148.217.200.133

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: Universidad Autonoma de Zacatecas

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	unauthorized connection attempt	2020-02-04 13:50:26

Comments on same subnet:

IP	Type	Details	Datetime
148.217.200.125	attackbots	port scan and connect, tcp 1433 (ms-sql-s)	2020-03-05 16:15:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.217.200.133
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56785
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.217.200.133.		IN	A

;; AUTHORITY SECTION:
.			539	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020020301 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 04 13:50:23 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 133.200.217.148.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 133.200.217.148.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
174.138.13.170	attackspambots	SSH invalid-user multiple login try	2019-07-19 16:55:38
118.174.45.29	attackbotsspam	Jul 19 10:51:55 MK-Soft-Root2 sshd\[27587\]: Invalid user lia from 118.174.45.29 port 52964 Jul 19 10:51:55 MK-Soft-Root2 sshd\[27587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.174.45.29 Jul 19 10:51:57 MK-Soft-Root2 sshd\[27587\]: Failed password for invalid user lia from 118.174.45.29 port 52964 ssh2 ...	2019-07-19 16:55:07
61.158.140.152	attackspambots	Jul 19 00:59:11 mailman dovecot: imap-login: Disconnected (auth failed, 1 attempts): user=, method=PLAIN, rip=61.158.140.152, lip=[munged], TLS: Disconnected	2019-07-19 16:21:46
203.87.133.90	attackspambots	WordPress XMLRPC scan :: 203.87.133.90 0.124 BYPASS [19/Jul/2019:15:59:19 1000] [censored_1] "GET /xmlrpc.php HTTP/1.1" 405 53 "-" "Mozilla/5.0 (X11; Linux i686; rv:2.0.1) Gecko/20100101 Firefox/4.0.1"	2019-07-19 16:07:47
54.39.51.31	attack	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.51.31 Failed password for invalid user eddie from 54.39.51.31 port 35242 ssh2 Invalid user app from 54.39.51.31 port 33628 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.51.31 Failed password for invalid user app from 54.39.51.31 port 33628 ssh2	2019-07-19 16:31:58
198.50.150.83	attackbots	Jul 19 13:19:27 vibhu-HP-Z238-Microtower-Workstation sshd\[12433\]: Invalid user gk from 198.50.150.83 Jul 19 13:19:27 vibhu-HP-Z238-Microtower-Workstation sshd\[12433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.150.83 Jul 19 13:19:30 vibhu-HP-Z238-Microtower-Workstation sshd\[12433\]: Failed password for invalid user gk from 198.50.150.83 port 37562 ssh2 Jul 19 13:24:17 vibhu-HP-Z238-Microtower-Workstation sshd\[12584\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.50.150.83 user=root Jul 19 13:24:20 vibhu-HP-Z238-Microtower-Workstation sshd\[12584\]: Failed password for root from 198.50.150.83 port 43620 ssh2 ...	2019-07-19 15:59:10
124.109.59.37	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-19 04:35:09,792 INFO [amun_request_handler] PortScan Detected on Port: 445 (124.109.59.37)	2019-07-19 16:41:42
203.95.193.192	attackspam	RDP brute forcing (d)	2019-07-19 15:58:50
197.231.204.182	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-19 04:35:22,566 INFO [amun_request_handler] PortScan Detected on Port: 445 (197.231.204.182)	2019-07-19 16:34:19
180.183.247.206	attackbots	Automatic report - Banned IP Access	2019-07-19 16:09:44
173.249.21.204	attackbotsspam	173.249.21.204 - - [19/Jul/2019:07:58:30 +0200] "GET /wp-login.php HTTP/1.1" 301 178 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 173.249.21.204 - - [19/Jul/2019:07:58:30 +0200] "GET /wp-login.php HTTP/1.1" 404 93 "http://netpixeldesign.net/wp-login.php" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2019-07-19 16:37:10
129.28.57.8	attackspambots	Jul 19 03:59:28 TORMINT sshd\[2574\]: Invalid user bbb from 129.28.57.8 Jul 19 03:59:28 TORMINT sshd\[2574\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.57.8 Jul 19 03:59:30 TORMINT sshd\[2574\]: Failed password for invalid user bbb from 129.28.57.8 port 52604 ssh2 ...	2019-07-19 16:15:17
92.119.160.125	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-19 16:53:34
159.89.197.135	attackbotsspam	2019-07-19T08:07:32.727957abusebot-8.cloudsearch.cf sshd\[20590\]: Invalid user test from 159.89.197.135 port 51450	2019-07-19 16:12:56
113.160.37.254	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-19 04:35:21,096 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.160.37.254)	2019-07-19 16:36:06

Recently Reported IPs

82.200.192.58	36.72.217.235	14.239.65.6	14.228.205.186
14.175.230.96	14.162.86.225	1.162.144.94	221.1.147.188
218.250.85.46	196.229.193.115	195.211.174.158	185.6.172.152
181.44.60.134	180.183.246.66	178.137.16.151	118.39.94.60
186.8.20.2	76.30.195.223	117.102.81.242	52.246.183.80