148.66.154.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Singapore

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.66.154.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24883
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.66.154.21.			IN	A

;; AUTHORITY SECTION:
.			337	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 12:44:01 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 21.154.66.148.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.154.66.148.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
52.178.199.25	attack	Jul 17 09:56:55 gutwein sshd[20601]: Failed password for invalid user tmp from 52.178.199.25 port 32772 ssh2 Jul 17 09:56:55 gutwein sshd[20601]: Received disconnect from 52.178.199.25: 11: Bye Bye [preauth] Jul 17 10:01:54 gutwein sshd[21527]: Failed password for invalid user lzhang from 52.178.199.25 port 60240 ssh2 Jul 17 10:01:54 gutwein sshd[21527]: Received disconnect from 52.178.199.25: 11: Bye Bye [preauth] Jul 17 10:06:59 gutwein sshd[22471]: Failed password for invalid user stunnel from 52.178.199.25 port 59698 ssh2 Jul 17 10:06:59 gutwein sshd[22471]: Received disconnect from 52.178.199.25: 11: Bye Bye [preauth] Jul 17 10:11:49 gutwein sshd[23360]: Failed password for invalid user luciana from 52.178.199.25 port 58914 ssh2 Jul 17 10:11:49 gutwein sshd[23360]: Received disconnect from 52.178.199.25: 11: Bye Bye [preauth] Jul 17 10:16:57 gutwein sshd[24301]: Failed password for invalid user teamspeak3 from 52.178.199.25 port 58316 ssh2 Jul 17 10:16:57 gutwein s........ -------------------------------	2019-07-18 18:09:57
137.59.56.144	attackspam	failed_logins	2019-07-18 18:23:06
190.13.173.67	attackbotsspam	Jul 18 05:15:01 vps200512 sshd\[30148\]: Invalid user www from 190.13.173.67 Jul 18 05:15:01 vps200512 sshd\[30148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.13.173.67 Jul 18 05:15:03 vps200512 sshd\[30148\]: Failed password for invalid user www from 190.13.173.67 port 60500 ssh2 Jul 18 05:20:46 vps200512 sshd\[30317\]: Invalid user fit from 190.13.173.67 Jul 18 05:20:46 vps200512 sshd\[30317\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.13.173.67	2019-07-18 17:23:24
121.129.112.106	attack	Jul 18 09:24:43 MK-Soft-VM5 sshd\[2404\]: Invalid user wms from 121.129.112.106 port 34026 Jul 18 09:24:43 MK-Soft-VM5 sshd\[2404\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.129.112.106 Jul 18 09:24:45 MK-Soft-VM5 sshd\[2404\]: Failed password for invalid user wms from 121.129.112.106 port 34026 ssh2 ...	2019-07-18 18:12:01
78.134.24.55	attack	Honeypot attack, port: 23, PTR: 78-134-24-55.v4.ngi.it.	2019-07-18 17:22:38
104.144.167.109	attackbots	Looking for resource vulnerabilities	2019-07-18 17:52:42
164.132.205.21	attackspambots	Jul 18 07:06:06 localhost sshd\[44632\]: Invalid user jl from 164.132.205.21 port 39144 Jul 18 07:06:06 localhost sshd\[44632\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.132.205.21 ...	2019-07-18 17:53:34
179.95.191.173	attack	Automatic report - Port Scan Attack	2019-07-18 17:32:19
138.185.166.149	attackspam	Jul 17 15:34:24 h2421860 postfix/postscreen[29334]: CONNECT from [138.185.166.149]:57743 to [85.214.119.52]:25 Jul 17 15:34:24 h2421860 postfix/dnsblog[29337]: addr 138.185.166.149 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Jul 17 15:34:24 h2421860 postfix/dnsblog[29338]: addr 138.185.166.149 listed by domain bl.spamcop.net as 127.0.0.2 Jul 17 15:34:24 h2421860 postfix/dnsblog[29338]: addr 138.185.166.149 listed by domain zen.spamhaus.org as 127.0.0.4 Jul 17 15:34:24 h2421860 postfix/dnsblog[29338]: addr 138.185.166.149 listed by domain zen.spamhaus.org as 127.0.0.3 Jul 17 15:34:24 h2421860 postfix/dnsblog[29342]: addr 138.185.166.149 listed by domain Unknown.trblspam.com as 185.53.179.7 Jul 17 15:34:24 h2421860 postfix/dnsblog[29339]: addr 138.185.166.149 listed by domain b.barracudacentral.org as 127.0.0.2 Jul 17 15:34:24 h2421860 postfix/dnsblog[29338]: addr 138.185.166.149 listed by domain dnsbl.sorbs.net as 127.0.0.6 Jul 17 15:34:24 h2421860 postfix/postscre........ -------------------------------	2019-07-18 18:23:59
177.124.185.27	attackspam	proto=tcp . spt=41146 . dpt=25 . (listed on Blocklist de Jul 17) (79)	2019-07-18 18:10:50
37.49.229.136	attackspam	\[2019-07-18 04:48:33\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-18T04:48:33.559-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0048223071956",SessionID="0x7f06f823f758",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.229.136/5060",ACLName="no_extension_match" \[2019-07-18 04:52:05\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-18T04:52:05.429-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01148223071956",SessionID="0x7f06f8047c98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.229.136/5060",ACLName="no_extension_match" \[2019-07-18 04:56:00\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-18T04:56:00.613-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="90048223071956",SessionID="0x7f06f85ff978",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/37.49.229.136/5060",ACLName="no_extensi	2019-07-18 18:21:35
46.225.111.114	attackspambots	proto=tcp . spt=52906 . dpt=25 . (listed on Blocklist de Jul 17) (86)	2019-07-18 17:45:19
123.125.71.44	attackspambots	Automatic report - Banned IP Access	2019-07-18 17:18:37
77.247.108.142	attack	Trying to (more than 3 packets) bruteforce (not in use) VoIP/SIP port 5060	2019-07-18 18:20:26
177.184.141.242	attackspambots	proto=tcp . spt=44768 . dpt=25 . (listed on Blocklist de Jul 17) (73)	2019-07-18 18:24:50

Recently Reported IPs

148.66.154.197	148.66.155.181	148.66.155.24	148.66.155.77
148.66.155.182	148.66.156.191	148.66.156.173	148.66.156.84
148.66.157.128	148.66.157.181	148.66.157.2	148.66.158.178
148.66.158.189	148.66.158.42	148.66.158.155	148.66.158.95
148.66.157.249	148.66.159.191	148.66.196.120	148.66.230.217