133.242.2.148 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
133.242.231.162	attack	Oct 13 22:48:20 Server sshd[1276047]: Invalid user lukas from 133.242.231.162 port 44536 Oct 13 22:48:20 Server sshd[1276047]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 Oct 13 22:48:20 Server sshd[1276047]: Invalid user lukas from 133.242.231.162 port 44536 Oct 13 22:48:23 Server sshd[1276047]: Failed password for invalid user lukas from 133.242.231.162 port 44536 ssh2 Oct 13 22:49:14 Server sshd[1276142]: Invalid user martin from 133.242.231.162 port 57776 ...	2020-10-14 07:04:45
133.242.231.162	attackbotsspam	2020-10-08T13:37:03.099848paragon sshd[753977]: Failed password for root from 133.242.231.162 port 57130 ssh2 2020-10-08T13:38:22.420115paragon sshd[754010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 user=root 2020-10-08T13:38:23.847717paragon sshd[754010]: Failed password for root from 133.242.231.162 port 50770 ssh2 2020-10-08T13:39:46.685252paragon sshd[754039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 user=root 2020-10-08T13:39:48.644721paragon sshd[754039]: Failed password for root from 133.242.231.162 port 44402 ssh2 ...	2020-10-08 17:43:08
133.242.231.162	attack	Oct 5 18:05:39 nopemail auth.info sshd[16999]: Disconnected from authenticating user root 133.242.231.162 port 38094 [preauth] ...	2020-10-06 02:56:33
133.242.231.162	attackspambots	$f2bV_matches	2020-10-05 18:46:45
133.242.23.130	attack	Invalid user a from 133.242.23.130 port 33912	2020-09-30 00:23:01
133.242.231.162	attackbotsspam	Sep 27 00:35:30 localhost sshd[1337706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 user=root Sep 27 00:35:32 localhost sshd[1337706]: Failed password for root from 133.242.231.162 port 48640 ssh2 ...	2020-09-27 00:38:34
133.242.231.162	attackspambots	2020-09-26T03:42:07.372006mail.thespaminator.com sshd[27616]: Failed password for root from 133.242.231.162 port 46686 ssh2 2020-09-26T03:50:17.660760mail.thespaminator.com sshd[28600]: Invalid user veeam from 133.242.231.162 port 39328 ...	2020-09-26 16:28:15
133.242.231.162	attackspam	2020-09-19T06:24:49.848577abusebot-8.cloudsearch.cf sshd[30510]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 user=root 2020-09-19T06:24:51.925211abusebot-8.cloudsearch.cf sshd[30510]: Failed password for root from 133.242.231.162 port 60554 ssh2 2020-09-19T06:28:57.676819abusebot-8.cloudsearch.cf sshd[30742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 user=root 2020-09-19T06:28:59.131064abusebot-8.cloudsearch.cf sshd[30742]: Failed password for root from 133.242.231.162 port 44184 ssh2 2020-09-19T06:33:05.441193abusebot-8.cloudsearch.cf sshd[30855]: Invalid user deploy from 133.242.231.162 port 56038 2020-09-19T06:33:05.447114abusebot-8.cloudsearch.cf sshd[30855]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 2020-09-19T06:33:05.441193abusebot-8.cloudsearch.cf sshd[30855]: Invalid user deploy from 133.242.23 ...	2020-09-19 20:18:00
133.242.231.162	attack	Fail2Ban Ban Triggered	2020-09-19 12:14:21
133.242.231.162	attackbots	2020-09-18T19:00:38.675645dmca.cloudsearch.cf sshd[21275]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 user=root 2020-09-18T19:00:40.496300dmca.cloudsearch.cf sshd[21275]: Failed password for root from 133.242.231.162 port 42852 ssh2 2020-09-18T19:04:36.251663dmca.cloudsearch.cf sshd[21340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 user=root 2020-09-18T19:04:38.413286dmca.cloudsearch.cf sshd[21340]: Failed password for root from 133.242.231.162 port 52506 ssh2 2020-09-18T19:08:32.818790dmca.cloudsearch.cf sshd[21470]: Invalid user user4 from 133.242.231.162 port 33958 2020-09-18T19:08:32.824539dmca.cloudsearch.cf sshd[21470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 2020-09-18T19:08:32.818790dmca.cloudsearch.cf sshd[21470]: Invalid user user4 from 133.242.231.162 port 33958 2020-09-18T19:08:35.051414d ...	2020-09-19 03:52:56
133.242.231.162	attack	Aug 24 20:13:42 ip-172-31-16-56 sshd\[7732\]: Invalid user r from 133.242.231.162\ Aug 24 20:13:44 ip-172-31-16-56 sshd\[7732\]: Failed password for invalid user r from 133.242.231.162 port 37764 ssh2\ Aug 24 20:14:56 ip-172-31-16-56 sshd\[7750\]: Invalid user vbox from 133.242.231.162\ Aug 24 20:14:58 ip-172-31-16-56 sshd\[7750\]: Failed password for invalid user vbox from 133.242.231.162 port 56146 ssh2\ Aug 24 20:16:09 ip-172-31-16-56 sshd\[7781\]: Invalid user test1 from 133.242.231.162\	2020-08-25 04:35:17
133.242.231.162	attackspambots	(sshd) Failed SSH login from 133.242.231.162 (JP/Japan/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 21 23:17:18 amsweb01 sshd[13036]: Invalid user sandy from 133.242.231.162 port 54654 Jul 21 23:17:20 amsweb01 sshd[13036]: Failed password for invalid user sandy from 133.242.231.162 port 54654 ssh2 Jul 21 23:28:54 amsweb01 sshd[15223]: Invalid user mc from 133.242.231.162 port 43274 Jul 21 23:28:56 amsweb01 sshd[15223]: Failed password for invalid user mc from 133.242.231.162 port 43274 ssh2 Jul 21 23:33:01 amsweb01 sshd[16139]: Invalid user ftpuser from 133.242.231.162 port 57200	2020-07-22 07:06:45
133.242.231.162	attackbots	Jul 18 04:55:07 hidden sshd[28344]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 Jul 18 04:55:08 hidden sshd[28344]: Failed password for invalid user admin from 133.242.231.162 port 49610 ssh2 Jul 18 05:04:04 hidden sshd[29846]: Invalid user mx from 133.242.231.162 port 37338	2020-07-19 21:26:54
133.242.231.162	attack	Jul 11 05:50:25 vps sshd[574715]: Failed password for invalid user jaci from 133.242.231.162 port 34350 ssh2 Jul 11 05:53:04 vps sshd[584927]: Invalid user de from 133.242.231.162 port 47976 Jul 11 05:53:04 vps sshd[584927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=133.242.231.162 Jul 11 05:53:06 vps sshd[584927]: Failed password for invalid user de from 133.242.231.162 port 47976 ssh2 Jul 11 05:55:40 vps sshd[598948]: Invalid user don from 133.242.231.162 port 33360 ...	2020-07-11 14:10:50
133.242.231.162	attack	Multiple SSH authentication failures from 133.242.231.162	2020-07-01 02:20:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 133.242.2.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48670
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;133.242.2.148.			IN	A

;; AUTHORITY SECTION:
.			292	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 06:38:48 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 148.2.242.133.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.2.242.133.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.211.249.177	attack	Oct 4 14:26:01 vps647732 sshd[13954]: Failed password for root from 80.211.249.177 port 41462 ssh2 ...	2019-10-04 20:30:33
217.61.5.122	attackbots	Oct 4 02:41:21 web9 sshd\[30058\]: Invalid user Losenord1q from 217.61.5.122 Oct 4 02:41:21 web9 sshd\[30058\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.5.122 Oct 4 02:41:23 web9 sshd\[30058\]: Failed password for invalid user Losenord1q from 217.61.5.122 port 60230 ssh2 Oct 4 02:45:34 web9 sshd\[30576\]: Invalid user Motdepasse_!@\# from 217.61.5.122 Oct 4 02:45:34 web9 sshd\[30576\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.61.5.122	2019-10-04 20:59:25
106.12.83.210	attackbots	Oct 4 07:03:19 www sshd\[225909\]: Invalid user 123@Pass from 106.12.83.210 Oct 4 07:03:19 www sshd\[225909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.83.210 Oct 4 07:03:20 www sshd\[225909\]: Failed password for invalid user 123@Pass from 106.12.83.210 port 44256 ssh2 ...	2019-10-04 20:16:50
202.185.154.166	attackspam	Oct 4 05:47:06 MK-Soft-VM5 sshd[27350]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.185.154.166 Oct 4 05:47:08 MK-Soft-VM5 sshd[27350]: Failed password for invalid user admin from 202.185.154.166 port 47512 ssh2 ...	2019-10-04 20:21:20
81.30.215.23	attackbots	postfix (unknown user, SPF fail or relay access denied)	2019-10-04 20:41:21
177.17.206.8	attack	WordPress wp-login brute force :: 177.17.206.8 0.128 BYPASS [04/Oct/2019:22:29:45 1000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-04 20:35:33
211.159.152.252	attackspambots	Invalid user export from 211.159.152.252 port 29737	2019-10-04 20:20:52
197.61.110.8	attackspambots	Unauthorised access (Oct 4) SRC=197.61.110.8 LEN=40 TTL=50 ID=54706 TCP DPT=23 WINDOW=38197 SYN	2019-10-04 20:52:45
49.88.112.90	attackspam	Oct 4 14:25:57 rotator sshd\[15766\]: Failed password for root from 49.88.112.90 port 26058 ssh2Oct 4 14:25:59 rotator sshd\[15766\]: Failed password for root from 49.88.112.90 port 26058 ssh2Oct 4 14:26:01 rotator sshd\[15766\]: Failed password for root from 49.88.112.90 port 26058 ssh2Oct 4 14:31:41 rotator sshd\[16674\]: Failed password for root from 49.88.112.90 port 21529 ssh2Oct 4 14:31:43 rotator sshd\[16674\]: Failed password for root from 49.88.112.90 port 21529 ssh2Oct 4 14:31:45 rotator sshd\[16674\]: Failed password for root from 49.88.112.90 port 21529 ssh2 ...	2019-10-04 20:34:15
161.117.181.251	attackbots	Oct 4 14:22:12 meumeu sshd[19219]: Failed password for root from 161.117.181.251 port 36628 ssh2 Oct 4 14:25:58 meumeu sshd[19772]: Failed password for root from 161.117.181.251 port 45044 ssh2 ...	2019-10-04 20:43:51
114.97.221.142	attack	Unauthorised access (Oct 4) SRC=114.97.221.142 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=12160 TCP DPT=8080 WINDOW=4085 SYN Unauthorised access (Oct 4) SRC=114.97.221.142 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=6312 TCP DPT=8080 WINDOW=38669 SYN Unauthorised access (Oct 3) SRC=114.97.221.142 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=39892 TCP DPT=8080 WINDOW=59626 SYN	2019-10-04 20:53:16
185.153.197.251	attackbots	VNC	2019-10-04 20:44:41
104.200.110.184	attackspam	$f2bV_matches	2019-10-04 20:50:08
144.217.193.111	attackspambots	Oct 4 05:47:08 h2177944 kernel: \[3036984.967684\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=144.217.193.111 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=114 ID=23280 DF PROTO=TCP SPT=62907 DPT=8080 WINDOW=8192 RES=0x00 SYN URGP=0 Oct 4 05:47:08 h2177944 kernel: \[3036984.967937\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=144.217.193.111 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=113 ID=23278 DF PROTO=TCP SPT=62905 DPT=81 WINDOW=8192 RES=0x00 SYN URGP=0 Oct 4 05:47:08 h2177944 kernel: \[3036984.968336\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=144.217.193.111 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=113 ID=23279 DF PROTO=TCP SPT=62906 DPT=8888 WINDOW=8192 RES=0x00 SYN URGP=0 Oct 4 05:47:08 h2177944 kernel: \[3036984.968601\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=144.217.193.111 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=114 ID=23281 DF PROTO=TCP SPT=62908 DPT=8081 WINDOW=8192 RES=0x00 SYN URGP=0 Oct 4 05:47:08 h2177944 kernel: \[3036984.972053\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=144.217.193.	2019-10-04 20:21:45
201.174.46.234	attack	web-1 [ssh_2] SSH Attack	2019-10-04 20:56:42

Recently Reported IPs

133.242.195.147	133.242.197.187	133.242.21.223	133.242.2.146
133.242.214.252	133.242.23.215	133.242.249.17	133.242.23.232
133.242.23.125	133.242.28.171	133.242.48.208	133.242.76.228
133.242.8.78	133.48.193.1	134.0.10.121	134.0.10.146
134.0.113.210	134.0.10.21	134.0.112.195	134.0.116.211