148.0.20.250 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Dominican Republic

运营商(isp): Compania Dominicana de Telefonos S. A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	1592858162 - 06/22/2020 22:36:02 Host: 148.0.20.250/148.0.20.250 Port: 445 TCP Blocked	2020-06-23 06:14:25

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.0.20.250
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 64594
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.0.20.250.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062201 1800 900 604800 86400

;; Query time: 109 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 23 06:14:15 CST 2020
;; MSG SIZE  rcvd: 116

HOST信息:

250.20.0.148.in-addr.arpa domain name pointer 250.20.0.148.d.dyn.claro.net.do.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
250.20.0.148.in-addr.arpa	name = 250.20.0.148.d.dyn.claro.net.do.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
132.232.1.62	attackbotsspam	Aug 3 06:47:32 vps65 sshd\[22313\]: Invalid user ts from 132.232.1.62 port 46466 Aug 3 06:47:32 vps65 sshd\[22313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.1.62 ...	2019-08-03 17:14:40
185.234.216.95	attackspambots	Aug 3 10:20:38 relay postfix/smtpd\[12343\]: warning: unknown\[185.234.216.95\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 3 10:21:33 relay postfix/smtpd\[13030\]: warning: unknown\[185.234.216.95\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 3 10:27:06 relay postfix/smtpd\[29961\]: warning: unknown\[185.234.216.95\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 3 10:28:01 relay postfix/smtpd\[15745\]: warning: unknown\[185.234.216.95\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 3 10:33:33 relay postfix/smtpd\[14423\]: warning: unknown\[185.234.216.95\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-08-03 17:06:11
150.95.112.100	attackspambots	michaelklotzbier.de 150.95.112.100 \[03/Aug/2019:06:47:48 +0200\] "POST /wp-login.php HTTP/1.1" 200 5838 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" michaelklotzbier.de 150.95.112.100 \[03/Aug/2019:06:47:51 +0200\] "POST /wp-login.php HTTP/1.1" 200 5795 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0"	2019-08-03 17:02:51
103.141.142.104	attackbots	Aug 3 06:28:57 srv1 sshd[18749]: Did not receive identification string from 103.141.142.104 Aug 3 06:29:01 srv1 sshd[18750]: Invalid user support from 103.141.142.104 Aug 3 06:29:02 srv1 sshd[18750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.142.104 Aug 3 06:29:04 srv1 sshd[18750]: Failed password for invalid user support from 103.141.142.104 port 51113 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=103.141.142.104	2019-08-03 17:10:59
54.38.82.14	attackbotsspam	Aug 3 05:31:44 vps200512 sshd\[4087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.82.14 user=root Aug 3 05:31:46 vps200512 sshd\[4087\]: Failed password for root from 54.38.82.14 port 45413 ssh2 Aug 3 05:31:47 vps200512 sshd\[4096\]: Invalid user admin from 54.38.82.14 Aug 3 05:31:47 vps200512 sshd\[4096\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.82.14 Aug 3 05:31:49 vps200512 sshd\[4096\]: Failed password for invalid user admin from 54.38.82.14 port 57281 ssh2	2019-08-03 17:54:00
81.17.60.236	attackspambots	namecheap spam	2019-08-03 18:16:22
5.135.182.84	attackbotsspam	Aug 3 04:43:26 plusreed sshd[21657]: Invalid user tao from 5.135.182.84 ...	2019-08-03 16:56:24
37.187.122.195	attackspam	Aug 3 08:00:39 localhost sshd\[6592\]: Invalid user pavel from 37.187.122.195 Aug 3 08:00:39 localhost sshd\[6592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.122.195 Aug 3 08:00:41 localhost sshd\[6592\]: Failed password for invalid user pavel from 37.187.122.195 port 60272 ssh2 Aug 3 08:05:46 localhost sshd\[6905\]: Invalid user student1 from 37.187.122.195 Aug 3 08:05:46 localhost sshd\[6905\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.187.122.195 ...	2019-08-03 17:04:09
46.229.168.138	attackspam	SQL Injection	2019-08-03 17:28:29
66.172.209.138	attackbots	Many RDP login attempts detected by IDS script	2019-08-03 16:53:14
159.203.61.149	attack	159.203.61.149 - - [03/Aug/2019:06:47:24 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.61.149 - - [03/Aug/2019:06:47:27 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.61.149 - - [03/Aug/2019:06:47:29 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.61.149 - - [03/Aug/2019:06:47:31 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.61.149 - - [03/Aug/2019:06:47:37 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.61.149 - - [03/Aug/2019:06:47:38 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-08-03 17:10:40
223.247.194.119	attackbots	Aug 3 04:16:52 aat-srv002 sshd[5334]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.194.119 Aug 3 04:16:54 aat-srv002 sshd[5334]: Failed password for invalid user admin from 223.247.194.119 port 58876 ssh2 Aug 3 04:22:57 aat-srv002 sshd[5445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.247.194.119 Aug 3 04:22:58 aat-srv002 sshd[5445]: Failed password for invalid user rq from 223.247.194.119 port 51674 ssh2 ...	2019-08-03 17:39:27
89.144.162.91	attack	2019-08-03T11:46:58.789833enmeeting.mahidol.ac.th sshd\[15394\]: User root from 89.144.162.91 not allowed because not listed in AllowUsers 2019-08-03T11:46:58.910623enmeeting.mahidol.ac.th sshd\[15394\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=89.144.162.91 user=root 2019-08-03T11:47:00.122667enmeeting.mahidol.ac.th sshd\[15394\]: Failed password for invalid user root from 89.144.162.91 port 41754 ssh2 ...	2019-08-03 17:35:30
91.121.142.225	attackbotsspam	Aug 3 09:52:35 SilenceServices sshd[12028]: Failed password for root from 91.121.142.225 port 34540 ssh2 Aug 3 09:56:43 SilenceServices sshd[14943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.142.225 Aug 3 09:56:45 SilenceServices sshd[14943]: Failed password for invalid user adda from 91.121.142.225 port 58226 ssh2	2019-08-03 17:08:07
195.178.165.154	attack	[Aegis] @ 2019-08-03 06:02:56 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-08-03 17:19:16

最近上报的IP列表

122.192.207.212	116.49.238.201	181.63.221.253	103.45.109.47
173.168.120.12	85.217.109.234	90.237.79.99	208.226.155.17
100.50.229.31	14.23.151.6	172.91.238.254	172.195.103.110
174.21.84.74	73.27.12.196	187.163.113.130	2.175.189.17
34.66.139.228	97.87.199.64	65.223.89.209	149.62.3.46