141.237.48.152

Basic Info

City: unknown

Region: unknown

Country: Greece

Internet Service Provider: Vodafone-Panafon Hellenic Telecommunications Company SA

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Telnet Server BruteForce Attack	2019-12-13 20:42:57

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.237.48.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57976
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;141.237.48.152.			IN	A

;; AUTHORITY SECTION:
.			449	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121300 1800 900 604800 86400

;; Query time: 107 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 13 20:42:49 CST 2019
;; MSG SIZE  rcvd: 118

Host info

152.48.237.141.in-addr.arpa domain name pointer ppp141237048152.access.hol.gr.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
152.48.237.141.in-addr.arpa	name = ppp141237048152.access.hol.gr.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.155.5.132	attackbots	Sep 14 20:55:45 hpm sshd\[30761\]: Invalid user albrecht from 139.155.5.132 Sep 14 20:55:45 hpm sshd\[30761\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.5.132 Sep 14 20:55:47 hpm sshd\[30761\]: Failed password for invalid user albrecht from 139.155.5.132 port 35840 ssh2 Sep 14 21:00:12 hpm sshd\[31152\]: Invalid user iw from 139.155.5.132 Sep 14 21:00:12 hpm sshd\[31152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.155.5.132	2019-09-15 16:37:17
217.65.89.62	attack	[portscan] Port scan	2019-09-15 16:45:39
78.148.242.111	attackspambots	GB - 1H : (44) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : GB NAME ASN : ASN13285 IP : 78.148.242.111 CIDR : 78.148.0.0/14 PREFIX COUNT : 35 UNIQUE IP COUNT : 3565824 WYKRYTE ATAKI Z ASN13285 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 5 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-09-15 16:56:35
37.52.9.242	attack	Sep 15 06:56:14 MK-Soft-Root2 sshd\[27704\]: Invalid user 666666 from 37.52.9.242 port 44134 Sep 15 06:56:14 MK-Soft-Root2 sshd\[27704\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.52.9.242 Sep 15 06:56:16 MK-Soft-Root2 sshd\[27704\]: Failed password for invalid user 666666 from 37.52.9.242 port 44134 ssh2 ...	2019-09-15 17:00:11
167.71.203.148	attackbots	2019-09-15T04:15:04.615272abusebot-5.cloudsearch.cf sshd\[21050\]: Invalid user server from 167.71.203.148 port 35080	2019-09-15 16:46:17
218.249.154.130	attackbotsspam	2019-09-15T08:53:47.284370abusebot-2.cloudsearch.cf sshd\[18650\]: Invalid user password123 from 218.249.154.130 port 58595	2019-09-15 16:53:56
164.132.74.78	attackspam	Reported by AbuseIPDB proxy server.	2019-09-15 17:15:14
154.66.196.32	attackbots	Sep 15 07:14:01 lnxded64 sshd[6476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.66.196.32 Sep 15 07:14:01 lnxded64 sshd[6476]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.66.196.32	2019-09-15 16:36:21
106.12.76.91	attackspambots	Invalid user ftptest from 106.12.76.91 port 40652	2019-09-15 16:55:36
181.29.211.17	attackspam	Sep 15 00:28:50 h2022099 sshd[15137]: reveeclipse mapping checking getaddrinfo for 17-211-29-181.fibertel.com.ar [181.29.211.17] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 15 00:28:50 h2022099 sshd[15137]: Invalid user users from 181.29.211.17 Sep 15 00:28:50 h2022099 sshd[15137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.29.211.17 Sep 15 00:28:52 h2022099 sshd[15137]: Failed password for invalid user users from 181.29.211.17 port 32789 ssh2 Sep 15 00:28:52 h2022099 sshd[15137]: Received disconnect from 181.29.211.17: 11: Bye Bye [preauth] Sep 15 00:36:49 h2022099 sshd[16477]: reveeclipse mapping checking getaddrinfo for 17-211-29-181.fibertel.com.ar [181.29.211.17] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 15 00:36:49 h2022099 sshd[16477]: Invalid user wilsonchan from 181.29.211.17 Sep 15 00:36:49 h2022099 sshd[16477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.29.211.17 Sep........ -------------------------------	2019-09-15 17:15:38
167.99.4.112	attack	Sep 15 00:07:56 aat-srv002 sshd[6043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.4.112 Sep 15 00:07:59 aat-srv002 sshd[6043]: Failed password for invalid user singha from 167.99.4.112 port 56216 ssh2 Sep 15 00:12:02 aat-srv002 sshd[6489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.4.112 Sep 15 00:12:04 aat-srv002 sshd[6489]: Failed password for invalid user do from 167.99.4.112 port 42616 ssh2 ...	2019-09-15 16:52:20
165.22.193.16	attackspam	Sep 15 04:52:25 lnxded63 sshd[30589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.193.16	2019-09-15 16:46:52
129.213.153.229	attackspambots	Sep 15 01:44:15 ny01 sshd[23390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.153.229 Sep 15 01:44:17 ny01 sshd[23390]: Failed password for invalid user fei from 129.213.153.229 port 31152 ssh2 Sep 15 01:48:26 ny01 sshd[24193]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.153.229	2019-09-15 16:34:25
95.213.177.122	attackspam	Port scan on 3 port(s): 8118 9999 65531	2019-09-15 16:31:49
178.128.59.78	attackspam	Sep 15 04:22:47 xtremcommunity sshd\[104483\]: Invalid user ko from 178.128.59.78 port 47838 Sep 15 04:22:47 xtremcommunity sshd\[104483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.59.78 Sep 15 04:22:49 xtremcommunity sshd\[104483\]: Failed password for invalid user ko from 178.128.59.78 port 47838 ssh2 Sep 15 04:27:28 xtremcommunity sshd\[104558\]: Invalid user mao from 178.128.59.78 port 36038 Sep 15 04:27:28 xtremcommunity sshd\[104558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.59.78 ...	2019-09-15 16:29:31

Recently Reported IPs

97.216.201.84	20.147.36.120	178.77.140.115	249.31.0.227
12.21.27.62	73.31.160.100	245.205.104.51	229.117.204.247
109.203.96.193	119.71.118.114	84.132.193.206	84.250.249.151
20.245.122.197	255.92.223.40	112.181.95.91	196.196.160.149
189.154.52.87	134.175.124.221	33.86.122.176	223.226.17.84