148.71.149.65 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Portugal

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.71.149.65
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42570
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.71.149.65.			IN	A

;; AUTHORITY SECTION:
.			121	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 19 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 12:46:00 CST 2022
;; MSG SIZE  rcvd: 106

Host info

b'65.149.71.148.in-addr.arpa domain name pointer 65.149.71.148.rev.vodafone.pt.
'

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
65.149.71.148.in-addr.arpa	name = 65.149.71.148.rev.vodafone.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
216.245.209.230	attackbotsspam	ET SCAN Sipvicious Scan - port: 5060 proto: sip cat: Attempted Information Leakbytes: 447	2020-10-13 20:31:04
134.122.95.213	attack	5x Failed Password	2020-10-13 20:14:03
80.82.70.178	attack	2020-10-13 06:50:47.102295-0500 localhost screensharingd[56326]: Authentication: FAILED :: User Name: N/A :: Viewer Address: 80.82.70.178 :: Type: VNC DES	2020-10-13 20:40:20
104.131.55.236	attack	$f2bV_matches	2020-10-13 19:59:53
58.56.40.210	attack	Oct 13 16:10:39 web1 sshd[19474]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.56.40.210 user=root Oct 13 16:10:41 web1 sshd[19474]: Failed password for root from 58.56.40.210 port 46899 ssh2 Oct 13 16:33:04 web1 sshd[26881]: Invalid user maxim from 58.56.40.210 port 50257 Oct 13 16:33:04 web1 sshd[26881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.56.40.210 Oct 13 16:33:04 web1 sshd[26881]: Invalid user maxim from 58.56.40.210 port 50257 Oct 13 16:33:06 web1 sshd[26881]: Failed password for invalid user maxim from 58.56.40.210 port 50257 ssh2 Oct 13 16:36:04 web1 sshd[27929]: Invalid user userftp from 58.56.40.210 port 39589 Oct 13 16:36:04 web1 sshd[27929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.56.40.210 Oct 13 16:36:04 web1 sshd[27929]: Invalid user userftp from 58.56.40.210 port 39589 Oct 13 16:36:06 web1 sshd[27929]: Failed password fo ...	2020-10-13 20:02:02
176.126.175.90	attackbotsspam	recursive dns scanner	2020-10-13 20:29:12
77.233.4.133	attackspambots	Oct 13 08:10:09 Tower sshd[20471]: Connection from 77.233.4.133 port 56337 on 192.168.10.220 port 22 rdomain "" Oct 13 08:10:11 Tower sshd[20471]: Invalid user connor from 77.233.4.133 port 56337 Oct 13 08:10:11 Tower sshd[20471]: error: Could not get shadow information for NOUSER Oct 13 08:10:11 Tower sshd[20471]: Failed password for invalid user connor from 77.233.4.133 port 56337 ssh2 Oct 13 08:10:11 Tower sshd[20471]: Received disconnect from 77.233.4.133 port 56337:11: Bye Bye [preauth] Oct 13 08:10:11 Tower sshd[20471]: Disconnected from invalid user connor 77.233.4.133 port 56337 [preauth]	2020-10-13 20:11:33
178.128.226.2	attackbots	firewall-block, port(s): 16629/tcp	2020-10-13 20:00:56
138.197.222.97	attackbots	TCP (SYN) 138.197.222.97:50619 -> port 5149, len 44	2020-10-13 20:15:35
49.234.192.145	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 36 - port: 23 proto: tcp cat: Misc Attackbytes: 60	2020-10-13 20:42:31
166.175.184.45	attackbots	Brute forcing email accounts	2020-10-13 20:25:13
35.245.33.180	attackbotsspam	Brute%20Force%20SSH	2020-10-13 20:19:48
89.144.47.251	attackspambots	[N1.H1.VM1] Port Scanner Detected Blocked by UFW	2020-10-13 20:38:17
61.54.189.57	attackspam	DATE:2020-10-12 22:39:49, IP:61.54.189.57, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-13 20:17:43
168.0.155.15	attackspam	Oct 13 14:00:52 v22019038103785759 sshd\[1599\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.0.155.15 user=root Oct 13 14:00:54 v22019038103785759 sshd\[1599\]: Failed password for root from 168.0.155.15 port 38254 ssh2 Oct 13 14:07:45 v22019038103785759 sshd\[2212\]: Invalid user daizo from 168.0.155.15 port 35072 Oct 13 14:07:45 v22019038103785759 sshd\[2212\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.0.155.15 Oct 13 14:07:47 v22019038103785759 sshd\[2212\]: Failed password for invalid user daizo from 168.0.155.15 port 35072 ssh2 ...	2020-10-13 20:24:42

Recently Reported IPs

35.205.39.96	52.255.45.218	124.121.1.48	59.99.131.23
14.246.96.189	210.121.186.210	87.210.124.6	181.94.122.207
200.194.52.99	171.101.230.41	91.204.241.80	67.42.146.186
36.5.219.1	217.149.166.186	177.93.117.12	196.188.74.118
61.52.180.58	1.30.16.242	117.183.73.87	49.228.237.113