135.199.148.200

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#


NetRange:       135.197.0.0 - 135.208.255.255
CIDR:           135.198.0.0/15, 135.197.0.0/16, 135.200.0.0/13, 135.208.0.0/16
NetName:        ATT-135-197-219-B
NetHandle:      NET-135-197-0-0-1
Parent:         NET135 (NET-135-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   AT&T Services, Inc. (ATTSE-Z)
RegDate:        1996-04-30
Updated:        2012-04-02
Ref:            https://rdap.arin.net/registry/ip/135.197.0.0


OrgName:        AT&T Services, Inc.
OrgId:          ATTSE-Z
Address:        Enterprise IP Group
Address:        c/o Ed Williams
Address:        240 N Meridian Street
Address:        Room 280
City:           Indianapolis
StateProv:      IN
PostalCode:     46204
Country:        US
RegDate:        2009-01-30
Updated:        2024-07-30
Comment:        http://www.att.com
Ref:            https://rdap.arin.net/registry/entity/ATTSE-Z


OrgTechHandle: WILLI576-ARIN
OrgTechName:   Williams, Ed 
OrgTechPhone:  +1-317-265-0000 
OrgTechEmail:  ew2497@att.com
OrgTechRef:    https://rdap.arin.net/registry/entity/WILLI576-ARIN

OrgRoutingHandle: ROUTI59-ARIN
OrgRoutingName:   Routing POC
OrgRoutingPhone:  +1-999-999-9999 
OrgRoutingEmail:  DL-routing_poc@att.com
OrgRoutingRef:    https://rdap.arin.net/registry/entity/ROUTI59-ARIN

OrgAbuseHandle: ABUSE7-ARIN
OrgAbuseName:   abuse
OrgAbusePhone:  +1-919-319-8167 
OrgAbuseEmail:  abuse@att.net
OrgAbuseRef:    https://rdap.arin.net/registry/entity/ABUSE7-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 135.199.148.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4786
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;135.199.148.200.		IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2026031300 1800 900 604800 86400

;; Query time: 32 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Mar 14 00:16:06 CST 2026
;; MSG SIZE  rcvd: 108

Host info

200.148.199.135.in-addr.arpa domain name pointer nothing.attdns.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
200.148.199.135.in-addr.arpa	name = nothing.attdns.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
180.76.161.203	attack	Sep 30 02:41:14 pve1 sshd[27961]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.161.203 Sep 30 02:41:17 pve1 sshd[27961]: Failed password for invalid user test from 180.76.161.203 port 57284 ssh2 ...	2020-09-30 22:14:00
185.175.93.14	attack	TCP (SYN) 185.175.93.14:58142 -> port 5589, len 44	2020-09-30 22:06:38
85.209.0.150	attackspambots	Sep 30 04:37:28 doubuntu sshd[2544]: Did not receive identification string from 85.209.0.150 port 40820 Sep 30 04:37:33 doubuntu sshd[2547]: Connection closed by authenticating user root 85.209.0.150 port 63176 [preauth] Sep 30 04:37:33 doubuntu sshd[2548]: Connection closed by authenticating user root 85.209.0.150 port 49902 [preauth] ...	2020-09-30 22:40:58
195.191.12.33	attackbotsspam	Port Scan detected! ...	2020-09-30 22:29:49
80.28.187.29	attack	Port probing on unauthorized port 5555	2020-09-30 22:31:34
101.200.219.18	attackbots	Tried our host z.	2020-09-30 22:40:25
27.213.115.223	attackbotsspam	[Tue Sep 29 17:37:42.048404 2020] [:error] [pid 28911] [client 27.213.115.223:35261] [client 27.213.115.223] ModSecurity: Access denied with code 403 (phase 2). Operator GE matched 5 at TX:anomaly_score. [file "/usr/share/modsecurity-crs/rules/REQUEST-949-BLOCKING-EVALUATION.conf"] [line "91"] [id "949110"] [msg "Inbound Anomaly Score Exceeded (Total Score: 18)"] [severity "CRITICAL"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-generic"] [hostname "ws24vmsma01.ufn.edu.br"] [uri "/setup.cgi"] [unique_id "X3ObE9ZaOH@pgElFETkfmQAAAAU"] ...	2020-09-30 22:33:37
41.184.36.6	attackspam	Sep 30 15:19:05 vm1 sshd[22991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.184.36.6 Sep 30 15:19:07 vm1 sshd[22991]: Failed password for invalid user student from 41.184.36.6 port 51626 ssh2 ...	2020-09-30 22:04:05
59.124.90.113	attackbotsspam	port scan	2020-09-30 22:09:49
106.13.233.4	attackspambots	$f2bV_matches	2020-09-30 22:25:52
78.56.181.30	attackspambots	Attempting to access Wordpress login on a honeypot or private system.	2020-09-30 22:15:34
115.134.128.90	attackspambots	Scanned 3 times in the last 24 hours on port 22	2020-09-30 22:40:01
157.245.243.236	attack	Sep 30 09:25:50 mavik sshd[14748]: Invalid user t3rr0r from 157.245.243.236 Sep 30 09:25:50 mavik sshd[14748]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.243.236 Sep 30 09:25:52 mavik sshd[14748]: Failed password for invalid user t3rr0r from 157.245.243.236 port 38580 ssh2 Sep 30 09:29:26 mavik sshd[14879]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.243.236 user=root Sep 30 09:29:28 mavik sshd[14879]: Failed password for root from 157.245.243.236 port 47604 ssh2 ...	2020-09-30 22:33:10
161.35.232.146	attack	161.35.232.146 - - [30/Sep/2020:13:27:54 +0100] "POST /wp-login.php HTTP/1.1" 200 2862 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 161.35.232.146 - - [30/Sep/2020:13:27:56 +0100] "POST /wp-login.php HTTP/1.1" 200 2831 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 161.35.232.146 - - [30/Sep/2020:13:27:58 +0100] "POST /wp-login.php HTTP/1.1" 200 2787 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-30 22:03:20
174.138.27.165	attack	Sep 30 13:54:09 gospond sshd[5074]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=174.138.27.165 Sep 30 13:54:09 gospond sshd[5074]: Invalid user sales from 174.138.27.165 port 34120 Sep 30 13:54:11 gospond sshd[5074]: Failed password for invalid user sales from 174.138.27.165 port 34120 ssh2 ...	2020-09-30 22:28:55

Recently Reported IPs

2409:8963:f90:3b6:cd78:a7e9:8ba2:598f	163.0.63.126	5.133.192.171	117.247.90.135
10.7.7.2	108.247.217.130	97.72.8.172	104.199.20.126
68.183.224.169	185.12.251.124	5.133.192.203	39.74.29.118
172.202.118.18	135.199.148.161	104.28.246.117	192.220.248.224
86.54.31.38	188.214.144.135	34.135.46.143	152.42.170.168