148.66.135.167

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: GoDaddy.com, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
148.66.135.148	attack	148.66.135.148 - - [20/Jul/2020:04:56:10 +0100] "POST /wp-login.php HTTP/1.1" 200 1906 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.135.148 - - [20/Jul/2020:04:56:13 +0100] "POST /wp-login.php HTTP/1.1" 200 1927 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.135.148 - - [20/Jul/2020:04:56:16 +0100] "POST /wp-login.php HTTP/1.1" 200 1885 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-20 13:13:33
148.66.135.148	attack	148.66.135.148 - - [16/Jul/2020:05:51:07 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.135.148 - - [16/Jul/2020:05:51:09 +0200] "POST /wp-login.php HTTP/1.1" 200 2031 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.135.148 - - [16/Jul/2020:05:51:09 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.135.148 - - [16/Jul/2020:05:51:10 +0200] "POST /wp-login.php HTTP/1.1" 200 2007 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.135.148 - - [16/Jul/2020:05:51:11 +0200] "GET /wp-login.php HTTP/1.1" 200 1901 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.135.148 - - [16/Jul/2020:05:51:12 +0200] "POST /wp-login.php HTTP/1.1" 200 2008 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-07-16 17:06:39
148.66.135.69	attackbots	148.66.135.69 - - [18/Jun/2020:22:07:08 +0100] "POST /wp-login.php HTTP/1.1" 200 1885 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.135.69 - - [18/Jun/2020:22:07:12 +0100] "POST /wp-login.php HTTP/1.1" 200 1885 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.135.69 - - [18/Jun/2020:22:07:13 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-19 05:47:35
148.66.135.227	attack	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-06-15 05:27:10
148.66.135.69	attack	MYH,DEF GET /2020/wp-login.php	2020-06-12 17:50:07
148.66.135.152	attackbotsspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-21 20:26:59
148.66.135.152	attack	Automatically reported by fail2ban report script (mx1)	2020-05-13 18:07:37
148.66.135.178	attack	Invalid user ibarra from 148.66.135.178 port 48710	2020-05-11 07:11:23
148.66.135.69	attackbots	148.66.135.69 - - [10/May/2020:06:56:38 +0300] "POST /wp-login.php HTTP/1.1" 200 3437 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-05-10 12:29:45
148.66.135.152	attack	148.66.135.152 - - \[28/Apr/2020:16:31:57 +0200\] "POST /wp-login.php HTTP/1.0" 200 7302 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 148.66.135.152 - - \[28/Apr/2020:16:32:00 +0200\] "POST /wp-login.php HTTP/1.0" 200 7302 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 148.66.135.152 - - \[28/Apr/2020:16:32:01 +0200\] "POST /xmlrpc.php HTTP/1.0" 200 802 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2020-04-28 22:46:35
148.66.135.178	attackbots	Apr 14 22:34:19 marvibiene sshd[37340]: Invalid user osboxes from 148.66.135.178 port 44276 Apr 14 22:34:19 marvibiene sshd[37340]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.135.178 Apr 14 22:34:19 marvibiene sshd[37340]: Invalid user osboxes from 148.66.135.178 port 44276 Apr 14 22:34:21 marvibiene sshd[37340]: Failed password for invalid user osboxes from 148.66.135.178 port 44276 ssh2 ...	2020-04-15 08:19:37
148.66.135.178	attackspambots	Apr 13 21:05:33 eventyay sshd[6690]: Failed password for root from 148.66.135.178 port 34444 ssh2 Apr 13 21:09:49 eventyay sshd[6976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.135.178 Apr 13 21:09:51 eventyay sshd[6976]: Failed password for invalid user clamav from 148.66.135.178 port 43920 ssh2 ...	2020-04-14 03:19:30
148.66.135.152	attack	WordPress wp-login brute force :: 148.66.135.152 0.096 BYPASS [11/Apr/2020:05:54:54 0000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 2287 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-11 15:11:25
148.66.135.152	attackspam	148.66.135.152 - - [10/Apr/2020:16:18:46 +0200] "POST /wp-login.php HTTP/1.0" 200 2504 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 148.66.135.152 - - [10/Apr/2020:16:18:47 +0200] "POST /wp-login.php HTTP/1.0" 200 2508 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-04-10 23:11:56
148.66.135.69	attack	Automatic report - XMLRPC Attack	2020-04-10 06:36:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.66.135.167
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 41751
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.66.135.167.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061702 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jun 18 16:30:37 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 167.135.66.148.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 167.135.66.148.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.90.150.188	spamattackproxynormal	Bokep	2024-04-03 05:42:59
103.203.84.144	attack	Scan port	2024-03-26 13:48:22
90.151.171.106	attack	Vulnerability Scanner	2024-04-08 12:45:55
134.209.157.216	attack	fraud connect	2024-04-04 18:37:59
139.59.25.61	attack	Fraud connect	2024-04-04 18:44:42
146.70.201.83	attack	Scan port	2024-04-05 18:11:05
78.128.114.2	attack	Malicious IP	2024-04-10 01:07:08
198.235.24.33	attackproxy	Fraud connect	2024-03-29 20:58:14
84.17.43.241	attack	Fraud conect	2024-03-25 14:00:54
104.152.52.200	attackproxy	SSH bot	2024-04-10 00:54:20
184.105.247.236	attack	fraud connect	2024-04-04 18:40:01
35.203.211.28	attack	Fraud connect	2024-03-29 21:00:07
205.210.31.88	attackproxy	Malicious IP	2024-04-05 13:10:26
18.222.229.39	attackproxy	Malicious IP	2024-04-05 13:06:18
95.52.89.195	attackproxy	Fraud connect	2024-04-02 12:41:20

Recently Reported IPs

220.111.189.207	109.92.202.222	119.243.101.171	82.236.219.37
57.96.175.140	118.103.25.48	117.156.190.218	51.51.58.220
184.73.251.157	125.15.160.145	113.138.134.67	163.255.249.110
116.52.87.78	97.199.138.185	172.64.86.52	124.99.180.148
171.116.67.129	185.71.232.143	66.14.215.103	78.153.118.238