140.250.149.66

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
140.250.149.83	attack	Jun 29 08:40:26 nirvana postfix/smtpd[9476]: connect from unknown[140.250.149.83] Jun 29 08:40:28 nirvana postfix/smtpd[9476]: warning: unknown[140.250.149.83]: SASL LOGIN authentication failed: authentication failure Jun 29 08:40:29 nirvana postfix/smtpd[9476]: lost connection after AUTH from unknown[140.250.149.83] Jun 29 08:40:29 nirvana postfix/smtpd[9476]: disconnect from unknown[140.250.149.83] Jun 29 08:40:29 nirvana postfix/smtpd[9479]: connect from unknown[140.250.149.83] Jun 29 08:40:32 nirvana postfix/smtpd[9479]: warning: unknown[140.250.149.83]: SASL LOGIN authentication failed: authentication failure Jun 29 08:40:32 nirvana postfix/smtpd[9479]: lost connection after AUTH from unknown[140.250.149.83] Jun 29 08:40:32 nirvana postfix/smtpd[9479]: disconnect from unknown[140.250.149.83] Jun 29 08:40:32 nirvana postfix/smtpd[9478]: connect from unknown[140.250.149.83] Jun 29 08:40:34 nirvana postfix/smtpd[9478]: warning: unknown[140.250.149.83]: SASL LOGIN auth........ -------------------------------	2020-07-06 08:41:30

Type

Details

Datetime

140.250.149.83

attack

Jun 29 08:40:26 nirvana postfix/smtpd[9476]: connect from unknown[140.250.149.83]
Jun 29 08:40:28 nirvana postfix/smtpd[9476]: warning: unknown[140.250.149.83]: SASL LOGIN authentication failed: authentication failure
Jun 29 08:40:29 nirvana postfix/smtpd[9476]: lost connection after AUTH from unknown[140.250.149.83]
Jun 29 08:40:29 nirvana postfix/smtpd[9476]: disconnect from unknown[140.250.149.83]
Jun 29 08:40:29 nirvana postfix/smtpd[9479]: connect from unknown[140.250.149.83]
Jun 29 08:40:32 nirvana postfix/smtpd[9479]: warning: unknown[140.250.149.83]: SASL LOGIN authentication failed: authentication failure
Jun 29 08:40:32 nirvana postfix/smtpd[9479]: lost connection after AUTH from unknown[140.250.149.83]
Jun 29 08:40:32 nirvana postfix/smtpd[9479]: disconnect from unknown[140.250.149.83]
Jun 29 08:40:32 nirvana postfix/smtpd[9478]: connect from unknown[140.250.149.83]
Jun 29 08:40:34 nirvana postfix/smtpd[9478]: warning: unknown[140.250.149.83]: SASL LOGIN auth........
-------------------------------

2020-07-06 08:41:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 140.250.149.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20178
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;140.250.149.66.			IN	A

;; AUTHORITY SECTION:
.			516	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 12:14:26 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 66.149.250.140.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 66.149.250.140.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
183.81.71.75	attack	1583297443 - 03/04/2020 05:50:43 Host: 183.81.71.75/183.81.71.75 Port: 445 TCP Blocked	2020-03-04 21:11:59
68.183.90.78	attackbotsspam	Brute-force attempt banned	2020-03-04 21:19:14
178.128.222.84	attackbots	$f2bV_matches	2020-03-04 21:32:52
107.179.34.4	attack	SSH login attempts.	2020-03-04 20:58:07
95.170.191.5	attack	Email rejected due to spam filtering	2020-03-04 21:17:00
104.131.13.199	attackbotsspam	Mar 4 13:10:16 srv-ubuntu-dev3 sshd[26501]: Invalid user updater from 104.131.13.199 Mar 4 13:10:16 srv-ubuntu-dev3 sshd[26501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 Mar 4 13:10:16 srv-ubuntu-dev3 sshd[26501]: Invalid user updater from 104.131.13.199 Mar 4 13:10:18 srv-ubuntu-dev3 sshd[26501]: Failed password for invalid user updater from 104.131.13.199 port 51356 ssh2 Mar 4 13:10:47 srv-ubuntu-dev3 sshd[26574]: Invalid user seongmin from 104.131.13.199 Mar 4 13:10:47 srv-ubuntu-dev3 sshd[26574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 Mar 4 13:10:47 srv-ubuntu-dev3 sshd[26574]: Invalid user seongmin from 104.131.13.199 Mar 4 13:10:49 srv-ubuntu-dev3 sshd[26574]: Failed password for invalid user seongmin from 104.131.13.199 port 58060 ssh2 Mar 4 13:11:15 srv-ubuntu-dev3 sshd[26650]: Invalid user test from 104.131.13.199 ...	2020-03-04 21:17:37
45.248.160.61	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-03-04 21:34:14
42.159.83.169	attackbots	Mar 4 06:02:11 targaryen sshd[20020]: Invalid user eupa from 42.159.83.169 Mar 4 06:08:37 targaryen sshd[20062]: Invalid user eupa from 42.159.83.169 Mar 4 06:15:02 targaryen sshd[20226]: Invalid user ubuntu from 42.159.83.169 Mar 4 06:21:32 targaryen sshd[20269]: Invalid user www from 42.159.83.169 ...	2020-03-04 21:14:23
51.83.42.185	attackbotsspam	Mar 4 12:14:12 xeon sshd[50077]: Failed password for invalid user william from 51.83.42.185 port 35124 ssh2	2020-03-04 21:21:26
139.162.168.248	attackbots	Automatic report - XMLRPC Attack	2020-03-04 20:50:23
117.50.63.247	attackbotsspam	2020-03-04T11:12:18.966451vps751288.ovh.net sshd\[20038\]: Invalid user dev from 117.50.63.247 port 34172 2020-03-04T11:12:18.976408vps751288.ovh.net sshd\[20038\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.63.247 2020-03-04T11:12:21.331649vps751288.ovh.net sshd\[20038\]: Failed password for invalid user dev from 117.50.63.247 port 34172 ssh2 2020-03-04T11:21:15.761950vps751288.ovh.net sshd\[20095\]: Invalid user odoo from 117.50.63.247 port 32908 2020-03-04T11:21:15.770012vps751288.ovh.net sshd\[20095\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.50.63.247	2020-03-04 21:06:42
198.108.67.98	attack	" "	2020-03-04 21:34:40
114.220.76.79	attackbots	DATE:2020-03-04 07:59:02, IP:114.220.76.79, PORT:ssh SSH brute force auth (docker-dc)	2020-03-04 21:18:41
170.81.148.7	attackbotsspam	Mar 4 07:44:13 server sshd\[19072\]: Failed password for invalid user jstorm from 170.81.148.7 port 54270 ssh2 Mar 4 13:44:17 server sshd\[26648\]: Invalid user vboxuser from 170.81.148.7 Mar 4 13:44:17 server sshd\[26648\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=sistema.mitelecom.net.br Mar 4 13:44:19 server sshd\[26648\]: Failed password for invalid user vboxuser from 170.81.148.7 port 45798 ssh2 Mar 4 13:53:07 server sshd\[28427\]: Invalid user admin from 170.81.148.7 Mar 4 13:53:07 server sshd\[28427\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=sistema.mitelecom.net.br ...	2020-03-04 21:23:22
185.143.223.161	attackbotsspam	Mar 4 13:46:27 web01.agentur-b-2.de postfix/smtpd[187531]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 Service unavailable; Client host [185.143.223.161] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBL420772 / https://www.spamhaus.org/sbl/query/SBL442610 / https://www.spamhaus.org/sbl/query/SBLCSS; from=<8tfer3l33geay9w@prihodko.com> to= proto=ESMTP helo=<[185.143.223.170]> Mar 4 13:46:27 web01.agentur-b-2.de postfix/smtpd[187531]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 Service unavailable; Client host [185.143.223.161] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBL420772 / https://www.spamhaus.org/sbl/query/SBL442610 / https://www.spamhaus.org/sbl/query/SBLCSS; from=<8tfer3l33geay9w@prihodko.com> to= proto=ESMTP helo=<[185.143.223.170]> Mar 4 13:46:27 web01.agentur-b-2.de postfix/smtpd[187531]: NOQUEUE: reject: RCPT from unknown[185.143.223.161]: 554 5.7.1 Service unavailable; Clie	2020-03-04 21:05:00

Recently Reported IPs

140.250.145.150	140.250.152.140	140.250.149.94	140.250.152.143
140.250.152.57	140.250.152.181	140.250.149.80	140.250.151.244
140.250.153.129	140.250.153.14	140.250.200.111	140.250.203.88
140.250.201.122	140.250.153.73	140.250.245.123	140.250.248.17
140.250.43.147	140.250.41.212	140.250.88.206	140.250.43.35