148.120.89.133

Basic Info

City: unknown

Region: unknown

Country: Norway

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.120.89.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49190
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.120.89.133.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020400 1800 900 604800 86400

;; Query time: 10 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 18:03:52 CST 2025
;; MSG SIZE  rcvd: 107

Host info

133.89.120.148.in-addr.arpa domain name pointer 133.89.120.148.in-addr.arpa.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
133.89.120.148.in-addr.arpa	name = 133.89.120.148.in-addr.arpa.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
137.117.178.120	attack	(PERMBLOCK) 137.117.178.120 (NL/Netherlands/-) has had more than 4 temp blocks in the last 86400 secs; Ports: *; Direction: inout; Trigger: LF_PERMBLOCK_COUNT; Logs:	2020-09-03 21:18:53
20.52.53.94	attack	20.52.53.94 - - \[02/Sep/2020:18:48:10 +0200\] "POST //xmlrpc.php HTTP/1.0" 200 856 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/79.0 Safari/537.36" 20.52.53.94 - - \[02/Sep/2020:18:48:11 +0200\] "POST //xmlrpc.php HTTP/1.0" 200 856 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/79.0 Safari/537.36" 20.52.53.94 - - \[02/Sep/2020:18:48:12 +0200\] "POST //xmlrpc.php HTTP/1.0" 200 856 "-" "Mozilla/5.0 $Windows NT 10.0\; Win64\; x64$ AppleWebKit/537.36 $KHTML, like Gecko$ Chrome/79.0 Safari/537.36"	2020-09-03 21:38:08
62.82.75.58	attack	Time: Thu Sep 3 11:21:43 2020 +0000 IP: 62.82.75.58 (ES/Spain/62.82.75.58.static.user.ono.com) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 3 11:09:14 vps1 sshd[19505]: Invalid user evelyn from 62.82.75.58 port 22820 Sep 3 11:09:15 vps1 sshd[19505]: Failed password for invalid user evelyn from 62.82.75.58 port 22820 ssh2 Sep 3 11:18:10 vps1 sshd[19888]: Invalid user support from 62.82.75.58 port 8945 Sep 3 11:18:12 vps1 sshd[19888]: Failed password for invalid user support from 62.82.75.58 port 8945 ssh2 Sep 3 11:21:39 vps1 sshd[19995]: Invalid user soporte from 62.82.75.58 port 5137	2020-09-03 21:19:24
218.92.0.191	attackspambots	Sep 3 15:14:57 dcd-gentoo sshd[16931]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Sep 3 15:15:01 dcd-gentoo sshd[16931]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Sep 3 15:15:01 dcd-gentoo sshd[16931]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 47620 ssh2 ...	2020-09-03 21:22:09
195.138.80.148	attackbots	trying to exploit wordpress	2020-09-03 21:11:12
211.229.221.30	attackspam	Sep 2 18:48:15 vpn01 sshd[21383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.229.221.30 Sep 2 18:48:17 vpn01 sshd[21383]: Failed password for invalid user admin from 211.229.221.30 port 50657 ssh2 ...	2020-09-03 21:35:41
103.40.172.173	attack	Zeroshell Remote Command Execution Vulnerability	2020-09-03 21:39:25
129.226.160.128	attack	Unauthorized connection attempt detected from IP address 129.226.160.128 to port 9213 [T]	2020-09-03 21:41:16
123.140.114.252	attackspam	k+ssh-bruteforce	2020-09-03 21:18:23
83.235.174.95	attackspam	Automatic report - Port Scan Attack	2020-09-03 21:25:47
200.69.141.210	attackspam	$f2bV_matches	2020-09-03 21:05:33
165.22.32.60	attackbots	firewall-block, port(s): 53413/udp	2020-09-03 21:30:11
103.120.207.3	attackbots	Automatic report - Port Scan Attack	2020-09-03 21:12:27
31.186.26.130	attackspam	WWW.GOLDGIER.DE 31.186.26.130 [03/Sep/2020:13:02:19 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4559 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" www.goldgier.de 31.186.26.130 [03/Sep/2020:13:02:20 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4559 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36"	2020-09-03 21:05:09
91.103.255.169	attack	contact form SPAM BOT - Trapped	2020-09-03 21:08:19

Recently Reported IPs

47.132.79.110	91.28.104.116	221.166.93.194	233.155.252.222
54.61.22.37	61.177.201.191	213.129.153.207	201.149.141.86
205.57.163.7	184.170.147.126	182.117.235.50	85.45.134.248
86.184.68.94	71.232.74.10	164.69.28.246	159.23.165.229
143.209.28.255	181.181.138.52	172.85.192.187	75.59.131.241