148.240.203.214

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
148.240.203.116	attackbotsspam	Automatic report - Port Scan Attack	2020-08-08 00:29:10
148.240.203.209	attackspambots	Automatic report - Port Scan Attack	2020-08-03 17:28:26
148.240.203.247	attackbots	Automatic report - Port Scan Attack	2020-05-24 06:14:27
148.240.203.165	attack	Unauthorized connection attempt detected from IP address 148.240.203.165 to port 23 [J]	2020-01-18 19:55:55

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.240.203.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43406
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.240.203.214.		IN	A

;; AUTHORITY SECTION:
.			479	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 42 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 08:48:02 CST 2022
;; MSG SIZE  rcvd: 108

Host info

214.203.240.148.in-addr.arpa domain name pointer dial-148-240-203-214.zone-1.ip.static-ftth.axtel.net.mx.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
214.203.240.148.in-addr.arpa	name = dial-148-240-203-214.zone-1.ip.static-ftth.axtel.net.mx.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
63.81.87.175	attack	Jan 10 05:48:09 grey postfix/smtpd\[18402\]: NOQUEUE: reject: RCPT from health.jcnovel.com\[63.81.87.175\]: 554 5.7.1 Service unavailable\; Client host \[63.81.87.175\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[63.81.87.175\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-10 20:01:53
218.107.133.49	attack	Jan 10 12:23:39 mail postfix/smtpd[13393]: warning: unknown[218.107.133.49]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 10 12:23:48 mail postfix/smtpd[13393]: warning: unknown[218.107.133.49]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 10 12:24:00 mail postfix/smtpd[13393]: warning: unknown[218.107.133.49]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-10 19:40:47
40.124.4.131	attackspam	ssh bruteforce or scan ...	2020-01-10 20:07:56
218.92.0.189	attackspam	Jan 9 23:42:47 home sshd[9240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.189 user=root Jan 9 23:42:48 home sshd[9240]: Failed password for root from 218.92.0.189 port 52199 ssh2 Jan 9 23:42:51 home sshd[9240]: Failed password for root from 218.92.0.189 port 52199 ssh2 Jan 9 23:42:47 home sshd[9240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.189 user=root Jan 9 23:42:48 home sshd[9240]: Failed password for root from 218.92.0.189 port 52199 ssh2 Jan 9 23:42:51 home sshd[9240]: Failed password for root from 218.92.0.189 port 52199 ssh2 Jan 9 23:42:47 home sshd[9240]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.189 user=root Jan 9 23:42:48 home sshd[9240]: Failed password for root from 218.92.0.189 port 52199 ssh2 Jan 9 23:42:51 home sshd[9240]: Failed password for root from 218.92.0.189 port 52199 ssh2 Jan 9 23:42:53 home sshd[9240]: Fail	2020-01-10 19:45:31
115.42.177.43	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-10 19:52:58
81.227.17.83	attackbots	(imapd) Failed IMAP login from 81.227.17.83 (SE/Sweden/81-227-17-83-no2800.tbcn.telia.com): 1 in the last 3600 secs	2020-01-10 20:04:50
198.108.66.147	attack	9090/tcp 1521/tcp 3306/tcp... [2019-11-14/2020-01-10]11pkt,10pt.(tcp)	2020-01-10 19:59:57
71.6.233.242	attackbotsspam	Honeypot attack, port: 445, PTR: scanners.labs.rapid7.com.	2020-01-10 19:54:00
51.38.112.45	attackspambots	B: f2b ssh aggressive 3x	2020-01-10 19:39:57
89.64.30.29	attackspambots	Jan 10 05:48:17 grey postfix/smtpd\[18403\]: NOQUEUE: reject: RCPT from 89-64-30-29.dynamic.chello.pl\[89.64.30.29\]: 554 5.7.1 Service unavailable\; Client host \[89.64.30.29\] blocked using cbl.abuseat.org\; Blocked - see http://www.abuseat.org/lookup.cgi\?ip=89.64.30.29\; from=\ to=\ proto=ESMTP helo=\<89-64-30-29.dynamic.chello.pl\> ...	2020-01-10 19:55:36
23.251.42.20	attackbotsspam	$f2bV_matches	2020-01-10 20:01:13
180.254.49.231	attackbotsspam	445/tcp 445/tcp [2020-01-08]2pkt	2020-01-10 20:14:39
31.163.187.176	attackbotsspam	23/tcp 23/tcp 23/tcp... [2020-01-08]4pkt,1pt.(tcp)	2020-01-10 20:12:39
200.73.127.8	attackspam	23/tcp 8080/tcp [2019-11-26/2020-01-10]2pkt	2020-01-10 19:47:57
193.251.189.244	attackspambots	Jan 10 06:47:37 server2 sshd\[23394\]: User root from lputeaux-658-1-54-244.w193-251.abo.wanadoo.fr not allowed because not listed in AllowUsers Jan 10 06:47:42 server2 sshd\[23400\]: User root from lputeaux-658-1-54-244.w193-251.abo.wanadoo.fr not allowed because not listed in AllowUsers Jan 10 06:47:49 server2 sshd\[23402\]: User root from lputeaux-658-1-54-244.w193-251.abo.wanadoo.fr not allowed because not listed in AllowUsers Jan 10 06:47:57 server2 sshd\[23407\]: User root from lputeaux-658-1-54-244.w193-251.abo.wanadoo.fr not allowed because not listed in AllowUsers Jan 10 06:48:05 server2 sshd\[23413\]: Invalid user admin from 193.251.189.244 Jan 10 06:48:11 server2 sshd\[23448\]: Invalid user admin from 193.251.189.244	2020-01-10 20:00:18

Recently Reported IPs

108.27.217.242	114.119.156.188	18.118.107.227	109.174.112.109
46.98.195.241	109.125.165.106	37.235.155.185	82.79.234.15
102.222.65.234	95.181.211.235	178.72.78.30	59.96.247.80
177.249.170.86	78.84.190.248	93.123.48.52	59.52.179.173
181.114.195.197	120.24.173.40	185.244.21.73	62.204.35.166