148.66.146.14 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: GoDaddy.com

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Port Scan: TCP/443	2019-10-06 14:30:23

Comments on same subnet:

IP	Type	Details	Datetime
148.66.146.44	attackspam	$f2bV_matches	2020-04-17 17:29:58
148.66.146.26	attack	$f2bV_matches	2020-04-02 07:33:00
148.66.146.29	attackspam	SQL injection:/index.php?menu_selected=144'&sub_menu_selected=1023'&language=FR'&ID_PRJ=50400'"	2020-01-11 20:45:07
148.66.146.18	attack	Automatic report - XMLRPC Attack	2019-11-28 18:57:17
148.66.146.22	attack	Automatic report - XMLRPC Attack	2019-11-16 06:11:10
148.66.146.25	attackspambots	Automatic report - XMLRPC Attack	2019-11-14 19:28:08
148.66.146.28	attack	xmlrpc attack	2019-07-09 15:18:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.66.146.14
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2833
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.66.146.14.			IN	A

;; AUTHORITY SECTION:
.			317	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100600 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 06 14:30:19 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 14.146.66.148.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 14.146.66.148.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.99.57.115	attack	Aug 2 01:27:18 [host] sshd[1485]: Invalid user test from 203.99.57.115 Aug 2 01:27:18 [host] sshd[1485]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.99.57.115 Aug 2 01:27:20 [host] sshd[1485]: Failed password for invalid user test from 203.99.57.115 port 19106 ssh2	2019-08-02 07:59:03
58.185.64.222	attack	Aug 2 01:34:05 mail sshd\[20347\]: Invalid user project from 58.185.64.222 Aug 2 01:34:05 mail sshd\[20347\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.185.64.222 Aug 2 01:34:07 mail sshd\[20347\]: Failed password for invalid user project from 58.185.64.222 port 52308 ssh2 ...	2019-08-02 07:38:23
163.182.255.99	attackspambots	Aug 1 23:28:08 MK-Soft-VM5 sshd\[7861\]: Invalid user bot from 163.182.255.99 port 58787 Aug 1 23:28:08 MK-Soft-VM5 sshd\[7861\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.182.255.99 Aug 1 23:28:10 MK-Soft-VM5 sshd\[7861\]: Failed password for invalid user bot from 163.182.255.99 port 58787 ssh2 ...	2019-08-02 07:36:02
134.209.24.143	attackspambots	Aug 2 01:46:46 localhost sshd\[23671\]: Invalid user as from 134.209.24.143 port 54948 Aug 2 01:46:46 localhost sshd\[23671\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.24.143 Aug 2 01:46:49 localhost sshd\[23671\]: Failed password for invalid user as from 134.209.24.143 port 54948 ssh2	2019-08-02 07:55:15
158.69.212.107	attackbotsspam	Automatic report - Banned IP Access	2019-08-02 07:42:21
198.84.123.188	attackspam	Aug 1 14:47:26 mxgate1 postfix/postscreen[7868]: CONNECT from [198.84.123.188]:35954 to [176.31.12.44]:25 Aug 1 14:47:26 mxgate1 postfix/dnsblog[8101]: addr 198.84.123.188 listed by domain zen.spamhaus.org as 127.0.0.3 Aug 1 14:47:26 mxgate1 postfix/postscreen[7868]: PREGREET 27 after 0.11 from [198.84.123.188]:35954: EHLO 02d6fcd4.gunlaser.co Aug 1 14:47:26 mxgate1 postfix/postscreen[7868]: DNSBL rank 2 for [198.84.123.188]:35954 Aug x@x Aug 1 14:47:26 mxgate1 postfix/postscreen[7868]: DISCONNECT [198.84.123.188]:35954 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=198.84.123.188	2019-08-02 07:20:11
213.32.69.98	attackbots	Automatic report - Banned IP Access	2019-08-02 07:21:56
103.120.226.115	attackspambots	Aug 1 19:37:58 vps200512 sshd\[29627\]: Invalid user lee from 103.120.226.115 Aug 1 19:37:58 vps200512 sshd\[29627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.226.115 Aug 1 19:37:59 vps200512 sshd\[29627\]: Failed password for invalid user lee from 103.120.226.115 port 54440 ssh2 Aug 1 19:42:58 vps200512 sshd\[29811\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.120.226.115 user=root Aug 1 19:42:59 vps200512 sshd\[29811\]: Failed password for root from 103.120.226.115 port 49016 ssh2	2019-08-02 07:44:31
81.22.45.165	attack	08/01/2019-19:27:32.443901 81.22.45.165 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 81	2019-08-02 07:54:18
79.190.119.50	attack	Aug 2 01:41:18 vps647732 sshd[1768]: Failed password for root from 79.190.119.50 port 60324 ssh2 Aug 2 01:45:42 vps647732 sshd[1821]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.190.119.50 ...	2019-08-02 07:56:52
49.50.66.209	attackspam	Aug 2 01:27:58 * sshd[21649]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.50.66.209 Aug 2 01:27:59 * sshd[21649]: Failed password for invalid user cisco from 49.50.66.209 port 42035 ssh2	2019-08-02 07:40:29
46.50.174.160	attackspam	SPAM Delivery Attempt	2019-08-02 08:08:19
127.0.0.1	attackbotsspam	Test Connectivity	2019-08-02 07:20:44
46.101.10.42	attack	Aug 2 01:41:55 mail sshd\[20536\]: Invalid user ims from 46.101.10.42 Aug 2 01:41:55 mail sshd\[20536\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.10.42 Aug 2 01:41:57 mail sshd\[20536\]: Failed password for invalid user ims from 46.101.10.42 port 37704 ssh2 ...	2019-08-02 07:57:44
178.62.84.12	attackbots	2019-08-01T23:32:04.674858abusebot.cloudsearch.cf sshd\[22117\]: Invalid user getmail from 178.62.84.12 port 40072 2019-08-01T23:32:04.679051abusebot.cloudsearch.cf sshd\[22117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.84.12	2019-08-02 07:32:30

Recently Reported IPs

141.39.56.184	116.114.84.122	157.34.177.220	217.61.18.93
38.39.201.110	218.19.137.151	66.249.79.2	181.67.2.154
108.97.58.107	221.216.90.128	13.93.121.243	46.252.205.186
83.45.44.215	104.236.71.107	131.72.45.139	5.55.130.192
179.179.165.241	179.105.3.82	222.161.80.175	103.255.178.212