152.169.2.148 - IPInfo

Basic Info

City: Córdoba

Region: Cordoba

Country: Argentina

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
152.169.213.126	attackbotsspam	Invalid user ot from 152.169.213.126 port 34760	2020-04-19 04:03:37
152.169.213.126	attackspam	Mar 28 08:23:16 mockhub sshd[21603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.213.126 Mar 28 08:23:18 mockhub sshd[21603]: Failed password for invalid user htj from 152.169.213.126 port 38532 ssh2 ...	2020-03-29 02:00:48
152.169.213.126	attackspambots	no	2020-03-26 12:15:31
152.169.202.42	attackbots	Feb 25 17:39:07 haigwepa sshd[23768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.202.42 Feb 25 17:39:09 haigwepa sshd[23768]: Failed password for invalid user oleta from 152.169.202.42 port 40931 ssh2 ...	2020-02-26 01:12:13
152.169.213.126	attack	Lines containing failures of 152.169.213.126 Feb 24 23:29:11 nextcloud sshd[7640]: Invalid user hadoop from 152.169.213.126 port 58470 Feb 24 23:29:11 nextcloud sshd[7640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.213.126 Feb 24 23:29:12 nextcloud sshd[7640]: Failed password for invalid user hadoop from 152.169.213.126 port 58470 ssh2 Feb 24 23:29:13 nextcloud sshd[7640]: Received disconnect from 152.169.213.126 port 58470:11: Bye Bye [preauth] Feb 24 23:29:13 nextcloud sshd[7640]: Disconnected from invalid user hadoop 152.169.213.126 port 58470 [preauth] Feb 24 23:41:13 nextcloud sshd[10486]: Invalid user support from 152.169.213.126 port 40806 Feb 24 23:41:13 nextcloud sshd[10486]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.213.126 Feb 24 23:41:14 nextcloud sshd[10486]: Failed password for invalid user support from 152.169.213.126 port 40806 ssh2 Feb 24 23:41:15 ........ ------------------------------	2020-02-25 09:01:09
152.169.20.244	attackbots	unauthorized connection attempt	2020-02-16 20:50:21
152.169.243.131	attackbots	Unauthorized connection attempt detected from IP address 152.169.243.131 to port 23 [J]	2020-01-14 19:19:25
152.169.243.131	attackspam	Automatic report - Port Scan Attack	2019-12-16 00:49:09
152.169.243.131	attackbots	Fail2Ban Ban Triggered	2019-12-07 15:57:56
152.169.214.87	attackspam	Brute force attempt	2019-10-23 03:30:20
152.169.204.74	attackbotsspam	Sep 16 11:37:17 hcbbdb sshd\[16628\]: Invalid user supervisor from 152.169.204.74 Sep 16 11:37:17 hcbbdb sshd\[16628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.204.74 Sep 16 11:37:19 hcbbdb sshd\[16628\]: Failed password for invalid user supervisor from 152.169.204.74 port 58849 ssh2 Sep 16 11:43:04 hcbbdb sshd\[17233\]: Invalid user nong from 152.169.204.74 Sep 16 11:43:04 hcbbdb sshd\[17233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.204.74	2019-09-16 19:50:59
152.169.204.74	attackspambots	Aug 30 02:16:47 kapalua sshd\[20909\]: Invalid user lvs from 152.169.204.74 Aug 30 02:16:47 kapalua sshd\[20909\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.204.74 Aug 30 02:16:49 kapalua sshd\[20909\]: Failed password for invalid user lvs from 152.169.204.74 port 44673 ssh2 Aug 30 02:21:57 kapalua sshd\[21360\]: Invalid user eric from 152.169.204.74 Aug 30 02:21:57 kapalua sshd\[21360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.204.74	2019-08-30 20:29:22
152.169.204.74	attackbots	Aug 28 08:05:07 lnxmail61 sshd[20604]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.169.204.74	2019-08-28 14:15:47
152.169.204.74	attackspam	Aug 14 18:38:12 mail sshd\[6500\]: Failed password for invalid user natalie from 152.169.204.74 port 53889 ssh2 Aug 14 18:57:59 mail sshd\[6896\]: Invalid user oracle from 152.169.204.74 port 45762 ...	2019-08-15 04:57:39
152.169.204.31	attackbots	TCP Port: 25 _ invalid blocked dnsbl-sorbs abuseat-org _ _ _ _ (264)	2019-07-27 14:45:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.169.2.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37704
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;152.169.2.148.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121201 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 13 03:17:16 CST 2019
;; MSG SIZE  rcvd: 117

Host info

148.2.169.152.in-addr.arpa domain name pointer 148-2-169-152.fibertel.com.ar.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.2.169.152.in-addr.arpa	name = 148-2-169-152.fibertel.com.ar.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.17.56.50	attackspambots	(sshd) Failed SSH login from 218.17.56.50 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 3 22:41:05 srv sshd[23448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.56.50 user=root Apr 3 22:41:07 srv sshd[23448]: Failed password for root from 218.17.56.50 port 37400 ssh2 Apr 3 22:53:42 srv sshd[23648]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.56.50 user=root Apr 3 22:53:43 srv sshd[23648]: Failed password for root from 218.17.56.50 port 35694 ssh2 Apr 3 22:56:55 srv sshd[23698]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.17.56.50 user=root	2020-04-04 05:20:28
125.212.202.179	attackspambots	Invalid user usuario from 125.212.202.179 port 45435	2020-04-04 05:43:42
139.59.211.245	attack	Apr 3 sshd[31389]: Invalid user test from 139.59.211.245 port 36664	2020-04-04 05:41:02
51.91.212.80	attackbots	04/03/2020-17:41:56.635942 51.91.212.80 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 52	2020-04-04 05:51:54
206.189.114.0	attack	(sshd) Failed SSH login from 206.189.114.0 (GB/United Kingdom/-): 5 in the last 3600 secs	2020-04-04 05:22:17
151.80.155.98	attackbotsspam	Apr 3 22:43:08 prox sshd[9431]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.155.98 Apr 3 22:43:10 prox sshd[9431]: Failed password for invalid user shumkin from 151.80.155.98 port 49770 ssh2	2020-04-04 05:37:45
166.111.152.230	attackspambots	Apr 3 16:09:01 Tower sshd[42513]: Connection from 166.111.152.230 port 34586 on 192.168.10.220 port 22 rdomain "" Apr 3 16:09:02 Tower sshd[42513]: Invalid user prayner from 166.111.152.230 port 34586 Apr 3 16:09:02 Tower sshd[42513]: error: Could not get shadow information for NOUSER Apr 3 16:09:02 Tower sshd[42513]: Failed password for invalid user prayner from 166.111.152.230 port 34586 ssh2 Apr 3 16:09:02 Tower sshd[42513]: Received disconnect from 166.111.152.230 port 34586:11: Bye Bye [preauth] Apr 3 16:09:02 Tower sshd[42513]: Disconnected from invalid user prayner 166.111.152.230 port 34586 [preauth]	2020-04-04 05:35:39
203.130.242.68	attack	Apr 3 13:46:51 main sshd[25748]: Failed password for invalid user student from 203.130.242.68 port 43009 ssh2 Apr 3 14:08:50 main sshd[26208]: Failed password for invalid user stream from 203.130.242.68 port 51527 ssh2 Apr 3 14:17:42 main sshd[26430]: Failed password for invalid user tor from 203.130.242.68 port 54926 ssh2 Apr 3 14:37:17 main sshd[27136]: Failed password for invalid user ey from 203.130.242.68 port 48442 ssh2	2020-04-04 05:23:09
222.186.175.151	attackspambots	$f2bV_matches	2020-04-04 05:57:10
185.194.49.132	attackbotsspam	SSH bruteforce	2020-04-04 05:28:31
185.153.196.230	attackbotsspam	Apr 3 23:41:51 srv2 sshd\[15677\]: Invalid user 0 from 185.153.196.230 port 33320 Apr 3 23:41:53 srv2 sshd\[15679\]: Invalid user 22 from 185.153.196.230 port 56283 Apr 3 23:42:00 srv2 sshd\[15683\]: Invalid user 101 from 185.153.196.230 port 50414	2020-04-04 05:46:49
149.7.217.27	attackspam	Invalid user xm from 149.7.217.27 port 54458	2020-04-04 05:38:23
169.255.196.156	attackspambots	Invalid user joq from 169.255.196.156 port 40333	2020-04-04 05:33:00
129.211.43.36	attack	Apr 4 04:35:26 webhost01 sshd[20724]: Failed password for root from 129.211.43.36 port 40738 ssh2 ...	2020-04-04 05:58:30
129.204.148.56	attackspambots	Apr 3 22:54:19 vayu sshd[2298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.148.56 user=r.r Apr 3 22:54:21 vayu sshd[2298]: Failed password for r.r from 129.204.148.56 port 44026 ssh2 Apr 3 22:54:21 vayu sshd[2298]: Received disconnect from 129.204.148.56: 11: Bye Bye [preauth] Apr 3 23:07:31 vayu sshd[7283]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.148.56 user=r.r Apr 3 23:07:33 vayu sshd[7283]: Failed password for r.r from 129.204.148.56 port 48036 ssh2 Apr 3 23:07:35 vayu sshd[7283]: Received disconnect from 129.204.148.56: 11: Bye Bye [preauth] Apr 3 23:14:20 vayu sshd[9558]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.148.56 user=r.r Apr 3 23:14:22 vayu sshd[9558]: Failed password for r.r from 129.204.148.56 port 34106 ssh2 Apr 3 23:14:23 vayu sshd[9558]: Received disconnect from 129.204.148.56: 1........ -------------------------------	2020-04-04 05:54:43

Recently Reported IPs

119.125.38.41	74.205.37.209	51.91.159.191	117.158.202.67
100.20.194.215	2.79.106.227	119.205.151.65	205.121.106.83
2.206.197.203	51.91.159.190	121.168.39.78	24.41.114.201
51.79.50.99	105.204.80.240	64.6.120.221	51.77.59.94
185.145.45.194	48.175.192.55	52.47.78.232	123.122.237.74