149.28.48.138 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.28.48.138
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34510
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.28.48.138.			IN	A

;; AUTHORITY SECTION:
.			435	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 12:49:46 CST 2022
;; MSG SIZE  rcvd: 106

Host info

138.48.28.149.in-addr.arpa domain name pointer 149.28.48.138.vultr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
138.48.28.149.in-addr.arpa	name = 149.28.48.138.vultr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.90.118.27	attack	10/14/2019-09:12:27.930667 185.90.118.27 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-14 21:28:34
89.248.162.168	attackspambots	10/14/2019-14:53:00.421876 89.248.162.168 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 99	2019-10-14 21:25:41
188.254.0.112	attackspam	SSH Brute-Force reported by Fail2Ban	2019-10-14 21:40:15
112.27.129.154	attackbotsspam	Oct 14 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=112.27.129.154, lip=REMOVED, TLS: Disconnected, session=\<3zj6St6UOIBwG4Ga\> Oct 14 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 4 secs\): user=\, method=PLAIN, rip=112.27.129.154, lip=REMOVED, TLS, session=\ Oct 14 REMOVED dovecot: imap-login: Disconnected \(auth failed, 1 attempts in 5 secs\): user=\, method=PLAIN, rip=112.27.129.154, lip=REMOVED, TLS: Disconnected, session=\	2019-10-14 21:48:00
172.105.225.204	attackbots	" "	2019-10-14 21:17:43
58.62.86.28	attack	Automatic report - Port Scan Attack	2019-10-14 21:14:37
185.90.116.20	attackspambots	10/14/2019-09:17:48.416020 185.90.116.20 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-14 21:23:59
107.144.21.210	attack	Potential Corporate Privacy Violation	2019-10-14 21:48:25
138.68.148.177	attack	2019-10-14T13:03:03.567352abusebot-2.cloudsearch.cf sshd\[31159\]: Invalid user 123Partial from 138.68.148.177 port 45862	2019-10-14 21:23:25
72.43.141.7	attack	Oct 14 02:54:59 auw2 sshd\[8619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=rrcs-72-43-141-7.nyc.biz.rr.com user=root Oct 14 02:55:01 auw2 sshd\[8619\]: Failed password for root from 72.43.141.7 port 10988 ssh2 Oct 14 02:59:34 auw2 sshd\[8995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=rrcs-72-43-141-7.nyc.biz.rr.com user=root Oct 14 02:59:36 auw2 sshd\[8995\]: Failed password for root from 72.43.141.7 port 4136 ssh2 Oct 14 03:04:20 auw2 sshd\[9402\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=rrcs-72-43-141-7.nyc.biz.rr.com user=root	2019-10-14 21:11:49
186.93.96.137	attackbots	Port scan on 1 port(s): 5555	2019-10-14 21:41:18
93.115.138.250	attackspambots	Automatic report - XMLRPC Attack	2019-10-14 21:11:14
35.225.122.90	attackbots	2019-10-14T13:27:37.668395abusebot.cloudsearch.cf sshd\[17020\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.122.225.35.bc.googleusercontent.com user=root	2019-10-14 21:28:01
213.194.138.189	attackspambots	port scan and connect, tcp 23 (telnet)	2019-10-14 21:36:53
222.186.175.150	attackspam	2019-10-14T20:06:41.231396enmeeting.mahidol.ac.th sshd\[9368\]: User root from 222.186.175.150 not allowed because not listed in AllowUsers 2019-10-14T20:06:42.519920enmeeting.mahidol.ac.th sshd\[9368\]: Failed none for invalid user root from 222.186.175.150 port 24346 ssh2 2019-10-14T20:06:43.916455enmeeting.mahidol.ac.th sshd\[9368\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root ...	2019-10-14 21:16:19

Recently Reported IPs

149.28.49.120	149.28.54.232	149.28.59.55	149.28.51.241
149.28.61.32	149.28.55.177	149.28.62.19	149.28.72.35
149.28.66.124	149.28.78.177	149.28.81.122	149.28.8.7
149.28.81.76	149.28.83.5	149.28.80.114	149.28.66.204
149.28.84.95	149.28.85.240	149.28.8.128	149.28.85.79