91.142.149.164

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 91.142.149.164
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31725
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;91.142.149.164.			IN	A

;; AUTHORITY SECTION:
.			544	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072401 1800 900 604800 86400

;; Query time: 159 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 25 09:56:45 CST 2019
;; MSG SIZE  rcvd: 118

Host info

164.149.142.91.in-addr.arpa domain name pointer 164.149.142.91.sub.tsl.ru.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
164.149.142.91.in-addr.arpa	name = 164.149.142.91.sub.tsl.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.110.66.66	attackspambots	Brute%20Force%20SSH	2020-09-06 19:13:38
192.144.188.237	attack	192.144.188.237 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 5 20:16:15 server4 sshd[20725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.68.231 user=root Sep 5 20:15:07 server4 sshd[19931]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.188.237 user=root Sep 5 20:15:10 server4 sshd[19931]: Failed password for root from 192.144.188.237 port 37538 ssh2 Sep 5 20:15:11 server4 sshd[19940]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.204.137 user=root Sep 5 20:15:12 server4 sshd[19940]: Failed password for root from 111.67.204.137 port 37502 ssh2 Sep 5 20:15:58 server4 sshd[20280]: Failed password for root from 165.227.66.224 port 50118 ssh2 IP Addresses Blocked: 81.68.68.231 (CN/China/-)	2020-09-06 19:11:41
110.49.70.243	attackbots	fail2ban/Sep 6 08:51:43 h1962932 sshd[29007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.70.243 user=root Sep 6 08:51:45 h1962932 sshd[29007]: Failed password for root from 110.49.70.243 port 43341 ssh2 Sep 6 08:56:17 h1962932 sshd[29115]: Invalid user sakseid from 110.49.70.243 port 17894 Sep 6 08:56:17 h1962932 sshd[29115]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.49.70.243 Sep 6 08:56:17 h1962932 sshd[29115]: Invalid user sakseid from 110.49.70.243 port 17894 Sep 6 08:56:18 h1962932 sshd[29115]: Failed password for invalid user sakseid from 110.49.70.243 port 17894 ssh2	2020-09-06 19:34:49
90.148.221.175	attackspambots	1599324083 - 09/05/2020 18:41:23 Host: 90.148.221.175/90.148.221.175 Port: 445 TCP Blocked	2020-09-06 19:33:35
163.44.168.207	attackspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-09-06 19:40:22
35.247.205.154	attackspambots	Sep 6 10:59:55 root sshd[6579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.247.205.154 ...	2020-09-06 19:28:35
46.229.168.143	attackspam	[Sat Sep 05 23:41:14.031663 2020] [:error] [pid 23059:tid 140327520270080] [client 46.229.168.143:45324] [client 46.229.168.143] ModSecurity: Access denied with code 403 (phase 2). Pattern match "((?:[~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>][^~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>]*?){12})" at ARGS:id. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "1255"] [id "942430"] [msg "Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (12)"] [data "Matched Data: :prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal- found within ARGS:id: 555555659:prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan-berlaku-tanggal-26-april-02-mei-2017"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi ...	2020-09-06 19:41:36
178.67.193.255	attackspam	1599324063 - 09/05/2020 18:41:03 Host: 178.67.193.255/178.67.193.255 Port: 445 TCP Blocked	2020-09-06 19:45:50
112.104.18.27	attackbots	Honeypot attack, port: 445, PTR: 112-104-18-27.adsl.dynamic.seed.net.tw.	2020-09-06 19:24:16
85.56.100.46	attackspambots	85.56.100.46 - - \[05/Sep/2020:20:09:53 +0300\] "POST /xmlrpc.php HTTP/1.1" 503 18215 "-" "Mozilla/4.0 $compatible\; MSIE 6.0\; Windows NT 5.0$" "-" 85.56.100.46 - - \[05/Sep/2020:20:14:00 +0300\] "POST /xmlrpc.php HTTP/1.1" 503 18033 "-" "Mozilla/4.0 $compatible\; MSIE 6.0\; Windows NT 5.0$" "-" ...	2020-09-06 19:39:12
103.205.180.57	attack	TCP (SYN) 103.205.180.57:45205 -> port 1433, len 44	2020-09-06 19:52:56
122.51.167.43	attack	Sep 6 09:39:53 fhem-rasp sshd[20698]: Failed password for root from 122.51.167.43 port 59428 ssh2 Sep 6 09:39:53 fhem-rasp sshd[20698]: Disconnected from authenticating user root 122.51.167.43 port 59428 [preauth] ...	2020-09-06 19:23:14
188.165.169.238	attackbots	Sep 6 11:13:22 inter-technics sshd[23275]: Invalid user asiforis from 188.165.169.238 port 58546 Sep 6 11:13:22 inter-technics sshd[23275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.169.238 Sep 6 11:13:22 inter-technics sshd[23275]: Invalid user asiforis from 188.165.169.238 port 58546 Sep 6 11:13:24 inter-technics sshd[23275]: Failed password for invalid user asiforis from 188.165.169.238 port 58546 ssh2 Sep 6 11:16:45 inter-technics sshd[23515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.169.238 user=root Sep 6 11:16:47 inter-technics sshd[23515]: Failed password for root from 188.165.169.238 port 34818 ssh2 ...	2020-09-06 19:20:59
193.169.254.109	attackspambots	Sep 5 16:31:15 mail postfix/smtpd[20931]: warning: unknown[193.169.254.109]: SASL LOGIN authentication failed: generic failure Sep 5 16:36:13 mail postfix/smtpd[21005]: warning: unknown[193.169.254.109]: SASL LOGIN authentication failed: generic failure Sep 5 16:41:12 mail postfix/smtpd[21111]: warning: unknown[193.169.254.109]: SASL LOGIN authentication failed: generic failure ...	2020-09-06 19:41:57
45.148.9.160	attackbots	e-mail spam	2020-09-06 19:15:13

Recently Reported IPs

177.98.185.202	168.232.152.83	165.255.134.24	42.128.165.18
144.217.254.34	137.25.208.20	12.123.56.19	100.157.241.68
90.191.68.17	123.19.18.247	194.187.37.189	111.76.152.112
11.37.237.63	110.72.55.7	93.214.150.91	55.3.61.171
192.118.110.255	165.123.193.31	27.49.122.192	125.92.227.250