134.201.182.249

Basic Info

City: unknown

Region: unknown

Country: United States of America (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 134.201.182.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12505
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;134.201.182.249.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020302 1800 900 604800 86400

;; Query time: 39 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 13:18:05 CST 2025
;; MSG SIZE  rcvd: 108

Host info

Host 249.182.201.134.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 249.182.201.134.in-addr.arpa.: No answer

Authoritative answers can be found from:
201.134.in-addr.arpa
	origin = audrey.ns.cloudflare.com
	mail addr = dns.cloudflare.com
	serial = 2364103709
	refresh = 10000
	retry = 2400
	expire = 604800
	minimum = 1800

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.96.220.115	attack	2020-09-21T17:26:15.7291201495-001 sshd[50766]: Invalid user teamspeak from 103.96.220.115 port 53836 2020-09-21T17:26:17.9714131495-001 sshd[50766]: Failed password for invalid user teamspeak from 103.96.220.115 port 53836 ssh2 2020-09-21T17:31:15.5017041495-001 sshd[51031]: Invalid user scan from 103.96.220.115 port 41704 2020-09-21T17:31:15.5051591495-001 sshd[51031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.96.220.115 2020-09-21T17:31:15.5017041495-001 sshd[51031]: Invalid user scan from 103.96.220.115 port 41704 2020-09-21T17:31:16.9257011495-001 sshd[51031]: Failed password for invalid user scan from 103.96.220.115 port 41704 ssh2 ...	2020-09-22 06:13:05
185.108.164.151	attack	Automatic report - Port Scan Attack	2020-09-22 06:45:47
151.80.149.75	attackbotsspam	151.80.149.75 (FR/France/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 21 13:22:26 server5 sshd[21102]: Failed password for root from 151.80.149.75 port 36296 ssh2 Sep 21 13:20:08 server5 sshd[20037]: Failed password for root from 176.122.129.114 port 42016 ssh2 Sep 21 13:21:16 server5 sshd[20609]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.233.251.109 user=root Sep 21 13:21:18 server5 sshd[20609]: Failed password for root from 58.233.251.109 port 42416 ssh2 Sep 21 13:21:00 server5 sshd[20568]: Failed password for root from 111.229.222.118 port 44866 ssh2 Sep 21 13:20:58 server5 sshd[20568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.229.222.118 user=root IP Addresses Blocked:	2020-09-22 06:36:42
50.227.195.3	attackbots	Fail2Ban Ban Triggered	2020-09-22 06:34:37
72.167.222.102	attackspam	72.167.222.102 - - \[22/Sep/2020:00:16:15 +0200\] "POST /wp-login.php HTTP/1.0" 200 8660 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 72.167.222.102 - - \[22/Sep/2020:00:16:17 +0200\] "POST /wp-login.php HTTP/1.0" 200 8527 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 72.167.222.102 - - \[22/Sep/2020:00:16:19 +0200\] "POST /wp-login.php HTTP/1.0" 200 8523 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-22 06:32:08
67.205.144.31	attackbots	67.205.144.31 - - \[22/Sep/2020:00:35:25 +0200\] "POST /wp-login.php HTTP/1.0" 200 3152 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 67.205.144.31 - - \[22/Sep/2020:00:35:33 +0200\] "POST /wp-login.php HTTP/1.0" 200 3117 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 67.205.144.31 - - \[22/Sep/2020:00:35:34 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 748 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-22 06:44:01
213.92.200.123	attackspambots	Listed on zen-spamhaus also abuseat.org / proto=6 . srcport=2730 . dstport=80 . (3223)	2020-09-22 06:26:38
189.240.62.227	attack	Sep 21 21:54:47 marvibiene sshd[28071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.62.227 Sep 21 21:54:49 marvibiene sshd[28071]: Failed password for invalid user plex from 189.240.62.227 port 59850 ssh2 Sep 21 22:10:36 marvibiene sshd[29265]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.240.62.227	2020-09-22 06:33:20
218.92.0.250	attackbotsspam	Sep 21 18:23:06 NPSTNNYC01T sshd[8554]: Failed password for root from 218.92.0.250 port 14316 ssh2 Sep 21 18:23:09 NPSTNNYC01T sshd[8554]: Failed password for root from 218.92.0.250 port 14316 ssh2 Sep 21 18:23:12 NPSTNNYC01T sshd[8554]: Failed password for root from 218.92.0.250 port 14316 ssh2 Sep 21 18:23:16 NPSTNNYC01T sshd[8554]: Failed password for root from 218.92.0.250 port 14316 ssh2 ...	2020-09-22 06:29:38
177.37.143.116	attack	Automatic report - XMLRPC Attack	2020-09-22 06:17:37
46.32.252.149	attackspam	TCP (SYN) 46.32.252.149:59786 -> port 5478, len 44	2020-09-22 06:21:07
165.22.101.100	attackbotsspam	165.22.101.100 - - \[21/Sep/2020:23:20:09 +0200\] "POST /wp-login.php HTTP/1.0" 200 4128 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 165.22.101.100 - - \[21/Sep/2020:23:20:12 +0200\] "POST /wp-login.php HTTP/1.0" 200 3955 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 165.22.101.100 - - \[21/Sep/2020:23:20:13 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 736 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-09-22 06:17:53
112.85.42.87	attack	Sep 21 21:36:58 ip-172-31-42-142 sshd\[1053\]: Failed password for root from 112.85.42.87 port 32104 ssh2\ Sep 21 21:41:03 ip-172-31-42-142 sshd\[1207\]: Failed password for root from 112.85.42.87 port 49483 ssh2\ Sep 21 21:42:03 ip-172-31-42-142 sshd\[1235\]: Failed password for root from 112.85.42.87 port 34209 ssh2\ Sep 21 21:43:03 ip-172-31-42-142 sshd\[1239\]: Failed password for root from 112.85.42.87 port 14879 ssh2\ Sep 21 21:44:11 ip-172-31-42-142 sshd\[1246\]: Failed password for root from 112.85.42.87 port 61618 ssh2\	2020-09-22 06:22:15
45.137.22.90	attackbotsspam	Subject: 答复: 答复: Revised Invoice Date: 21 Sep 2020 11:25:‪27 -0700‬ Message ID: <20200921112527.158DBCFBB65E469C@transwellogistic.com> Virus/Unauthorized code: >>> Possible MalWare 'AVE/Heur.AdvML.B!200' found in '‪25511069‬_3X_AR_PA2__INVOICE.exe'.	2020-09-22 06:39:39
188.166.211.194	attack	SSH Brute Force	2020-09-22 06:45:15

Recently Reported IPs

189.250.78.206	49.141.203.208	180.200.152.9	13.171.139.37
163.241.46.128	84.24.49.27	27.244.143.95	145.7.42.192
211.114.235.45	253.244.153.206	207.26.78.49	50.161.122.207
18.196.161.13	114.64.104.201	207.126.125.236	156.73.106.212
49.197.8.98	53.107.80.238	142.20.15.124	16.232.107.85