104.47.109.149

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.47.109.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41162
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.47.109.149.			IN	A

;; AUTHORITY SECTION:
.			118	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021301 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 06:30:58 CST 2022
;; MSG SIZE  rcvd: 107

Host info

149.109.47.104.in-addr.arpa domain name pointer mail-ps2kor01olkn0149.outbound.protection.outlook.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.109.47.104.in-addr.arpa	name = mail-ps2kor01olkn0149.outbound.protection.outlook.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
149.56.12.88	attackbots	May 27 02:07:21 web1 sshd\[2264\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.12.88 user=root May 27 02:07:24 web1 sshd\[2264\]: Failed password for root from 149.56.12.88 port 50910 ssh2 May 27 02:10:51 web1 sshd\[2572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.12.88 user=root May 27 02:10:53 web1 sshd\[2572\]: Failed password for root from 149.56.12.88 port 56088 ssh2 May 27 02:14:23 web1 sshd\[2862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.12.88 user=root	2020-05-27 20:44:02
81.182.249.106	attackspam	May 27 13:44:27 sip sshd[909]: Failed password for root from 81.182.249.106 port 52172 ssh2 May 27 14:06:03 sip sshd[8777]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.182.249.106 May 27 14:06:05 sip sshd[8777]: Failed password for invalid user ftp_user from 81.182.249.106 port 52022 ssh2	2020-05-27 20:19:43
46.12.13.119	attackbots	May 27 13:57:44 debian-2gb-nbg1-2 kernel: \[12839458.819301\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=46.12.13.119 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=23779 DF PROTO=TCP SPT=13305 DPT=8080 WINDOW=14600 RES=0x00 SYN URGP=0	2020-05-27 20:14:35
185.156.73.64	attack	May 27 07:57:39 Host-KEWR-E postfix/submission/smtpd[3507]: lost connection after STARTTLS from unknown[185.156.73.64] ...	2020-05-27 20:18:21
110.8.67.146	attackbots	May 27 08:53:03 firewall sshd[9393]: Invalid user web from 110.8.67.146 May 27 08:53:05 firewall sshd[9393]: Failed password for invalid user web from 110.8.67.146 port 51022 ssh2 May 27 08:57:09 firewall sshd[9552]: Invalid user guest from 110.8.67.146 ...	2020-05-27 20:38:06
101.187.123.101	attackbots	bruteforce detected	2020-05-27 20:10:27
160.16.237.110	attackbotsspam	Automatic report - XMLRPC Attack	2020-05-27 20:11:15
189.41.4.9	attack	SSH login tried and failed	2020-05-27 20:29:59
106.12.54.25	attackspam	May 27 11:55:15 ws26vmsma01 sshd[105071]: Failed password for root from 106.12.54.25 port 46268 ssh2 ...	2020-05-27 20:39:19
203.206.205.179	attack	prod11 ...	2020-05-27 20:29:36
168.63.151.21	attackbots	Invalid user schoolman from 168.63.151.21 port 59670	2020-05-27 20:35:50
117.6.97.138	attackspam	May 27 14:08:58 h2779839 sshd[14932]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.6.97.138 user=root May 27 14:09:00 h2779839 sshd[14932]: Failed password for root from 117.6.97.138 port 20853 ssh2 May 27 14:11:16 h2779839 sshd[15023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.6.97.138 user=root May 27 14:11:17 h2779839 sshd[15023]: Failed password for root from 117.6.97.138 port 19525 ssh2 May 27 14:13:41 h2779839 sshd[15043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.6.97.138 user=root May 27 14:13:43 h2779839 sshd[15043]: Failed password for root from 117.6.97.138 port 10252 ssh2 May 27 14:16:01 h2779839 sshd[15089]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.6.97.138 user=root May 27 14:16:03 h2779839 sshd[15089]: Failed password for root from 117.6.97.138 port 5732 ssh2 May 27 14:18: ...	2020-05-27 20:28:34
132.232.66.238	attack	2020-05-27T15:01:37.105517lavrinenko.info sshd[26078]: Failed password for root from 132.232.66.238 port 43306 ssh2 2020-05-27T15:05:05.938796lavrinenko.info sshd[26204]: Invalid user www from 132.232.66.238 port 56230 2020-05-27T15:05:05.944965lavrinenko.info sshd[26204]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.66.238 2020-05-27T15:05:05.938796lavrinenko.info sshd[26204]: Invalid user www from 132.232.66.238 port 56230 2020-05-27T15:05:07.700967lavrinenko.info sshd[26204]: Failed password for invalid user www from 132.232.66.238 port 56230 ssh2 ...	2020-05-27 20:13:04
106.75.63.218	attackbots	May 27 13:57:46 debian-2gb-nbg1-2 kernel: \[12839461.014429\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=106.75.63.218 DST=195.201.40.59 LEN=41 TOS=0x00 PREC=0x00 TTL=237 ID=45081 PROTO=UDP SPT=58914 DPT=5050 LEN=21	2020-05-27 20:11:36
139.219.5.244	attack	139.219.5.244 - - [27/May/2020:14:27:21 +0200] "POST /wp-login.php HTTP/1.1" 200 6070 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 139.219.5.244 - - [27/May/2020:14:27:23 +0200] "POST /wp-login.php HTTP/1.1" 200 6070 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 139.219.5.244 - - [27/May/2020:14:27:25 +0200] "POST /wp-login.php HTTP/1.1" 200 6070 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 139.219.5.244 - - [27/May/2020:14:27:29 +0200] "POST /wp-login.php HTTP/1.1" 200 6070 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 139.219.5.244 - - [27/May/2020:14:27:33 +0200] "POST /wp-login.php HTTP/1.1" 200 6070 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safar ...	2020-05-27 20:34:15

Recently Reported IPs

104.35.244.11	104.51.45.137	105.100.12.78	105.101.23.179
105.101.234.189	105.102.246.231	105.102.160.8	105.104.127.148
105.104.16.92	105.107.35.77	105.104.176.199	105.105.13.196
105.110.143.7	38.51.100.104	105.112.10.90	105.112.125.45
105.112.209.27	105.112.27.219	105.112.34.96	105.112.38.11