146.66.244.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Spain

Internet Service Provider: Lleida Wifi Networks SL

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH login attempts with user root at 2020-01-02.	2020-01-03 02:38:57

Comments on same subnet:

IP	Type	Details	Datetime
146.66.244.246	attack	Invalid user ubnt from 146.66.244.246 port 43390	2020-09-03 02:05:28
146.66.244.246	attack	Sep 1 11:57:45 server sshd[9434]: Invalid user jh from 146.66.244.246 port 53938 Sep 1 11:57:46 server sshd[9434]: Failed password for invalid user jh from 146.66.244.246 port 53938 ssh2 Sep 1 11:57:45 server sshd[9434]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 Sep 1 11:57:45 server sshd[9434]: Invalid user jh from 146.66.244.246 port 53938 Sep 1 11:57:46 server sshd[9434]: Failed password for invalid user jh from 146.66.244.246 port 53938 ssh2 ...	2020-09-01 17:10:09
146.66.244.246	attackbotsspam	Time: Mon Aug 24 10:03:07 2020 +0000 IP: 146.66.244.246 (ES/Spain/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Aug 24 09:58:46 vps1 sshd[10149]: Invalid user fabien from 146.66.244.246 port 59804 Aug 24 09:58:49 vps1 sshd[10149]: Failed password for invalid user fabien from 146.66.244.246 port 59804 ssh2 Aug 24 10:01:26 vps1 sshd[10519]: Invalid user library from 146.66.244.246 port 41962 Aug 24 10:01:28 vps1 sshd[10519]: Failed password for invalid user library from 146.66.244.246 port 41962 ssh2 Aug 24 10:03:05 vps1 sshd[10656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 user=root	2020-08-24 19:28:56
146.66.244.246	attack	2020-08-22T20:58:58.192128shield sshd\[17800\]: Invalid user progress from 146.66.244.246 port 50022 2020-08-22T20:58:58.201840shield sshd\[17800\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 2020-08-22T20:59:00.919762shield sshd\[17800\]: Failed password for invalid user progress from 146.66.244.246 port 50022 ssh2 2020-08-22T21:02:38.043829shield sshd\[18562\]: Invalid user admin from 146.66.244.246 port 57208 2020-08-22T21:02:38.053353shield sshd\[18562\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246	2020-08-23 05:11:42
146.66.244.246	attackbotsspam	Aug 16 00:18:45 jane sshd[9078]: Failed password for root from 146.66.244.246 port 33264 ssh2 ...	2020-08-16 06:52:10
146.66.244.246	attack	"fail2ban match"	2020-08-12 03:19:10
146.66.244.246	attackbotsspam	2020-08-02T07:03:21.758606lavrinenko.info sshd[15578]: Invalid user 123nikanorov123 from 146.66.244.246 port 46376 2020-08-02T07:03:21.766860lavrinenko.info sshd[15578]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 2020-08-02T07:03:21.758606lavrinenko.info sshd[15578]: Invalid user 123nikanorov123 from 146.66.244.246 port 46376 2020-08-02T07:03:23.925980lavrinenko.info sshd[15578]: Failed password for invalid user 123nikanorov123 from 146.66.244.246 port 46376 ssh2 2020-08-02T07:07:29.949396lavrinenko.info sshd[15780]: Invalid user caja30 from 146.66.244.246 port 58036 ...	2020-08-02 18:49:54
146.66.244.246	attackbotsspam	2020-07-27T05:54:31.980329sd-86998 sshd[10591]: Invalid user oliver from 146.66.244.246 port 40476 2020-07-27T05:54:31.982619sd-86998 sshd[10591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 2020-07-27T05:54:31.980329sd-86998 sshd[10591]: Invalid user oliver from 146.66.244.246 port 40476 2020-07-27T05:54:34.089822sd-86998 sshd[10591]: Failed password for invalid user oliver from 146.66.244.246 port 40476 ssh2 2020-07-27T05:57:06.423415sd-86998 sshd[10988]: Invalid user ashley from 146.66.244.246 port 54704 ...	2020-07-27 12:04:08
146.66.244.246	attackbotsspam	Jun 29 23:35:02 buvik sshd[16136]: Failed password for invalid user debora from 146.66.244.246 port 34190 ssh2 Jun 29 23:37:23 buvik sshd[16485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 user=root Jun 29 23:37:25 buvik sshd[16485]: Failed password for root from 146.66.244.246 port 43746 ssh2 ...	2020-06-30 09:09:15
146.66.244.246	attackspam	Jun 28 15:14:24 server sshd[11101]: Failed password for invalid user gituser from 146.66.244.246 port 37748 ssh2 Jun 28 15:17:48 server sshd[14386]: Failed password for root from 146.66.244.246 port 35894 ssh2 Jun 28 15:21:11 server sshd[17587]: Failed password for root from 146.66.244.246 port 34038 ssh2	2020-06-28 23:52:01
146.66.244.246	attackspambots	Jun 27 10:40:54 Tower sshd[11794]: Connection from 146.66.244.246 port 57590 on 192.168.10.220 port 22 rdomain "" Jun 27 10:40:55 Tower sshd[11794]: Failed password for root from 146.66.244.246 port 57590 ssh2 Jun 27 10:40:55 Tower sshd[11794]: Received disconnect from 146.66.244.246 port 57590:11: Bye Bye [preauth] Jun 27 10:40:55 Tower sshd[11794]: Disconnected from authenticating user root 146.66.244.246 port 57590 [preauth]	2020-06-28 00:07:52
146.66.244.246	attackspambots	Jun 21 15:14:37 scw-tender-jepsen sshd[19438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 Jun 21 15:14:38 scw-tender-jepsen sshd[19438]: Failed password for invalid user gitlab-runner from 146.66.244.246 port 54040 ssh2	2020-06-21 23:26:15
146.66.244.246	attack	Jun 16 14:31:37 lanister sshd[3875]: Invalid user vlad from 146.66.244.246 Jun 16 14:31:37 lanister sshd[3875]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 Jun 16 14:31:37 lanister sshd[3875]: Invalid user vlad from 146.66.244.246 Jun 16 14:31:38 lanister sshd[3875]: Failed password for invalid user vlad from 146.66.244.246 port 59584 ssh2	2020-06-17 02:39:50
146.66.244.246	attackbots	Jun 15 11:47:20 dev0-dcde-rnet sshd[25908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 Jun 15 11:47:22 dev0-dcde-rnet sshd[25908]: Failed password for invalid user redis from 146.66.244.246 port 41242 ssh2 Jun 15 11:54:05 dev0-dcde-rnet sshd[26004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246	2020-06-15 18:42:32
146.66.244.246	attackbotsspam	2020-06-09T17:57:18.428275rocketchat.forhosting.nl sshd[10754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=146.66.244.246 2020-06-09T17:57:18.425906rocketchat.forhosting.nl sshd[10754]: Invalid user ts3user from 146.66.244.246 port 59012 2020-06-09T17:57:21.073272rocketchat.forhosting.nl sshd[10754]: Failed password for invalid user ts3user from 146.66.244.246 port 59012 ssh2 ...	2020-06-10 00:30:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 146.66.244.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48706
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;146.66.244.2.			IN	A

;; AUTHORITY SECTION:
.			249	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 112 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 02:38:53 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 2.244.66.146.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

** server can't find 2.244.66.146.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.33.67.12	attackspambots	Automatic report - Banned IP Access	2019-09-06 10:45:44
54.38.184.10	attackspambots	Sep 6 04:40:08 SilenceServices sshd[1753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.184.10 Sep 6 04:40:11 SilenceServices sshd[1753]: Failed password for invalid user demo from 54.38.184.10 port 36888 ssh2 Sep 6 04:43:55 SilenceServices sshd[3156]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.184.10	2019-09-06 11:02:22
191.34.162.186	attack	Sep 5 11:34:12 eddieflores sshd\[24908\]: Invalid user ut2k4server from 191.34.162.186 Sep 5 11:34:12 eddieflores sshd\[24908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.34.162.186 Sep 5 11:34:13 eddieflores sshd\[24908\]: Failed password for invalid user ut2k4server from 191.34.162.186 port 51255 ssh2 Sep 5 11:39:34 eddieflores sshd\[25421\]: Invalid user changeme from 191.34.162.186 Sep 5 11:39:34 eddieflores sshd\[25421\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.34.162.186	2019-09-06 10:47:38
220.177.111.28	attackspambots	Unauthorised access (Sep 6) SRC=220.177.111.28 LEN=40 TOS=0x10 PREC=0x40 TTL=48 ID=14843 TCP DPT=8080 WINDOW=34852 SYN	2019-09-06 10:28:09
181.28.94.205	attack	Sep 5 16:34:30 web9 sshd\[13386\]: Invalid user bots from 181.28.94.205 Sep 5 16:34:30 web9 sshd\[13386\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.28.94.205 Sep 5 16:34:31 web9 sshd\[13386\]: Failed password for invalid user bots from 181.28.94.205 port 52294 ssh2 Sep 5 16:39:36 web9 sshd\[14409\]: Invalid user test from 181.28.94.205 Sep 5 16:39:36 web9 sshd\[14409\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.28.94.205	2019-09-06 10:52:43
61.216.124.84	attackbots	Unauthorized connection attempt from IP address 61.216.124.84 on Port 445(SMB)	2019-09-06 10:53:10
62.234.99.172	attack	Sep 6 00:51:19 OPSO sshd\[17114\]: Invalid user password from 62.234.99.172 port 33247 Sep 6 00:51:19 OPSO sshd\[17114\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.99.172 Sep 6 00:51:21 OPSO sshd\[17114\]: Failed password for invalid user password from 62.234.99.172 port 33247 ssh2 Sep 6 00:53:28 OPSO sshd\[17350\]: Invalid user a from 62.234.99.172 port 44025 Sep 6 00:53:28 OPSO sshd\[17350\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.99.172	2019-09-06 10:28:47
188.165.32.90	attack	Sep 5 13:22:29 auw2 sshd\[4590\]: Invalid user 111111 from 188.165.32.90 Sep 5 13:22:29 auw2 sshd\[4590\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.32.90 Sep 5 13:22:31 auw2 sshd\[4590\]: Failed password for invalid user 111111 from 188.165.32.90 port 57414 ssh2 Sep 5 13:26:23 auw2 sshd\[4982\]: Invalid user mysql@123 from 188.165.32.90 Sep 5 13:26:23 auw2 sshd\[4982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.32.90	2019-09-06 11:04:38
196.52.43.117	attack	Automatic report - Port Scan Attack	2019-09-06 11:01:16
181.121.195.219	attack	Unauthorized connection attempt from IP address 181.121.195.219 on Port 445(SMB)	2019-09-06 10:43:40
95.161.222.211	attackspam	Unauthorized connection attempt from IP address 95.161.222.211 on Port 445(SMB)	2019-09-06 10:29:11
58.246.138.30	attack	Sep 5 21:02:05 ws12vmsma01 sshd[55472]: Invalid user vbox from 58.246.138.30 Sep 5 21:02:08 ws12vmsma01 sshd[55472]: Failed password for invalid user vbox from 58.246.138.30 port 40058 ssh2 Sep 5 21:11:51 ws12vmsma01 sshd[56837]: Invalid user csr1dev from 58.246.138.30 ...	2019-09-06 10:55:40
188.130.233.44	attackbots	Unauthorized connection attempt from IP address 188.130.233.44 on Port 445(SMB)	2019-09-06 10:24:58
91.151.81.80	attackspam	Sep 5 21:23:48 mxgate1 postfix/postscreen[30350]: CONNECT from [91.151.81.80]:59527 to [176.31.12.44]:25 Sep 5 21:23:48 mxgate1 postfix/dnsblog[30362]: addr 91.151.81.80 listed by domain zen.spamhaus.org as 127.0.0.3 Sep 5 21:23:48 mxgate1 postfix/dnsblog[30352]: addr 91.151.81.80 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Sep 5 21:23:48 mxgate1 postfix/dnsblog[30354]: addr 91.151.81.80 listed by domain b.barracudacentral.org as 127.0.0.2 Sep 5 21:23:54 mxgate1 postfix/postscreen[30350]: DNSBL rank 4 for [91.151.81.80]:59527 Sep x@x Sep 5 21:23:55 mxgate1 postfix/postscreen[30350]: DISCONNECT [91.151.81.80]:59527 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=91.151.81.80	2019-09-06 10:39:41
182.93.48.21	attackspambots	Sep 6 04:20:24 core sshd[3326]: Invalid user 123 from 182.93.48.21 port 54840 Sep 6 04:20:27 core sshd[3326]: Failed password for invalid user 123 from 182.93.48.21 port 54840 ssh2 ...	2019-09-06 10:43:12

Recently Reported IPs

143.202.164.1	126.52.240.58	53.13.68.154	143.192.97.1
217.206.185.154	69.63.254.19	92.156.251.123	16.125.159.80
220.137.9.173	158.161.168.208	143.0.164.1	222.69.168.141
34.35.85.140	117.208.126.88	175.180.221.163	137.184.61.242
79.192.183.207	60.96.91.109	175.169.87.115	15.244.204.242