148.66.134.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
spamattack	"GET","\\/xmlrpc.php"	2023-08-08 19:41:22

Comments on same subnet:

IP	Type	Details	Datetime
148.66.134.85	attackspambots	May 1 22:05:44 srv-ubuntu-dev3 sshd[30273]: Invalid user dkc from 148.66.134.85 May 1 22:05:44 srv-ubuntu-dev3 sshd[30273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 May 1 22:05:44 srv-ubuntu-dev3 sshd[30273]: Invalid user dkc from 148.66.134.85 May 1 22:05:46 srv-ubuntu-dev3 sshd[30273]: Failed password for invalid user dkc from 148.66.134.85 port 52150 ssh2 May 1 22:10:00 srv-ubuntu-dev3 sshd[31012]: Invalid user ts3server from 148.66.134.85 May 1 22:10:00 srv-ubuntu-dev3 sshd[31012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 May 1 22:10:00 srv-ubuntu-dev3 sshd[31012]: Invalid user ts3server from 148.66.134.85 May 1 22:10:02 srv-ubuntu-dev3 sshd[31012]: Failed password for invalid user ts3server from 148.66.134.85 port 36192 ssh2 May 1 22:14:37 srv-ubuntu-dev3 sshd[31743]: Invalid user john from 148.66.134.85 ...	2020-05-02 05:43:54
148.66.134.85	attack	Apr 17 11:33:34 lukav-desktop sshd\[10646\]: Invalid user git from 148.66.134.85 Apr 17 11:33:34 lukav-desktop sshd\[10646\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 Apr 17 11:33:37 lukav-desktop sshd\[10646\]: Failed password for invalid user git from 148.66.134.85 port 49992 ssh2 Apr 17 11:36:45 lukav-desktop sshd\[10775\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 user=root Apr 17 11:36:47 lukav-desktop sshd\[10775\]: Failed password for root from 148.66.134.85 port 37496 ssh2	2020-04-17 18:14:52
148.66.134.85	attackbots	SSH Bruteforce attack	2020-04-16 21:25:30
148.66.134.226	attackspam	Apr 16 05:37:35 mail.srvfarm.net postfix/smtpd[2662907]: NOQUEUE: reject: RCPT from unknown[148.66.134.226]: 554 5.7.1 Service unavailable; Client host [148.66.134.226] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/148.66.134.226 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=SMTP helo= Apr 16 05:37:35 mail.srvfarm.net postfix/smtpd[2662907]: lost connection after RCPT from unknown[148.66.134.226] Apr 16 05:37:38 mail.srvfarm.net postfix/smtpd[2662488]: NOQUEUE: reject: RCPT from unknown[148.66.134.226]: 554 5.7.1 Service unavailable; Client host [148.66.134.226] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/148.66.134.226 / https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=SMTP helo= Apr 16 05:37:38 mail.srvfarm.net postfix/smtpd[2662488]: lost connection after RCPT from unknown[148.66.134.226] Apr 16 05:37:48 mail.srvfarm.net postfix/s	2020-04-16 12:41:36
148.66.134.85	attackbots	2020-04-16T02:28:55.311991centos sshd[20868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 2020-04-16T02:28:55.304439centos sshd[20868]: Invalid user service from 148.66.134.85 port 46530 2020-04-16T02:28:56.951684centos sshd[20868]: Failed password for invalid user service from 148.66.134.85 port 46530 ssh2 ...	2020-04-16 08:29:54
148.66.134.85	attack	Apr 15 23:16:42 debian sshd[12615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 Apr 15 23:16:44 debian sshd[12615]: Failed password for invalid user store from 148.66.134.85 port 39988 ssh2 Apr 15 23:20:22 debian sshd[12620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85	2020-04-16 04:17:23
148.66.134.85	attackbotsspam	Apr 11 11:44:59 vserver sshd\[25337\]: Failed password for root from 148.66.134.85 port 57466 ssh2Apr 11 11:50:02 vserver sshd\[25380\]: Invalid user buhler from 148.66.134.85Apr 11 11:50:04 vserver sshd\[25380\]: Failed password for invalid user buhler from 148.66.134.85 port 49284 ssh2Apr 11 11:54:19 vserver sshd\[25420\]: Invalid user install from 148.66.134.85 ...	2020-04-11 18:29:30
148.66.134.85	attack	Apr 8 15:15:45 haigwepa sshd[31979]: Failed password for ftp from 148.66.134.85 port 36512 ssh2 ...	2020-04-08 23:01:42
148.66.134.85	attack	SSH Invalid Login	2020-04-08 09:48:09
148.66.134.85	attackbots	Apr 5 23:48:41 lanister sshd[18031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 user=root Apr 5 23:48:44 lanister sshd[18031]: Failed password for root from 148.66.134.85 port 54410 ssh2 Apr 5 23:53:04 lanister sshd[18114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 user=root Apr 5 23:53:06 lanister sshd[18114]: Failed password for root from 148.66.134.85 port 39302 ssh2	2020-04-06 16:19:32
148.66.134.85	attackspambots	(sshd) Failed SSH login from 148.66.134.85 (SG/Singapore/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 4 01:42:20 amsweb01 sshd[26780]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 user=root Apr 4 01:42:22 amsweb01 sshd[26780]: Failed password for root from 148.66.134.85 port 34576 ssh2 Apr 4 01:56:31 amsweb01 sshd[28270]: Invalid user user from 148.66.134.85 port 56942 Apr 4 01:56:34 amsweb01 sshd[28270]: Failed password for invalid user user from 148.66.134.85 port 56942 ssh2 Apr 4 02:00:42 amsweb01 sshd[28672]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 user=root	2020-04-04 08:29:41
148.66.134.85	attackspambots	$f2bV_matches	2020-03-30 01:45:24
148.66.134.148	attackspambots	SSH login attempts.	2020-03-28 01:28:50
148.66.134.85	attack	Repeated brute force against a port	2020-03-26 20:24:26
148.66.134.85	attackspambots	Mar 18 10:06:42 vps46666688 sshd[22830]: Failed password for root from 148.66.134.85 port 60958 ssh2 Mar 18 10:11:34 vps46666688 sshd[22987]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.134.85 ...	2020-03-18 21:46:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.66.134.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 32996
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.66.134.3.			IN	A

;; AUTHORITY SECTION:
.			129	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023080800 1800 900 604800 86400

;; Query time: 134 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Aug 08 19:40:56 CST 2023
;; MSG SIZE  rcvd: 105

Host info

3.134.66.148.in-addr.arpa has no PTR record

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 3.134.66.148.in-addr.arpa.: No answer

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.204.118.116	attackspambots	Apr 14 05:45:11 server sshd[13943]: Failed password for root from 185.204.118.116 port 44620 ssh2 Apr 14 05:49:10 server sshd[16738]: Failed password for invalid user hellinga from 185.204.118.116 port 54308 ssh2 Apr 14 05:53:12 server sshd[19647]: Failed password for invalid user ts3 from 185.204.118.116 port 35746 ssh2	2020-04-14 13:54:00
165.227.66.224	attack	Apr 14 05:41:05 ns382633 sshd\[14767\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.66.224 user=root Apr 14 05:41:07 ns382633 sshd\[14767\]: Failed password for root from 165.227.66.224 port 60400 ssh2 Apr 14 05:47:45 ns382633 sshd\[15741\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.66.224 user=root Apr 14 05:47:48 ns382633 sshd\[15741\]: Failed password for root from 165.227.66.224 port 34272 ssh2 Apr 14 05:52:46 ns382633 sshd\[16658\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.66.224 user=root	2020-04-14 14:09:09
165.227.220.53	attack	CMS (WordPress or Joomla) login attempt.	2020-04-14 14:17:38
195.231.3.208	attackspambots	Apr 14 07:57:29 mail.srvfarm.net postfix/smtpd[1393796]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 14 07:57:29 mail.srvfarm.net postfix/smtpd[1395254]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 14 07:57:29 mail.srvfarm.net postfix/smtpd[1398106]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 14 07:57:29 mail.srvfarm.net postfix/smtpd[1395307]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 14 07:57:29 mail.srvfarm.net postfix/smtpd[1398096]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 14 07:57:29 mail.srvfarm.net postfix/smtpd[1392452]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 14 07:57:29 mail.srvfarm.net postfix/smtpd[1377639]: warning: unknown[195.231.3.208]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 14 07:57:29 mail.srvfarm.net postfix/smtpd[1398108]: warning	2020-04-14 14:24:50
83.103.59.192	attackbots	$f2bV_matches	2020-04-14 13:42:40
222.186.30.57	attackbotsspam	14.04.2020 06:21:13 SSH access blocked by firewall	2020-04-14 14:23:52
51.15.227.42	attackbots	Port probing on unauthorized port 23	2020-04-14 14:24:27
13.82.209.176	attackbotsspam	Apr 13 10:53:57 josie sshd[28097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.82.209.176 user=r.r Apr 13 10:53:58 josie sshd[28097]: Failed password for r.r from 13.82.209.176 port 35598 ssh2 Apr 13 10:53:58 josie sshd[28098]: Received disconnect from 13.82.209.176: 11: Bye Bye Apr 13 10:58:51 josie sshd[28920]: Invalid user osphostnamee from 13.82.209.176 Apr 13 10:58:51 josie sshd[28920]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.82.209.176 Apr 13 10:58:53 josie sshd[28920]: Failed password for invalid user osphostnamee from 13.82.209.176 port 46890 ssh2 Apr 13 10:58:53 josie sshd[28921]: Received disconnect from 13.82.209.176: 11: Bye Bye Apr 13 11:00:34 josie sshd[29285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.82.209.176 user=r.r Apr 13 11:00:36 josie sshd[29285]: Failed password for r.r from 13.82.209.176 port 48954........ -------------------------------	2020-04-14 14:00:20
51.79.144.61	attackbots	Apr 14 05:07:37 124388 sshd[15323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.144.61 Apr 14 05:07:37 124388 sshd[15323]: Invalid user alutus from 51.79.144.61 port 54289 Apr 14 05:07:39 124388 sshd[15323]: Failed password for invalid user alutus from 51.79.144.61 port 54289 ssh2 Apr 14 05:11:41 124388 sshd[15403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.79.144.61 user=root Apr 14 05:11:43 124388 sshd[15403]: Failed password for root from 51.79.144.61 port 58541 ssh2	2020-04-14 14:11:59
196.43.165.47	attackbots	(sshd) Failed SSH login from 196.43.165.47 (UG/Uganda/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 14 03:38:34 andromeda sshd[3951]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.43.165.47 user=root Apr 14 03:38:35 andromeda sshd[3951]: Failed password for root from 196.43.165.47 port 42284 ssh2 Apr 14 03:52:28 andromeda sshd[4671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.43.165.47 user=root	2020-04-14 14:17:12
14.186.231.96	attack	2020-04-1405:51:231jOCba-0001nW-Rg\<=info@whatsup2013.chH=$localhost$[14.186.16.158]:42587P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3119id=aef771353e15c03310ee184b4094ad81a2481bbdb9@whatsup2013.chT="Youarereallyalluring"forzaynan92@gmail.comhelp6969me69@gmail.com2020-04-1405:52:291jOCce-0001rG-FM\<=info@whatsup2013.chH=$localhost$[218.2.176.26]:59578P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3141id=2e946ad4dff421d2f10ff9aaa1754c6043a9303707@whatsup2013.chT="You'rerightfrommyfantasy"formikeyistrucking@sbcgolbal.netrbgood357@gmail.com2020-04-1405:51:341jOCbm-0001oJ-9c\<=info@whatsup2013.chH=$localhost$[14.186.231.96]:37267P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3126id=8412a81b103bee1d3ec036656eba83af8c66892fd2@whatsup2013.chT="Requirebrandnewfriend\?"forsneedchris255@gmail.combenvega100@gmail.com2020-04-1405:48:541jOCZB-0001eq-5a\<=info@whatsup2013.chH=	2020-04-14 14:18:49
128.199.103.239	attackspam	(sshd) Failed SSH login from 128.199.103.239 (SG/Singapore/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 14 05:52:54 ubnt-55d23 sshd[21650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.103.239 user=root Apr 14 05:52:56 ubnt-55d23 sshd[21650]: Failed password for root from 128.199.103.239 port 49979 ssh2	2020-04-14 14:02:30
180.97.80.12	attack	Apr 14 06:55:33 localhost sshd\[23548\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.97.80.12 user=root Apr 14 06:55:35 localhost sshd\[23548\]: Failed password for root from 180.97.80.12 port 33880 ssh2 Apr 14 06:59:20 localhost sshd\[23835\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.97.80.12 user=root Apr 14 06:59:22 localhost sshd\[23835\]: Failed password for root from 180.97.80.12 port 58982 ssh2 Apr 14 07:03:21 localhost sshd\[24114\]: Invalid user maggie from 180.97.80.12 ...	2020-04-14 14:14:55
106.12.86.205	attackspambots	Apr 13 22:58:59 server1 sshd\[21376\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.86.205 user=root Apr 13 22:59:00 server1 sshd\[21376\]: Failed password for root from 106.12.86.205 port 55428 ssh2 Apr 13 23:02:11 server1 sshd\[22179\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.86.205 user=root Apr 13 23:02:13 server1 sshd\[22179\]: Failed password for root from 106.12.86.205 port 39746 ssh2 Apr 13 23:05:27 server1 sshd\[22970\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.86.205 user=root ...	2020-04-14 14:05:55
140.143.225.188	attackspam	Apr 14 05:02:26 h1946882 sshd[450]: pam_unix(sshd:auth): authentication= failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D140.14= 3.225.188 user=3Dr.r Apr 14 05:02:28 h1946882 sshd[450]: Failed password for r.r from 140.1= 43.225.188 port 45192 ssh2 Apr 14 05:02:28 h1946882 sshd[450]: Received disconnect from 140.143.22= 5.188: 11: Bye Bye [preauth] Apr 14 05:21:43 h1946882 sshd[539]: pam_unix(sshd:auth): authentication= failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D140.14= 3.225.188 user=3Dr.r Apr 14 05:21:45 h1946882 sshd[539]: Failed password for r.r from 140.1= 43.225.188 port 34484 ssh2 Apr 14 05:21:45 h1946882 sshd[539]: Received disconnect from 140.143.22= 5.188: 11: Bye Bye [preauth] Apr 14 05:27:49 h1946882 sshd[587]: pam_unix(sshd:auth): authentication= failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D140.14= 3.225.188 user=3Dpostgres Apr 14 05:27:50 h1946882 sshd[587]: Failed password for postgres from 1= ........ -------------------------------	2020-04-14 14:10:58

Recently Reported IPs

7.7.187.110	149.18.30.100	162.159.136.176	123.52.22.178
58.170.165.106	154.214.23.43	115.178.191.44	46.101.123.223
1.168.138.25	138.240.121.100	49.36.1.172	223.216.27.206
104.28.220.200	104.28.220.201	192.168.8.0	91.240.184.249
38.147.131.214	134.70.43.55	56.213.218.173	32.63.6.130