148.255.80.245

Basic Info

City: unknown

Region: unknown

Country: Dominican Republic

Internet Service Provider: Compania Dominicana de Telefonos S. A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port scan on 1 port(s): 4567	2020-03-30 00:42:43

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.255.80.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60855
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.255.80.245.			IN	A

;; AUTHORITY SECTION:
.			309	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032900 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 30 00:42:39 CST 2020
;; MSG SIZE  rcvd: 118

Host info

245.80.255.148.in-addr.arpa domain name pointer 245.80.255.148.d.dyn.claro.net.do.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.80.255.148.in-addr.arpa	name = 245.80.255.148.d.dyn.claro.net.do.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.39.77.117	attackbots	2020-03-10T20:42:30.333250dmca.cloudsearch.cf sshd[30873]: Invalid user james from 5.39.77.117 port 56113 2020-03-10T20:42:30.338871dmca.cloudsearch.cf sshd[30873]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3262586.ip-5-39-77.eu 2020-03-10T20:42:30.333250dmca.cloudsearch.cf sshd[30873]: Invalid user james from 5.39.77.117 port 56113 2020-03-10T20:42:32.274166dmca.cloudsearch.cf sshd[30873]: Failed password for invalid user james from 5.39.77.117 port 56113 ssh2 2020-03-10T20:51:06.177704dmca.cloudsearch.cf sshd[31817]: Invalid user purnima from 5.39.77.117 port 60268 2020-03-10T20:51:06.185481dmca.cloudsearch.cf sshd[31817]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3262586.ip-5-39-77.eu 2020-03-10T20:51:06.177704dmca.cloudsearch.cf sshd[31817]: Invalid user purnima from 5.39.77.117 port 60268 2020-03-10T20:51:08.281296dmca.cloudsearch.cf sshd[31817]: Failed password for invalid user purnima ...	2020-03-11 06:24:27
200.252.68.34	attack	Mar 10 08:11:37 hpm sshd\[14393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.252.68.34 user=bin Mar 10 08:11:39 hpm sshd\[14393\]: Failed password for bin from 200.252.68.34 port 33044 ssh2 Mar 10 08:19:37 hpm sshd\[15027\]: Invalid user zhijun from 200.252.68.34 Mar 10 08:19:37 hpm sshd\[15027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.252.68.34 Mar 10 08:19:39 hpm sshd\[15027\]: Failed password for invalid user zhijun from 200.252.68.34 port 34536 ssh2	2020-03-11 06:41:16
196.52.43.65	attackspam	Unauthorized connection attempt detected from IP address 196.52.43.65 to port 4443 [T]	2020-03-11 06:21:38
93.191.20.34	attackspambots	2020-03-10T22:01:12.502205shield sshd\[31535\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.191.20.34 user=root 2020-03-10T22:01:13.991007shield sshd\[31535\]: Failed password for root from 93.191.20.34 port 53830 ssh2 2020-03-10T22:04:47.861174shield sshd\[32080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.191.20.34 user=root 2020-03-10T22:04:49.866703shield sshd\[32080\]: Failed password for root from 93.191.20.34 port 60828 ssh2 2020-03-10T22:08:21.582291shield sshd\[32581\]: Invalid user from 93.191.20.34 port 39632	2020-03-11 06:13:03
67.215.250.150	attackspam	(imapd) Failed IMAP login from 67.215.250.150 (US/United States/67.215.250.150.static.quadranet.com): 1 in the last 3600 secs	2020-03-11 06:24:56
111.229.225.5	attackspam	SSH brute-force attempt	2020-03-11 06:37:35
139.199.50.159	attackbotsspam	SSH brute-force attempt	2020-03-11 06:22:56
49.232.163.32	attack	Mar 10 21:30:33 Ubuntu-1404-trusty-64-minimal sshd\[12929\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.163.32 user=uucp Mar 10 21:30:34 Ubuntu-1404-trusty-64-minimal sshd\[12929\]: Failed password for uucp from 49.232.163.32 port 40636 ssh2 Mar 10 21:34:58 Ubuntu-1404-trusty-64-minimal sshd\[16674\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.163.32 user=root Mar 10 21:35:00 Ubuntu-1404-trusty-64-minimal sshd\[16674\]: Failed password for root from 49.232.163.32 port 33512 ssh2 Mar 10 21:42:14 Ubuntu-1404-trusty-64-minimal sshd\[20615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.232.163.32 user=root	2020-03-11 06:32:33
178.171.127.140	attackspam	Chat Spam	2020-03-11 06:25:33
45.95.35.114	attackspambots	suspicious action Tue, 10 Mar 2020 15:13:37 -0300	2020-03-11 06:16:08
183.88.241.207	attackspambots	suspicious action Tue, 10 Mar 2020 15:13:31 -0300	2020-03-11 06:20:17
124.205.183.45	attack	Unauthorized connection attempt detected from IP address 124.205.183.45 to port 1433	2020-03-11 06:11:16
103.97.128.87	attackspambots	suspicious action Tue, 10 Mar 2020 15:13:48 -0300	2020-03-11 06:09:36
92.222.72.234	attackbots	Mar 10 12:22:48 kapalua sshd\[29527\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=234.ip-92-222-72.eu user=root Mar 10 12:22:50 kapalua sshd\[29527\]: Failed password for root from 92.222.72.234 port 59364 ssh2 Mar 10 12:26:57 kapalua sshd\[30022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=234.ip-92-222-72.eu user=root Mar 10 12:26:59 kapalua sshd\[30022\]: Failed password for root from 92.222.72.234 port 39457 ssh2 Mar 10 12:30:58 kapalua sshd\[30495\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=234.ip-92-222-72.eu user=root	2020-03-11 06:37:54
37.123.155.129	attackspam	DATE:2020-03-10 19:10:29, IP:37.123.155.129, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-03-11 06:22:24

Recently Reported IPs

118.44.102.24	115.43.177.132	64.225.67.233	108.190.235.55
41.39.225.100	97.77.153.167	7.236.87.80	196.201.226.23
112.27.84.18	31.49.100.143	5.215.66.199	41.210.11.159
214.250.156.195	219.228.94.91	189.237.198.57	197.194.148.236
197.147.143.165	186.91.240.57	212.242.98.54	122.51.109.222