34.198.148.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.198.148.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51447
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;34.198.148.2.			IN	A

;; AUTHORITY SECTION:
.			464	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021122800 1800 900 604800 86400

;; Query time: 58 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 28 16:04:18 CST 2021
;; MSG SIZE  rcvd: 105

Host info

2.148.198.34.in-addr.arpa domain name pointer ec2-34-198-148-2.compute-1.amazonaws.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.148.198.34.in-addr.arpa	name = ec2-34-198-148-2.compute-1.amazonaws.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.211.17.38	attack	Sep 1 10:19:26 php1 sshd\[2633\]: Invalid user farmacia from 80.211.17.38 Sep 1 10:19:26 php1 sshd\[2633\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=aruba04.servinor.com Sep 1 10:19:28 php1 sshd\[2633\]: Failed password for invalid user farmacia from 80.211.17.38 port 40610 ssh2 Sep 1 10:23:28 php1 sshd\[3100\]: Invalid user admin2 from 80.211.17.38 Sep 1 10:23:28 php1 sshd\[3100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=aruba04.servinor.com	2019-09-02 10:40:59
103.1.40.189	attackbotsspam	Sep 1 16:09:25 wbs sshd\[17509\]: Invalid user ubuntu from 103.1.40.189 Sep 1 16:09:25 wbs sshd\[17509\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.1.40.189 Sep 1 16:09:28 wbs sshd\[17509\]: Failed password for invalid user ubuntu from 103.1.40.189 port 60887 ssh2 Sep 1 16:13:53 wbs sshd\[17944\]: Invalid user hiperg from 103.1.40.189 Sep 1 16:13:53 wbs sshd\[17944\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.1.40.189	2019-09-02 10:31:10
187.190.111.180	attack	Blocked for port scanning. Time: Sun Sep 1. 09:34:23 2019 +0200 IP: 187.190.111.180 (MX/Mexico/fixed-187-190-111-180.totalplay.net) Sample of block hits: Sep 1 09:32:13 vserv kernel: [16966632.635124] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=187.190.111.180 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=55 ID=14882 PROTO=TCP SPT=63675 DPT=88 WINDOW=4888 RES=0x00 SYN URGP=0 Sep 1 09:32:13 vserv kernel: [16966632.674041] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=187.190.111.180 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=55 ID=14882 PROTO=TCP SPT=63675 DPT=88 WINDOW=4888 RES=0x00 SYN URGP=0 Sep 1 09:32:13 vserv kernel: [16966632.687550] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=187.190.111.180 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=55 ID=14882 PROTO=TCP SPT=63675 DPT=88 WINDOW=4888 RES=0x00 SYN URGP=0 Sep 1 09:32:31 vserv kernel: [16966650.712079] Firewall: TCP_IN Blocked IN=venet0 OUT= MAC= SRC=187.190.111.180 DST=[removed] LEN=40 TOS=0x00 PREC=0x00 TTL=55 ID ....	2019-09-02 10:14:57
217.67.21.68	attackspambots	Sep 1 22:33:46 ncomp sshd[3539]: Invalid user backups from 217.67.21.68 Sep 1 22:33:46 ncomp sshd[3539]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=217.67.21.68 Sep 1 22:33:46 ncomp sshd[3539]: Invalid user backups from 217.67.21.68 Sep 1 22:33:48 ncomp sshd[3539]: Failed password for invalid user backups from 217.67.21.68 port 54638 ssh2	2019-09-02 09:53:23
176.31.100.19	attackbotsspam	Sep 1 20:38:52 vps647732 sshd[20570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.100.19 Sep 1 20:38:54 vps647732 sshd[20570]: Failed password for invalid user cathyreis from 176.31.100.19 port 42240 ssh2 ...	2019-09-02 10:44:55
58.115.161.172	attackbots	Sep 1 19:25:39 pornomens sshd\[1781\]: Invalid user admin from 58.115.161.172 port 53652 Sep 1 19:25:39 pornomens sshd\[1781\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.115.161.172 Sep 1 19:25:41 pornomens sshd\[1781\]: Failed password for invalid user admin from 58.115.161.172 port 53652 ssh2 ...	2019-09-02 10:39:40
137.74.26.179	attackspam	Sep 2 03:39:08 icinga sshd[3151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.26.179 Sep 2 03:39:09 icinga sshd[3151]: Failed password for invalid user guest from 137.74.26.179 port 45406 ssh2 ...	2019-09-02 10:40:01
159.65.8.65	attackbots	$f2bV_matches	2019-09-02 09:42:18
154.73.75.99	attackbots	$f2bV_matches	2019-09-02 10:32:38
113.80.86.62	attackbotsspam	Sep 1 21:07:27 server sshd\[25183\]: Invalid user qh from 113.80.86.62 port 59828 Sep 1 21:07:27 server sshd\[25183\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.80.86.62 Sep 1 21:07:29 server sshd\[25183\]: Failed password for invalid user qh from 113.80.86.62 port 59828 ssh2 Sep 1 21:12:55 server sshd\[22091\]: Invalid user team2 from 113.80.86.62 port 52749 Sep 1 21:12:55 server sshd\[22091\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.80.86.62	2019-09-02 10:24:11
85.139.220.180	attackbots	Brute force SMTP login attempts.	2019-09-02 09:43:22
124.65.152.14	attackspam	Sep 2 02:32:50 legacy sshd[27774]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.65.152.14 Sep 2 02:32:51 legacy sshd[27774]: Failed password for invalid user admin from 124.65.152.14 port 18379 ssh2 Sep 2 02:37:33 legacy sshd[27848]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.65.152.14 ...	2019-09-02 09:45:13
112.85.42.229	attack	Sep 2 03:44:12 h2177944 sshd\[8529\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.229 user=root Sep 2 03:44:13 h2177944 sshd\[8529\]: Failed password for root from 112.85.42.229 port 31972 ssh2 Sep 2 03:44:16 h2177944 sshd\[8529\]: Failed password for root from 112.85.42.229 port 31972 ssh2 Sep 2 03:44:18 h2177944 sshd\[8529\]: Failed password for root from 112.85.42.229 port 31972 ssh2 ...	2019-09-02 10:07:32
211.20.154.217	attack	Trying ports that it shouldn't be.	2019-09-02 10:42:21
113.11.136.28	attackbots	Sep 1 11:25:47 mail postfix/postscreen[85312]: PREGREET 19 after 0.61 from [113.11.136.28]:47239: EHLO lrmmotors.it ...	2019-09-02 10:26:35

Recently Reported IPs

231.206.156.74	89.80.227.186	55.192.3.20	9.202.186.182
9.226.140.212	25.27.161.173	248.37.9.52	90.57.221.195
91.116.150.38	240.255.145.73	80.220.91.111	248.142.173.48
176.155.222.219	253.100.74.143	91.251.112.15	91.33.126.180
81.94.146.225	92.134.33.102	92.141.143.33	216.72.187.247