158.44.149.39 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.44.149.39
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54805
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;158.44.149.39.			IN	A

;; AUTHORITY SECTION:
.			160	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022072202 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 23 08:48:27 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 39.149.44.158.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 39.149.44.158.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
148.70.33.136	attack	Sep 29 19:39:01 propaganda sshd[2808]: Connection from 148.70.33.136 port 55262 on 10.0.0.161 port 22 rdomain "" Sep 29 19:39:01 propaganda sshd[2808]: Connection closed by 148.70.33.136 port 55262 [preauth]	2020-09-30 19:03:59
14.248.64.180	attack	Attempted Email Sync. Password Hacking/Probing.	2020-09-30 19:19:49
123.233.116.36	attackspam	Port Scan ...	2020-09-30 18:58:18
118.200.26.72	attack	Unauthorized connection attempt from IP address 118.200.26.72 on Port 445(SMB)	2020-09-30 19:32:46
185.12.111.75	attackbots	/wp-login.php	2020-09-30 19:05:51
3.238.64.250	attack	[N3.H3.VM3] Port Scanner Detected Blocked by UFW	2020-09-30 18:56:55
192.99.168.9	attackbotsspam	Time: Wed Sep 30 07:02:07 2020 00 IP: 192.99.168.9 (CA/Canada/9.ip-192-99-168.net) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 30 06:51:50 -11 sshd[25067]: Invalid user tomcat from 192.99.168.9 port 37656 Sep 30 06:51:53 -11 sshd[25067]: Failed password for invalid user tomcat from 192.99.168.9 port 37656 ssh2 Sep 30 06:59:28 -11 sshd[25295]: Invalid user web1 from 192.99.168.9 port 43340 Sep 30 06:59:30 -11 sshd[25295]: Failed password for invalid user web1 from 192.99.168.9 port 43340 ssh2 Sep 30 07:02:05 -11 sshd[25443]: Failed password for root from 192.99.168.9 port 47550 ssh2	2020-09-30 19:28:36
58.221.162.226	attack	$f2bV_matches	2020-09-30 18:52:34
51.15.12.78	attack	Sep 30 00:39:34 php1 sshd\[19951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.12.78 user=root Sep 30 00:39:37 php1 sshd\[19951\]: Failed password for root from 51.15.12.78 port 57858 ssh2 Sep 30 00:44:46 php1 sshd\[20276\]: Invalid user samba from 51.15.12.78 Sep 30 00:44:46 php1 sshd\[20276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.12.78 Sep 30 00:44:48 php1 sshd\[20276\]: Failed password for invalid user samba from 51.15.12.78 port 32826 ssh2	2020-09-30 18:57:56
109.237.97.132	attack	SpamScore above: 10.0	2020-09-30 19:23:42
190.246.152.221	attackspam	Sep 29 22:23:17 kunden sshd[7789]: Address 190.246.152.221 maps to 221-152-246-190.fibertel.com.ar, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 29 22:23:17 kunden sshd[7789]: Invalid user lisa1 from 190.246.152.221 Sep 29 22:23:17 kunden sshd[7789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.246.152.221 Sep 29 22:23:19 kunden sshd[7789]: Failed password for invalid user lisa1 from 190.246.152.221 port 57462 ssh2 Sep 29 22:23:19 kunden sshd[7789]: Received disconnect from 190.246.152.221: 11: Bye Bye [preauth] Sep 29 22:30:33 kunden sshd[14968]: Address 190.246.152.221 maps to 221-152-246-190.fibertel.com.ar, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 29 22:30:33 kunden sshd[14968]: Invalid user han from 190.246.152.221 Sep 29 22:30:33 kunden sshd[14968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.246.152.221 S........ -------------------------------	2020-09-30 19:06:51
66.115.173.18	attackbotsspam	66.115.173.18 - - [30/Sep/2020:11:38:11 +0200] "GET /wp-login.php HTTP/1.1" 200 8712 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 66.115.173.18 - - [30/Sep/2020:11:38:14 +0200] "POST /wp-login.php HTTP/1.1" 200 8942 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 66.115.173.18 - - [30/Sep/2020:11:38:15 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-30 19:12:48
218.92.0.205	attackbots	Sep 30 12:48:58 santamaria sshd\[9222\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.205 user=root Sep 30 12:49:00 santamaria sshd\[9222\]: Failed password for root from 218.92.0.205 port 58767 ssh2 Sep 30 12:49:02 santamaria sshd\[9222\]: Failed password for root from 218.92.0.205 port 58767 ssh2 ...	2020-09-30 18:55:21
51.79.142.79	attack	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-09-30 19:34:02
91.231.247.64	attack	(smtpauth) Failed SMTP AUTH login from 91.231.247.64 (PL/Poland/91-231-247-64.tonetic.pl): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-09-30 00:02:57 plain authenticator failed for ([91.231.247.64]) [91.231.247.64]: 535 Incorrect authentication data (set_id=info)	2020-09-30 18:59:26

Recently Reported IPs

158.45.140.178	158.45.56.173	158.43.44.13	158.45.80.140
158.45.127.43	158.44.234.167	158.44.235.134	158.44.225.15
158.43.77.69	158.45.35.111	158.47.108.119	158.44.152.188
158.43.247.146	158.46.7.239	158.45.232.80	158.44.64.214
158.43.219.8	158.44.34.102	158.44.4.119	158.44.156.170