149.147.1.40 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Kuwait

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
149.147.191.32	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-06-02 20:09:12
149.147.149.34	attackbots	Email rejected due to spam filtering	2020-03-24 14:41:00
149.147.125.103	attackbots	Unauthorized connection attempt from IP address 149.147.125.103 on Port 445(SMB)	2019-11-17 05:48:33
149.147.188.123	attack	Brute force attempt	2019-10-22 19:02:14
149.147.128.111	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/149.147.128.111/ US - 1H : (356) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : US NAME ASN : ASN42961 IP : 149.147.128.111 CIDR : 149.147.128.0/20 PREFIX COUNT : 150 UNIQUE IP COUNT : 608768 WYKRYTE ATAKI Z ASN42961 : 1H - 1 3H - 1 6H - 2 12H - 2 24H - 2 DateTime : 2019-10-07 21:50:36 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-08 06:19:33
149.147.176.180	attackbotsspam	Automatic report - Port Scan Attack	2019-10-06 18:56:34

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.147.1.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 1989
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.147.1.40.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021500 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Feb 15 14:07:28 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 40.1.147.149.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 40.1.147.149.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.89.8.230	attack	2019-07-20T06:39:48.755791abusebot.cloudsearch.cf sshd\[31222\]: Invalid user phoebe from 159.89.8.230 port 50184 2019-07-20T06:39:48.760124abusebot.cloudsearch.cf sshd\[31222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.8.230	2019-07-20 15:02:24
132.232.104.106	attackbotsspam	Jul 20 08:32:43 legacy sshd[7989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.104.106 Jul 20 08:32:45 legacy sshd[7989]: Failed password for invalid user marcus from 132.232.104.106 port 40624 ssh2 Jul 20 08:39:11 legacy sshd[8156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.104.106 ...	2019-07-20 14:40:22
125.136.150.146	attackspam	ECShop Remote Code Execution Vulnerability	2019-07-20 14:08:04
51.255.168.30	attack	Jul 20 08:51:09 meumeu sshd[12435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.30 Jul 20 08:51:11 meumeu sshd[12435]: Failed password for invalid user ranger from 51.255.168.30 port 33716 ssh2 Jul 20 08:55:48 meumeu sshd[13161]: Failed password for root from 51.255.168.30 port 60956 ssh2 ...	2019-07-20 15:01:03
132.232.52.35	attackspam	2019-07-20T04:57:15.344617abusebot.cloudsearch.cf sshd\[30091\]: Invalid user console from 132.232.52.35 port 50556	2019-07-20 14:29:16
78.36.97.186	attackspam	Jul 20 04:30:37 srv-4 sshd\[22178\]: Invalid user admin from 78.36.97.186 Jul 20 04:30:37 srv-4 sshd\[22178\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.36.97.186 Jul 20 04:30:39 srv-4 sshd\[22178\]: Failed password for invalid user admin from 78.36.97.186 port 54815 ssh2 ...	2019-07-20 14:17:37
165.227.154.44	attackspam	WordPress XMLRPC scan :: 165.227.154.44 0.084 BYPASS [20/Jul/2019:14:43:12 1000] [censored_1] "POST /xmlrpc.php HTTP/1.1" 403 5 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-07-20 14:36:48
66.214.125.12	attackbotsspam	19/7/19@21:28:26: FAIL: Alarm-Intrusion address from=66.214.125.12 ...	2019-07-20 15:05:41
123.206.87.89	attack	2019-07-20T01:30:01.221895abusebot-8.cloudsearch.cf sshd\[22455\]: Invalid user anaconda from 123.206.87.89 port 40480	2019-07-20 14:31:43
221.125.165.59	attackspambots	Jul 20 05:47:52 MK-Soft-VM3 sshd\[12862\]: Invalid user cognos from 221.125.165.59 port 40132 Jul 20 05:47:52 MK-Soft-VM3 sshd\[12862\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.125.165.59 Jul 20 05:47:54 MK-Soft-VM3 sshd\[12862\]: Failed password for invalid user cognos from 221.125.165.59 port 40132 ssh2 ...	2019-07-20 14:20:23
61.41.159.29	attackbots	Jul 20 07:20:00 icinga sshd[8310]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.41.159.29 Jul 20 07:20:01 icinga sshd[8310]: Failed password for invalid user text from 61.41.159.29 port 47026 ssh2 ...	2019-07-20 14:44:22
77.247.108.154	attackspambots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-20 15:02:46
209.237.142.184	attackbots	Automatic report - Port Scan Attack	2019-07-20 14:33:56
77.247.108.150	attackspam	\[2019-07-19 21:54:21\] NOTICE\[20804\] chan_sip.c: Registration from '"205" \' failed for '77.247.108.150:5698' - Wrong password \[2019-07-19 21:54:21\] SECURITY\[20812\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-19T21:54:21.507-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="205",SessionID="0x7f06f804c2c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.108.150/5698",Challenge="303ea015",ReceivedChallenge="303ea015",ReceivedHash="5574b21e1180cee7483e35a21dadbf0b" \[2019-07-19 21:54:21\] NOTICE\[20804\] chan_sip.c: Registration from '"205" \' failed for '77.247.108.150:5698' - Wrong password \[2019-07-19 21:54:21\] SECURITY\[20812\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-19T21:54:21.638-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="205",SessionID="0x7f06f88cc728",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/U	2019-07-20 14:53:04
178.86.138.13	attackspambots	MagicSpam Rule: valid_helo_domain; Spammer IP: 178.86.138.13	2019-07-20 14:25:36

Recently Reported IPs

53.137.157.164	64.93.137.120	214.173.86.163	49.28.250.32
51.246.156.87	242.22.152.211	5.103.42.193	232.53.59.4
84.149.55.241	170.115.149.41	231.222.125.231	191.178.116.74
249.14.53.41	37.75.184.0	118.150.127.164	67.175.220.22
84.136.15.193	94.44.24.206	13.31.246.39	98.23.46.114