149.91.188.142

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.91.188.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63817
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.91.188.142.			IN	A

;; AUTHORITY SECTION:
.			115	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022100700 1800 900 604800 86400

;; Query time: 72 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 07 21:27:18 CST 2022
;; MSG SIZE  rcvd: 107

Host info

142.188.91.149.in-addr.arpa domain name pointer cli-955bbc8e.wholesale.adamo.es.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.188.91.149.in-addr.arpa	name = cli-955bbc8e.wholesale.adamo.es.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.105.46.135	attackbotsspam	1580118504 - 01/27/2020 10:48:24 Host: 85.105.46.135/85.105.46.135 Port: 445 TCP Blocked	2020-01-28 02:32:53
190.246.54.166	attackbotsspam	37215/tcp 37215/tcp 9001/tcp [2020-01-25/26]3pkt	2020-01-28 02:52:17
59.111.105.9	attackspambots	#5614 - [59.111.105.96] Closing connection (IP still banned) #5614 - [59.111.105.96] Closing connection (IP still banned) #5614 - [59.111.105.96] Closing connection (IP still banned) #5614 - [59.111.105.96] Closing connection (IP still banned) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=59.111.105.9	2020-01-28 02:36:21
167.86.73.158	attack	Unauthorized connection attempt detected from IP address 167.86.73.158 to port 2220 [J]	2020-01-28 02:20:29
122.51.158.15	attackbotsspam	Unauthorized connection attempt detected from IP address 122.51.158.15 to port 2220 [J]	2020-01-28 02:17:54
51.38.80.173	attackbotsspam	Unauthorized connection attempt detected from IP address 51.38.80.173 to port 2220 [J]	2020-01-28 02:31:29
122.152.197.6	attackspam	Jan 27 02:24:05 php1 sshd\[12027\]: Invalid user pearson from 122.152.197.6 Jan 27 02:24:05 php1 sshd\[12027\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.197.6 Jan 27 02:24:06 php1 sshd\[12027\]: Failed password for invalid user pearson from 122.152.197.6 port 32886 ssh2 Jan 27 02:26:48 php1 sshd\[12369\]: Invalid user ftpuser from 122.152.197.6 Jan 27 02:26:48 php1 sshd\[12369\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.197.6	2020-01-28 02:24:12
178.154.171.22	attackbotsspam	[Mon Jan 27 16:48:47.779390 2020] [:error] [pid 18453:tid 140469544535808] [client 178.154.171.22:64103] [client 178.154.171.22] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "Xi6x-@xqhfFnTACyW@OVPQAAAG4"] ...	2020-01-28 02:14:05
222.186.30.57	attackspambots	Unauthorized connection attempt detected from IP address 222.186.30.57 to port 22 [J]	2020-01-28 02:51:46
104.198.186.189	attackspam	Brute force VPN server	2020-01-28 02:41:46
142.44.138.126	attackspam	Automated report (2020-01-27T17:12:17+00:00). Misbehaving bot detected at this address.	2020-01-28 02:38:26
189.194.63.29	attack	Honeypot attack, port: 445, PTR: customer-TEP-MCA-63-29.megared.net.mx.	2020-01-28 02:12:06
198.108.67.111	attackspam	firewall-block, port(s): 12321/tcp	2020-01-28 02:33:55
125.166.24.100	attack	Unauthorized connection attempt from IP address 125.166.24.100 on Port 445(SMB)	2020-01-28 02:14:58
93.221.250.159	attack	2019-06-22 15:29:16 1heg4v-0006ME-Om SMTP connection from p5dddfa9f.dip0.t-ipconnect.de \[93.221.250.159\]:43263 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 15:29:35 1heg5G-0006MV-0F SMTP connection from p5dddfa9f.dip0.t-ipconnect.de \[93.221.250.159\]:43402 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 15:29:49 1heg5T-0006Mf-3K SMTP connection from p5dddfa9f.dip0.t-ipconnect.de \[93.221.250.159\]:43494 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 02:52:44

Recently Reported IPs

23.229.104.66	149.28.44.246	11.182.75.225	138.201.111.141
134.90.241.128	191.82.248.88	88.135.44.138	202.131.147.50
89.191.226.18	62.204.49.126	160.119.69.222	217.145.227.220
194.225.227.134	63.245.90.66	41.205.24.113	84.21.188.114
49.156.46.126	193.56.72.128	128.90.151.205	84.118.219.176