47.98.148.136 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: Aliyun Computing Co. Ltd

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Unauthorized connection attempt detected from IP address 47.98.148.136 to port 21 [T]	2020-01-09 00:15:47

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 47.98.148.136
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32183
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;47.98.148.136.			IN	A

;; AUTHORITY SECTION:
.			288	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010800 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 09 00:15:41 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 136.148.98.47.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 136.148.98.47.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.157.23.186	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 13-12-2019 04:55:09.	2019-12-13 14:20:00
125.163.117.209	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 13-12-2019 04:55:09.	2019-12-13 14:21:24
144.217.243.216	attackspam	2019-12-13T06:34:53.078108shield sshd\[8852\]: Invalid user evjenth from 144.217.243.216 port 59136 2019-12-13T06:34:53.082453shield sshd\[8852\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.ip-144-217-243.net 2019-12-13T06:34:55.611727shield sshd\[8852\]: Failed password for invalid user evjenth from 144.217.243.216 port 59136 ssh2 2019-12-13T06:40:05.577480shield sshd\[9080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=216.ip-144-217-243.net user=root 2019-12-13T06:40:07.605424shield sshd\[9080\]: Failed password for root from 144.217.243.216 port 41268 ssh2	2019-12-13 14:42:51
35.241.139.204	attackbots	Dec 13 07:40:34 mail sshd[29783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.241.139.204 Dec 13 07:40:36 mail sshd[29783]: Failed password for invalid user ching from 35.241.139.204 port 53670 ssh2 Dec 13 07:46:40 mail sshd[30596]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.241.139.204	2019-12-13 15:01:18
110.137.177.1	attackspam	Unauthorised access (Dec 13) SRC=110.137.177.1 LEN=48 TTL=117 ID=6894 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Dec 13) SRC=110.137.177.1 LEN=52 TTL=117 ID=23386 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-13 14:55:46
186.94.212.186	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 13-12-2019 04:55:10.	2019-12-13 14:19:11
89.22.254.55	attackspambots	Dec 12 20:33:29 tdfoods sshd\[9008\]: Invalid user admin from 89.22.254.55 Dec 12 20:33:29 tdfoods sshd\[9008\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.22.254.55 Dec 12 20:33:31 tdfoods sshd\[9008\]: Failed password for invalid user admin from 89.22.254.55 port 38888 ssh2 Dec 12 20:40:01 tdfoods sshd\[9760\]: Invalid user smmsp from 89.22.254.55 Dec 12 20:40:01 tdfoods sshd\[9760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.22.254.55	2019-12-13 14:58:18
186.188.141.157	attack	Unauthorized connection attempt detected from IP address 186.188.141.157 to port 445	2019-12-13 14:27:35
42.118.226.87	attackspam	Unauthorized connection attempt detected from IP address 42.118.226.87 to port 445	2019-12-13 14:13:56
202.152.0.14	attack	Dec 13 07:40:41 mail sshd[29791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.0.14 Dec 13 07:40:44 mail sshd[29791]: Failed password for invalid user mikalyn from 202.152.0.14 port 58938 ssh2 Dec 13 07:47:38 mail sshd[30806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.0.14	2019-12-13 15:02:32
159.89.139.228	attackbots	Dec 13 07:11:07 mail sshd[25521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.139.228 Dec 13 07:11:09 mail sshd[25521]: Failed password for invalid user bash from 159.89.139.228 port 58128 ssh2 Dec 13 07:16:45 mail sshd[26259]: Failed password for dovecot from 159.89.139.228 port 37600 ssh2	2019-12-13 14:52:59
37.49.230.64	attackspambots	Dec 13 06:08:03 vmd46246 kernel: [125063.386636] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=37.49.230.64 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=14689 PROTO=TCP SPT=53612 DPT=85 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 13 06:08:15 vmd46246 kernel: [125075.559849] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=37.49.230.64 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=16692 PROTO=TCP SPT=53612 DPT=90 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 13 06:08:56 vmd46246 kernel: [125116.482230] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3e:fb:88:28:99:3a:4d:30:af:08:00 SRC=37.49.230.64 DST=144.91.112.181 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=8609 PROTO=TCP SPT=53612 DPT=84 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-13 14:20:28
177.43.91.50	attackbots	Dec 13 07:06:40 mail sshd[24772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.91.50 Dec 13 07:06:41 mail sshd[24772]: Failed password for invalid user host from 177.43.91.50 port 25220 ssh2 Dec 13 07:13:33 mail sshd[25793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.43.91.50	2019-12-13 14:52:33
14.98.227.222	attackbotsspam	Unauthorised access (Dec 13) SRC=14.98.227.222 LEN=52 TTL=108 ID=15720 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-13 14:29:50
12.244.187.30	attackspam	Dec 13 07:28:13 mail sshd[27794]: Failed password for root from 12.244.187.30 port 47928 ssh2 Dec 13 07:37:31 mail sshd[29244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=12.244.187.30 Dec 13 07:37:33 mail sshd[29244]: Failed password for invalid user forum from 12.244.187.30 port 52890 ssh2	2019-12-13 14:46:02

Recently Reported IPs

178.91.22.78	92.18.147.180	140.240.217.177	253.25.145.21
121.228.109.70	119.183.189.122	115.199.253.204	111.20.101.114
106.124.3.200	101.109.177.111	68.183.237.173	42.118.71.242
42.116.43.103	42.115.147.39	42.115.147.26	27.35.236.64
27.17.145.148	229.63.65.255	27.2.146.233	69.215.55.55