149.111.148.141

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.111.148.141
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4826
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.111.148.141.		IN	A

;; AUTHORITY SECTION:
.			228	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 12:46:12 CST 2022
;; MSG SIZE  rcvd: 108

Host info

141.148.111.149.in-addr.arpa domain name pointer prohc-elr.optum.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
141.148.111.149.in-addr.arpa	name = prohc-elr.optum.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
45.125.66.21	attackbots	Tried our host z.	2020-09-27 18:10:29
159.203.30.50	attackbots	srv02 Mass scanning activity detected Target: 26173 ..	2020-09-27 18:06:46
193.112.1.26	attackspam	Sep 27 10:20:23 host1 sshd[518167]: Invalid user oracle from 193.112.1.26 port 34804 Sep 27 10:20:24 host1 sshd[518167]: Failed password for invalid user oracle from 193.112.1.26 port 34804 ssh2 Sep 27 10:20:23 host1 sshd[518167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.1.26 Sep 27 10:20:23 host1 sshd[518167]: Invalid user oracle from 193.112.1.26 port 34804 Sep 27 10:20:24 host1 sshd[518167]: Failed password for invalid user oracle from 193.112.1.26 port 34804 ssh2 ...	2020-09-27 18:17:33
46.101.173.231	attackbotsspam	2020-09-27T10:24:13.505294randservbullet-proofcloud-66.localdomain sshd[19436]: Invalid user jackie from 46.101.173.231 port 33448 2020-09-27T10:24:13.510589randservbullet-proofcloud-66.localdomain sshd[19436]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.173.231 2020-09-27T10:24:13.505294randservbullet-proofcloud-66.localdomain sshd[19436]: Invalid user jackie from 46.101.173.231 port 33448 2020-09-27T10:24:15.570488randservbullet-proofcloud-66.localdomain sshd[19436]: Failed password for invalid user jackie from 46.101.173.231 port 33448 ssh2 ...	2020-09-27 18:26:10
221.148.207.22	attackspam	2020-09-27T16:42:59.472783hostname sshd[18092]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.148.207.22 user=root 2020-09-27T16:43:01.563098hostname sshd[18092]: Failed password for root from 221.148.207.22 port 52024 ssh2 ...	2020-09-27 17:54:10
46.101.14.203	attackspam	Sep 27 00:38:12 www sshd\[139249\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.14.203 user=root Sep 27 00:38:13 www sshd\[139249\]: Failed password for root from 46.101.14.203 port 58342 ssh2 Sep 27 00:42:17 www sshd\[139349\]: Invalid user external from 46.101.14.203 Sep 27 00:42:17 www sshd\[139349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.14.203 ...	2020-09-27 18:09:09
106.12.151.250	attackbotsspam	DATE:2020-09-27 08:56:27, IP:106.12.151.250, PORT:ssh SSH brute force auth (docker-dc)	2020-09-27 18:14:03
192.241.239.146	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-27 18:08:06
190.13.81.219	attackbotsspam	Sep 23 17:41:50 server2 sshd[11576]: Address 190.13.81.219 maps to azteca-comunicaciones.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 23 17:41:50 server2 sshd[11576]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.13.81.219 user=r.r Sep 23 17:41:52 server2 sshd[11576]: Failed password for r.r from 190.13.81.219 port 37346 ssh2 Sep 23 17:41:52 server2 sshd[11576]: Received disconnect from 190.13.81.219: 11: Bye Bye [preauth] Sep 23 17:52:38 server2 sshd[14084]: Address 190.13.81.219 maps to azteca-comunicaciones.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Sep 23 17:52:38 server2 sshd[14084]: Invalid user redis from 190.13.81.219 Sep 23 17:52:38 server2 sshd[14084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.13.81.219 Sep 23 17:52:40 server2 sshd[14084]: Failed password for invalid user redis from 190.13.81.219 ........ -------------------------------	2020-09-27 18:25:00
39.129.116.158	attackspam	DATE:2020-09-26 22:32:56, IP:39.129.116.158, PORT:1433 MSSQL brute force auth on honeypot server (epe-honey1-hq)	2020-09-27 18:21:45
216.218.206.79	attack	RPC Portmapper DUMP Request Detected	2020-09-27 17:53:53
114.113.126.181	attackbots	SSH Bruteforce Attempt on Honeypot	2020-09-27 17:49:44
91.204.248.42	attack	$f2bV_matches	2020-09-27 18:24:09
37.49.230.229	attackbots	Listed on zen-spamhaus also barracudaCentral and abuseat.org / proto=6 . srcport=36525 . dstport=22 . (1269)	2020-09-27 17:52:33
129.28.195.191	attackspam	Sep 27 06:30:37 firewall sshd[1021]: Invalid user user1 from 129.28.195.191 Sep 27 06:30:39 firewall sshd[1021]: Failed password for invalid user user1 from 129.28.195.191 port 55558 ssh2 Sep 27 06:38:56 firewall sshd[1432]: Invalid user student from 129.28.195.191 ...	2020-09-27 17:58:36

Recently Reported IPs

149.111.144.242	149.111.164.190	149.111.149.195	149.111.148.50
149.111.164.69	149.111.232.81	149.111.148.242	149.111.232.38
149.113.74.53	149.113.96.95	149.111.149.13	149.115.16.7
149.117.66.150	149.126.4.100	149.126.0.167	149.126.1.226
149.119.6.197	149.126.4.10	149.126.4.109	149.126.4.23