141.136.90.207

Basic Info

City: unknown

Region: unknown

Country: Armenia

Internet Service Provider: Ucom LLC

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 141.136.90.207 to port 445 [T]	2020-08-16 19:42:46

Comments on same subnet:

IP	Type	Details	Datetime
141.136.90.142	attack	Unauthorized connection attempt from IP address 141.136.90.142 on Port 445(SMB)	2020-04-27 00:22:57
141.136.90.21	attack	Honeypot attack, port: 445, PTR: host-21.90.136.141.ucom.am.	2020-03-07 21:17:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 141.136.90.207
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43801
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;141.136.90.207.			IN	A

;; AUTHORITY SECTION:
.			430	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081600 1800 900 604800 86400

;; Query time: 30 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 16 19:42:41 CST 2020
;; MSG SIZE  rcvd: 118

Host info

207.90.136.141.in-addr.arpa domain name pointer host-207.90.136.141.ucom.am.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
207.90.136.141.in-addr.arpa	name = host-207.90.136.141.ucom.am.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.33.90.172	attackspambots	Port probing on unauthorized port 23	2020-05-04 14:13:03
124.30.44.214	attackspambots	May 4 07:20:21 PorscheCustomer sshd[6200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.30.44.214 May 4 07:20:23 PorscheCustomer sshd[6200]: Failed password for invalid user tarsys from 124.30.44.214 port 41761 ssh2 May 4 07:25:10 PorscheCustomer sshd[6320]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.30.44.214 ...	2020-05-04 13:50:54
167.99.83.237	attackspambots	2020-05-04T05:43:20.588907shield sshd\[31231\]: Invalid user www from 167.99.83.237 port 52018 2020-05-04T05:43:20.593063shield sshd\[31231\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.83.237 2020-05-04T05:43:22.274311shield sshd\[31231\]: Failed password for invalid user www from 167.99.83.237 port 52018 ssh2 2020-05-04T05:47:21.883337shield sshd\[31826\]: Invalid user ftpuser from 167.99.83.237 port 34526 2020-05-04T05:47:21.887062shield sshd\[31826\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.83.237	2020-05-04 13:55:31
104.248.164.123	attackbots	May 4 02:57:13 vps46666688 sshd[31321]: Failed password for root from 104.248.164.123 port 53460 ssh2 May 4 03:00:43 vps46666688 sshd[31607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.164.123 ...	2020-05-04 14:01:24
129.204.240.42	attack	May 3 22:23:00 server1 sshd\[1679\]: Invalid user udp from 129.204.240.42 May 3 22:23:00 server1 sshd\[1679\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.240.42 May 3 22:23:02 server1 sshd\[1679\]: Failed password for invalid user udp from 129.204.240.42 port 40856 ssh2 May 3 22:28:12 server1 sshd\[3153\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.240.42 user=ubuntu May 3 22:28:14 server1 sshd\[3153\]: Failed password for ubuntu from 129.204.240.42 port 42616 ssh2 ...	2020-05-04 14:10:52
62.169.56.12	attackbotsspam	2020-05-04T05:49:12.767166amanda2.illicoweb.com sshd\[19445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=voip-center-2.phoenix.it user=root 2020-05-04T05:49:14.339090amanda2.illicoweb.com sshd\[19445\]: Failed password for root from 62.169.56.12 port 46708 ssh2 2020-05-04T05:53:17.044806amanda2.illicoweb.com sshd\[19866\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=voip-center-2.phoenix.it user=root 2020-05-04T05:53:18.917828amanda2.illicoweb.com sshd\[19866\]: Failed password for root from 62.169.56.12 port 57810 ssh2 2020-05-04T05:57:03.309507amanda2.illicoweb.com sshd\[20033\]: Invalid user huy from 62.169.56.12 port 40684 2020-05-04T05:57:03.314842amanda2.illicoweb.com sshd\[20033\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=voip-center-2.phoenix.it ...	2020-05-04 13:51:58
45.55.219.114	attackspambots	May 4 06:27:21 [host] sshd[14826]: Invalid user p May 4 06:27:21 [host] sshd[14826]: pam_unix(sshd: May 4 06:27:24 [host] sshd[14826]: Failed passwor	2020-05-04 14:15:14
178.128.247.181	attackspambots	Brute-force attempt banned	2020-05-04 14:01:09
117.50.82.244	attack	[ssh] SSH attack	2020-05-04 13:42:47
2.95.58.142	attackbotsspam	May 4 07:14:24 meumeu sshd[28402]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.95.58.142 May 4 07:14:26 meumeu sshd[28402]: Failed password for invalid user bang from 2.95.58.142 port 43610 ssh2 May 4 07:18:29 meumeu sshd[29004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=2.95.58.142 ...	2020-05-04 13:39:34
51.68.174.177	attackspam	SSH Brute-Force reported by Fail2Ban	2020-05-04 13:56:59
113.160.248.80	attackbots	May 4 07:38:45 electroncash sshd[56934]: Invalid user ui from 113.160.248.80 port 50375 May 4 07:38:45 electroncash sshd[56934]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.160.248.80 May 4 07:38:45 electroncash sshd[56934]: Invalid user ui from 113.160.248.80 port 50375 May 4 07:38:46 electroncash sshd[56934]: Failed password for invalid user ui from 113.160.248.80 port 50375 ssh2 May 4 07:43:45 electroncash sshd[58187]: Invalid user noreply from 113.160.248.80 port 33181 ...	2020-05-04 14:10:04
116.196.89.78	attackbots	DATE:2020-05-04 06:39:16, IP:116.196.89.78, PORT:ssh SSH brute force auth (docker-dc)	2020-05-04 14:06:29
89.238.154.169	attack	(cpanel) Failed cPanel login from 89.238.154.169 (GB/United Kingdom/-): 5 in the last 3600 secs	2020-05-04 14:21:54
62.234.156.221	attackspambots	$f2bV_matches	2020-05-04 13:47:32

Recently Reported IPs

181.19.120.175	180.248.123.183	171.34.176.190	168.121.8.3
123.203.149.167	114.24.149.219	112.198.205.80	118.214.89.94
109.226.241.193	212.252.193.140	188.27.146.242	106.58.41.105
104.205.19.26	231.82.41.98	241.189.231.73	2600:1:c64e:ff4:0:43:5eff:6e01
103.249.232.22	244.0.218.16	81.253.119.38	90.188.116.30