85.245.204.148

Basic Info

City: unknown

Region: unknown

Country: Portugal

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.245.204.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 59882
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.245.204.148.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021600 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 16 14:58:53 CST 2025
;; MSG SIZE  rcvd: 107

Host info

148.204.245.85.in-addr.arpa domain name pointer bl12-204-148.dsl.telepac.pt.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
148.204.245.85.in-addr.arpa	name = bl12-204-148.dsl.telepac.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.203.70.169	attack	159.203.70.169 - - [21/Aug/2020:23:47:52 +0200] "GET /wp-login.php HTTP/1.1" 200 9163 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.70.169 - - [21/Aug/2020:23:47:53 +0200] "POST /wp-login.php HTTP/1.1" 200 9414 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 159.203.70.169 - - [21/Aug/2020:23:47:54 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-22 08:10:07
222.186.30.35	attackspambots	sshd jail - ssh hack attempt	2020-08-22 12:03:55
201.236.182.92	attack	Phone is hacked	2020-08-22 11:45:37
62.82.75.58	attackspam	2020-08-22T07:07:32.286389mail.standpoint.com.ua sshd[18116]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.82.75.58.static.user.ono.com 2020-08-22T07:07:32.283835mail.standpoint.com.ua sshd[18116]: Invalid user dag from 62.82.75.58 port 1615 2020-08-22T07:07:33.901418mail.standpoint.com.ua sshd[18116]: Failed password for invalid user dag from 62.82.75.58 port 1615 ssh2 2020-08-22T07:10:15.563026mail.standpoint.com.ua sshd[18473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.82.75.58.static.user.ono.com user=root 2020-08-22T07:10:17.891525mail.standpoint.com.ua sshd[18473]: Failed password for root from 62.82.75.58 port 15706 ssh2 ...	2020-08-22 12:12:50
185.220.101.199	attackspam	Aug 22 03:56:08 ns3033917 sshd[1556]: Failed password for sshd from 185.220.101.199 port 24860 ssh2 Aug 22 03:56:10 ns3033917 sshd[1556]: Failed password for sshd from 185.220.101.199 port 24860 ssh2 Aug 22 03:56:12 ns3033917 sshd[1556]: Failed password for sshd from 185.220.101.199 port 24860 ssh2 ...	2020-08-22 12:07:20
119.252.143.6	attack	Aug 22 06:01:01 vm1 sshd[27345]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.252.143.6 Aug 22 06:01:03 vm1 sshd[27345]: Failed password for invalid user ali from 119.252.143.6 port 51163 ssh2 ...	2020-08-22 12:19:44
182.16.103.34	attackspam	SSH Brute-Forcing (server1)	2020-08-22 12:10:25
81.178.234.84	attackspambots	Aug 22 04:03:21 django-0 sshd[26286]: Invalid user chenrongyan from 81.178.234.84 ...	2020-08-22 12:20:48
185.211.188.190	attackspambots	Lines containing failures of 185.211.188.190 (max 1000) Aug 21 20:17:40 UTC__SANYALnet-Labs__cac12 sshd[2552]: Connection from 185.211.188.190 port 51274 on 64.137.176.104 port 22 Aug 21 20:17:41 UTC__SANYALnet-Labs__cac12 sshd[2552]: Address 185.211.188.190 maps to 185-211-188-190.jimmynet.cz, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Aug 21 20:17:41 UTC__SANYALnet-Labs__cac12 sshd[2552]: User r.r from 185.211.188.190 not allowed because not listed in AllowUsers Aug 21 20:17:41 UTC__SANYALnet-Labs__cac12 sshd[2552]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.211.188.190 user=r.r Aug 21 20:17:43 UTC__SANYALnet-Labs__cac12 sshd[2552]: Failed password for invalid user r.r from 185.211.188.190 port 51274 ssh2 Aug 21 20:17:43 UTC__SANYALnet-Labs__cac12 sshd[2552]: Received disconnect from 185.211.188.190 port 51274:11: Bye Bye [preauth] Aug 21 20:17:43 UTC__SANYALnet-Labs__cac12 sshd[2552]: Discon........ ------------------------------	2020-08-22 08:15:01
175.24.95.240	attackspam	Aug 22 06:18:56 cosmoit sshd[6762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.24.95.240	2020-08-22 12:25:42
2.114.202.124	attack	$f2bV_matches	2020-08-22 08:16:02
108.166.202.222	attackbots	Aug 22 01:20:51 prod4 sshd\[12932\]: Address 108.166.202.222 maps to 222-202-166-108-dedicated.multacom.com, but this does not map back to the address - POSSIBLE BREAK-IN ATTEMPT! Aug 22 01:20:51 prod4 sshd\[12932\]: Invalid user zsq from 108.166.202.222 Aug 22 01:20:52 prod4 sshd\[12932\]: Failed password for invalid user zsq from 108.166.202.222 port 50306 ssh2 ...	2020-08-22 08:13:56
222.186.173.215	attackspambots	Aug 22 05:57:54 vps1 sshd[12324]: Failed none for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:57:54 vps1 sshd[12324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.215 user=root Aug 22 05:57:56 vps1 sshd[12324]: Failed password for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:58:00 vps1 sshd[12324]: Failed password for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:58:05 vps1 sshd[12324]: Failed password for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:58:09 vps1 sshd[12324]: Failed password for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:58:13 vps1 sshd[12324]: Failed password for invalid user root from 222.186.173.215 port 55880 ssh2 Aug 22 05:58:15 vps1 sshd[12324]: error: maximum authentication attempts exceeded for invalid user root from 222.186.173.215 port 55880 ssh2 [preauth] ...	2020-08-22 12:00:18
103.65.236.169	attackbots	Aug 22 05:56:16 ip106 sshd[24862]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.65.236.169 Aug 22 05:56:17 ip106 sshd[24862]: Failed password for invalid user user from 103.65.236.169 port 58072 ssh2 ...	2020-08-22 12:05:34
113.161.144.254	attack	Aug 22 05:51:45 root sshd[2872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.144.254 Aug 22 05:51:47 root sshd[2872]: Failed password for invalid user divya from 113.161.144.254 port 2442 ssh2 Aug 22 05:55:47 root sshd[3385]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.144.254 ...	2020-08-22 12:26:35

Recently Reported IPs

169.220.82.179	216.178.113.232	73.131.143.205	178.191.130.45
230.137.44.202	5.61.160.182	26.188.160.45	66.35.2.51
142.70.126.29	34.132.58.248	174.10.44.108	79.53.9.39
12.213.129.112	134.122.58.199	103.147.62.129	205.27.46.93
230.146.189.70	15.181.158.237	81.226.229.7	244.82.72.1