201.149.68.140

基本信息:

城市(city): Lomas Estrella

省份(region): Mexico City

国家(country): Mexico

运营商(isp): Megacable Comunicaciones de Mexico S.A. de C.V.

主机名(hostname): unknown

机构(organization): unknown

使用类型(Usage Type): Fixed Line ISP

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	Unauthorized connection attempt from IP address 201.149.68.140 on Port 445(SMB)	2020-09-03 00:11:41
attack	Unauthorized connection attempt from IP address 201.149.68.140 on Port 445(SMB)	2020-09-02 15:43:20
attackbots	Unauthorized connection attempt from IP address 201.149.68.140 on Port 445(SMB)	2020-09-02 08:47:09

类型

评论内容

时间

attackbotsspam

Unauthorized connection attempt from IP address 201.149.68.140 on Port 445(SMB)

2020-09-03 00:11:41

attack

Unauthorized connection attempt from IP address 201.149.68.140 on Port 445(SMB)

2020-09-02 15:43:20

attackbots

Unauthorized connection attempt from IP address 201.149.68.140 on Port 445(SMB)

2020-09-02 08:47:09

相同子网IP讨论:

暂无关于此IP所属子网相关IP的讨论.

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.149.68.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15023
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.149.68.140.			IN	A

;; AUTHORITY SECTION:
.			541	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090101 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 02 08:47:04 CST 2020
;; MSG SIZE  rcvd: 118

HOST信息:

140.68.149.201.in-addr.arpa domain name pointer 140.68.149.201.in-addr.arpa.

NSLOOKUP信息:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
140.68.149.201.in-addr.arpa	name = 140.68.149.201.in-addr.arpa.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
157.100.234.45	attackspambots	Oct 17 12:12:37 php1 sshd\[9349\]: Invalid user P@\$\$w0rd from 157.100.234.45 Oct 17 12:12:37 php1 sshd\[9349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45 Oct 17 12:12:39 php1 sshd\[9349\]: Failed password for invalid user P@\$\$w0rd from 157.100.234.45 port 56662 ssh2 Oct 17 12:17:09 php1 sshd\[10224\]: Invalid user rootme from 157.100.234.45 Oct 17 12:17:09 php1 sshd\[10224\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.100.234.45	2019-10-18 07:11:36
201.16.247.140	attack	Jan 26 05:28:42 odroid64 sshd\[9665\]: Invalid user m1 from 201.16.247.140 Jan 26 05:28:42 odroid64 sshd\[9665\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.247.140 Jan 26 05:28:44 odroid64 sshd\[9665\]: Failed password for invalid user m1 from 201.16.247.140 port 46746 ssh2 Mar 10 03:52:56 odroid64 sshd\[15850\]: Invalid user armod from 201.16.247.140 Mar 10 03:52:56 odroid64 sshd\[15850\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.247.140 Mar 10 03:52:57 odroid64 sshd\[15850\]: Failed password for invalid user armod from 201.16.247.140 port 37820 ssh2 Mar 21 04:58:18 odroid64 sshd\[30900\]: Invalid user server from 201.16.247.140 Mar 21 04:58:18 odroid64 sshd\[30900\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.247.140 Mar 21 04:58:19 odroid64 sshd\[30900\]: Failed password for invalid user server from 201.16.247.140 por ...	2019-10-18 07:10:02
218.82.163.0	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/218.82.163.0/ CN - 1H : (583) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4812 IP : 218.82.163.0 CIDR : 218.82.0.0/16 PREFIX COUNT : 543 UNIQUE IP COUNT : 8614144 WYKRYTE ATAKI Z ASN4812 : 1H - 2 3H - 4 6H - 5 12H - 11 24H - 14 DateTime : 2019-10-17 20:49:19 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-10-18 07:13:03
171.25.193.235	attackbotsspam	2019-10-17T22:47:32.366471abusebot.cloudsearch.cf sshd\[1991\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tor-exit3-readme.dfri.se user=root	2019-10-18 07:07:50
71.58.196.193	attackbotsspam	Oct 18 01:06:41 jane sshd[1044]: Failed password for root from 71.58.196.193 port 18167 ssh2 ...	2019-10-18 07:24:54
201.159.155.148	attackbots	Feb 22 17:25:30 odroid64 sshd\[6386\]: Invalid user db2fenc1 from 201.159.155.148 Feb 22 17:25:30 odroid64 sshd\[6386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.159.155.148 Feb 22 17:25:32 odroid64 sshd\[6386\]: Failed password for invalid user db2fenc1 from 201.159.155.148 port 26721 ssh2 ...	2019-10-18 07:22:01
164.52.152.248	attackspam	Unauthorised access (Oct 17) SRC=164.52.152.248 LEN=40 TOS=0x10 PREC=0x40 TTL=241 ID=34035 TCP DPT=1433 WINDOW=1024 SYN	2019-10-18 06:49:20
201.168.208.42	attackbotsspam	Feb 25 20:39:16 odroid64 sshd\[16317\]: Invalid user davids from 201.168.208.42 Feb 25 20:39:16 odroid64 sshd\[16317\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.168.208.42 Feb 25 20:39:18 odroid64 sshd\[16317\]: Failed password for invalid user davids from 201.168.208.42 port 40672 ssh2 Mar 4 03:02:59 odroid64 sshd\[20823\]: Invalid user hdfs from 201.168.208.42 Mar 4 03:02:59 odroid64 sshd\[20823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.168.208.42 Mar 4 03:03:01 odroid64 sshd\[20823\]: Failed password for invalid user hdfs from 201.168.208.42 port 43240 ssh2 Mar 10 11:08:30 odroid64 sshd\[11495\]: User root from 201.168.208.42 not allowed because not listed in AllowUsers Mar 10 11:08:30 odroid64 sshd\[11495\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.168.208.42 user=root Mar 10 11:08:32 odroid64 sshd\[11495\]: Failed p ...	2019-10-18 06:50:10
201.16.246.71	attack	Feb 23 07:14:36 odroid64 sshd\[18809\]: Invalid user user from 201.16.246.71 Feb 23 07:14:36 odroid64 sshd\[18809\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.246.71 Feb 23 07:14:38 odroid64 sshd\[18809\]: Failed password for invalid user user from 201.16.246.71 port 45522 ssh2 Mar 5 18:48:04 odroid64 sshd\[16543\]: Invalid user od from 201.16.246.71 Mar 5 18:48:04 odroid64 sshd\[16543\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.246.71 Mar 5 18:48:07 odroid64 sshd\[16543\]: Failed password for invalid user od from 201.16.246.71 port 43902 ssh2 Mar 15 03:08:03 odroid64 sshd\[3989\]: Invalid user nagios from 201.16.246.71 Mar 15 03:08:03 odroid64 sshd\[3989\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.246.71 Mar 15 03:08:06 odroid64 sshd\[3989\]: Failed password for invalid user nagios from 201.16.246.71 port 45332 ssh ...	2019-10-18 07:12:46
140.143.164.33	attackspambots	Automatic report - Banned IP Access	2019-10-18 07:13:17
149.202.144.181	attack	Lines containing failures of 149.202.144.181 Oct 17 21:26:40 shared05 sshd[16194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.144.181 user=r.r Oct 17 21:26:42 shared05 sshd[16194]: Failed password for r.r from 149.202.144.181 port 57948 ssh2 Oct 17 21:26:42 shared05 sshd[16194]: Received disconnect from 149.202.144.181 port 57948:11: Bye Bye [preauth] Oct 17 21:26:42 shared05 sshd[16194]: Disconnected from authenticating user r.r 149.202.144.181 port 57948 [preauth] Oct 17 21:33:16 shared05 sshd[17871]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.144.181 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=149.202.144.181	2019-10-18 06:50:35
179.106.107.173	attackbotsspam	firewall-block, port(s): 8080/tcp	2019-10-18 07:00:14
201.16.247.135	attackspambots	Mar 8 18:20:05 odroid64 sshd\[7282\]: User root from 201.16.247.135 not allowed because not listed in AllowUsers Mar 8 18:20:05 odroid64 sshd\[7282\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.247.135 user=root Mar 8 18:20:07 odroid64 sshd\[7282\]: Failed password for invalid user root from 201.16.247.135 port 39582 ssh2 Mar 17 06:17:14 odroid64 sshd\[6490\]: Invalid user ben from 201.16.247.135 Mar 17 06:17:14 odroid64 sshd\[6490\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.247.135 Mar 17 06:17:16 odroid64 sshd\[6490\]: Failed password for invalid user ben from 201.16.247.135 port 48280 ssh2 Mar 20 02:00:36 odroid64 sshd\[2626\]: Invalid user tir from 201.16.247.135 Mar 20 02:00:36 odroid64 sshd\[2626\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.247.135 Mar 20 02:00:38 odroid64 sshd\[2626\]: Failed password for inva ...	2019-10-18 07:11:55
124.29.217.102	attack	2019-10-17T19:49:47Z - RDP login failed multiple times. (124.29.217.102)	2019-10-18 07:20:35
201.16.197.175	attackbotsspam	Apr 21 03:25:35 odroid64 sshd\[28112\]: Invalid user Karoliina from 201.16.197.175 Apr 21 03:25:35 odroid64 sshd\[28112\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.16.197.175 Apr 21 03:25:38 odroid64 sshd\[28112\]: Failed password for invalid user Karoliina from 201.16.197.175 port 35051 ssh2 ...	2019-10-18 07:14:51

最近上报的IP列表

107.135.28.160	203.180.24.254	65.174.84.155	54.238.70.86
46.119.150.142	176.42.160.156	68.80.174.8	13.250.237.106
2.60.65.73	71.121.219.102	190.86.109.166	185.131.194.153
221.152.167.16	173.52.175.236	103.255.5.45	92.13.214.73
75.27.222.131	196.95.172.98	170.52.162.161	122.111.209.164