36.148.2.149 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
36.148.20.22	attackbotsspam	Brute-Force,SSH	2020-09-30 04:38:35
36.148.20.22	attackspam	Lines containing failures of 36.148.20.22 Sep 28 19:36:33 shared06 sshd[28469]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.20.22 user=r.r Sep 28 19:36:36 shared06 sshd[28469]: Failed password for r.r from 36.148.20.22 port 50932 ssh2 Sep 28 19:36:36 shared06 sshd[28469]: Received disconnect from 36.148.20.22 port 50932:11: Bye Bye [preauth] Sep 28 19:36:36 shared06 sshd[28469]: Disconnected from authenticating user r.r 36.148.20.22 port 50932 [preauth] Sep 28 19:58:40 shared06 sshd[3493]: Invalid user mc from 36.148.20.22 port 49492 Sep 28 19:58:40 shared06 sshd[3493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.20.22 Sep 28 19:58:42 shared06 sshd[3493]: Failed password for invalid user mc from 36.148.20.22 port 49492 ssh2 Sep 28 19:58:42 shared06 sshd[3493]: Received disconnect from 36.148.20.22 port 49492:11: Bye Bye [preauth] Sep 28 19:58:42 shared06 sshd[3493]: Dis........ ------------------------------	2020-09-29 20:47:03
36.148.20.22	attackspam	21 attempts against mh-ssh on maple	2020-09-29 12:57:22
36.148.23.50	attackbots	2020-09-28T13:36:36.646731linuxbox-skyline sshd[204551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.23.50 user=root 2020-09-28T13:36:38.880667linuxbox-skyline sshd[204551]: Failed password for root from 36.148.23.50 port 49336 ssh2 ...	2020-09-29 04:44:07
36.148.23.50	attack	Sep 28 04:09:37 Tower sshd[34539]: Connection from 36.148.23.50 port 41692 on 192.168.10.220 port 22 rdomain "" Sep 28 04:09:38 Tower sshd[34539]: Invalid user ccc from 36.148.23.50 port 41692 Sep 28 04:09:38 Tower sshd[34539]: error: Could not get shadow information for NOUSER Sep 28 04:09:38 Tower sshd[34539]: Failed password for invalid user ccc from 36.148.23.50 port 41692 ssh2 Sep 28 04:09:38 Tower sshd[34539]: Received disconnect from 36.148.23.50 port 41692:11: Bye Bye [preauth] Sep 28 04:09:38 Tower sshd[34539]: Disconnected from invalid user ccc 36.148.23.50 port 41692 [preauth]	2020-09-28 21:01:37
36.148.23.50	attackbots	ssh brute force	2020-09-28 13:06:31
36.148.22.126	attackspam	Sep 13 16:30:51 root sshd[2723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.22.126 user=root Sep 13 16:30:54 root sshd[2723]: Failed password for root from 36.148.22.126 port 57044 ssh2 ...	2020-09-14 00:08:45
36.148.22.126	attack	Sep 13 02:18:23 our-server-hostname sshd[10851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.22.126 user=r.r Sep 13 02:18:25 our-server-hostname sshd[10851]: Failed password for r.r from 36.148.22.126 port 35014 ssh2 Sep 13 02:25:26 our-server-hostname sshd[11410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.22.126 user=r.r Sep 13 02:25:27 our-server-hostname sshd[11410]: Failed password for r.r from 36.148.22.126 port 42594 ssh2 Sep 13 02:29:00 our-server-hostname sshd[11749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.22.126 user=r.r Sep 13 02:29:02 our-server-hostname sshd[11749]: Failed password for r.r from 36.148.22.126 port 49484 ssh2 Sep 13 02:32:08 our-server-hostname sshd[12028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.22.126 user=r.r Sep 13 02:32:10 ........ -------------------------------	2020-09-13 15:59:38
36.148.22.126	attackspam	Sep 13 02:18:23 our-server-hostname sshd[10851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.22.126 user=r.r Sep 13 02:18:25 our-server-hostname sshd[10851]: Failed password for r.r from 36.148.22.126 port 35014 ssh2 Sep 13 02:25:26 our-server-hostname sshd[11410]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.22.126 user=r.r Sep 13 02:25:27 our-server-hostname sshd[11410]: Failed password for r.r from 36.148.22.126 port 42594 ssh2 Sep 13 02:29:00 our-server-hostname sshd[11749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.22.126 user=r.r Sep 13 02:29:02 our-server-hostname sshd[11749]: Failed password for r.r from 36.148.22.126 port 49484 ssh2 Sep 13 02:32:08 our-server-hostname sshd[12028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.22.126 user=r.r Sep 13 02:32:10 ........ -------------------------------	2020-09-13 07:43:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 36.148.2.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17636
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;36.148.2.149.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025013100 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 31 23:19:36 CST 2025
;; MSG SIZE  rcvd: 105

Host info

b'Host 149.2.148.36.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 149.2.148.36.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.138.18.35	attackbots	$f2bV_matches	2020-01-26 05:01:20
49.88.112.74	attackbots	Jan 25 22:08:45 MK-Soft-VM6 sshd[4047]: Failed password for root from 49.88.112.74 port 60021 ssh2 ...	2020-01-26 05:29:13
128.199.170.33	attackspam	Jan 25 22:14:03 localhost sshd\[11106\]: Invalid user ubuntu from 128.199.170.33 port 43830 Jan 25 22:14:03 localhost sshd\[11106\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.170.33 Jan 25 22:14:06 localhost sshd\[11106\]: Failed password for invalid user ubuntu from 128.199.170.33 port 43830 ssh2	2020-01-26 05:24:49
14.248.129.176	attack	Brute force attempt	2020-01-26 05:26:55
61.73.231.204	attack	Jan 25 18:13:55 ws19vmsma01 sshd[104085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.73.231.204 Jan 25 18:13:56 ws19vmsma01 sshd[104085]: Failed password for invalid user vmware from 61.73.231.204 port 51170 ssh2 ...	2020-01-26 05:33:00
119.39.46.202	attackbots	Unauthorized connection attempt detected from IP address 119.39.46.202 to port 8081 [J]	2020-01-26 05:03:32
1.170.152.22	attack	Unauthorized connection attempt detected from IP address 1.170.152.22 to port 23 [J]	2020-01-26 05:14:29
88.249.101.213	attackspam	Unauthorized connection attempt detected from IP address 88.249.101.213 to port 80 [J]	2020-01-26 05:08:11
183.63.22.66	attackbots	firewall-block, port(s): 1433/tcp	2020-01-26 05:28:24
79.164.74.157	attackspam	Unauthorized connection attempt detected from IP address 79.164.74.157 to port 5555 [J]	2020-01-26 05:09:41
143.159.191.171	attackspam	Unauthorized connection attempt detected from IP address 143.159.191.171 to port 2220 [J]	2020-01-26 04:59:31
218.92.0.138	attackbotsspam	2020-01-25T22:14:12.7232871240 sshd\[4438\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root 2020-01-25T22:14:15.3913161240 sshd\[4438\]: Failed password for root from 218.92.0.138 port 48604 ssh2 2020-01-25T22:14:18.5194761240 sshd\[4438\]: Failed password for root from 218.92.0.138 port 48604 ssh2 ...	2020-01-26 05:20:35
124.156.50.77	attack	Unauthorized connection attempt detected from IP address 124.156.50.77 to port 4660 [J]	2020-01-26 05:00:25
120.132.2.135	attack	Jan 25 21:14:09 work-partkepr sshd\[22956\]: Invalid user webrun from 120.132.2.135 port 45234 Jan 25 21:14:09 work-partkepr sshd\[22956\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.2.135 ...	2020-01-26 05:25:25
114.220.76.79	attack	SSH/22 MH Probe, BF, Hack -	2020-01-26 05:04:59

Recently Reported IPs

119.120.194.53	221.7.44.171	246.113.78.218	239.82.42.118
214.12.141.145	39.122.163.161	220.232.102.91	41.169.213.23
5.102.237.204	229.114.211.162	254.183.57.127	64.193.76.159
221.211.55.87	65.230.255.179	128.95.49.32	176.163.33.176
35.63.138.32	208.112.191.50	37.222.227.209	161.138.186.80