201.149.55.53 - IPInfo

基本信息:

城市(city): unknown

省份(region): unknown

国家(country): Mexico

运营商(isp): Megacable Comunicaciones de Mexico S.A. de C.V.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	TCP (SYN) 201.149.55.53:46615 -> port 30850, len 44	2020-10-05 01:25:41
attack	firewall-block, port(s): 14455/tcp	2020-09-24 02:58:27
attack	Sep 5 19:14:17 hosting sshd[5326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53 user=root Sep 5 19:14:18 hosting sshd[5326]: Failed password for root from 201.149.55.53 port 46916 ssh2 Sep 5 19:16:37 hosting sshd[5645]: Invalid user useradmin from 201.149.55.53 port 45550 Sep 5 19:16:37 hosting sshd[5645]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53 Sep 5 19:16:37 hosting sshd[5645]: Invalid user useradmin from 201.149.55.53 port 45550 Sep 5 19:16:40 hosting sshd[5645]: Failed password for invalid user useradmin from 201.149.55.53 port 45550 ssh2 ...	2020-09-06 00:24:07
attackbots	(sshd) Failed SSH login from 201.149.55.53 (MX/Mexico/53.55.149.201.in-addr.arpa): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 5 03:07:44 server sshd[24962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53 user=root Sep 5 03:07:45 server sshd[24962]: Failed password for root from 201.149.55.53 port 56306 ssh2 Sep 5 03:23:55 server sshd[29497]: Invalid user oracle from 201.149.55.53 port 46760 Sep 5 03:23:57 server sshd[29497]: Failed password for invalid user oracle from 201.149.55.53 port 46760 ssh2 Sep 5 03:27:37 server sshd[30808]: Invalid user uftp from 201.149.55.53 port 51448	2020-09-05 15:55:09
attackbots	Port scan: Attack repeated for 24 hours	2020-09-05 08:32:00
attack	bruteforce detected	2020-08-22 07:17:14
attackspam	Aug 21 20:09:19 * sshd[25102]: Failed password for root from 201.149.55.53 port 36716 ssh2 Aug 21 20:16:55 * sshd[26379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53	2020-08-22 02:23:18
attackspambots	TCP (SYN) 201.149.55.53:57775 -> port 11408, len 44	2020-08-06 00:45:37
attack	Invalid user accounts from 201.149.55.53 port 49254	2020-07-30 16:58:30
attackspambots	Ssh brute force	2020-07-29 08:04:06
attackbots	<6 unauthorized SSH connections	2020-07-25 15:16:20
attackspam	Bruteforce detected by fail2ban	2020-07-18 17:03:37
attackspam	SSH Invalid Login	2020-07-08 06:14:45
attackspam	Fail2Ban - SSH Bruteforce Attempt	2020-07-05 04:52:28
attackspam	Jun 30 19:03:21 itv-usvr-02 sshd[8359]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53 user=root Jun 30 19:03:22 itv-usvr-02 sshd[8359]: Failed password for root from 201.149.55.53 port 48310 ssh2 Jun 30 19:07:02 itv-usvr-02 sshd[8541]: Invalid user fluffy from 201.149.55.53 port 51622 Jun 30 19:07:02 itv-usvr-02 sshd[8541]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53 Jun 30 19:07:02 itv-usvr-02 sshd[8541]: Invalid user fluffy from 201.149.55.53 port 51622 Jun 30 19:07:05 itv-usvr-02 sshd[8541]: Failed password for invalid user fluffy from 201.149.55.53 port 51622 ssh2	2020-07-01 09:29:49
attackspam	Mar 9 15:22:17 server sshd\[21619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53 user=root Mar 9 15:22:19 server sshd\[21619\]: Failed password for root from 201.149.55.53 port 44174 ssh2 Mar 9 15:24:00 server sshd\[21870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53 user=root Mar 9 15:24:02 server sshd\[21870\]: Failed password for root from 201.149.55.53 port 45136 ssh2 Mar 9 15:54:55 server sshd\[29051\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.55.53 user=nagios ...	2020-03-10 02:46:31

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.149.55.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3731
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.149.55.53.			IN	A

;; AUTHORITY SECTION:
.			316	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030902 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Mar 10 02:46:28 CST 2020
;; MSG SIZE  rcvd: 117

HOST信息:

53.55.149.201.in-addr.arpa domain name pointer 53.55.149.201.in-addr.arpa.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.55.149.201.in-addr.arpa	name = 53.55.149.201.in-addr.arpa.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
136.52.125.162	attackspambots	Automatic report - Banned IP Access	2019-10-11 19:22:17
139.199.113.2	attackbotsspam	Oct 11 11:40:27 mail sshd[25154]: Failed password for root from 139.199.113.2 port 23811 ssh2 Oct 11 11:44:35 mail sshd[26514]: Failed password for root from 139.199.113.2 port 56851 ssh2	2019-10-11 19:09:11
92.255.193.156	attackspam	SPF Fail sender not permitted to send mail for @ertelecom.ru / Sent mail to target address hacked/leaked from abandonia in 2016	2019-10-11 19:00:34
167.114.210.86	attackspambots	Oct 11 09:23:34 mail sshd[5175]: Failed password for root from 167.114.210.86 port 32836 ssh2 Oct 11 09:27:35 mail sshd[6815]: Failed password for root from 167.114.210.86 port 44494 ssh2	2019-10-11 19:13:35
223.65.206.106	attackspam	Unauthorised access (Oct 11) SRC=223.65.206.106 LEN=40 TOS=0x04 TTL=240 ID=12302 TCP DPT=1433 WINDOW=1024 SYN	2019-10-11 18:38:29
189.120.135.242	attackspam	2019-10-11T05:22:05.462794abusebot-5.cloudsearch.cf sshd\[6689\]: Invalid user yjlo from 189.120.135.242 port 42844	2019-10-11 19:20:54
106.12.179.254	attackbots	Oct 9 14:30:51 eola sshd[15892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.179.254 user=r.r Oct 9 14:30:52 eola sshd[15892]: Failed password for r.r from 106.12.179.254 port 35640 ssh2 Oct 9 14:30:52 eola sshd[15892]: Received disconnect from 106.12.179.254 port 35640:11: Bye Bye [preauth] Oct 9 14:30:52 eola sshd[15892]: Disconnected from 106.12.179.254 port 35640 [preauth] Oct 9 14:51:22 eola sshd[16715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.179.254 user=r.r Oct 9 14:51:25 eola sshd[16715]: Failed password for r.r from 106.12.179.254 port 50762 ssh2 Oct 9 14:51:25 eola sshd[16715]: Received disconnect from 106.12.179.254 port 50762:11: Bye Bye [preauth] Oct 9 14:51:25 eola sshd[16715]: Disconnected from 106.12.179.254 port 50762 [preauth] Oct 9 14:55:11 eola sshd[16791]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh rus........ -------------------------------	2019-10-11 18:41:21
78.38.60.218	attack	Telnet/23 MH Probe, BF, Hack -	2019-10-11 19:00:50
77.247.110.144	attackspambots	10/11/2019-08:08:39.395840 77.247.110.144 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 74	2019-10-11 19:01:28
110.156.81.247	attackspam	firewall-block, port(s): 23/tcp	2019-10-11 19:12:17
182.253.71.242	attackspambots	Oct 11 09:28:19 venus sshd\[31793\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.71.242 user=root Oct 11 09:28:22 venus sshd\[31793\]: Failed password for root from 182.253.71.242 port 57641 ssh2 Oct 11 09:36:18 venus sshd\[31873\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.71.242 user=root ...	2019-10-11 18:52:17
54.37.69.113	attack	Oct 11 08:55:07 microserver sshd[35098]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.69.113 user=root Oct 11 08:55:10 microserver sshd[35098]: Failed password for root from 54.37.69.113 port 57126 ssh2 Oct 11 08:58:55 microserver sshd[35425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.69.113 user=root Oct 11 08:58:57 microserver sshd[35425]: Failed password for root from 54.37.69.113 port 48457 ssh2 Oct 11 09:02:42 microserver sshd[36067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.69.113 user=root Oct 11 09:14:22 microserver sshd[37591]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.69.113 user=root Oct 11 09:14:23 microserver sshd[37591]: Failed password for root from 54.37.69.113 port 42015 ssh2 Oct 11 09:18:15 microserver sshd[38211]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=	2019-10-11 19:02:48
106.12.201.101	attack	ssh failed login	2019-10-11 18:46:25
51.83.69.78	attackbots	Oct 11 11:07:12 web8 sshd\[11552\]: Invalid user %\^\&TYUGHJ from 51.83.69.78 Oct 11 11:07:12 web8 sshd\[11552\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.69.78 Oct 11 11:07:15 web8 sshd\[11552\]: Failed password for invalid user %\^\&TYUGHJ from 51.83.69.78 port 47762 ssh2 Oct 11 11:11:11 web8 sshd\[13676\]: Invalid user Qwerty01 from 51.83.69.78 Oct 11 11:11:11 web8 sshd\[13676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.69.78	2019-10-11 19:21:18
217.74.39.213	attackbotsspam	[portscan] Port scan	2019-10-11 18:49:30

最近上报的IP列表

181.69.170.52	158.117.118.224	105.155.141.70	173.254.192.202
117.57.82.127	120.230.88.227	115.84.76.227	65.97.0.208
159.192.65.32	51.75.21.62	176.115.141.37	125.213.128.106
179.14.13.17	78.140.57.15	77.40.63.201	106.205.182.249
113.81.224.176	45.48.17.120	51.36.48.86	160.66.9.250