Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Coventry

Region: England

Country: United Kingdom

Internet Service Provider: Exponential-E Ltd.

Hostname: unknown

Organization: Exponential-E Ltd.

Usage Type: Data Center/Web Hosting/Transit

Comments:
Type Details Datetime
attack
Apr 16 06:45:53 eventyay sshd[20404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Apr 16 06:45:55 eventyay sshd[20404]: Failed password for invalid user blog from 5.148.3.212 port 34562 ssh2
Apr 16 06:52:20 eventyay sshd[20628]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
...
2020-04-16 13:04:47
attack
Apr 10 18:58:52 gw1 sshd[8066]: Failed password for ubuntu from 5.148.3.212 port 55786 ssh2
...
2020-04-11 03:32:31
attack
$f2bV_matches
2020-03-26 15:28:55
attack
Mar 11 16:59:41 lanister sshd[5973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=root
Mar 11 16:59:43 lanister sshd[5973]: Failed password for root from 5.148.3.212 port 41164 ssh2
Mar 11 17:09:47 lanister sshd[6168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=root
Mar 11 17:09:49 lanister sshd[6168]: Failed password for root from 5.148.3.212 port 50643 ssh2
2020-03-12 07:14:58
attack
Mar 10 03:49:34 localhost sshd[27418]: Invalid user nitish from 5.148.3.212 port 47720
Mar 10 03:49:34 localhost sshd[27418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Mar 10 03:49:34 localhost sshd[27418]: Invalid user nitish from 5.148.3.212 port 47720
Mar 10 03:49:37 localhost sshd[27418]: Failed password for invalid user nitish from 5.148.3.212 port 47720 ssh2
Mar 10 03:56:47 localhost sshd[28166]: Invalid user 123456 from 5.148.3.212 port 56616
...
2020-03-10 12:00:24
attackbots
Mar  1 22:15:50 webhost01 sshd[13052]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Mar  1 22:15:52 webhost01 sshd[13052]: Failed password for invalid user ftp from 5.148.3.212 port 46357 ssh2
...
2020-03-01 23:25:18
attackspam
Feb 27 17:50:21 localhost sshd\[26640\]: Invalid user test from 5.148.3.212 port 46521
Feb 27 17:50:21 localhost sshd\[26640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Feb 27 17:50:23 localhost sshd\[26640\]: Failed password for invalid user test from 5.148.3.212 port 46521 ssh2
2020-02-28 01:07:02
attackspambots
Feb 20 02:55:28 firewall sshd[22760]: Invalid user apache from 5.148.3.212
Feb 20 02:55:30 firewall sshd[22760]: Failed password for invalid user apache from 5.148.3.212 port 45280 ssh2
Feb 20 02:58:51 firewall sshd[22914]: Invalid user admin from 5.148.3.212
...
2020-02-20 14:54:30
attackbotsspam
Feb 12 06:27:28 silence02 sshd[4426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Feb 12 06:27:30 silence02 sshd[4426]: Failed password for invalid user verda from 5.148.3.212 port 48653 ssh2
Feb 12 06:30:46 silence02 sshd[4710]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
2020-02-12 13:43:37
attackspambots
SSH Brute Force
2020-02-05 07:41:05
attackspambots
Dec 29 16:24:20 v22018086721571380 sshd[24002]: Failed password for invalid user clark from 5.148.3.212 port 35090 ssh2
Dec 29 16:31:22 v22018086721571380 sshd[24245]: Failed password for invalid user estefani from 5.148.3.212 port 60277 ssh2
2019-12-29 23:45:43
attackspam
Dec 26 22:46:37 IngegnereFirenze sshd[15536]: Failed password for invalid user kalim from 5.148.3.212 port 49989 ssh2
...
2019-12-27 06:59:51
attackspambots
Dec 23 05:29:37 web9 sshd\[13248\]: Invalid user dinwiddie from 5.148.3.212
Dec 23 05:29:37 web9 sshd\[13248\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Dec 23 05:29:38 web9 sshd\[13248\]: Failed password for invalid user dinwiddie from 5.148.3.212 port 51185 ssh2
Dec 23 05:36:41 web9 sshd\[14223\]: Invalid user agnisandesh from 5.148.3.212
Dec 23 05:36:41 web9 sshd\[14223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
2019-12-23 23:53:58
attackspam
2019-12-09T04:56:50.209859abusebot-5.cloudsearch.cf sshd\[19683\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=root
2019-12-09 13:15:23
attackspam
Dec  5 05:42:27 mail sshd[20181]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=root
Dec  5 05:42:29 mail sshd[20181]: Failed password for root from 5.148.3.212 port 52552 ssh2
Dec  5 05:52:24 mail sshd[3090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=root
Dec  5 05:52:26 mail sshd[3090]: Failed password for root from 5.148.3.212 port 55806 ssh2
Dec  5 05:57:35 mail sshd[10759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=root
Dec  5 05:57:37 mail sshd[10759]: Failed password for root from 5.148.3.212 port 32872 ssh2
...
2019-12-05 13:06:40
attackspambots
$f2bV_matches
2019-12-03 21:20:31
attack
Dec  2 15:38:58 MK-Soft-VM7 sshd[15687]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 
Dec  2 15:39:00 MK-Soft-VM7 sshd[15687]: Failed password for invalid user hoshi from 5.148.3.212 port 51090 ssh2
...
2019-12-02 23:11:49
attack
Nov 30 16:47:35 root sshd[14741]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 
Nov 30 16:47:36 root sshd[14741]: Failed password for invalid user hung from 5.148.3.212 port 35430 ssh2
Nov 30 16:51:33 root sshd[14768]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 
...
2019-12-01 00:30:14
attackbotsspam
Nov 29 17:27:53 server sshd\[19242\]: Invalid user hung from 5.148.3.212 port 53264
Nov 29 17:27:53 server sshd\[19242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Nov 29 17:27:56 server sshd\[19242\]: Failed password for invalid user hung from 5.148.3.212 port 53264 ssh2
Nov 29 17:32:08 server sshd\[27587\]: Invalid user server from 5.148.3.212 port 43274
Nov 29 17:32:08 server sshd\[27587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
2019-11-29 23:43:07
attackspam
Nov 26 06:25:19 auw2 sshd\[22077\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=mysql
Nov 26 06:25:22 auw2 sshd\[22077\]: Failed password for mysql from 5.148.3.212 port 47296 ssh2
Nov 26 06:32:01 auw2 sshd\[22666\]: Invalid user guitar from 5.148.3.212
Nov 26 06:32:01 auw2 sshd\[22666\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Nov 26 06:32:04 auw2 sshd\[22666\]: Failed password for invalid user guitar from 5.148.3.212 port 36907 ssh2
2019-11-27 04:40:03
attackbotsspam
2019-11-24T19:39:02.955855luisaranguren sshd[3884251]: Connection from 5.148.3.212 port 57154 on 10.10.10.6 port 22 rdomain ""
2019-11-24T19:39:04.646622luisaranguren sshd[3884251]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=root
2019-11-24T19:39:06.641816luisaranguren sshd[3884251]: Failed password for root from 5.148.3.212 port 57154 ssh2
2019-11-24T19:57:28.459422luisaranguren sshd[3886965]: Connection from 5.148.3.212 port 33812 on 10.10.10.6 port 22 rdomain ""
2019-11-24T19:57:30.150486luisaranguren sshd[3886965]: Invalid user mykayla from 5.148.3.212 port 33812
...
2019-11-24 22:21:53
attack
2019-11-23T08:52:36.982973abusebot-4.cloudsearch.cf sshd\[8013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=root
2019-11-23 20:17:03
attackbotsspam
Nov 22 22:20:15 server sshd\[3308\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=root
Nov 22 22:20:17 server sshd\[3308\]: Failed password for root from 5.148.3.212 port 45730 ssh2
Nov 22 22:28:14 server sshd\[5152\]: Invalid user yosool from 5.148.3.212
Nov 22 22:28:14 server sshd\[5152\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 
Nov 22 22:28:16 server sshd\[5152\]: Failed password for invalid user yosool from 5.148.3.212 port 44664 ssh2
...
2019-11-23 06:28:01
attack
2019-11-21T19:54:39.726211luisaranguren sshd[2990225]: Connection from 5.148.3.212 port 38997 on 10.10.10.6 port 22 rdomain ""
2019-11-21T19:54:41.419832luisaranguren sshd[2990225]: Invalid user bryn from 5.148.3.212 port 38997
2019-11-21T19:54:41.425025luisaranguren sshd[2990225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
2019-11-21T19:54:39.726211luisaranguren sshd[2990225]: Connection from 5.148.3.212 port 38997 on 10.10.10.6 port 22 rdomain ""
2019-11-21T19:54:41.419832luisaranguren sshd[2990225]: Invalid user bryn from 5.148.3.212 port 38997
2019-11-21T19:54:43.406861luisaranguren sshd[2990225]: Failed password for invalid user bryn from 5.148.3.212 port 38997 ssh2
...
2019-11-21 19:39:04
attack
Nov 16 08:29:17 [host] sshd[22610]: Invalid user joves from 5.148.3.212
Nov 16 08:29:17 [host] sshd[22610]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Nov 16 08:29:19 [host] sshd[22610]: Failed password for invalid user joves from 5.148.3.212 port 60771 ssh2
2019-11-16 16:11:20
attackspambots
Nov  8 08:27:49 sauna sshd[57740]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Nov  8 08:27:50 sauna sshd[57740]: Failed password for invalid user odroid from 5.148.3.212 port 52089 ssh2
...
2019-11-08 17:09:36
attackspambots
Automatic report - Banned IP Access
2019-10-29 18:45:13
attackspam
2019-10-28T14:29:50.026719lon01.zurich-datacenter.net sshd\[24223\]: Invalid user PRECISIONGLUSER from 5.148.3.212 port 40960
2019-10-28T14:29:50.033394lon01.zurich-datacenter.net sshd\[24223\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
2019-10-28T14:29:51.915882lon01.zurich-datacenter.net sshd\[24223\]: Failed password for invalid user PRECISIONGLUSER from 5.148.3.212 port 40960 ssh2
2019-10-28T14:33:52.648556lon01.zurich-datacenter.net sshd\[24307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212  user=root
2019-10-28T14:33:54.419633lon01.zurich-datacenter.net sshd\[24307\]: Failed password for root from 5.148.3.212 port 59787 ssh2
...
2019-10-29 01:44:54
attack
Automatic report - Banned IP Access
2019-10-28 00:05:40
attackbotsspam
Oct 22 08:26:41 markkoudstaal sshd[4532]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212
Oct 22 08:26:43 markkoudstaal sshd[4532]: Failed password for invalid user idc from 5.148.3.212 port 46949 ssh2
Oct 22 08:30:49 markkoudstaal sshd[4925]: Failed password for root from 5.148.3.212 port 37911 ssh2
2019-10-22 18:31:06
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.148.3.212
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53179
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.148.3.212.			IN	A

;; AUTHORITY SECTION:
.			2859	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032901 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sat Mar 30 13:18:47 +08 2019
;; MSG SIZE  rcvd: 115

Host info
Host 212.3.148.5.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 212.3.148.5.in-addr.arpa: NXDOMAIN

Related IP info:
Related comments:
IP Type Details Datetime
182.61.130.51 attackspambots
Invalid user dominik from 182.61.130.51 port 40230
2020-04-28 06:36:05
176.113.115.54 attackbotsspam
firewall-block, port(s): 1777/tcp, 3105/tcp, 10627/tcp, 10749/tcp, 10954/tcp, 11444/tcp, 11753/tcp, 12180/tcp, 14343/tcp, 16496/tcp, 16617/tcp, 21251/tcp, 26506/tcp, 28121/tcp, 28898/tcp, 31127/tcp, 34768/tcp, 35046/tcp, 39993/tcp, 40855/tcp, 41098/tcp, 42059/tcp, 44604/tcp, 45950/tcp, 48391/tcp, 49413/tcp, 54027/tcp, 55230/tcp, 55909/tcp, 57466/tcp
2020-04-28 06:21:48
172.105.155.186 attackbots
[Sun Apr 26 03:38:35 2020] - DDoS Attack From IP: 172.105.155.186 Port: 45174
2020-04-28 06:47:28
211.108.106.1 attackspambots
Apr 27 19:04:17 vps46666688 sshd[1946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.108.106.1
Apr 27 19:04:19 vps46666688 sshd[1946]: Failed password for invalid user grid from 211.108.106.1 port 51270 ssh2
...
2020-04-28 06:22:46
203.127.92.151 attackbots
Total attacks: 4
2020-04-28 06:44:06
122.51.83.207 attackbots
Port scan detected on ports: 1433[TCP], 1433[TCP], 1433[TCP]
2020-04-28 06:32:48
132.232.26.42 attackbotsspam
$f2bV_matches
2020-04-28 06:32:02
45.143.220.105 attackspam
trying to hack asterisk
2020-04-28 06:47:56
142.4.214.151 attackbotsspam
Invalid user toto from 142.4.214.151 port 60118
2020-04-28 06:15:58
70.32.0.105 attackbots
[Mon Apr 27 05:57:51 2020] - DDoS Attack From IP: 70.32.0.105 Port: 22
2020-04-28 06:35:34
106.12.207.34 attackbotsspam
Apr 27 23:49:54 meumeu sshd[16429]: Failed password for root from 106.12.207.34 port 54798 ssh2
Apr 27 23:54:18 meumeu sshd[17039]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.207.34 
Apr 27 23:54:20 meumeu sshd[17039]: Failed password for invalid user emilio from 106.12.207.34 port 56238 ssh2
...
2020-04-28 06:11:27
64.225.114.144 attackspam
[Mon Apr 27 07:20:45 2020] - DDoS Attack From IP: 64.225.114.144 Port: 41688
2020-04-28 06:35:06
173.239.232.34 attackspam
[Mon Apr 27 05:20:41 2020] - DDoS Attack From IP: 173.239.232.34 Port: 51619
2020-04-28 06:40:13
13.52.240.178 attack
Apr 27 22:04:43 ovpn sshd[18796]: Invalid user manny from 13.52.240.178
Apr 27 22:04:43 ovpn sshd[18796]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.52.240.178
Apr 27 22:04:46 ovpn sshd[18796]: Failed password for invalid user manny from 13.52.240.178 port 52676 ssh2
Apr 27 22:04:46 ovpn sshd[18796]: Received disconnect from 13.52.240.178 port 52676:11: Bye Bye [preauth]
Apr 27 22:04:46 ovpn sshd[18796]: Disconnected from 13.52.240.178 port 52676 [preauth]
Apr 27 22:11:02 ovpn sshd[20395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=13.52.240.178  user=r.r
Apr 27 22:11:05 ovpn sshd[20395]: Failed password for r.r from 13.52.240.178 port 46106 ssh2
Apr 27 22:11:05 ovpn sshd[20395]: Received disconnect from 13.52.240.178 port 46106:11: Bye Bye [preauth]
Apr 27 22:11:05 ovpn sshd[20395]: Disconnected from 13.52.240.178 port 46106 [preauth]

........
-----------------------------------------------
https://www.blocklist.de/
2020-04-28 06:10:32
120.71.146.217 attack
Invalid user parsa from 120.71.146.217 port 47678
2020-04-28 06:27:46

Recently Reported IPs

62.232.219.175 5.140.145.17 187.189.246.30 128.134.187.155
126.12.56.158 107.170.105.134 103.58.249.193 2001:41d0:2:97b9::1
18.236.94.102 216.58.196.142 182.73.194.66 179.183.67.131
157.230.56.76 96.38.49.138 90.105.99.249 27.36.6.39
5.15.48.208 176.114.1.110 117.48.201.195 89.134.194.209