148.245.195.51

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: Enternet Sa de CV

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	firewall-block, port(s): 445/tcp	2020-07-07 09:01:06

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.245.195.51
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46356
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.245.195.51.			IN	A

;; AUTHORITY SECTION:
.			587	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070601 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 07 09:01:02 CST 2020
;; MSG SIZE  rcvd: 118

Host info

51.195.245.148.in-addr.arpa domain name pointer 148-245-195-51.int.dedicado.static.axtel.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
51.195.245.148.in-addr.arpa	name = 148-245-195-51.int.dedicado.static.axtel.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
216.255.31.32	attack	Telnet brute force and port scan	2019-11-29 01:10:29
98.149.40.72	attackspambots	Telnet brute force	2019-11-29 01:27:27
37.21.116.223	attack	DATE:2019-11-28 15:35:55, IP:37.21.116.223, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-11-29 01:16:46
123.51.152.54	attackspambots	Nov 28 16:36:34 server2 sshd\[30359\]: User root from 123.51.152.54 not allowed because not listed in AllowUsers Nov 28 16:36:36 server2 sshd\[30364\]: Invalid user admin from 123.51.152.54 Nov 28 16:36:39 server2 sshd\[30367\]: User root from 123.51.152.54 not allowed because not listed in AllowUsers Nov 28 16:36:41 server2 sshd\[30369\]: Invalid user admin from 123.51.152.54 Nov 28 16:36:44 server2 sshd\[30371\]: Invalid user user from 123.51.152.54 Nov 28 16:36:46 server2 sshd\[30373\]: Invalid user user from 123.51.152.54	2019-11-29 00:58:55
150.109.63.147	attackspam	Nov 28 05:47:46 tdfoods sshd\[32153\]: Invalid user kallis from 150.109.63.147 Nov 28 05:47:46 tdfoods sshd\[32153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.63.147 Nov 28 05:47:48 tdfoods sshd\[32153\]: Failed password for invalid user kallis from 150.109.63.147 port 58616 ssh2 Nov 28 05:51:33 tdfoods sshd\[32476\]: Invalid user huq from 150.109.63.147 Nov 28 05:51:33 tdfoods sshd\[32476\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.63.147	2019-11-29 01:05:34
123.125.71.17	attackbots	Automatic report - Banned IP Access	2019-11-29 01:16:00
197.52.2.50	attackbots	Nov 28 15:36:41 sso sshd[17563]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.52.2.50 Nov 28 15:36:42 sso sshd[17563]: Failed password for invalid user admin from 197.52.2.50 port 49651 ssh2 ...	2019-11-29 01:00:13
181.48.116.50	attack	2019-11-28T17:13:07.171736abusebot-8.cloudsearch.cf sshd\[12225\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=181.48.116.50 user=root	2019-11-29 01:14:59
202.108.99.129	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2019-11-29 01:17:40
209.85.232.127	attack	Exploit Attempt	2019-11-29 01:12:48
157.230.129.73	attackspambots	Nov 28 16:56:33 venus sshd\[312\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.129.73 user=backup Nov 28 16:56:36 venus sshd\[312\]: Failed password for backup from 157.230.129.73 port 42933 ssh2 Nov 28 17:00:08 venus sshd\[400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.129.73 user=uucp ...	2019-11-29 01:02:37
203.147.69.12	attack	(imapd) Failed IMAP login from 203.147.69.12 (NC/New Caledonia/host-203-147-69-12.h22.canl.nc): 1 in the last 3600 secs	2019-11-29 00:57:45
154.221.24.135	attack	$f2bV_matches	2019-11-29 01:29:07
188.166.42.50	attack	Nov 28 18:08:31 relay postfix/smtpd\[23375\]: warning: unknown\[188.166.42.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 18:09:43 relay postfix/smtpd\[25158\]: warning: unknown\[188.166.42.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 18:10:17 relay postfix/smtpd\[23375\]: warning: unknown\[188.166.42.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 18:14:51 relay postfix/smtpd\[20288\]: warning: unknown\[188.166.42.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 28 18:24:14 relay postfix/smtpd\[31399\]: warning: unknown\[188.166.42.50\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-29 01:32:19
61.172.142.58	attackbots	Nov 28 15:37:15 zeus postfix/smtpd\[18303\]: warning: unknown\[61.172.142.58\]: SASL LOGIN authentication failed: authentication failure Nov 28 15:37:19 zeus postfix/smtpd\[18303\]: warning: unknown\[61.172.142.58\]: SASL LOGIN authentication failed: authentication failure Nov 28 15:37:22 zeus postfix/smtpd\[18303\]: warning: unknown\[61.172.142.58\]: SASL LOGIN authentication failed: authentication failure ...	2019-11-29 00:50:34

Recently Reported IPs

39.153.109.99	81.224.225.186	17.35.42.59	3.84.169.125
76.14.166.167	46.17.238.230	201.148.160.143	185.186.17.132
101.51.117.137	95.168.188.28	45.84.227.156	13.125.53.24
113.21.73.127	201.217.145.22	182.56.58.109	14.116.185.25
18.232.216.212	160.153.235.106	106.12.46.179	60.168.233.133