157.89.149.148

Basic Info

City: Mount Washington

Region: Kentucky

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 157.89.149.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50556
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;157.89.149.148.			IN	A

;; AUTHORITY SECTION:
.			581	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052302 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 24 07:33:54 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 148.149.89.157.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.149.89.157.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.212.233.50	attack	Oct 26 00:22:02 TORMINT sshd\[20558\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.233.50 user=root Oct 26 00:22:04 TORMINT sshd\[20558\]: Failed password for root from 125.212.233.50 port 32966 ssh2 Oct 26 00:29:04 TORMINT sshd\[20877\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.233.50 user=root ...	2019-10-26 12:43:30
2a00:2381:e76:0:4ed9:8fff:fe4f:2222	attackspambots	LAV,DEF GET /wp-login.php	2019-10-26 12:59:24
115.88.25.178	attackbotsspam	Oct 26 06:44:35 site2 sshd\[29538\]: Invalid user cz123 from 115.88.25.178Oct 26 06:44:37 site2 sshd\[29538\]: Failed password for invalid user cz123 from 115.88.25.178 port 39890 ssh2Oct 26 06:49:21 site2 sshd\[29767\]: Invalid user Melon2017 from 115.88.25.178Oct 26 06:49:22 site2 sshd\[29767\]: Failed password for invalid user Melon2017 from 115.88.25.178 port 50204 ssh2Oct 26 06:54:06 site2 sshd\[30003\]: Invalid user 123456@qwe from 115.88.25.178 ...	2019-10-26 12:29:57
41.221.168.167	attackbotsspam	Oct 26 05:53:50 lnxweb62 sshd[32500]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.221.168.167	2019-10-26 12:41:30
191.252.178.76	attackspambots	Lines containing failures of 191.252.178.76 (max 1000) Oct 24 15:27:35 mm sshd[7976]: pam_unix(sshd:auth): authentication fail= ure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D191.252.178= .76 user=3Dr.r Oct 24 15:27:37 mm sshd[7976]: Failed password for r.r from 191.252.17= 8.76 port 56010 ssh2 Oct 24 15:27:37 mm sshd[7976]: Received disconnect from 191.252.178.76 = port 56010:11: Bye Bye [preauth] Oct 24 15:27:37 mm sshd[7976]: Disconnected from authenticating user ro= ot 191.252.178.76 port 56010 [preauth] Oct 24 15:45:17 mm sshd[8128]: pam_unix(sshd:auth): authentication fail= ure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D191.252.178= .76 user=3Dr.r Oct 24 15:45:19 mm sshd[8128]: Failed password for r.r from 191.252.17= 8.76 port 48436 ssh2 Oct 24 15:45:19 mm sshd[8128]: Received disconnect from 191.252.178.76 = port 48436:11: Bye Bye [preauth] Oct 24 15:45:19 mm sshd[8128]: Disconnected from authenticating user ro= ot 191.252.178.76 port ........ ------------------------------	2019-10-26 12:39:56
104.42.158.117	attack	Oct 26 06:45:39 eventyay sshd[29410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.158.117 Oct 26 06:45:42 eventyay sshd[29410]: Failed password for invalid user q1w2e3r4 from 104.42.158.117 port 45056 ssh2 Oct 26 06:49:59 eventyay sshd[29449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.42.158.117 ...	2019-10-26 12:56:45
5.189.16.37	attackspam	Oct 26 06:11:41 mc1 kernel: \[3349438.953698\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=5.189.16.37 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=51345 PROTO=TCP SPT=54940 DPT=1853 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 26 06:15:20 mc1 kernel: \[3349657.813226\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=5.189.16.37 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=63734 PROTO=TCP SPT=54940 DPT=1271 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 26 06:15:35 mc1 kernel: \[3349672.978110\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=5.189.16.37 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=36732 PROTO=TCP SPT=54940 DPT=236 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-26 12:34:42
81.192.159.130	attackbotsspam	Oct 26 05:54:11 ns41 sshd[18134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.192.159.130 Oct 26 05:54:11 ns41 sshd[18134]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.192.159.130	2019-10-26 12:27:38
91.121.87.174	attackbots	Invalid user maslogor from 91.121.87.174 port 57694	2019-10-26 13:00:34
176.31.170.245	attackspam	Oct 25 18:37:44 auw2 sshd\[2501\]: Invalid user COM from 176.31.170.245 Oct 25 18:37:44 auw2 sshd\[2501\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=245.ip-176-31-170.eu Oct 25 18:37:46 auw2 sshd\[2501\]: Failed password for invalid user COM from 176.31.170.245 port 55850 ssh2 Oct 25 18:41:37 auw2 sshd\[2947\]: Invalid user test from 176.31.170.245 Oct 25 18:41:37 auw2 sshd\[2947\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=245.ip-176-31-170.eu	2019-10-26 12:56:06
103.26.40.143	attackspam	Oct 21 14:16:54 uapps sshd[17597]: Address 103.26.40.143 maps to 103-26-40-143.static.hostcentral.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 21 14:16:54 uapps sshd[17597]: User r.r from 103.26.40.143 not allowed because not listed in AllowUsers Oct 21 14:16:54 uapps sshd[17597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.26.40.143 user=r.r Oct 21 14:16:56 uapps sshd[17597]: Failed password for invalid user r.r from 103.26.40.143 port 43806 ssh2 Oct 21 14:16:56 uapps sshd[17597]: Received disconnect from 103.26.40.143: 11: Bye Bye [preauth] Oct 21 14:30:17 uapps sshd[17673]: Address 103.26.40.143 maps to 103-26-40-143.static.hostcentral.net, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Oct 21 14:30:18 uapps sshd[17673]: Failed password for invalid user epifania from 103.26.40.143 port 44344 ssh2 Oct 21 14:30:19 uapps sshd[17673]: Received disconnect from 103.2........ -------------------------------	2019-10-26 13:04:25
189.213.166.124	attackspam	Automatic report - Port Scan Attack	2019-10-26 13:05:49
165.22.58.247	attack	$f2bV_matches	2019-10-26 12:50:14
202.151.30.145	attackbots	Oct 26 07:09:41 www sshd\[60390\]: Invalid user hue from 202.151.30.145Oct 26 07:09:43 www sshd\[60390\]: Failed password for invalid user hue from 202.151.30.145 port 45894 ssh2Oct 26 07:13:51 www sshd\[60428\]: Failed password for root from 202.151.30.145 port 51716 ssh2 ...	2019-10-26 13:00:52
91.134.248.235	attack	$f2bV_matches	2019-10-26 12:53:02

Recently Reported IPs

120.155.9.2	45.43.82.62	73.98.65.223	202.167.43.134
139.38.114.44	51.159.121.153	186.178.88.215	50.3.177.72
96.43.112.234	5.83.26.154	45.91.93.87	207.83.215.131
213.123.43.40	18.209.59.172	24.248.120.100	73.199.121.254
137.208.40.235	197.67.40.3	50.3.34.102	173.209.171.93