149.248.58.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.248.58.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26938
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.248.58.55.			IN	A

;; AUTHORITY SECTION:
.			498	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061102 1800 900 604800 86400

;; Query time: 298 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 12 10:41:42 CST 2022
;; MSG SIZE  rcvd: 106

Host info

55.58.248.149.in-addr.arpa domain name pointer 149.248.58.55.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.58.248.149.in-addr.arpa	name = 149.248.58.55.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
182.75.248.254	attack	Oct 19 20:00:23 hanapaa sshd\[331\]: Invalid user admin from 182.75.248.254 Oct 19 20:00:23 hanapaa sshd\[331\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.248.254 Oct 19 20:00:25 hanapaa sshd\[331\]: Failed password for invalid user admin from 182.75.248.254 port 60942 ssh2 Oct 19 20:04:38 hanapaa sshd\[705\]: Invalid user testbuy from 182.75.248.254 Oct 19 20:04:38 hanapaa sshd\[705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.75.248.254	2019-10-20 19:54:00
167.99.74.119	attackbots	C1,WP GET /chicken-house2018/wp-login.php	2019-10-20 19:29:54
130.61.229.117	attackbots	Attempts against Email Servers	2019-10-20 19:37:43
111.198.54.177	attack	2019-10-20T13:19:14.819866scmdmz1 sshd\[15207\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.198.54.177 user=root 2019-10-20T13:19:17.234591scmdmz1 sshd\[15207\]: Failed password for root from 111.198.54.177 port 51484 ssh2 2019-10-20T13:23:34.912703scmdmz1 sshd\[15540\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.198.54.177 user=postfix ...	2019-10-20 19:39:21
122.70.153.229	attackbotsspam	Oct 20 08:15:47 icinga sshd[62994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.70.153.229 Oct 20 08:15:49 icinga sshd[62994]: Failed password for invalid user barend from 122.70.153.229 port 40968 ssh2 Oct 20 08:39:12 icinga sshd[12989]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.70.153.229 ...	2019-10-20 19:45:10
45.55.213.169	attackbots	2019-10-20T11:05:49.931255abusebot-2.cloudsearch.cf sshd\[28778\]: Invalid user NetLinx from 45.55.213.169 port 37405	2019-10-20 19:26:40
192.99.154.17	attackbotsspam	Oct 17 05:35:25 ahost sshd[5520]: Invalid user tibero from 192.99.154.17 Oct 17 05:35:26 ahost sshd[5520]: Failed password for invalid user tibero from 192.99.154.17 port 52856 ssh2 Oct 17 05:35:26 ahost sshd[5520]: Received disconnect from 192.99.154.17: 11: Bye Bye [preauth] Oct 17 05:49:08 ahost sshd[7494]: Failed password for www-data from 192.99.154.17 port 35632 ssh2 Oct 17 05:49:09 ahost sshd[7494]: Received disconnect from 192.99.154.17: 11: Bye Bye [preauth] Oct 17 05:52:50 ahost sshd[7532]: Failed password for r.r from 192.99.154.17 port 48526 ssh2 Oct 17 05:52:50 ahost sshd[7532]: Received disconnect from 192.99.154.17: 11: Bye Bye [preauth] Oct 17 05:56:42 ahost sshd[7567]: Failed password for r.r from 192.99.154.17 port 33186 ssh2 Oct 17 05:56:42 ahost sshd[7567]: Received disconnect from 192.99.154.17: 11: Bye Bye [preauth] Oct 17 06:00:29 ahost sshd[7680]: Invalid user yr from 192.99.154.17 Oct 17 06:00:31 ahost sshd[7680]: Failed password for invalid user........ ------------------------------	2019-10-20 19:52:24
185.176.27.178	attack	Oct 20 13:34:30 mc1 kernel: \[2857627.762003\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=56688 PROTO=TCP SPT=50501 DPT=36412 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 20 13:38:19 mc1 kernel: \[2857856.337680\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=56732 PROTO=TCP SPT=50501 DPT=3435 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 20 13:39:57 mc1 kernel: \[2857954.341958\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=185.176.27.178 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=17112 PROTO=TCP SPT=50501 DPT=3425 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-20 19:41:02
185.40.12.110	attackspam	slow and persistent scanner	2019-10-20 20:07:33
115.231.174.170	attackspambots	Oct 17 17:41:55 ahost sshd[23086]: Invalid user adrc from 115.231.174.170 Oct 17 17:41:55 ahost sshd[23086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.174.170 Oct 17 17:41:56 ahost sshd[23086]: Failed password for invalid user adrc from 115.231.174.170 port 37565 ssh2 Oct 17 17:41:57 ahost sshd[23086]: Received disconnect from 115.231.174.170: 11: Bye Bye [preauth] Oct 17 17:53:34 ahost sshd[23202]: Invalid user test from 115.231.174.170 Oct 17 17:53:34 ahost sshd[23202]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.174.170 Oct 17 17:53:36 ahost sshd[23202]: Failed password for invalid user test from 115.231.174.170 port 41896 ssh2 Oct 17 17:53:36 ahost sshd[23202]: Received disconnect from 115.231.174.170: 11: Bye Bye [preauth] Oct 17 17:59:08 ahost sshd[23267]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.231.174.170 ........ ------------------------------	2019-10-20 20:05:11
79.12.166.141	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/79.12.166.141/ IT - 1H : (90) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN3269 IP : 79.12.166.141 CIDR : 79.12.0.0/15 PREFIX COUNT : 550 UNIQUE IP COUNT : 19507712 ATTACKS DETECTED ASN3269 : 1H - 3 3H - 6 6H - 10 12H - 21 24H - 42 DateTime : 2019-10-20 05:44:52 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-20 19:46:44
175.211.112.246	attack	Oct 20 13:52:41 icinga sshd[27088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.211.112.246 Oct 20 13:52:43 icinga sshd[27088]: Failed password for invalid user arpit from 175.211.112.246 port 35652 ssh2 ...	2019-10-20 20:03:25
218.2.105.133	attackbotsspam	Oct 20 11:44:05 ks10 sshd[28043]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.2.105.133 Oct 20 11:44:07 ks10 sshd[28043]: Failed password for invalid user applmgr from 218.2.105.133 port 54091 ssh2 ...	2019-10-20 19:51:10
89.46.109.248	attack	xmlrpc attack	2019-10-20 19:29:30
106.12.17.43	attack	Invalid user chandru from 106.12.17.43 port 37336	2019-10-20 19:32:37

Recently Reported IPs

185.153.198.216	60.184.204.182	200.86.249.101	198.123.126.93
115.231.163.8	137.226.11.239	137.226.11.240	68.185.182.188
43.156.124.122	42.200.212.120	43.156.134.229	43.128.4.165
37.211.54.234	192.241.220.97	137.226.11.121	137.226.11.124
38.44.85.64	14.5.34.98	34.126.103.171	3.110.158.112