220.194.64.148

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: China Unicom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorized connection attempt detected from IP address 220.194.64.148 to port 23	2020-01-02 19:48:55
attackspam	Unauthorized connection attempt detected from IP address 220.194.64.148 to port 2323	2019-12-31 02:51:28
attack	Unauthorized connection attempt detected from IP address 220.194.64.148 to port 2323	2019-12-30 09:22:14

Type

Details

Datetime

attackspambots

Unauthorized connection attempt detected from IP address 220.194.64.148 to port 23

2020-01-02 19:48:55

attackspam

Unauthorized connection attempt detected from IP address 220.194.64.148 to port 2323

2019-12-31 02:51:28

attack

Unauthorized connection attempt detected from IP address 220.194.64.148 to port 2323

2019-12-30 09:22:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.194.64.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8741
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;220.194.64.148.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122901 1800 900 604800 86400

;; Query time: 941 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 30 09:22:11 CST 2019
;; MSG SIZE  rcvd: 118

Host info

148.64.194.220.in-addr.arpa domain name pointer dns148.online.tj.cn.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.64.194.220.in-addr.arpa	name = dns148.online.tj.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
50.199.94.84	attackbots	2019-11-09T15:40:20.811328shield sshd\[2626\]: Invalid user P@\$\$w0rd from 50.199.94.84 port 44062 2019-11-09T15:40:20.817237shield sshd\[2626\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.199.94.84 2019-11-09T15:40:23.204197shield sshd\[2626\]: Failed password for invalid user P@\$\$w0rd from 50.199.94.84 port 44062 ssh2 2019-11-09T15:44:18.434924shield sshd\[3051\]: Invalid user not from 50.199.94.84 port 53734 2019-11-09T15:44:18.440359shield sshd\[3051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.199.94.84	2019-11-09 23:47:40
185.94.111.1	attackspambots	" "	2019-11-09 23:44:21
92.118.38.54	attackbots	Nov 9 16:48:02 vmanager6029 postfix/smtpd\[19342\]: warning: unknown\[92.118.38.54\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 9 16:48:42 vmanager6029 postfix/smtpd\[19342\]: warning: unknown\[92.118.38.54\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-09 23:50:36
138.197.4.37	attackspambots	Nov 9 18:00:21 master sshd[13589]: Failed password for invalid user fake from 138.197.4.37 port 45148 ssh2 Nov 9 18:00:25 master sshd[13591]: Failed password for invalid user admin from 138.197.4.37 port 55586 ssh2 Nov 9 18:00:28 master sshd[13593]: Failed password for root from 138.197.4.37 port 36030 ssh2 Nov 9 18:00:31 master sshd[13595]: Failed password for invalid user ubnt from 138.197.4.37 port 43720 ssh2 Nov 9 18:00:34 master sshd[13597]: Failed password for invalid user guest from 138.197.4.37 port 53918 ssh2 Nov 9 18:00:38 master sshd[13599]: Failed password for invalid user support from 138.197.4.37 port 33422 ssh2	2019-11-10 00:08:21
49.88.112.111	attackbotsspam	Nov 9 16:26:20 vps01 sshd[31673]: Failed password for root from 49.88.112.111 port 39767 ssh2	2019-11-09 23:35:20
74.117.153.221	attackbotsspam	Nov 9 05:24:17 tdfoods sshd\[28520\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.117.153.221 user=root Nov 9 05:24:19 tdfoods sshd\[28520\]: Failed password for root from 74.117.153.221 port 58480 ssh2 Nov 9 05:28:25 tdfoods sshd\[28839\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.117.153.221 user=root Nov 9 05:28:27 tdfoods sshd\[28839\]: Failed password for root from 74.117.153.221 port 40848 ssh2 Nov 9 05:32:29 tdfoods sshd\[29179\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.117.153.221 user=root	2019-11-09 23:36:34
106.12.105.193	attackspambots	Nov 9 14:36:43 localhost sshd\[20182\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.105.193 user=root Nov 9 14:36:45 localhost sshd\[20182\]: Failed password for root from 106.12.105.193 port 56338 ssh2 Nov 9 14:55:35 localhost sshd\[20485\]: Invalid user lis from 106.12.105.193 port 54628 ...	2019-11-10 00:20:12
109.252.23.86	attack	TCP Port Scanning	2019-11-10 00:16:34
87.133.129.54	attack	Nov 8 00:05:45 PiServer sshd[4274]: Failed password for r.r from 87.133.129.54 port 40836 ssh2 Nov 8 00:14:45 PiServer sshd[4996]: Failed password for r.r from 87.133.129.54 port 43384 ssh2 Nov 8 00:20:28 PiServer sshd[5453]: Failed password for r.r from 87.133.129.54 port 54780 ssh2 Nov 8 00:26:11 PiServer sshd[6002]: Failed password for r.r from 87.133.129.54 port 37928 ssh2 Nov 8 00:32:05 PiServer sshd[6381]: Invalid user vx from 87.133.129.54 Nov 8 00:32:07 PiServer sshd[6381]: Failed password for invalid user vx from 87.133.129.54 port 49338 ssh2 Nov 8 01:03:00 PiServer sshd[8534]: Failed password for r.r from 87.133.129.54 port 49812 ssh2 Nov 8 01:09:05 PiServer sshd[9019]: Invalid user admin from 87.133.129.54 Nov 8 01:09:07 PiServer sshd[9019]: Failed password for invalid user admin from 87.133.129.54 port 32992 ssh2 Nov 8 01:15:13 PiServer sshd[9294]: Invalid user info from 87.133.129.54 Nov 8 01:15:15 PiServer sshd[9294]: Failed password for invalid ........ ------------------------------	2019-11-09 23:36:19
208.97.78.234	attackspambots	Nov 9 09:55:35 web1 postfix/smtpd[13702]: warning: cmr-208-97-78-234.cr.net.cable.rogers.com[208.97.78.234]: SASL Login authentication failed: authentication failure ...	2019-11-10 00:17:41
222.105.239.24	attackspambots	port scan and connect, tcp 23 (telnet)	2019-11-10 00:09:57
197.156.72.154	attackspam	Nov 9 15:22:53 web8 sshd\[4591\]: Invalid user webmaster from 197.156.72.154 Nov 9 15:22:53 web8 sshd\[4591\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.72.154 Nov 9 15:22:55 web8 sshd\[4591\]: Failed password for invalid user webmaster from 197.156.72.154 port 40559 ssh2 Nov 9 15:28:15 web8 sshd\[7107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.72.154 user=root Nov 9 15:28:16 web8 sshd\[7107\]: Failed password for root from 197.156.72.154 port 59992 ssh2	2019-11-10 00:12:35
5.1.88.50	attackbotsspam	Nov 9 04:51:18 php1 sshd\[31015\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.1.88.50 user=root Nov 9 04:51:20 php1 sshd\[31015\]: Failed password for root from 5.1.88.50 port 47262 ssh2 Nov 9 04:55:59 php1 sshd\[31844\]: Invalid user school from 5.1.88.50 Nov 9 04:55:59 php1 sshd\[31844\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.1.88.50 Nov 9 04:56:01 php1 sshd\[31844\]: Failed password for invalid user school from 5.1.88.50 port 56830 ssh2	2019-11-09 23:58:25
81.28.107.16	attack	Nov 9 15:56:37 smtp postfix/smtpd[89986]: NOQUEUE: reject: RCPT from weight.stop-snore-de.com[81.28.107.16]: 554 5.7.1 Service unavailable; Client host [81.28.107.16] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= ...	2019-11-09 23:42:49
154.83.17.188	attackbots	Nov 6 07:12:47 new sshd[26355]: Failed password for invalid user mb from 154.83.17.188 port 47170 ssh2 Nov 6 07:12:47 new sshd[26355]: Received disconnect from 154.83.17.188: 11: Bye Bye [preauth] Nov 6 07:22:01 new sshd[28820]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.83.17.188 user=r.r Nov 6 07:22:03 new sshd[28820]: Failed password for r.r from 154.83.17.188 port 56162 ssh2 Nov 6 07:22:04 new sshd[28820]: Received disconnect from 154.83.17.188: 11: Bye Bye [preauth] Nov 6 07:26:10 new sshd[29941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.83.17.188 user=r.r Nov 6 07:26:13 new sshd[29941]: Failed password for r.r from 154.83.17.188 port 38116 ssh2 Nov 6 07:26:13 new sshd[29941]: Received disconnect from 154.83.17.188: 11: Bye Bye [preauth] Nov 6 07:30:20 new sshd[31096]: Failed password for invalid user dylan from 154.83.17.188 port 48302 ssh2 Nov 6 07:30:2........ -------------------------------	2019-11-09 23:43:35

Recently Reported IPs

182.61.36.172	182.50.119.227	175.166.228.231	102.172.222.184
175.155.168.80	172.105.224.72	157.245.198.83	153.223.225.247
153.99.167.205	139.212.172.170	139.189.202.228	125.41.175.209
124.127.35.42	124.92.80.124	122.80.251.254	120.253.205.71
120.9.243.168	119.55.60.194	119.54.225.246	118.70.68.4