209.141.48.149

Basic Info

City: Milpitas

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
209.141.48.230	attackspambots	TCP (SYN) 209.141.48.230:39845 -> port 23, len 44	2020-09-08 01:32:52
209.141.48.230	attack	TCP (SYN) 209.141.48.230:58762 -> port 23, len 40	2020-09-07 16:57:24
209.141.48.68	attackbots	SSH Brute Force	2020-05-08 17:20:56
209.141.48.68	attackbotsspam	$f2bV_matches	2020-05-05 01:13:06
209.141.48.68	attackspambots	Apr 27 03:41:38 XXX sshd[62326]: Invalid user testu from 209.141.48.68 port 38728	2020-04-27 12:03:27
209.141.48.68	attackspambots	Automatic report BANNED IP	2020-04-25 19:04:41
209.141.48.68	attack	Apr 21 21:48:16 sip sshd[18801]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.141.48.68 Apr 21 21:48:18 sip sshd[18801]: Failed password for invalid user hadoop1 from 209.141.48.68 port 53704 ssh2 Apr 21 21:51:20 sip sshd[19902]: Failed password for root from 209.141.48.68 port 42698 ssh2	2020-04-22 05:23:25
209.141.48.144	attack	Automatic report - XMLRPC Attack	2020-03-17 04:14:54
209.141.48.150	attack	$f2bV_matches	2020-03-05 16:12:30
209.141.48.68	attack	$f2bV_matches	2020-02-27 03:43:27
209.141.48.86	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-13 21:55:56
209.141.48.68	attackspambots	Unauthorized connection attempt detected from IP address 209.141.48.68 to port 2220 [J]	2020-02-04 20:48:20
209.141.48.68	attackspam	Unauthorized connection attempt detected from IP address 209.141.48.68 to port 2220 [J]	2020-02-02 05:51:24
209.141.48.68	attackspambots	Unauthorized connection attempt detected from IP address 209.141.48.68 to port 2220 [J]	2020-02-01 16:06:05
209.141.48.68	attack	Unauthorized connection attempt detected from IP address 209.141.48.68 to port 2220 [J]	2020-01-15 03:18:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 209.141.48.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54636
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;209.141.48.149.			IN	A

;; AUTHORITY SECTION:
.			454	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100301 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 04 09:46:02 CST 2019
;; MSG SIZE  rcvd: 118

Host info

149.48.141.209.in-addr.arpa domain name pointer .

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.48.141.209.in-addr.arpa	name = .

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.71.214.37	attack	Oct 6 07:05:00 www sshd\[35812\]: Failed password for root from 167.71.214.37 port 56922 ssh2Oct 6 07:09:23 www sshd\[35899\]: Failed password for root from 167.71.214.37 port 40192 ssh2Oct 6 07:13:51 www sshd\[35995\]: Failed password for root from 167.71.214.37 port 51698 ssh2 ...	2019-10-06 17:10:43
106.13.9.89	attackbotsspam	Automatic report - SSH Brute-Force Attack	2019-10-06 17:13:14
197.225.166.204	attack	[Aegis] @ 2019-10-06 09:09:36 0100 -> Multiple authentication failures.	2019-10-06 16:53:09
51.75.163.218	attack	2019-10-06T07:47:04.349637tmaserv sshd\[25439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.ip-51-75-163.eu 2019-10-06T07:47:06.541004tmaserv sshd\[25439\]: Failed password for invalid user Server@12345 from 51.75.163.218 port 57566 ssh2 2019-10-06T08:00:40.637528tmaserv sshd\[25954\]: Invalid user Apple123 from 51.75.163.218 port 40788 2019-10-06T08:00:40.641771tmaserv sshd\[25954\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.ip-51-75-163.eu 2019-10-06T08:00:42.516978tmaserv sshd\[25954\]: Failed password for invalid user Apple123 from 51.75.163.218 port 40788 ssh2 2019-10-06T08:04:04.681385tmaserv sshd\[26165\]: Invalid user Citibank@123 from 51.75.163.218 port 50712 ...	2019-10-06 17:09:41
41.77.146.98	attack	Oct 6 02:09:20 TORMINT sshd\[3340\]: Invalid user JeanPaul2017 from 41.77.146.98 Oct 6 02:09:20 TORMINT sshd\[3340\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.77.146.98 Oct 6 02:09:22 TORMINT sshd\[3340\]: Failed password for invalid user JeanPaul2017 from 41.77.146.98 port 57050 ssh2 ...	2019-10-06 17:09:29
59.13.139.46	attack	Oct 6 09:08:21 XXX sshd[39873]: Invalid user ofsaa from 59.13.139.46 port 38408	2019-10-06 17:21:33
58.199.164.240	attackbots	Oct 5 23:47:54 Tower sshd[32398]: Connection from 58.199.164.240 port 50140 on 192.168.10.220 port 22 Oct 5 23:47:55 Tower sshd[32398]: Invalid user pn from 58.199.164.240 port 50140 Oct 5 23:47:55 Tower sshd[32398]: error: Could not get shadow information for NOUSER Oct 5 23:47:55 Tower sshd[32398]: Failed password for invalid user pn from 58.199.164.240 port 50140 ssh2 Oct 5 23:47:56 Tower sshd[32398]: Received disconnect from 58.199.164.240 port 50140:11: Bye Bye [preauth] Oct 5 23:47:56 Tower sshd[32398]: Disconnected from invalid user pn 58.199.164.240 port 50140 [preauth]	2019-10-06 16:55:26
45.55.224.209	attackbotsspam	$f2bV_matches	2019-10-06 17:10:24
222.186.42.4	attackspambots	Oct 6 10:54:51 meumeu sshd[19249]: Failed password for root from 222.186.42.4 port 30660 ssh2 Oct 6 10:55:05 meumeu sshd[19249]: Failed password for root from 222.186.42.4 port 30660 ssh2 Oct 6 10:55:10 meumeu sshd[19249]: Failed password for root from 222.186.42.4 port 30660 ssh2 Oct 6 10:55:11 meumeu sshd[19249]: error: maximum authentication attempts exceeded for root from 222.186.42.4 port 30660 ssh2 [preauth] ...	2019-10-06 16:57:30
117.13.90.137	attackbots	Automatic report - Port Scan Attack	2019-10-06 17:18:39
112.4.154.134	attackspam	Oct 6 04:00:33 xtremcommunity sshd\[226966\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.4.154.134 user=root Oct 6 04:00:35 xtremcommunity sshd\[226966\]: Failed password for root from 112.4.154.134 port 57249 ssh2 Oct 6 04:04:23 xtremcommunity sshd\[227053\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.4.154.134 user=root Oct 6 04:04:25 xtremcommunity sshd\[227053\]: Failed password for root from 112.4.154.134 port 36321 ssh2 Oct 6 04:08:09 xtremcommunity sshd\[227136\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.4.154.134 user=root ...	2019-10-06 16:47:02
23.129.64.162	attackbotsspam	Oct 6 11:02:53 vpn01 sshd[13468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.162 Oct 6 11:02:55 vpn01 sshd[13468]: Failed password for invalid user adriaen from 23.129.64.162 port 21731 ssh2 ...	2019-10-06 17:23:53
47.218.193.96	attackspambots	(imapd) Failed IMAP login from 47.218.193.96 (US/United States/47-218-193-96.bcstcmtk03.res.dyn.suddenlink.net): 1 in the last 3600 secs	2019-10-06 16:58:30
39.135.1.157	attackspambots	3389BruteforceFW22	2019-10-06 17:14:14
103.226.185.24	attackbotsspam	Oct 6 10:58:40 core sshd[11351]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.226.185.24 user=root Oct 6 10:58:41 core sshd[11351]: Failed password for root from 103.226.185.24 port 56534 ssh2 ...	2019-10-06 17:04:19

Recently Reported IPs

18.220.133.105	110.21.15.129	79.70.49.11	58.181.192.156
123.185.189.98	80.26.251.228	103.64.67.194	8.28.166.240
15.133.84.147	63.241.160.129	128.239.82.64	172.175.133.159
184.137.149.141	61.235.34.120	188.12.183.200	186.201.244.33
39.146.82.220	49.37.95.88	45.148.185.84	194.116.66.61