149.56.189.105	149.56.20.173	149.56.193.188	149.56.182.230
149.56.22.100	149.56.22.117	149.56.191.169	149.56.222.11
149.56.22.165	149.56.222.74	149.56.20.179	149.56.232.128
149.56.22.120	149.56.228.184	149.56.229.94	149.56.234.136
149.56.238.60	149.56.222.77	149.56.240.118	149.56.240.63