158.69.149.142

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
158.69.149.107	attack	Port Scan: TCP/445	2019-09-25 08:38:50
158.69.149.194	attackbotsspam	Postfix SMTP rejection ...	2019-09-05 02:09:01
158.69.149.103	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-16 19:52:26,554 INFO [amun_request_handler] unknown vuln (Attacker: 158.69.149.103 Port: 25, Mess: ['ehlo WIN-34OPKJT4Q78 '] (22) Stages: ['IMAIL_STAGE1'])	2019-08-17 06:10:46

Type

Details

Datetime

158.69.149.107

attack

Port Scan: TCP/445

2019-09-25 08:38:50

158.69.149.194

attackbotsspam

Postfix SMTP rejection
...

2019-09-05 02:09:01

158.69.149.103

attackspam

@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-16 19:52:26,554 INFO [amun_request_handler] unknown vuln (Attacker: 158.69.149.103 Port: 25, Mess: ['ehlo WIN-34OPKJT4Q78
'] (22) Stages: ['IMAIL_STAGE1'])

2019-08-17 06:10:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 158.69.149.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45291
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;158.69.149.142.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 13:35:18 CST 2022
;; MSG SIZE  rcvd: 107

Host info

142.149.69.158.in-addr.arpa domain name pointer whc.ca.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.149.69.158.in-addr.arpa	name = whc.ca.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.63.76.41	attackspambots	DATE:2020-03-28 22:31:20, IP:218.63.76.41, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-03-29 07:47:37
198.108.66.80	attackbotsspam	Unauthorized connection attempt detected from IP address 198.108.66.80 to port 5984	2020-03-29 08:00:41
121.204.145.50	attackbots	Invalid user riona from 121.204.145.50 port 40276	2020-03-29 07:50:03
42.113.27.202	attack	23/tcp [2020-03-28]1pkt	2020-03-29 08:19:46
49.159.92.66	attack	23/tcp [2020-03-28]1pkt	2020-03-29 08:11:34
65.34.120.176	attack	Mar 29 01:01:04 vps647732 sshd[18723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=65.34.120.176 Mar 29 01:01:06 vps647732 sshd[18723]: Failed password for invalid user wilensky from 65.34.120.176 port 36923 ssh2 ...	2020-03-29 08:27:51
31.163.179.202	attack	23/tcp [2020-03-28]1pkt	2020-03-29 08:03:01
138.118.224.36	attackspam	DATE:2020-03-28 22:31:18, IP:138.118.224.36, PORT:5900 VNC brute force auth on honeypot server (epe-honey1-hq)	2020-03-29 07:49:46
159.203.41.58	attack	Mar 28 19:24:58: Invalid user wilmont from 159.203.41.58 port 55914	2020-03-29 07:56:31
104.211.216.173	attackbots	SSH brute force	2020-03-29 08:25:05
160.16.226.158	attackbots	22/tcp [2020-03-28]1pkt	2020-03-29 08:02:07
51.83.75.97	attackspambots	Mar 28 23:36:12 ns3164893 sshd[18529]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.75.97 Mar 28 23:36:14 ns3164893 sshd[18529]: Failed password for invalid user fisher from 51.83.75.97 port 39226 ssh2 ...	2020-03-29 08:17:01
46.38.145.4	attack	Mar 29 00:46:03 andromeda postfix/smtpd\[37181\]: warning: unknown\[46.38.145.4\]: SASL LOGIN authentication failed: authentication failure Mar 29 00:46:04 andromeda postfix/smtpd\[33809\]: warning: unknown\[46.38.145.4\]: SASL LOGIN authentication failed: authentication failure Mar 29 00:46:34 andromeda postfix/smtpd\[37189\]: warning: unknown\[46.38.145.4\]: SASL LOGIN authentication failed: authentication failure Mar 29 00:46:34 andromeda postfix/smtpd\[37181\]: warning: unknown\[46.38.145.4\]: SASL LOGIN authentication failed: authentication failure Mar 29 00:47:02 andromeda postfix/smtpd\[32105\]: warning: unknown\[46.38.145.4\]: SASL LOGIN authentication failed: authentication failure	2020-03-29 07:55:56
198.245.51.185	attack	Mar 29 00:10:54 ewelt sshd[32009]: Invalid user vaa from 198.245.51.185 port 51868 Mar 29 00:10:54 ewelt sshd[32009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.245.51.185 Mar 29 00:10:54 ewelt sshd[32009]: Invalid user vaa from 198.245.51.185 port 51868 Mar 29 00:10:55 ewelt sshd[32009]: Failed password for invalid user vaa from 198.245.51.185 port 51868 ssh2 ...	2020-03-29 07:54:11
118.24.14.18	attackbotsspam	Mar 29 00:19:53 pornomens sshd\[23174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.14.18 user=root Mar 29 00:19:55 pornomens sshd\[23174\]: Failed password for root from 118.24.14.18 port 55448 ssh2 Mar 29 00:24:17 pornomens sshd\[23229\]: Invalid user usuario from 118.24.14.18 port 47464 Mar 29 00:24:17 pornomens sshd\[23229\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.14.18 ...	2020-03-29 08:19:19

Recently Reported IPs

158.69.128.44	158.69.152.225	158.69.133.131	158.69.142.51
158.69.155.77	158.69.158.186	158.69.168.192	158.69.151.15
158.69.162.48	158.69.185.137	158.69.182.5	158.69.19.220
158.69.175.128	158.69.175.129	158.69.185.3	158.69.194.90
158.69.192.220	158.69.197.191	158.69.20.157	158.69.201.47