148.69.64.2 - IPInfo

基本信息:

城市(city): Lisbon

省份(region): Lisbon

国家(country): Portugal

运营商(isp): Vodafone Portugal - Communicacoes Pessoais S.A.

主机名(hostname): unknown

机构(organization): Vodafone Portugal - Communicacoes Pessoais S.A.

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackspambots	Unauthorized connection attempt from IP address 148.69.64.2 on Port 445(SMB)	2020-08-08 01:47:12

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.69.64.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17827
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.69.64.2.			IN	A

;; AUTHORITY SECTION:
.			3570	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041901 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 19 22:57:56 +08 2019
;; MSG SIZE  rcvd: 115

HOST信息:

2.64.69.148.in-addr.arpa domain name pointer 2.64.69.148.rev.vodafone.pt.

NSLOOKUP信息:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
2.64.69.148.in-addr.arpa	name = 2.64.69.148.rev.vodafone.pt.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
218.92.0.208	attackspam	Mar 13 05:58:37 vpn01 sshd[26703]: Failed password for root from 218.92.0.208 port 30692 ssh2 ...	2020-03-13 13:05:03
103.123.8.75	attack	Mar 13 04:51:58 eventyay sshd[30888]: Failed password for root from 103.123.8.75 port 44870 ssh2 Mar 13 04:54:47 eventyay sshd[30984]: Failed password for root from 103.123.8.75 port 59196 ssh2 ...	2020-03-13 12:47:21
222.186.175.151	attackbots	Mar 13 02:24:23 firewall sshd[19317]: Failed password for root from 222.186.175.151 port 40614 ssh2 Mar 13 02:24:32 firewall sshd[19317]: error: maximum authentication attempts exceeded for root from 222.186.175.151 port 40614 ssh2 [preauth] Mar 13 02:24:32 firewall sshd[19317]: Disconnecting: Too many authentication failures [preauth] ...	2020-03-13 13:26:00
195.66.114.31	attackbots	$f2bV_matches	2020-03-13 12:57:14
202.137.10.186	attack	Mar 13 05:50:53 localhost sshd\[19298\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.137.10.186 user=root Mar 13 05:50:55 localhost sshd\[19298\]: Failed password for root from 202.137.10.186 port 40970 ssh2 Mar 13 05:54:23 localhost sshd\[19376\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.137.10.186 user=root Mar 13 05:54:26 localhost sshd\[19376\]: Failed password for root from 202.137.10.186 port 38978 ssh2 Mar 13 05:57:54 localhost sshd\[19601\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.137.10.186 user=root ...	2020-03-13 13:13:43
35.199.82.233	attackbots	SSH bruteforce (Triggered fail2ban)	2020-03-13 13:27:03
187.189.230.106	attackbots	2020-03-1304:56:551jCbRO-0003W4-Oy\<=info@whatsup2013.chH=$localhost$[113.172.130.72]:54976P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2377id=8B8E386B60B49A29F5F0B901F594C5BD@whatsup2013.chT="fromDarya"fordreaming949@hotmail.compoksay3@gmail.com2020-03-1304:55:511jCbQM-0003Rk-7e\<=info@whatsup2013.chH=$localhost$[113.181.135.44]:53490P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2419id=6560D6858E5A74C71B1E57EF1B77A7AC@whatsup2013.chT="fromDarya"forrezafaozi9@gmail.comnyinyi.aa220@gmail.com2020-03-1304:56:381jCbR7-0003Um-Ls\<=info@whatsup2013.chH=$localhost$[113.172.197.86]:51466P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2376id=ADA81E4D4692BC0FD3D69F27D3B5CA15@whatsup2013.chT="fromDarya"forbcharazean@gmail.comsteverog84@gmail.com2020-03-1304:56:131jCbQi-0003TC-Rn\<=info@whatsup2013.chH=$localhost$[113.172.192.150]:38696P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-S	2020-03-13 13:01:22
14.204.145.124	attackbotsspam	Mar 13 00:57:15 ws19vmsma01 sshd[153929]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.204.145.124 Mar 13 00:57:17 ws19vmsma01 sshd[153929]: Failed password for invalid user user02 from 14.204.145.124 port 54620 ssh2 ...	2020-03-13 12:55:59
36.155.114.126	attackspambots	Lines containing failures of 36.155.114.126 Mar 12 04:42:05 shared11 sshd[20207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.114.126 user=r.r Mar 12 04:42:07 shared11 sshd[20207]: Failed password for r.r from 36.155.114.126 port 38471 ssh2 Mar 12 04:42:07 shared11 sshd[20207]: Received disconnect from 36.155.114.126 port 38471:11: Bye Bye [preauth] Mar 12 04:42:07 shared11 sshd[20207]: Disconnected from authenticating user r.r 36.155.114.126 port 38471 [preauth] Mar 12 04:47:25 shared11 sshd[21896]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.114.126 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=36.155.114.126	2020-03-13 13:15:47
178.46.163.191	attackspam	Mar 13 04:54:00 [host] sshd[26242]: pam_unix(sshd: Mar 13 04:54:01 [host] sshd[26242]: Failed passwor Mar 13 04:57:29 [host] sshd[26322]: Invalid user m	2020-03-13 12:48:06
122.152.209.120	attackbotsspam	Mar 13 05:44:53 mout sshd[9796]: Connection closed by 122.152.209.120 port 57578 [preauth]	2020-03-13 13:20:03
113.172.130.72	attack	2020-03-1304:56:551jCbRO-0003W4-Oy\<=info@whatsup2013.chH=$localhost$[113.172.130.72]:54976P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2377id=8B8E386B60B49A29F5F0B901F594C5BD@whatsup2013.chT="fromDarya"fordreaming949@hotmail.compoksay3@gmail.com2020-03-1304:55:511jCbQM-0003Rk-7e\<=info@whatsup2013.chH=$localhost$[113.181.135.44]:53490P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2419id=6560D6858E5A74C71B1E57EF1B77A7AC@whatsup2013.chT="fromDarya"forrezafaozi9@gmail.comnyinyi.aa220@gmail.com2020-03-1304:56:381jCbR7-0003Um-Ls\<=info@whatsup2013.chH=$localhost$[113.172.197.86]:51466P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2376id=ADA81E4D4692BC0FD3D69F27D3B5CA15@whatsup2013.chT="fromDarya"forbcharazean@gmail.comsteverog84@gmail.com2020-03-1304:56:131jCbQi-0003TC-Rn\<=info@whatsup2013.chH=$localhost$[113.172.192.150]:38696P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-S	2020-03-13 13:04:06
217.182.206.141	attackspambots	Mar 13 05:58:39 vps647732 sshd[12237]: Failed password for root from 217.182.206.141 port 38622 ssh2 ...	2020-03-13 13:05:34
220.167.161.200	attack	Mar 13 04:50:37 Ubuntu-1404-trusty-64-minimal sshd\[13631\]: Invalid user lishuoguo from 220.167.161.200 Mar 13 04:50:37 Ubuntu-1404-trusty-64-minimal sshd\[13631\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.167.161.200 Mar 13 04:50:39 Ubuntu-1404-trusty-64-minimal sshd\[13631\]: Failed password for invalid user lishuoguo from 220.167.161.200 port 35434 ssh2 Mar 13 04:56:19 Ubuntu-1404-trusty-64-minimal sshd\[19904\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.167.161.200 user=root Mar 13 04:56:20 Ubuntu-1404-trusty-64-minimal sshd\[19904\]: Failed password for root from 220.167.161.200 port 53258 ssh2	2020-03-13 13:29:31
222.186.180.8	attack	Mar 13 06:18:58 Ubuntu-1404-trusty-64-minimal sshd\[6119\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Mar 13 06:19:01 Ubuntu-1404-trusty-64-minimal sshd\[6119\]: Failed password for root from 222.186.180.8 port 61106 ssh2 Mar 13 06:19:06 Ubuntu-1404-trusty-64-minimal sshd\[6119\]: Failed password for root from 222.186.180.8 port 61106 ssh2 Mar 13 06:19:31 Ubuntu-1404-trusty-64-minimal sshd\[6315\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Mar 13 06:19:33 Ubuntu-1404-trusty-64-minimal sshd\[6315\]: Failed password for root from 222.186.180.8 port 29744 ssh2	2020-03-13 13:23:36

最近上报的IP列表

180.76.248.52	5.173.87.180	125.209.71.242	115.91.143.46
91.121.171.148	58.64.209.89	201.123.88.26	150.109.101.46
42.113.187.171	91.231.128.14	149.56.121.179	83.212.105.80
12.237.202.180	165.227.189.234	128.68.3.227	95.143.119.14
201.26.27.222	117.1.63.80	212.1.104.66	37.232.51.152