148.70.33.148 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
148.70.33.136	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-01 02:52:26
148.70.33.136	attack	Sep 29 19:39:01 propaganda sshd[2808]: Connection from 148.70.33.136 port 55262 on 10.0.0.161 port 22 rdomain "" Sep 29 19:39:01 propaganda sshd[2808]: Connection closed by 148.70.33.136 port 55262 [preauth]	2020-09-30 19:03:59
148.70.33.136	attackspambots	Sep 28 23:14:42 vps333114 sshd[3071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.33.136 Sep 28 23:14:44 vps333114 sshd[3071]: Failed password for invalid user sysadmin from 148.70.33.136 port 43158 ssh2 ...	2020-09-29 05:30:34
148.70.33.136	attackbots	Invalid user icinga from 148.70.33.136 port 38060	2020-09-28 21:50:59
148.70.33.136	attackspambots	prod11 ...	2020-09-28 13:57:38
148.70.33.136	attack	$f2bV_matches	2020-08-29 12:51:55
148.70.33.136	attackspambots	2020-08-24T18:24:45.105092centos sshd[14631]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.33.136 2020-08-24T18:24:45.099043centos sshd[14631]: Invalid user vboxadmin from 148.70.33.136 port 56570 2020-08-24T18:24:47.542844centos sshd[14631]: Failed password for invalid user vboxadmin from 148.70.33.136 port 56570 ssh2 ...	2020-08-25 02:57:27
148.70.33.136	attack	Port Scan ...	2020-08-01 00:13:41
148.70.33.136	attackbots	Unauthorized connection attempt detected from IP address 148.70.33.136 to port 4034 [T]	2020-05-20 11:21:40
148.70.33.136	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-03-14 00:14:30
148.70.33.136	attackspam	$f2bV_matches	2020-03-12 14:05:13
148.70.33.136	attackspam	Automatic report - Banned IP Access	2020-02-27 15:47:51
148.70.33.136	attackbotsspam	Unauthorized connection attempt detected from IP address 148.70.33.136 to port 2220 [J]	2020-02-01 23:03:56
148.70.33.136	attack	Unauthorized connection attempt detected from IP address 148.70.33.136 to port 2220 [J]	2020-01-25 04:35:50
148.70.33.136	attackbots	Unauthorized connection attempt detected from IP address 148.70.33.136 to port 2220 [J]	2020-01-05 21:08:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.70.33.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45458
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.70.33.148.			IN	A

;; AUTHORITY SECTION:
.			546	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 06:10:40 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 148.33.70.148.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.33.70.148.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.218.63.25	attack	Nov 29 07:17:38 vmd17057 sshd\[6372\]: Invalid user pereyra from 117.218.63.25 port 58994 Nov 29 07:17:38 vmd17057 sshd\[6372\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.218.63.25 Nov 29 07:17:41 vmd17057 sshd\[6372\]: Failed password for invalid user pereyra from 117.218.63.25 port 58994 ssh2 ...	2019-11-29 21:55:21
106.52.217.229	attack	Nov 29 03:44:31 web1 sshd\[15409\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.217.229 user=root Nov 29 03:44:32 web1 sshd\[15409\]: Failed password for root from 106.52.217.229 port 54758 ssh2 Nov 29 03:48:56 web1 sshd\[15856\]: Invalid user test from 106.52.217.229 Nov 29 03:48:56 web1 sshd\[15856\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.217.229 Nov 29 03:48:59 web1 sshd\[15856\]: Failed password for invalid user test from 106.52.217.229 port 58618 ssh2	2019-11-29 22:05:22
191.240.207.29	attackbotsspam	port scan and connect, tcp 23 (telnet)	2019-11-29 21:44:39
110.77.195.120	attackbotsspam	Unauthorized connection attempt from IP address 110.77.195.120 on Port 445(SMB)	2019-11-29 22:02:56
213.6.172.134	attackbots	SSH bruteforce	2019-11-29 22:03:46
183.133.101.124	attackbots	SASL broute force	2019-11-29 21:42:29
92.118.38.38	attack	Nov 29 14:58:11 webserver postfix/smtpd\[27020\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 14:58:46 webserver postfix/smtpd\[26532\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 14:59:22 webserver postfix/smtpd\[27020\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 14:59:57 webserver postfix/smtpd\[26530\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 29 15:00:32 webserver postfix/smtpd\[26530\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-29 22:08:17
106.12.33.50	attackbots	Nov 29 07:48:59 microserver sshd[40479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.50 user=root Nov 29 07:49:01 microserver sshd[40479]: Failed password for root from 106.12.33.50 port 41298 ssh2 Nov 29 07:52:42 microserver sshd[41064]: Invalid user sysdba from 106.12.33.50 port 46172 Nov 29 07:52:42 microserver sshd[41064]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.50 Nov 29 07:52:44 microserver sshd[41064]: Failed password for invalid user sysdba from 106.12.33.50 port 46172 ssh2 Nov 29 08:03:03 microserver sshd[42448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.33.50 user=root Nov 29 08:03:05 microserver sshd[42448]: Failed password for root from 106.12.33.50 port 60802 ssh2 Nov 29 08:06:39 microserver sshd[43065]: Invalid user warchol from 106.12.33.50 port 37454 Nov 29 08:06:39 microserver sshd[43065]: pam_unix(sshd:auth): authentication fai	2019-11-29 21:48:32
167.250.178.105	attack	Unauthorised access (Nov 29) SRC=167.250.178.105 LEN=52 TOS=0x10 PREC=0x40 TTL=106 ID=12814 DF TCP DPT=445 WINDOW=8192 SYN Unauthorised access (Nov 29) SRC=167.250.178.105 LEN=52 TOS=0x10 PREC=0x40 TTL=106 ID=13085 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-29 22:18:52
92.241.108.210	attackspam	Unauthorized connection attempt from IP address 92.241.108.210 on Port 445(SMB)	2019-11-29 22:23:11
189.254.255.67	attack	Unauthorized connection attempt from IP address 189.254.255.67 on Port 445(SMB)	2019-11-29 22:14:57
110.136.252.76	attackbotsspam	Unauthorized connection attempt from IP address 110.136.252.76 on Port 445(SMB)	2019-11-29 21:49:38
51.38.51.108	attackspambots	Invalid user test from 51.38.51.108 port 35024 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.51.108 Failed password for invalid user test from 51.38.51.108 port 35024 ssh2 Invalid user beringuier from 51.38.51.108 port 43010 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.38.51.108	2019-11-29 22:22:05
164.132.104.58	attackspambots	2019-11-29T08:17:25.962459shield sshd\[7358\]: Invalid user hyunkie from 164.132.104.58 port 33276 2019-11-29T08:17:25.967276shield sshd\[7358\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu 2019-11-29T08:17:28.383483shield sshd\[7358\]: Failed password for invalid user hyunkie from 164.132.104.58 port 33276 ssh2 2019-11-29T08:21:23.110567shield sshd\[8230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.ip-164-132-104.eu user=root 2019-11-29T08:21:24.864730shield sshd\[8230\]: Failed password for root from 164.132.104.58 port 42190 ssh2	2019-11-29 22:17:14
51.79.21.90	attack	51.79.21.90 - - \[29/Nov/2019:06:17:24 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" 51.79.21.90 - - \[29/Nov/2019:06:17:24 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" ...	2019-11-29 22:11:32

Recently Reported IPs

120.230.92.97	40.107.243.84	182.119.131.179	121.172.10.226
172.241.168.232	27.198.132.238	220.89.56.51	45.83.64.95
143.79.226.113	102.89.1.22	170.239.138.47	124.129.66.69
167.248.133.117	88.247.24.104	37.32.122.37	191.96.84.227
179.224.244.218	183.95.19.163	115.61.102.246	223.72.69.237