158.69.149.142

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
158.69.149.107	attack	Port Scan: TCP/445	2019-09-25 08:38:50
158.69.149.194	attackbotsspam	Postfix SMTP rejection ...	2019-09-05 02:09:01
158.69.149.103	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-16 19:52:26,554 INFO [amun_request_handler] unknown vuln (Attacker: 158.69.149.103 Port: 25, Mess: ['ehlo WIN-34OPKJT4Q78 '] (22) Stages: ['IMAIL_STAGE1'])	2019-08-17 06:10:46

Type

Details

Datetime

158.69.149.107

attack

Port Scan: TCP/445

2019-09-25 08:38:50

158.69.149.194

attackbotsspam

Postfix SMTP rejection
...

2019-09-05 02:09:01

158.69.149.103

attackspam

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-16 19:52:26,554 INFO [amun_request_handler] unknown vuln (Attacker: 158.69.149.103 Port: 25, Mess: ['ehlo WIN-34OPKJT4Q78
'] (22) Stages: ['IMAIL_STAGE1'])

2019-08-17 06:10:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.69.149.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45291
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;158.69.149.142.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 13:35:18 CST 2022
;; MSG SIZE  rcvd: 107

Host info

142.149.69.158.in-addr.arpa domain name pointer whc.ca.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.149.69.158.in-addr.arpa	name = whc.ca.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
63.41.36.220	attackspambots	2019-12-01T23:55:36.742254ns547587 sshd\[31372\]: Invalid user fargher from 63.41.36.220 port 45707 2019-12-01T23:55:36.747708ns547587 sshd\[31372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host220.sub-63-41-36.myvzw.com 2019-12-01T23:55:39.448167ns547587 sshd\[31372\]: Failed password for invalid user fargher from 63.41.36.220 port 45707 ssh2 2019-12-01T23:58:58.450784ns547587 sshd\[32583\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host220.sub-63-41-36.myvzw.com user=root ...	2019-12-02 13:13:59
101.109.83.140	attackspam	Dec 2 06:24:37 jane sshd[6205]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.109.83.140 Dec 2 06:24:39 jane sshd[6205]: Failed password for invalid user web from 101.109.83.140 port 42172 ssh2 ...	2019-12-02 13:28:02
222.186.173.226	attackbotsspam	SSH Brute Force, server-1 sshd[3803]: Failed password for root from 222.186.173.226 port 24937 ssh2	2019-12-02 13:26:12
88.99.193.224	attack	Automatic report - Banned IP Access	2019-12-02 13:13:18
218.241.134.34	attackbotsspam	Dec 2 11:09:01 areeb-Workstation sshd[13293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.241.134.34 Dec 2 11:09:03 areeb-Workstation sshd[13293]: Failed password for invalid user roseanne from 218.241.134.34 port 56535 ssh2 ...	2019-12-02 13:42:34
20.36.23.221	attackspam	Dec 2 07:18:25 sauna sshd[173783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.36.23.221 Dec 2 07:18:28 sauna sshd[173783]: Failed password for invalid user clennito from 20.36.23.221 port 2048 ssh2 ...	2019-12-02 13:21:02
92.63.196.3	attackbots	Dec 2 06:29:36 mc1 kernel: \[6550788.270509\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.63.196.3 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=19209 PROTO=TCP SPT=42605 DPT=9833 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 2 06:37:30 mc1 kernel: \[6551262.169024\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.63.196.3 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=35344 PROTO=TCP SPT=42605 DPT=7007 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 2 06:39:10 mc1 kernel: \[6551362.344459\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=92.63.196.3 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=23667 PROTO=TCP SPT=42605 DPT=7001 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-02 13:39:48
180.68.177.15	attackbotsspam	Dec 2 06:27:32 localhost sshd\[27285\]: Invalid user shanda from 180.68.177.15 port 34936 Dec 2 06:27:32 localhost sshd\[27285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.68.177.15 Dec 2 06:27:34 localhost sshd\[27285\]: Failed password for invalid user shanda from 180.68.177.15 port 34936 ssh2	2019-12-02 13:27:42
106.75.55.123	attack	Dec 2 05:59:02 localhost sshd\[23574\]: Invalid user weiser from 106.75.55.123 port 58114 Dec 2 05:59:02 localhost sshd\[23574\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.55.123 Dec 2 05:59:03 localhost sshd\[23574\]: Failed password for invalid user weiser from 106.75.55.123 port 58114 ssh2	2019-12-02 13:09:01
61.53.241.196	attackspam	port scan and connect, tcp 23 (telnet)	2019-12-02 13:24:12
201.62.44.63	attackspambots	Dec 2 10:44:23 vibhu-HP-Z238-Microtower-Workstation sshd\[13258\]: Invalid user stephani from 201.62.44.63 Dec 2 10:44:23 vibhu-HP-Z238-Microtower-Workstation sshd\[13258\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.62.44.63 Dec 2 10:44:24 vibhu-HP-Z238-Microtower-Workstation sshd\[13258\]: Failed password for invalid user stephani from 201.62.44.63 port 48084 ssh2 Dec 2 10:52:11 vibhu-HP-Z238-Microtower-Workstation sshd\[14010\]: Invalid user Reijo from 201.62.44.63 Dec 2 10:52:11 vibhu-HP-Z238-Microtower-Workstation sshd\[14010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.62.44.63 ...	2019-12-02 13:27:14
159.65.239.104	attack	Dec 2 05:54:29 localhost sshd[2960]: Failed password for invalid user ftpuser from 159.65.239.104 port 36336 ssh2 Dec 2 06:02:56 localhost sshd[3415]: Failed password for invalid user purple from 159.65.239.104 port 39932 ssh2 Dec 2 06:08:31 localhost sshd[3706]: Failed password for invalid user sweeting from 159.65.239.104 port 52214 ssh2	2019-12-02 13:21:37
150.249.114.20	attack	Dec 1 19:12:15 eddieflores sshd\[19756\]: Invalid user ccccccccc from 150.249.114.20 Dec 1 19:12:15 eddieflores sshd\[19756\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fp96f97214.tkyc210.ap.nuro.jp Dec 1 19:12:17 eddieflores sshd\[19756\]: Failed password for invalid user ccccccccc from 150.249.114.20 port 41400 ssh2 Dec 1 19:19:13 eddieflores sshd\[20403\]: Invalid user jerusale from 150.249.114.20 Dec 1 19:19:13 eddieflores sshd\[20403\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fp96f97214.tkyc210.ap.nuro.jp	2019-12-02 13:31:36
49.235.101.153	attack	$f2bV_matches	2019-12-02 13:12:38
213.120.170.33	attackbots	[Aegis] @ 2019-12-02 06:38:54 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-12-02 13:40:01

Recently Reported IPs

158.69.128.44	158.69.152.225	158.69.133.131	158.69.142.51
158.69.155.77	158.69.158.186	158.69.168.192	158.69.151.15
158.69.162.48	158.69.185.137	158.69.182.5	158.69.19.220
158.69.175.128	158.69.175.129	158.69.185.3	158.69.194.90
158.69.192.220	158.69.197.191	158.69.20.157	158.69.201.47