Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: CenturyLink Communications LLC

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:
Type Details Datetime
attack
suspicious action Thu, 20 Feb 2020 10:27:28 -0300
2020-02-21 00:26:22
attack
Honeypot attack, port: 445, PTR: 69-147-154-42.arpa.kmcmail.net.
2020-01-13 21:41:54
attackspambots
Portscan or hack attempt detected by psad/fwsnort
2019-12-23 08:32:26
attackspam
Port Scan: TCP/445
2019-09-07 07:37:51
attack
Port Scan: TCP/445
2019-09-03 01:41:42
attackbots
445/tcp 445/tcp 445/tcp...
[2019-06-24/08-23]8pkt,1pt.(tcp)
2019-08-24 03:07:52
attack
445/tcp
[2019-06-24]1pkt
2019-06-25 05:58:43
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 69.147.154.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21904
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;69.147.154.42.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062401 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 25 05:58:38 CST 2019
;; MSG SIZE  rcvd: 117
Host info
42.154.147.69.in-addr.arpa domain name pointer 69-147-154-42.arpa.kmcmail.net.
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
42.154.147.69.in-addr.arpa	name = 69-147-154-42.arpa.kmcmail.net.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
182.232.46.189 attackspambots
Time:     Wed Oct  9 08:22:49 2019 -0300
IP:       182.232.46.189 (TH/Thailand/-)
Failures: 5 (smtpauth)
Interval: 3600 seconds
Blocked:  Permanent Block
2019-10-10 02:59:08
176.241.94.146 attack
proto=tcp  .  spt=55448  .  dpt=25  .     (Listed on    dnsbl-sorbs plus abuseat-org and barracuda)     (700)
2019-10-10 02:50:35
190.73.27.212 attackspambots
Unauthorized connection attempt from IP address 190.73.27.212 on Port 445(SMB)
2019-10-10 02:33:44
193.32.163.123 attackbots
Oct  9 17:09:18 thevastnessof sshd[27408]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.32.163.123
...
2019-10-10 02:44:58
51.255.171.51 attackbots
2019-10-09T14:03:27.546183abusebot.cloudsearch.cf sshd\[21397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.ip-51-255-171.eu  user=root
2019-10-10 02:45:54
67.207.162.163 spam
From: Steve [mailto:steve[@]kwikmat.com] 
Sent: Wednesday, October 9, 2019 11:33
To: *****
Subject: Logo Mat - USA

May I send you our new Logo-Doormats Price-List?

Thank you,
Steve Watson | Sales Manager
Custom-Logo-Mats
2019-10-10 03:04:40
14.157.14.39 attackspambots
IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/14.157.14.39/ 
 CN - 1H : (508)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : CN 
 NAME ASN : ASN4134 
 
 IP : 14.157.14.39 
 
 CIDR : 14.156.0.0/14 
 
 PREFIX COUNT : 5430 
 
 UNIQUE IP COUNT : 106919680 
 
 
 WYKRYTE ATAKI Z ASN4134 :  
  1H - 9 
  3H - 30 
  6H - 63 
 12H - 114 
 24H - 215 
 
 DateTime : 2019-10-09 14:12:09 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-10-10 02:57:21
14.190.124.87 attackspam
Unauthorized connection attempt from IP address 14.190.124.87 on Port 445(SMB)
2019-10-10 02:47:29
5.55.120.54 attackbots
IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/5.55.120.54/ 
 GR - 1H : (125)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : GR 
 NAME ASN : ASN3329 
 
 IP : 5.55.120.54 
 
 CIDR : 5.55.96.0/19 
 
 PREFIX COUNT : 167 
 
 UNIQUE IP COUNT : 788480 
 
 
 WYKRYTE ATAKI Z ASN3329 :  
  1H - 1 
  3H - 3 
  6H - 14 
 12H - 30 
 24H - 58 
 
 DateTime : 2019-10-09 13:30:41 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-10-10 02:32:39
159.203.201.120 attackbots
firewall-block, port(s): 32929/tcp
2019-10-10 02:55:45
46.225.240.122 attackspambots
proto=tcp  .  spt=40957  .  dpt=25  .     (Found on   Blocklist de  Oct 08)     (702)
2019-10-10 02:45:42
112.9.161.71 attackbots
IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/112.9.161.71/ 
 CN - 1H : (512)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : CN 
 NAME ASN : ASN24444 
 
 IP : 112.9.161.71 
 
 CIDR : 112.9.128.0/18 
 
 PREFIX COUNT : 1099 
 
 UNIQUE IP COUNT : 1999872 
 
 
 WYKRYTE ATAKI Z ASN24444 :  
  1H - 1 
  3H - 3 
  6H - 4 
 12H - 9 
 24H - 19 
 
 DateTime : 2019-10-09 13:30:41 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-10-10 02:31:16
190.140.205.9 attackbots
Automatic report - Port Scan Attack
2019-10-10 02:26:02
218.92.0.208 attack
2019-10-09T18:31:22.461344abusebot-7.cloudsearch.cf sshd\[25787\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.208  user=root
2019-10-10 02:42:43
177.93.79.18 attack
Oct  6 07:02:47 our-server-hostname postfix/smtpd[15942]: connect from unknown[177.93.79.18]
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct  6 07:02:54 our-server-hostname postfix/smtpd[15942]: lost connection after RCPT from unknown[177.93.79.18]
Oct  6 07:02:54 our-server-hostname postfix/smtpd[15942]: disconnect from unknown[177.93.79.18]
Oct  6 07:07:19 our-server-hostname postfix/smtpd[18749]: connect from unknown[177.93.79.18]
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct  6 07:07:34 our-server-hostname postfix/smtpd[18749]: too many errors after RCPT from unknown[177.93.79.18]
Oct  6 07:07:34 our-server-hostname postfix/smtpd[18749]: disconnect from unknown[177.93.79.18]
Oct  6 08:29:41 our-server-hostname postfix/smtpd[16329]: connect from unknown[177.93.79.18]
Oct x@x
Oct x@x
Oct x@x
Oct x@x
Oct  6 08:29:45 our-server-hostname postf........
-------------------------------
2019-10-10 02:59:29

Recently Reported IPs

195.9.31.221 192.82.65.131 187.10.211.207 181.111.246.2
188.82.43.187 188.79.24.81 188.78.187.167 188.76.80.55
169.177.114.100 188.76.61.21 115.117.110.14 104.111.106.77
198.69.38.145 158.137.15.142 26.96.239.241 126.148.165.24
208.133.188.119 197.16.54.111 168.109.158.104 226.41.33.27