148.240.12.157

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: Axtel S.A.B. de C.V.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 148.240.12.157 to port 23 [J]	2020-01-31 01:02:03
attack	unauthorized connection attempt	2020-01-28 19:07:17

Comments on same subnet:

IP	Type	Details	Datetime
148.240.12.72	attackbotsspam	Automatic report - Port Scan Attack	2020-08-21 04:31:32
148.240.122.50	attackspam	Honeypot attack, port: 445, PTR: 148-240-122-50.reservada.static.axtel.net.	2020-02-02 01:58:29
148.240.12.233	attack	Unauthorized connection attempt detected from IP address 148.240.12.233 to port 23 [J]	2020-01-30 23:47:48
148.240.12.233	attackbotsspam	unauthorized connection attempt	2020-01-28 21:21:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.240.12.157
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25787
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;148.240.12.157.			IN	A

;; AUTHORITY SECTION:
.			419	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012800 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 28 19:07:03 CST 2020
;; MSG SIZE  rcvd: 118

Host info

157.12.240.148.in-addr.arpa domain name pointer dial-148-240-12-157.zone-1.ip.static-ftth.axtel.net.mx.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
157.12.240.148.in-addr.arpa	name = dial-148-240-12-157.zone-1.ip.static-ftth.axtel.net.mx.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.144.3.137	attackspambots	Aug 14 20:19:42 fr01 sshd[1525]: Invalid user pdfbox from 190.144.3.137 ...	2019-08-15 03:58:31
82.64.124.174	attack	detected by Fail2Ban	2019-08-15 04:34:54
73.242.200.160	attackbotsspam	Aug 14 14:39:56 XXX sshd[6192]: Invalid user glassfish from 73.242.200.160 port 39378	2019-08-15 04:25:33
121.14.70.29	attackbots	Aug 14 17:07:27 Ubuntu-1404-trusty-64-minimal sshd\[4664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.14.70.29 user=root Aug 14 17:07:29 Ubuntu-1404-trusty-64-minimal sshd\[4664\]: Failed password for root from 121.14.70.29 port 36562 ssh2 Aug 14 17:16:37 Ubuntu-1404-trusty-64-minimal sshd\[9688\]: Invalid user ftpadmin from 121.14.70.29 Aug 14 17:16:37 Ubuntu-1404-trusty-64-minimal sshd\[9688\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.14.70.29 Aug 14 17:16:39 Ubuntu-1404-trusty-64-minimal sshd\[9688\]: Failed password for invalid user ftpadmin from 121.14.70.29 port 37494 ssh2	2019-08-15 03:54:39
165.22.245.13	attackspambots	Aug 14 09:07:43 ast sshd[24801]: Invalid user postgres from 165.22.245.13 port 33266 Aug 14 09:11:10 ast sshd[24809]: Invalid user oracle from 165.22.245.13 port 34532 Aug 14 09:14:14 ast sshd[24814]: Invalid user oracle from 165.22.245.13 port 58870 ...	2019-08-15 04:05:44
13.210.177.21	attack	Fail2Ban Ban Triggered	2019-08-15 03:49:46
201.46.21.180	attackspambots	Automatic report - Banned IP Access	2019-08-15 04:20:35
104.248.10.36	attackbots	C1,WP GET /suche/wp-login.php	2019-08-15 04:19:29
123.30.7.177	attackspambots	SSH Brute Force	2019-08-15 04:02:29
104.246.113.80	attackbots	Aug 14 22:35:05 srv-4 sshd\[2912\]: Invalid user nike from 104.246.113.80 Aug 14 22:35:05 srv-4 sshd\[2912\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.246.113.80 Aug 14 22:35:06 srv-4 sshd\[2912\]: Failed password for invalid user nike from 104.246.113.80 port 35762 ssh2 ...	2019-08-15 04:15:41
207.148.98.161	attack	WordPress XMLRPC scan :: 207.148.98.161 0.180 BYPASS [14/Aug/2019:23:06:48 1000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 200 382 "https://www.[censored_1]/" "PHP/5.3.71"	2019-08-15 04:33:07
220.135.135.165	attack	Aug 14 20:54:20 yabzik sshd[26289]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.135.135.165 Aug 14 20:54:22 yabzik sshd[26289]: Failed password for invalid user thomas from 220.135.135.165 port 43158 ssh2 Aug 14 20:59:14 yabzik sshd[27973]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.135.135.165	2019-08-15 04:18:19
60.225.35.32	attack	Aug 14 20:52:46 XXX sshd[25687]: Invalid user mehdi from 60.225.35.32 port 41344	2019-08-15 03:50:30
219.109.200.107	attackspam	Reported by AbuseIPDB proxy server.	2019-08-15 04:16:05
221.126.225.184	attackbotsspam	Aug 14 14:41:10 XXX sshd[6243]: Invalid user oraprod from 221.126.225.184 port 58922	2019-08-15 04:11:37

Recently Reported IPs

182.103.14.236	109.229.40.68	103.238.108.210	91.210.38.39
87.121.88.139	45.5.36.78	27.5.145.62	212.164.224.36
193.95.23.69	178.151.187.156	178.77.245.103	177.189.45.41
169.0.228.175	125.161.129.213	114.27.102.235	103.23.207.141
79.10.158.118	77.42.126.250	69.156.209.185	61.0.19.14