175.149.5.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
175.149.50.11	attack	Automatic report - Port Scan Attack	2020-07-31 14:52:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 175.149.5.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10276
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;175.149.5.142.			IN	A

;; AUTHORITY SECTION:
.			429	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030701 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 08 05:30:34 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 142.5.149.175.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 142.5.149.175.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.65.34.82	attack	Jul 18 18:09:14 bouncer sshd\[28459\]: Invalid user steam from 159.65.34.82 port 45640 Jul 18 18:09:14 bouncer sshd\[28459\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.34.82 Jul 18 18:09:16 bouncer sshd\[28459\]: Failed password for invalid user steam from 159.65.34.82 port 45640 ssh2 ...	2019-07-19 00:45:17
89.106.107.86	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-19 01:23:22
200.122.249.203	attack	Jul 18 17:18:21 mail sshd\[7131\]: Invalid user lb from 200.122.249.203 port 40001 Jul 18 17:18:21 mail sshd\[7131\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.122.249.203 Jul 18 17:18:23 mail sshd\[7131\]: Failed password for invalid user lb from 200.122.249.203 port 40001 ssh2 Jul 18 17:23:43 mail sshd\[7177\]: Invalid user agenda from 200.122.249.203 port 38343 Jul 18 17:23:43 mail sshd\[7177\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.122.249.203 ...	2019-07-19 01:29:30
181.223.213.28	attackbotsspam	SSH Brute Force, server-1 sshd[14656]: Failed password for invalid user henry from 181.223.213.28 port 57718 ssh2	2019-07-19 01:32:17
14.233.147.174	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 02:10:52,095 INFO [shellcode_manager] (14.233.147.174) no match, writing hexdump (f98f09f402e4de6a98740d8ea6039ff9 :2251545) - MS17010 (EternalBlue)	2019-07-19 00:47:01
90.150.204.194	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-19 00:43:09
81.214.55.142	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-18 11:45:07,901 INFO [amun_request_handler] PortScan Detected on Port: 445 (81.214.55.142)	2019-07-19 01:24:54
93.174.93.191	attackbots	Honeypot attack, port: 5555, PTR: no-reverse-dns-configured.com.	2019-07-19 00:45:55
177.80.228.203	attackspambots	Honeypot attack, port: 23, PTR: b150e4cb.virtua.com.br.	2019-07-19 00:27:05
14.252.183.168	attack	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2019-07-19 00:22:50
178.149.114.79	attackbots	SSH Brute Force, server-1 sshd[7134]: Failed password for invalid user kw from 178.149.114.79 port 35254 ssh2	2019-07-19 01:33:30
186.201.123.202	attackspam	Jul 18 06:53:12 localhost kernel: [14691386.099548] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=186.201.123.202 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=244 ID=35456 PROTO=TCP SPT=52801 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 18 06:53:12 localhost kernel: [14691386.099587] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=186.201.123.202 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=244 ID=35456 PROTO=TCP SPT=52801 DPT=445 SEQ=51571523 ACK=0 WINDOW=1024 RES=0x00 SYN URGP=0 OPT (02040218) Jul 18 06:53:12 localhost kernel: [14691386.108202] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=186.201.123.202 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=245 ID=35456 PROTO=TCP SPT=52801 DPT=445 WINDOW=1024 RES=0x00 SYN URGP=0 Jul 18 06:53:12 localhost kernel: [14691386.108214] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=186.201.123.202 DST=[mungedIP2	2019-07-19 01:02:21
201.210.149.75	attackspam	Unauthorised access (Jul 18) SRC=201.210.149.75 LEN=52 TTL=116 ID=18371 DF TCP DPT=445 WINDOW=8192 SYN	2019-07-19 01:05:47
197.51.99.146	attackbots	Telnet Server BruteForce Attack	2019-07-19 00:26:11
89.239.207.109	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-19 01:00:16

Recently Reported IPs

104.226.215.33	126.56.158.23	61.84.223.39	64.148.57.108
208.197.68.222	187.170.165.110	89.64.156.168	178.154.171.143
60.9.117.190	66.44.152.189	106.108.91.17	212.10.49.220
218.57.55.84	129.170.154.177	191.175.12.9	100.188.185.49
190.114.146.98	160.40.68.33	72.11.165.93	71.166.168.57