2.196.148.249 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.196.148.249
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48355
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.196.148.249.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020602 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 07 06:30:11 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 249.148.196.2.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 249.148.196.2.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.44.46.13	attack	Jun 3 11:43:26 mailman postfix/smtpd[5398]: warning: unknown[117.44.46.13]: SASL LOGIN authentication failed: authentication failure	2020-06-04 02:20:15
106.13.228.13	attack	Jun 3 20:49:18 itv-usvr-02 sshd[4578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.228.13 user=root Jun 3 20:52:51 itv-usvr-02 sshd[4682]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.228.13 user=root Jun 3 20:56:33 itv-usvr-02 sshd[4872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.228.13 user=root	2020-06-04 02:40:09
89.252.232.82	attack	Jun 3 21:15:25 debian kernel: [110689.511143] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=89.252.232.82 DST=89.252.131.35 LEN=44 TOS=0x00 PREC=0x00 TTL=237 ID=2587 DF PROTO=TCP SPT=1089 DPT=8291 WINDOW=14600 RES=0x00 SYN URGP=0	2020-06-04 02:36:33
41.46.70.181	attackbots	xmlrpc attack	2020-06-04 02:49:53
51.68.33.33	attack	xmlrpc attack	2020-06-04 02:37:04
54.37.68.191	attack	Jun 3 19:30:28 localhost sshd\[31951\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.68.191 user=root Jun 3 19:30:30 localhost sshd\[31951\]: Failed password for root from 54.37.68.191 port 37930 ssh2 Jun 3 19:33:11 localhost sshd\[32011\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.68.191 user=root Jun 3 19:33:13 localhost sshd\[32011\]: Failed password for root from 54.37.68.191 port 56040 ssh2 Jun 3 19:35:48 localhost sshd\[32269\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.68.191 user=root ...	2020-06-04 02:39:23
103.121.18.3	attackspambots	xmlrpc attack	2020-06-04 02:32:53
143.255.150.81	attack	(sshd) Failed SSH login from 143.255.150.81 (BR/Brazil/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 3 17:33:33 ubnt-55d23 sshd[7052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=143.255.150.81 user=root Jun 3 17:33:35 ubnt-55d23 sshd[7052]: Failed password for root from 143.255.150.81 port 53174 ssh2	2020-06-04 02:15:40
51.89.40.99	attackspambots	Jun 3 18:01:27 marvibiene sshd[22524]: Invalid user a from 51.89.40.99 port 35112 Jun 3 18:01:27 marvibiene sshd[22524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.40.99 Jun 3 18:01:27 marvibiene sshd[22524]: Invalid user a from 51.89.40.99 port 35112 Jun 3 18:01:29 marvibiene sshd[22524]: Failed password for invalid user a from 51.89.40.99 port 35112 ssh2 ...	2020-06-04 02:11:34
134.209.148.107	attack	web-1 [ssh] SSH Attack	2020-06-04 02:14:46
106.13.184.139	attackbots	TCP (SYN) 106.13.184.139:54489 -> port 29720, len 44	2020-06-04 02:35:50
119.4.225.31	attackbots	Jun 3 13:48:34 ArkNodeAT sshd\[9099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.4.225.31 user=root Jun 3 13:48:36 ArkNodeAT sshd\[9099\]: Failed password for root from 119.4.225.31 port 51413 ssh2 Jun 3 13:49:17 ArkNodeAT sshd\[9111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.4.225.31 user=root	2020-06-04 02:20:48
39.48.225.76	attackspambots	Unauthorised access (Jun 3) SRC=39.48.225.76 LEN=56 TTL=118 ID=12560 DF TCP DPT=445 WINDOW=8192 SYN	2020-06-04 02:40:48
84.119.164.238	attackbots	SSH brute-force attempt	2020-06-04 02:11:07
192.99.4.63	attack	The IP has triggered Cloudflare WAF. CF-Ray: 59d764b28f6bf059 \| WAF_Rule_ID: 2e3ead4eb71148f0b1a3556e8da29348 \| WAF_Kind: firewall \| CF_Action: challenge \| Country: CA \| CF_IPClass: noRecord \| Protocol: HTTP/1.1 \| Method: GET \| Host: ts.wevg.org \| User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36 \| CF_DC: EWR. Report generated by Cloudflare-WAF-to-AbuseIPDB (https://github.com/SukkaW/Cloudflare-WAF-to-AbuseIPDB).	2020-06-04 02:43:34

Recently Reported IPs

180.209.7.158	201.184.51.199	140.151.224.119	13.22.230.68
119.180.79.7	90.188.184.209	147.93.215.49	39.34.8.103
137.102.236.140	45.53.182.148	159.21.54.245	100.94.161.55
93.130.162.65	108.206.1.6	185.48.27.38	141.251.15.197
42.201.65.84	247.98.5.173	68.166.171.199	117.129.131.165