148.0.212.66 - IPInfo

Basic Info

City: Barrio Norte

Region: Provincia de Valverde

Country: Dominican Republic

Internet Service Provider: Compania Dominicana de Telefonos S. A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	May 14 22:54:14 blackhole sshd\[8174\]: Invalid user system from 148.0.212.66 port 62170 May 14 22:54:15 blackhole sshd\[8174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.0.212.66 May 14 22:54:17 blackhole sshd\[8174\]: Failed password for invalid user system from 148.0.212.66 port 62170 ssh2 ...	2020-05-15 07:12:05

Type

Details

Datetime

attack

May 14 22:54:14 blackhole sshd\[8174\]: Invalid user system from 148.0.212.66 port 62170
May 14 22:54:15 blackhole sshd\[8174\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.0.212.66
May 14 22:54:17 blackhole sshd\[8174\]: Failed password for invalid user system from 148.0.212.66 port 62170 ssh2
...

2020-05-15 07:12:05

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.0.212.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64679
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.0.212.66.			IN	A

;; AUTHORITY SECTION:
.			272	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051401 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 15 07:12:01 CST 2020
;; MSG SIZE  rcvd: 116

Host info

66.212.0.148.in-addr.arpa domain name pointer 66.212.0.148.d.dyn.claro.net.do.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.212.0.148.in-addr.arpa	name = 66.212.0.148.d.dyn.claro.net.do.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
23.99.176.168	attackspam	$f2bV_matches_ltvn	2019-11-18 04:42:52
121.172.162.46	attack	Nov 17 05:49:47 web1 sshd\[13622\]: Invalid user ca from 121.172.162.46 Nov 17 05:49:47 web1 sshd\[13622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.172.162.46 Nov 17 05:49:49 web1 sshd\[13622\]: Failed password for invalid user ca from 121.172.162.46 port 35518 ssh2 Nov 17 05:54:41 web1 sshd\[14043\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.172.162.46 user=root Nov 17 05:54:43 web1 sshd\[14043\]: Failed password for root from 121.172.162.46 port 44864 ssh2	2019-11-18 04:22:54
5.152.159.31	attackbots	Repeated brute force against a port	2019-11-18 04:27:10
106.13.46.229	attack	Nov 17 07:58:30 web1 sshd\[24939\]: Invalid user lisa from 106.13.46.229 Nov 17 07:58:30 web1 sshd\[24939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.46.229 Nov 17 07:58:32 web1 sshd\[24939\]: Failed password for invalid user lisa from 106.13.46.229 port 33248 ssh2 Nov 17 08:02:37 web1 sshd\[25279\]: Invalid user nfs from 106.13.46.229 Nov 17 08:02:37 web1 sshd\[25279\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.46.229	2019-11-18 04:51:05
106.12.111.201	attack	Nov 17 15:32:09 vps666546 sshd\[2082\]: Invalid user colnago from 106.12.111.201 port 58184 Nov 17 15:32:09 vps666546 sshd\[2082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 Nov 17 15:32:11 vps666546 sshd\[2082\]: Failed password for invalid user colnago from 106.12.111.201 port 58184 ssh2 Nov 17 15:37:34 vps666546 sshd\[2185\]: Invalid user slackware from 106.12.111.201 port 35262 Nov 17 15:37:34 vps666546 sshd\[2185\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.111.201 ...	2019-11-18 04:45:15
62.106.123.90	attackspam	Automatic report - Port Scan Attack	2019-11-18 04:29:45
187.49.84.61	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-11-18 04:40:17
47.190.18.35	attackspambots	2019-11-17T14:37:36.504385hub.schaetter.us sshd\[2911\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.190.18.35 user=root 2019-11-17T14:37:38.456335hub.schaetter.us sshd\[2913\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.190.18.35 user=root 2019-11-17T14:37:38.882459hub.schaetter.us sshd\[2911\]: Failed password for root from 47.190.18.35 port 47604 ssh2 2019-11-17T14:37:39.082835hub.schaetter.us sshd\[2915\]: Invalid user DUP from 47.190.18.35 port 48324 2019-11-17T14:37:39.092277hub.schaetter.us sshd\[2915\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.190.18.35 ...	2019-11-18 04:44:19
27.145.62.197	attack	Telnet/23 MH Probe, BF, Hack -	2019-11-18 04:15:13
154.221.25.247	attack	2019-11-17T17:15:46.048408abusebot-3.cloudsearch.cf sshd\[16849\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.221.25.247 user=root	2019-11-18 04:16:13
202.120.39.141	attackbots	Fail2Ban Ban Triggered	2019-11-18 04:52:30
179.33.137.117	attackbots	Nov 17 17:44:28 h2177944 sshd\[18287\]: Invalid user ameel from 179.33.137.117 port 47828 Nov 17 17:44:28 h2177944 sshd\[18287\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.33.137.117 Nov 17 17:44:29 h2177944 sshd\[18287\]: Failed password for invalid user ameel from 179.33.137.117 port 47828 ssh2 Nov 17 17:49:17 h2177944 sshd\[18460\]: Invalid user hoerning from 179.33.137.117 port 56622 ...	2019-11-18 04:30:57
45.178.23.1	attackspam	port scan and connect, tcp 23 (telnet)	2019-11-18 04:53:23
118.42.125.170	attackspambots	2019-11-17T19:50:12.943124tmaserv sshd\[27651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.42.125.170 2019-11-17T19:50:14.420628tmaserv sshd\[27651\]: Failed password for invalid user backup from 118.42.125.170 port 39190 ssh2 2019-11-17T20:53:04.719059tmaserv sshd\[30801\]: Invalid user aso from 118.42.125.170 port 46430 2019-11-17T20:53:04.724345tmaserv sshd\[30801\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.42.125.170 2019-11-17T20:53:06.701629tmaserv sshd\[30801\]: Failed password for invalid user aso from 118.42.125.170 port 46430 ssh2 2019-11-17T20:57:09.308997tmaserv sshd\[31005\]: Invalid user beom from 118.42.125.170 port 59886 ...	2019-11-18 04:42:29
222.138.162.185	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-11-18 04:16:42

Recently Reported IPs

110.14.146.245	209.97.114.228	200.198.24.7	102.177.157.32
18.217.172.198	98.176.237.25	90.90.132.92	75.206.206.157
68.183.238.182	141.26.68.113	174.125.31.85	107.141.94.21
70.186.94.12	67.191.169.243	222.116.161.190	189.90.21.39
117.175.147.182	74.87.11.52	45.168.35.132	69.152.24.13