203.148.20.254

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: DYXNET of Shenzhen Communication Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	2020-08-14T17:35:33.9706241495-001 sshd[37739]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.254 user=root 2020-08-14T17:35:36.6371881495-001 sshd[37739]: Failed password for root from 203.148.20.254 port 53065 ssh2 2020-08-14T17:39:40.5733761495-001 sshd[37914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.254 user=root 2020-08-14T17:39:42.8135691495-001 sshd[37914]: Failed password for root from 203.148.20.254 port 57911 ssh2 2020-08-14T17:43:51.0626521495-001 sshd[38126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.254 user=root 2020-08-14T17:43:53.4281391495-001 sshd[38126]: Failed password for root from 203.148.20.254 port 34526 ssh2 ...	2020-08-15 07:05:29
attackspambots	fail2ban -- 203.148.20.254 ...	2020-07-23 16:57:02
attackspambots	2020-06-27T10:51:28.576425hostname sshd[13761]: Invalid user web from 203.148.20.254 port 50161 2020-06-27T10:51:30.796783hostname sshd[13761]: Failed password for invalid user web from 203.148.20.254 port 50161 ssh2 2020-06-27T10:54:41.499645hostname sshd[16071]: Invalid user marilia from 203.148.20.254 port 42540 ...	2020-06-27 13:54:46
attackspambots	Invalid user tomcat from 203.148.20.254 port 60793	2020-06-15 15:31:05
attack	May 21 10:28:33 Host-KLAX-C sshd[13745]: Disconnected from invalid user mvl 203.148.20.254 port 56280 [preauth] ...	2020-05-22 03:54:11
attack	Invalid user oliver from 203.148.20.254 port 39726	2020-05-16 07:54:47
attackspambots	prod3 ...	2020-05-05 08:34:32
attackspam	Apr 19 14:57:31 Enigma sshd[29151]: Failed password for root from 203.148.20.254 port 45035 ssh2 Apr 19 15:02:28 Enigma sshd[29659]: Invalid user test from 203.148.20.254 port 46101 Apr 19 15:02:28 Enigma sshd[29659]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.254 Apr 19 15:02:28 Enigma sshd[29659]: Invalid user test from 203.148.20.254 port 46101 Apr 19 15:02:29 Enigma sshd[29659]: Failed password for invalid user test from 203.148.20.254 port 46101 ssh2	2020-04-19 23:21:57
attackbotsspam	2020-03-28T12:37:02.398615abusebot-6.cloudsearch.cf sshd[17308]: Invalid user cxd from 203.148.20.254 port 45953 2020-03-28T12:37:02.410843abusebot-6.cloudsearch.cf sshd[17308]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.254 2020-03-28T12:37:02.398615abusebot-6.cloudsearch.cf sshd[17308]: Invalid user cxd from 203.148.20.254 port 45953 2020-03-28T12:37:03.758237abusebot-6.cloudsearch.cf sshd[17308]: Failed password for invalid user cxd from 203.148.20.254 port 45953 ssh2 2020-03-28T12:41:43.552046abusebot-6.cloudsearch.cf sshd[17587]: Invalid user stn from 203.148.20.254 port 42218 2020-03-28T12:41:43.561207abusebot-6.cloudsearch.cf sshd[17587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.254 2020-03-28T12:41:43.552046abusebot-6.cloudsearch.cf sshd[17587]: Invalid user stn from 203.148.20.254 port 42218 2020-03-28T12:41:45.485626abusebot-6.cloudsearch.cf sshd[17587]: Failed pa ...	2020-03-29 00:51:58
attackbots	Mar 25 23:28:45 plex sshd[11553]: Invalid user jerry from 203.148.20.254 port 44148	2020-03-26 06:35:24
attackbots	3x Failed Password	2020-03-24 15:14:47
attackbots	$f2bV_matches	2020-03-03 13:40:34
attack	$f2bV_matches	2020-02-27 05:33:02
attack	Invalid user david from 203.148.20.254 port 54576	2020-02-26 07:27:11
attackbots	Unauthorized connection attempt detected from IP address 203.148.20.254 to port 2220 [J]	2020-01-29 07:14:24
attackspambots	Jan 20 23:24:26 vps691689 sshd[28611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.254 Jan 20 23:24:28 vps691689 sshd[28611]: Failed password for invalid user web from 203.148.20.254 port 44110 ssh2 Jan 20 23:27:55 vps691689 sshd[28712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.254 ...	2020-01-21 08:25:20
attackspambots	Jan 18 15:48:55 dedicated sshd[8269]: Failed password for invalid user jtsai from 203.148.20.254 port 39944 ssh2 Jan 18 15:48:54 dedicated sshd[8269]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.254 Jan 18 15:48:54 dedicated sshd[8269]: Invalid user jtsai from 203.148.20.254 port 39944 Jan 18 15:48:55 dedicated sshd[8269]: Failed password for invalid user jtsai from 203.148.20.254 port 39944 ssh2 Jan 18 15:57:36 dedicated sshd[10029]: Invalid user bots from 203.148.20.254 port 36460	2020-01-18 22:59:14
attackbotsspam	Invalid user ftpupload from 203.148.20.254 port 36672	2020-01-18 02:29:50
attackbotsspam	Unauthorized connection attempt detected from IP address 203.148.20.254 to port 2220 [J]	2020-01-13 07:09:29

Comments on same subnet:

IP	Type	Details	Datetime
203.148.20.162	attack	Oct 11 17:37:59 vpn01 sshd[17151]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.162 Oct 11 17:38:02 vpn01 sshd[17151]: Failed password for invalid user agrafena from 203.148.20.162 port 42126 ssh2 ...	2020-10-12 01:06:48
203.148.20.162	attack	Oct 11 10:50:25 h2646465 sshd[25677]: Invalid user test from 203.148.20.162 Oct 11 10:50:25 h2646465 sshd[25677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.162 Oct 11 10:50:25 h2646465 sshd[25677]: Invalid user test from 203.148.20.162 Oct 11 10:50:28 h2646465 sshd[25677]: Failed password for invalid user test from 203.148.20.162 port 50480 ssh2 Oct 11 10:56:28 h2646465 sshd[26286]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.162 user=root Oct 11 10:56:30 h2646465 sshd[26286]: Failed password for root from 203.148.20.162 port 49802 ssh2 Oct 11 10:58:52 h2646465 sshd[26356]: Invalid user tecmint from 203.148.20.162 Oct 11 10:58:53 h2646465 sshd[26356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.162 Oct 11 10:58:52 h2646465 sshd[26356]: Invalid user tecmint from 203.148.20.162 Oct 11 10:58:54 h2646465 sshd[26356]: Failed password for invalid use	2020-10-11 16:59:23
203.148.20.162	attackspambots	Oct 10 16:51:57 pixelmemory sshd[4037976]: Invalid user paraccel from 203.148.20.162 port 53348 Oct 10 16:51:57 pixelmemory sshd[4037976]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.162 Oct 10 16:51:57 pixelmemory sshd[4037976]: Invalid user paraccel from 203.148.20.162 port 53348 Oct 10 16:51:58 pixelmemory sshd[4037976]: Failed password for invalid user paraccel from 203.148.20.162 port 53348 ssh2 Oct 10 16:54:13 pixelmemory sshd[4045990]: Invalid user helpdesk from 203.148.20.162 port 59664 ...	2020-10-11 10:19:50
203.148.20.162	attack	Sep 29 15:06:47 ip-172-31-16-56 sshd\[32750\]: Invalid user ian1 from 203.148.20.162\ Sep 29 15:06:49 ip-172-31-16-56 sshd\[32750\]: Failed password for invalid user ian1 from 203.148.20.162 port 47090 ssh2\ Sep 29 15:09:36 ip-172-31-16-56 sshd\[364\]: Invalid user manager from 203.148.20.162\ Sep 29 15:09:38 ip-172-31-16-56 sshd\[364\]: Failed password for invalid user manager from 203.148.20.162 port 46670 ssh2\ Sep 29 15:12:27 ip-172-31-16-56 sshd\[389\]: Invalid user internet1 from 203.148.20.162\	2020-09-30 00:31:29
203.148.20.162	attackbotsspam	Sep 16 12:26:51 melroy-server sshd[4351]: Failed password for root from 203.148.20.162 port 38374 ssh2 ...	2020-09-17 00:25:11
203.148.20.162	attackbots	Sep 16 10:07:59 plg sshd[22489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.162 Sep 16 10:08:01 plg sshd[22489]: Failed password for invalid user jhapzvpn from 203.148.20.162 port 44426 ssh2 Sep 16 10:10:01 plg sshd[22575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.162 Sep 16 10:10:03 plg sshd[22575]: Failed password for invalid user butter from 203.148.20.162 port 40998 ssh2 Sep 16 10:12:00 plg sshd[22633]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.148.20.162 user=root Sep 16 10:12:02 plg sshd[22633]: Failed password for invalid user root from 203.148.20.162 port 37562 ssh2 ...	2020-09-16 16:41:17
203.148.207.18	attackspam	Port probing on unauthorized port 3389	2020-02-27 14:28:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 203.148.20.254
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59988
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;203.148.20.254.			IN	A

;; AUTHORITY SECTION:
.			583	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011201 1800 900 604800 86400

;; Query time: 308 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 13 07:09:26 CST 2020
;; MSG SIZE  rcvd: 118

Host info

254.20.148.203.in-addr.arpa domain name pointer static-ip-254-20-148-203.rev.dyxnet.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
254.20.148.203.in-addr.arpa	name = static-ip-254-20-148-203.rev.dyxnet.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
181.117.123.34	attackspambots	Unauthorized connection attempt detected from IP address 181.117.123.34 to port 80	2020-04-26 16:32:36
35.224.121.138	attack	Apr 26 07:56:51 OPSO sshd\[17052\]: Invalid user amon from 35.224.121.138 port 38160 Apr 26 07:56:51 OPSO sshd\[17052\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.224.121.138 Apr 26 07:56:53 OPSO sshd\[17052\]: Failed password for invalid user amon from 35.224.121.138 port 38160 ssh2 Apr 26 07:59:25 OPSO sshd\[17318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.224.121.138 user=root Apr 26 07:59:28 OPSO sshd\[17318\]: Failed password for root from 35.224.121.138 port 54790 ssh2	2020-04-26 16:42:20
104.14.29.2	attackspambots	Apr 26 09:30:41 dev0-dcde-rnet sshd[3094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.14.29.2 Apr 26 09:30:44 dev0-dcde-rnet sshd[3094]: Failed password for invalid user server1 from 104.14.29.2 port 58742 ssh2 Apr 26 09:37:39 dev0-dcde-rnet sshd[3171]: Failed password for root from 104.14.29.2 port 36631 ssh2	2020-04-26 16:41:00
180.76.108.151	attackspam	2020-04-26T03:35:24.4525631495-001 sshd[31179]: Invalid user wn from 180.76.108.151 port 44538 2020-04-26T03:35:24.4582661495-001 sshd[31179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.108.151 2020-04-26T03:35:24.4525631495-001 sshd[31179]: Invalid user wn from 180.76.108.151 port 44538 2020-04-26T03:35:26.1733221495-001 sshd[31179]: Failed password for invalid user wn from 180.76.108.151 port 44538 ssh2 2020-04-26T03:37:43.6170621495-001 sshd[31309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.108.151 user=root 2020-04-26T03:37:45.7482981495-001 sshd[31309]: Failed password for root from 180.76.108.151 port 44034 ssh2 ...	2020-04-26 16:28:36
182.189.15.1	attack	Honeypot attack, port: 5555, PTR: PTR record not found	2020-04-26 16:15:29
51.83.42.66	attack	Apr 26 05:51:11 * sshd[10867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.42.66 Apr 26 05:51:13 * sshd[10867]: Failed password for invalid user stuart from 51.83.42.66 port 52246 ssh2	2020-04-26 16:26:25
51.68.84.36	attackbots	SSH login attempts.	2020-04-26 16:14:34
14.254.128.167	attackspam	Sun Apr 26 07:50:46 2020 [pid 25507] CONNECT: Client "14.254.128.167" Sun Apr 26 07:50:46 2020 [pid 25506] [anonymous] FAIL LOGIN: Client "14.254.128.167" Sun Apr 26 07:50:48 2020 [pid 25512] CONNECT: Client "14.254.128.167" Sun Apr 26 07:50:49 2020 [pid 25511] [www] FAIL LOGIN: Client "14.254.128.167" Sun Apr 26 07:50:51 2020 [pid 25514] CONNECT: Client "14.254.128.167" ...	2020-04-26 16:35:37
61.177.172.128	attackspambots	Apr 26 04:26:18 NPSTNNYC01T sshd[15678]: Failed password for root from 61.177.172.128 port 15700 ssh2 Apr 26 04:26:31 NPSTNNYC01T sshd[15678]: error: maximum authentication attempts exceeded for root from 61.177.172.128 port 15700 ssh2 [preauth] Apr 26 04:26:36 NPSTNNYC01T sshd[15767]: Failed password for root from 61.177.172.128 port 41594 ssh2 ...	2020-04-26 16:28:11
106.54.95.28	attack	Invalid user frappe from 106.54.95.28 port 44916	2020-04-26 16:48:14
162.243.133.220	attackbots	Scan ports	2020-04-26 16:38:35
106.75.157.9	attack	Apr 26 00:16:56 ny01 sshd[28357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.157.9 Apr 26 00:16:58 ny01 sshd[28357]: Failed password for invalid user five from 106.75.157.9 port 59820 ssh2 Apr 26 00:18:51 ny01 sshd[28688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.157.9	2020-04-26 16:16:55
128.199.185.112	attackspambots	Apr 26 10:14:11 OPSO sshd\[18465\]: Invalid user python from 128.199.185.112 port 26387 Apr 26 10:14:11 OPSO sshd\[18465\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.185.112 Apr 26 10:14:14 OPSO sshd\[18465\]: Failed password for invalid user python from 128.199.185.112 port 26387 ssh2 Apr 26 10:20:11 OPSO sshd\[19756\]: Invalid user test3 from 128.199.185.112 port 5986 Apr 26 10:20:11 OPSO sshd\[19756\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.185.112	2020-04-26 16:31:29
60.178.140.73	attackbotsspam	Apr 25 23:47:40 pixelmemory sshd[31684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.178.140.73 Apr 25 23:47:43 pixelmemory sshd[31684]: Failed password for invalid user ggarcia from 60.178.140.73 port 51953 ssh2 Apr 25 23:58:34 pixelmemory sshd[1832]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.178.140.73 ...	2020-04-26 16:41:41
218.59.139.12	attackspam	ssh brute force	2020-04-26 16:42:38

Recently Reported IPs

223.104.22.240	134.209.175.243	170.100.44.192	104.248.169.127
59.22.155.190	82.223.204.165	95.0.97.31	111.231.90.46
60.184.159.38	36.228.79.59	186.4.125.26	217.112.142.21
122.51.248.146	105.227.210.153	59.42.24.81	183.159.220.208
206.24.26.231	185.141.213.134	120.31.194.4	102.68.77.86