148.69.27.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Portugal

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.69.27.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20990
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.69.27.3.			IN	A

;; AUTHORITY SECTION:
.			201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010801 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 09 08:33:07 CST 2022
;; MSG SIZE  rcvd: 104

Host info

3.27.69.148.in-addr.arpa domain name pointer 3.27.69.148.rev.vodafone.pt.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
3.27.69.148.in-addr.arpa	name = 3.27.69.148.rev.vodafone.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.235.99.209	attackbots	Sep 26 13:43:21 marvibiene sshd[38429]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.99.209 user=root Sep 26 13:43:24 marvibiene sshd[38429]: Failed password for root from 49.235.99.209 port 51678 ssh2 Sep 26 13:46:07 marvibiene sshd[26339]: Invalid user reach from 49.235.99.209 port 40174	2020-09-26 23:51:19
103.130.109.8	attack	103.130.109.8 (IN/India/-), 5 distributed sshd attacks on account [admin] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 26 11:39:48 jbs1 sshd[29419]: Invalid user admin from 103.130.109.8 Sep 26 11:39:50 jbs1 sshd[29419]: Failed password for invalid user admin from 103.130.109.8 port 36284 ssh2 Sep 26 11:42:23 jbs1 sshd[30177]: Invalid user admin from 111.231.93.35 Sep 26 11:18:50 jbs1 sshd[22693]: Invalid user admin from 211.193.60.137 Sep 26 11:22:52 jbs1 sshd[23862]: Invalid user admin from 64.225.11.61 IP Addresses Blocked:	2020-09-27 00:13:58
18.208.202.194	attackspam	[Sat Sep 26 03:37:03.134341 2020] [:error] [pid 16536:tid 140694825400064] [client 18.208.202.194:40472] [client 18.208.202.194] ModSecurity: Access denied with code 403 (phase 2). Pattern match "((?:[~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>][^~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>]*?){6})" at ARGS:id. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "1457"] [id "942431"] [msg "Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (6)"] [data "Matched Data: :prakiraan-cuaca-daerah-malang-dan- found within ARGS:id: 82:prakiraan-cuaca-daerah-malang-dan-batu-seminggu-ke-depan"] [severity "WARNING"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "OWASP_CRS"] [tag "capec/1000/152/248/66"] [ ...	2020-09-27 00:21:29
13.85.72.71	attack	2020-09-26 10:03:49.796396-0500 localhost sshd[46942]: Failed password for invalid user admin from 13.85.72.71 port 36062 ssh2	2020-09-26 23:40:22
64.64.104.10	attack	Fail2Ban Ban Triggered	2020-09-26 23:57:37
121.69.89.78	attack	(sshd) Failed SSH login from 121.69.89.78 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 26 00:16:16 cvps sshd[11050]: Invalid user laravel from 121.69.89.78 Sep 26 00:16:16 cvps sshd[11050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.69.89.78 Sep 26 00:16:18 cvps sshd[11050]: Failed password for invalid user laravel from 121.69.89.78 port 47804 ssh2 Sep 26 00:27:21 cvps sshd[15075]: Invalid user ftpusr from 121.69.89.78 Sep 26 00:27:21 cvps sshd[15075]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.69.89.78	2020-09-27 00:22:08
115.99.150.211	attackspam	Listed on dnsbl-sorbs plus abuseat.org and zen-spamhaus / proto=6 . srcport=60646 . dstport=23 . (3543)	2020-09-27 00:11:41
61.133.122.19	attackspam	Invalid user mm from 61.133.122.19 port 33042	2020-09-27 00:13:28
37.187.20.60	attack	2020-09-26T14:41:34.699563abusebot-4.cloudsearch.cf sshd[21359]: Invalid user hadoop from 37.187.20.60 port 60808 2020-09-26T14:41:34.705364abusebot-4.cloudsearch.cf sshd[21359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3gd-clan.de 2020-09-26T14:41:34.699563abusebot-4.cloudsearch.cf sshd[21359]: Invalid user hadoop from 37.187.20.60 port 60808 2020-09-26T14:41:36.997419abusebot-4.cloudsearch.cf sshd[21359]: Failed password for invalid user hadoop from 37.187.20.60 port 60808 ssh2 2020-09-26T14:50:19.978567abusebot-4.cloudsearch.cf sshd[21422]: Invalid user frank from 37.187.20.60 port 40066 2020-09-26T14:50:19.984695abusebot-4.cloudsearch.cf sshd[21422]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3gd-clan.de 2020-09-26T14:50:19.978567abusebot-4.cloudsearch.cf sshd[21422]: Invalid user frank from 37.187.20.60 port 40066 2020-09-26T14:50:22.683145abusebot-4.cloudsearch.cf sshd[21422]: Failed passw ...	2020-09-26 23:37:38
218.92.0.248	attack	2020-09-25T02:31:16.067169git sshd[66716]: Unable to negotiate with 218.92.0.248 port 23775: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-09-25T14:47:19.233993git sshd[71188]: Connection from 218.92.0.248 port 43594 on 138.197.214.51 port 22 rdomain "" 2020-09-25T14:47:19.947520git sshd[71188]: Unable to negotiate with 218.92.0.248 port 43594: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-09-25T16:53:45.684230git sshd[71704]: Connection from 218.92.0.248 port 45008 on 138.197.214.51 port 22 rdomain "" 2020-09-25T16:53:46.402222git sshd[71704]: Unable to negotiate with 218.92.0.248 port 45008: no matching key exchange method found. Their offer: diffie-hellman-group1-sha1,diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1 [preauth] 2020-09-25T18:24:35.10551 ...	2020-09-27 00:02:11
78.167.61.77	attack	Unauthorised access (Sep 25) SRC=78.167.61.77 LEN=40 TTL=245 ID=37182 DF TCP DPT=23 WINDOW=14600 SYN	2020-09-27 00:03:40
58.87.112.68	attackspam	Brute-force attempt banned	2020-09-27 00:00:25
82.165.73.245	attackbotsspam	Automatic report - Banned IP Access	2020-09-27 00:01:11
222.186.175.216	attack	2020-09-26T19:14:24.560940lavrinenko.info sshd[14994]: Failed password for root from 222.186.175.216 port 48890 ssh2 2020-09-26T19:14:29.540225lavrinenko.info sshd[14994]: Failed password for root from 222.186.175.216 port 48890 ssh2 2020-09-26T19:14:33.373750lavrinenko.info sshd[14994]: Failed password for root from 222.186.175.216 port 48890 ssh2 2020-09-26T19:14:38.359401lavrinenko.info sshd[14994]: Failed password for root from 222.186.175.216 port 48890 ssh2 2020-09-26T19:14:41.061236lavrinenko.info sshd[14994]: Failed password for root from 222.186.175.216 port 48890 ssh2 ...	2020-09-27 00:14:51
27.1.253.142	attackspam	Invalid user acct from 27.1.253.142 port 46286	2020-09-26 23:45:23

Recently Reported IPs

124.218.34.234	176.180.232.50	255.246.229.97	217.201.216.202
6.233.115.166	115.11.223.232	5.187.86.203	149.147.114.251
9.96.254.36	142.250.75.4	142.142.230.179	219.20.4.191
74.2.10.103	5.183.146.141	179.183.98.93	217.15.45.22
47.40.211.177	138.22.146.43	98.225.2.175	196.10.56.189