85.247.157.148

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Portugal

运营商(isp): PT Comunicacoes S.A.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attack	2019-07-03 18:08:59 H=bl14-157-148.dsl.telepac.pt [85.247.157.148]:26865 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=85.247.157.148) 2019-07-03 18:08:59 unexpected disconnection while reading SMTP command from bl14-157-148.dsl.telepac.pt [85.247.157.148]:26865 I=[10.100.18.25]:25 (error: Connection reset by peer) 2019-07-03 19:15:33 H=bl14-157-148.dsl.telepac.pt [85.247.157.148]:37723 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=85.247.157.148) ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=85.247.157.148	2019-07-06 15:56:17

类型

评论内容

时间

attack

2019-07-03 18:08:59 H=bl14-157-148.dsl.telepac.pt [85.247.157.148]:26865 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=85.247.157.148)
2019-07-03 18:08:59 unexpected disconnection while reading SMTP command from bl14-157-148.dsl.telepac.pt [85.247.157.148]:26865 I=[10.100.18.25]:25 (error: Connection reset by peer)
2019-07-03 19:15:33 H=bl14-157-148.dsl.telepac.pt [85.247.157.148]:37723 I=[10.100.18.25]:25 F=: Host/domain is listed in RBL cbl.abuseat.org (Blocked - see hxxp://www.abuseat.org/lookup.cgi?ip=85.247.157.148)


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=85.247.157.148

2019-07-06 15:56:17

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.247.157.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25210
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.247.157.148.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070600 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 06 15:56:10 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

148.157.247.85.in-addr.arpa domain name pointer bl14-157-148.dsl.telepac.pt.

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
148.157.247.85.in-addr.arpa	name = bl14-157-148.dsl.telepac.pt.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
123.24.185.8	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-20 23:15:50,762 INFO [shellcode_manager] (123.24.185.8) no match, writing hexdump (53b619e7bc35a7a093c979a7393b7062 :2435466) - MS17010 (EternalBlue)	2019-07-24 02:49:34
82.102.173.91	attackbots	" "	2019-07-24 02:24:17
211.159.147.35	attackbotsspam	Jul 23 16:47:10 itv-usvr-01 sshd[403]: Invalid user finance from 211.159.147.35 Jul 23 16:47:10 itv-usvr-01 sshd[403]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.147.35 Jul 23 16:47:10 itv-usvr-01 sshd[403]: Invalid user finance from 211.159.147.35 Jul 23 16:47:12 itv-usvr-01 sshd[403]: Failed password for invalid user finance from 211.159.147.35 port 54498 ssh2 Jul 23 16:51:57 itv-usvr-01 sshd[568]: Invalid user leo from 211.159.147.35	2019-07-24 02:50:56
187.178.25.89	attack	Automatic report - Port Scan Attack	2019-07-24 02:15:49
79.106.28.170	attackbots	firewall-block, port(s): 81/tcp	2019-07-24 02:25:01
173.222.109.117	attackspambots	ICMP MP Probe, Scan -	2019-07-24 02:28:28
54.37.152.117	attackbots	2019-07-23T12:09:31.332084hz01.yumiweb.com sshd\[5236\]: Invalid user ftpvip123 from 54.37.152.117 port 57182 2019-07-23T12:12:31.714633hz01.yumiweb.com sshd\[5238\]: Invalid user dwei from 54.37.152.117 port 40840 2019-07-23T12:24:33.921555hz01.yumiweb.com sshd\[5252\]: Invalid user zmqi from 54.37.152.117 port 60188 ...	2019-07-24 02:55:45
207.46.13.123	attackbotsspam	SQL Injection	2019-07-24 02:33:11
63.143.35.146	attackbots	\[2019-07-23 14:13:11\] NOTICE\[20804\] chan_sip.c: Registration from '\' failed for '63.143.35.146:63123' - Wrong password \[2019-07-23 14:13:11\] SECURITY\[20812\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-23T14:13:11.808-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="44",SessionID="0x7f06f804c2c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.35.146/63123",Challenge="4b339c37",ReceivedChallenge="4b339c37",ReceivedHash="ad1c70a068fc4a04bd72f4d41bdfa3ff" \[2019-07-23 14:13:50\] NOTICE\[20804\] chan_sip.c: Registration from '\' failed for '63.143.35.146:49868' - Wrong password \[2019-07-23 14:13:50\] SECURITY\[20812\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-23T14:13:50.140-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="780",SessionID="0x7f06f823f758",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/63.143.35.1	2019-07-24 02:29:25
91.134.127.162	attackbotsspam	Jul 23 17:50:28 SilenceServices sshd[7175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.127.162 Jul 23 17:50:30 SilenceServices sshd[7175]: Failed password for invalid user guo from 91.134.127.162 port 43450 ssh2 Jul 23 17:56:26 SilenceServices sshd[11625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.134.127.162	2019-07-24 02:51:53
183.109.165.190	attackbots	Port scan on 1 port(s): 9527	2019-07-24 02:45:52
82.137.13.173	attackbots	Attempt to run wp-login.php	2019-07-24 02:18:16
104.148.4.226	attackspambots	firewall-block, port(s): 445/tcp	2019-07-24 02:21:48
162.8.125.0	attackspambots	ICMP MP Probe, Scan -	2019-07-24 02:39:12
58.40.54.138	attackbotsspam	Unauthorised access (Jul 23) SRC=58.40.54.138 LEN=44 TTL=51 ID=34030 TCP DPT=23 WINDOW=10601 SYN	2019-07-24 02:35:42

最近上报的IP列表

178.135.95.65	41.151.174.136	201.149.25.106	95.216.169.225
31.166.127.45	191.53.196.77	187.183.173.209	116.212.129.58
59.106.70.43	188.112.82.71	54.36.149.5	213.59.138.69
78.29.184.69	94.96.126.60	185.61.203.6	107.172.39.204
5.69.200.61	203.195.155.100	156.219.20.28	177.228.64.122