148.72.206.148

Basic Info

City: Scottsdale

Region: Arizona

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: GoDaddy.com, LLC

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
148.72.206.225	attackspambots	ssh brute force	2020-04-15 15:10:41
148.72.206.225	attackbots	SSH Brute-Forcing (server2)	2020-04-08 17:22:28
148.72.206.225	attack	Fail2Ban Ban Triggered (2)	2020-04-06 04:37:29
148.72.206.225	attack	$f2bV_matches	2020-04-04 05:38:45
148.72.206.225	attackspambots	Apr 1 18:50:05 ms-srv sshd[30826]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.206.225 user=root Apr 1 18:50:07 ms-srv sshd[30826]: Failed password for invalid user root from 148.72.206.225 port 44662 ssh2	2020-04-02 03:47:15
148.72.206.225	attackspambots	Invalid user user from 148.72.206.225 port 44862	2020-04-01 14:24:05
148.72.206.225	attackbotsspam	SSH Invalid Login	2020-03-20 05:53:41
148.72.206.225	attack	Feb 26 02:55:39 ns381471 sshd[20625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.206.225 Feb 26 02:55:41 ns381471 sshd[20625]: Failed password for invalid user hexiujing from 148.72.206.225 port 60928 ssh2	2020-02-26 10:48:55
148.72.206.225	attackbotsspam	Feb 25 18:16:41 ns381471 sshd[19384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.206.225 Feb 25 18:16:42 ns381471 sshd[19384]: Failed password for invalid user prueba from 148.72.206.225 port 34742 ssh2	2020-02-26 01:18:06
148.72.206.225	attackbotsspam	Feb 9 02:31:10 silence02 sshd[16122]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.206.225 Feb 9 02:31:12 silence02 sshd[16122]: Failed password for invalid user kgx from 148.72.206.225 port 55712 ssh2 Feb 9 02:34:15 silence02 sshd[17489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.206.225	2020-02-09 09:35:58
148.72.206.225	attackbots	Feb 4 17:53:54 plex sshd[416]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.206.225 Feb 4 17:53:54 plex sshd[416]: Invalid user florian from 148.72.206.225 port 48938 Feb 4 17:53:55 plex sshd[416]: Failed password for invalid user florian from 148.72.206.225 port 48938 ssh2 Feb 4 17:55:26 plex sshd[451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.206.225 user=root Feb 4 17:55:27 plex sshd[451]: Failed password for root from 148.72.206.225 port 34674 ssh2	2020-02-05 01:14:54
148.72.206.225	attackspam	...	2020-02-01 22:47:37
148.72.206.225	attack	Unauthorized connection attempt detected from IP address 148.72.206.225 to port 2220 [J]	2020-01-27 19:55:24
148.72.206.225	attack	Unauthorized connection attempt detected from IP address 148.72.206.225 to port 2220 [J]	2020-01-11 22:08:53
148.72.206.225	attackbots	22 attack nonstop	2020-01-03 22:11:45

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.72.206.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24617
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.72.206.148.			IN	A

;; AUTHORITY SECTION:
.			458	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080101 1800 900 604800 86400

;; Query time: 375 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 02 02:37:03 CST 2019
;; MSG SIZE  rcvd: 118

Host info

148.206.72.148.in-addr.arpa domain name pointer ip-148-72-206-148.ip.secureserver.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
148.206.72.148.in-addr.arpa	name = ip-148-72-206-148.ip.secureserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.247.181.162	attackbots	2020-08-03T15:36:37.954440morrigan.ad5gb.com sshd[2118271]: Invalid user admin from 77.247.181.162 port 44284 2020-08-03T15:36:40.212832morrigan.ad5gb.com sshd[2118271]: Failed password for invalid user admin from 77.247.181.162 port 44284 ssh2	2020-08-04 05:38:54
87.251.74.183	attack	Aug 3 23:22:59 debian-2gb-nbg1-2 kernel: \[18748248.923599\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.183 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=16804 PROTO=TCP SPT=49301 DPT=5276 WINDOW=1024 RES=0x00 SYN URGP=0	2020-08-04 05:45:39
200.105.144.202	attackbots	Aug 3 16:37:10 Host-KEWR-E sshd[21134]: User root from 200.105.144.202 not allowed because not listed in AllowUsers ...	2020-08-04 05:20:55
81.68.107.35	attackbots	Aug 3 22:24:02 ovpn sshd\[26423\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.107.35 user=root Aug 3 22:24:04 ovpn sshd\[26423\]: Failed password for root from 81.68.107.35 port 51162 ssh2 Aug 3 22:30:22 ovpn sshd\[28065\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.107.35 user=root Aug 3 22:30:24 ovpn sshd\[28065\]: Failed password for root from 81.68.107.35 port 58362 ssh2 Aug 3 22:36:26 ovpn sshd\[29559\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.68.107.35 user=root	2020-08-04 05:46:10
51.68.122.155	attackspam	Aug 3 22:31:10 rocket sshd[6630]: Failed password for root from 51.68.122.155 port 52660 ssh2 Aug 3 22:38:34 rocket sshd[7689]: Failed password for root from 51.68.122.155 port 35738 ssh2 ...	2020-08-04 05:43:15
134.209.123.101	attackspam	miraniessen.de 134.209.123.101 [03/Aug/2020:22:36:22 +0200] "POST /wp-login.php HTTP/1.1" 200 6205 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" miraniessen.de 134.209.123.101 [03/Aug/2020:22:36:23 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4012 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-04 05:48:29
178.33.216.187	attack	Aug 3 22:47:24 piServer sshd[5752]: Failed password for root from 178.33.216.187 port 46875 ssh2 Aug 3 22:49:59 piServer sshd[6104]: Failed password for root from 178.33.216.187 port 42146 ssh2 ...	2020-08-04 05:36:21
196.192.176.222	attackbotsspam	Aug 3 22:36:16 v22019058497090703 sshd[4264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.192.176.222 Aug 3 22:36:18 v22019058497090703 sshd[4264]: Failed password for invalid user nexthink from 196.192.176.222 port 47142 ssh2 ...	2020-08-04 05:50:06
61.216.40.209	attackspam	08/03/2020-16:37:05.404255 61.216.40.209 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 63	2020-08-04 05:23:58
49.234.119.42	attack	2020-08-03T14:37:14.217838linuxbox-skyline sshd[52954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.119.42 user=root 2020-08-03T14:37:16.163342linuxbox-skyline sshd[52954]: Failed password for root from 49.234.119.42 port 48500 ssh2 ...	2020-08-04 05:15:10
203.195.204.106	attackbotsspam	Aug 4 01:28:49 gw1 sshd[22737]: Failed password for root from 203.195.204.106 port 57362 ssh2 ...	2020-08-04 05:38:40
49.235.120.203	attack	Tried sshing with brute force.	2020-08-04 05:23:33
198.228.145.150	attackspambots	Aug 3 23:24:29 piServer sshd[10105]: Failed password for root from 198.228.145.150 port 41620 ssh2 Aug 3 23:27:05 piServer sshd[10460]: Failed password for root from 198.228.145.150 port 60054 ssh2 ...	2020-08-04 05:34:44
123.206.118.47	attackbots	Aug 3 22:32:35 vps sshd[811088]: Failed password for root from 123.206.118.47 port 46436 ssh2 Aug 3 22:34:55 vps sshd[820243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.118.47 user=root Aug 3 22:34:57 vps sshd[820243]: Failed password for root from 123.206.118.47 port 53688 ssh2 Aug 3 22:37:10 vps sshd[833499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.118.47 user=root Aug 3 22:37:12 vps sshd[833499]: Failed password for root from 123.206.118.47 port 60938 ssh2 ...	2020-08-04 05:18:35
91.121.45.5	attackspam	Aug 3 20:36:30 *** sshd[8402]: User root from 91.121.45.5 not allowed because not listed in AllowUsers	2020-08-04 05:42:48

Recently Reported IPs

148.72.206.209	183.49.18.183	62.222.84.173	82.41.118.247
69.160.208.183	117.89.140.26	87.164.66.168	73.203.34.141
78.14.76.95	182.80.254.127	84.194.252.53	180.29.252.77
43.241.110.15	145.34.6.185	110.81.27.61	128.37.114.13
111.15.181.105	124.7.200.13	88.214.31.162	106.9.127.44