152.169.2.148 - IPInfo

Basic Info

City: Córdoba

Region: Cordoba

Country: Argentina

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
152.169.213.126	attackbotsspam	Invalid user ot from 152.169.213.126 port 34760	2020-04-19 04:03:37
152.169.213.126	attackspam	Mar 28 08:23:16 mockhub sshd[21603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.213.126 Mar 28 08:23:18 mockhub sshd[21603]: Failed password for invalid user htj from 152.169.213.126 port 38532 ssh2 ...	2020-03-29 02:00:48
152.169.213.126	attackspambots	no	2020-03-26 12:15:31
152.169.202.42	attackbots	Feb 25 17:39:07 haigwepa sshd[23768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.202.42 Feb 25 17:39:09 haigwepa sshd[23768]: Failed password for invalid user oleta from 152.169.202.42 port 40931 ssh2 ...	2020-02-26 01:12:13
152.169.213.126	attack	Lines containing failures of 152.169.213.126 Feb 24 23:29:11 nextcloud sshd[7640]: Invalid user hadoop from 152.169.213.126 port 58470 Feb 24 23:29:11 nextcloud sshd[7640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.213.126 Feb 24 23:29:12 nextcloud sshd[7640]: Failed password for invalid user hadoop from 152.169.213.126 port 58470 ssh2 Feb 24 23:29:13 nextcloud sshd[7640]: Received disconnect from 152.169.213.126 port 58470:11: Bye Bye [preauth] Feb 24 23:29:13 nextcloud sshd[7640]: Disconnected from invalid user hadoop 152.169.213.126 port 58470 [preauth] Feb 24 23:41:13 nextcloud sshd[10486]: Invalid user support from 152.169.213.126 port 40806 Feb 24 23:41:13 nextcloud sshd[10486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.213.126 Feb 24 23:41:14 nextcloud sshd[10486]: Failed password for invalid user support from 152.169.213.126 port 40806 ssh2 Feb 24 23:41:15 ........ ------------------------------	2020-02-25 09:01:09
152.169.20.244	attackbots	unauthorized connection attempt	2020-02-16 20:50:21
152.169.243.131	attackbots	Unauthorized connection attempt detected from IP address 152.169.243.131 to port 23 [J]	2020-01-14 19:19:25
152.169.243.131	attackspam	Automatic report - Port Scan Attack	2019-12-16 00:49:09
152.169.243.131	attackbots	Fail2Ban Ban Triggered	2019-12-07 15:57:56
152.169.214.87	attackspam	Brute force attempt	2019-10-23 03:30:20
152.169.204.74	attackbotsspam	Sep 16 11:37:17 hcbbdb sshd\[16628\]: Invalid user supervisor from 152.169.204.74 Sep 16 11:37:17 hcbbdb sshd\[16628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.204.74 Sep 16 11:37:19 hcbbdb sshd\[16628\]: Failed password for invalid user supervisor from 152.169.204.74 port 58849 ssh2 Sep 16 11:43:04 hcbbdb sshd\[17233\]: Invalid user nong from 152.169.204.74 Sep 16 11:43:04 hcbbdb sshd\[17233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.204.74	2019-09-16 19:50:59
152.169.204.74	attackspambots	Aug 30 02:16:47 kapalua sshd\[20909\]: Invalid user lvs from 152.169.204.74 Aug 30 02:16:47 kapalua sshd\[20909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.204.74 Aug 30 02:16:49 kapalua sshd\[20909\]: Failed password for invalid user lvs from 152.169.204.74 port 44673 ssh2 Aug 30 02:21:57 kapalua sshd\[21360\]: Invalid user eric from 152.169.204.74 Aug 30 02:21:57 kapalua sshd\[21360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.204.74	2019-08-30 20:29:22
152.169.204.74	attackbots	Aug 28 08:05:07 lnxmail61 sshd[20604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.204.74	2019-08-28 14:15:47
152.169.204.74	attackspam	Aug 14 18:38:12 mail sshd\[6500\]: Failed password for invalid user natalie from 152.169.204.74 port 53889 ssh2 Aug 14 18:57:59 mail sshd\[6896\]: Invalid user oracle from 152.169.204.74 port 45762 ...	2019-08-15 04:57:39
152.169.204.31	attackbots	TCP Port: 25 _ invalid blocked dnsbl-sorbs abuseat-org _ _ _ _ (264)	2019-07-27 14:45:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.169.2.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37704
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;152.169.2.148.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121201 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 13 03:17:16 CST 2019
;; MSG SIZE  rcvd: 117

Host info

148.2.169.152.in-addr.arpa domain name pointer 148-2-169-152.fibertel.com.ar.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.2.169.152.in-addr.arpa	name = 148-2-169-152.fibertel.com.ar.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
84.22.105.205	attackspambots	fail2ban honeypot	2019-10-30 16:04:09
94.191.120.164	attackbotsspam	Oct 30 07:20:52 server sshd\[18407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.120.164 user=root Oct 30 07:20:55 server sshd\[18407\]: Failed password for root from 94.191.120.164 port 43630 ssh2 Oct 30 07:31:14 server sshd\[20686\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.120.164 user=root Oct 30 07:31:15 server sshd\[20686\]: Failed password for root from 94.191.120.164 port 46308 ssh2 Oct 30 07:41:15 server sshd\[23104\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.120.164 user=root ...	2019-10-30 16:12:23
92.119.160.97	attackspambots	Scanning (more than 2 packets) random ports - tries to find possible vulnerable services	2019-10-30 15:57:36
185.232.67.5	attack	$f2bV_matches	2019-10-30 15:58:15
145.239.87.109	attackspam	Oct 30 09:06:44 vps647732 sshd[19221]: Failed password for root from 145.239.87.109 port 56388 ssh2 ...	2019-10-30 16:20:07
36.81.141.98	attackspambots	445/tcp [2019-10-30]1pkt	2019-10-30 15:57:58
154.83.17.97	attack	Oct 29 07:26:09 econome sshd[14718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.83.17.97 user=r.r Oct 29 07:26:12 econome sshd[14718]: Failed password for r.r from 154.83.17.97 port 40306 ssh2 Oct 29 07:26:12 econome sshd[14718]: Received disconnect from 154.83.17.97: 11: Bye Bye [preauth] Oct 29 07:30:48 econome sshd[14959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.83.17.97 user=r.r Oct 29 07:30:50 econome sshd[14959]: Failed password for r.r from 154.83.17.97 port 32816 ssh2 Oct 29 07:30:50 econome sshd[14959]: Received disconnect from 154.83.17.97: 11: Bye Bye [preauth] Oct 29 07:35:11 econome sshd[15151]: Failed password for invalid user com from 154.83.17.97 port 52735 ssh2 Oct 29 07:35:11 econome sshd[15151]: Received disconnect from 154.83.17.97: 11: Bye Bye [preauth] Oct 29 07:39:24 econome sshd[15388]: Failed password for invalid user aA123 from 154.83.17.97 po........ -------------------------------	2019-10-30 15:55:59
180.178.55.10	attack	Oct 30 06:58:45 MK-Soft-VM4 sshd[24066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.178.55.10 Oct 30 06:58:46 MK-Soft-VM4 sshd[24066]: Failed password for invalid user supermario from 180.178.55.10 port 59396 ssh2 ...	2019-10-30 16:15:28
90.150.188.154	attackbots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: TCP cat: Potentially Bad Traffic	2019-10-30 16:08:37
27.2.104.68	attackspambots	5555/tcp [2019-10-30]1pkt	2019-10-30 16:12:46
181.48.99.90	attackbotsspam	Invalid user Samara@123 from 181.48.99.90 port 55498 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.99.90 Failed password for invalid user Samara@123 from 181.48.99.90 port 55498 ssh2 Invalid user shouji from 181.48.99.90 port 46555 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.99.90	2019-10-30 15:49:14
110.29.237.248	attackspambots	60001/tcp [2019-10-30]1pkt	2019-10-30 16:06:22
184.105.139.92	attackbotsspam	scan z	2019-10-30 16:01:10
77.81.83.26	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/77.81.83.26/ IR - 1H : (102) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IR NAME ASN : ASN48592 IP : 77.81.83.26 CIDR : 77.81.80.0/22 PREFIX COUNT : 12 UNIQUE IP COUNT : 9216 ATTACKS DETECTED ASN48592 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-30 04:51:05 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-30 16:14:06
182.61.176.105	attackbotsspam	Oct 29 18:56:48 auw2 sshd\[5706\]: Invalid user ou from 182.61.176.105 Oct 29 18:56:48 auw2 sshd\[5706\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.176.105 Oct 29 18:56:49 auw2 sshd\[5706\]: Failed password for invalid user ou from 182.61.176.105 port 49646 ssh2 Oct 29 19:01:14 auw2 sshd\[6057\]: Invalid user upload2 from 182.61.176.105 Oct 29 19:01:14 auw2 sshd\[6057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.176.105	2019-10-30 16:07:45

Recently Reported IPs

119.125.38.41	74.205.37.209	51.91.159.191	117.158.202.67
100.20.194.215	2.79.106.227	119.205.151.65	205.121.106.83
2.206.197.203	51.91.159.190	121.168.39.78	24.41.114.201
51.79.50.99	105.204.80.240	64.6.120.221	51.77.59.94
185.145.45.194	48.175.192.55	52.47.78.232	123.122.237.74