190.136.91.149

Basic Info

City: unknown

Region: unknown

Country: Argentina

Internet Service Provider: Telecom Argentina S.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Sep 16 23:58:56 plusreed sshd[28483]: Invalid user adminuser from 190.136.91.149 ...	2019-09-17 12:13:22
attack	Sep 14 08:08:46 lcprod sshd\[16445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host149.190-136-91.telecom.net.ar user=root Sep 14 08:08:47 lcprod sshd\[16445\]: Failed password for root from 190.136.91.149 port 44068 ssh2 Sep 14 08:14:03 lcprod sshd\[16980\]: Invalid user sylvie from 190.136.91.149 Sep 14 08:14:03 lcprod sshd\[16980\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host149.190-136-91.telecom.net.ar Sep 14 08:14:06 lcprod sshd\[16980\]: Failed password for invalid user sylvie from 190.136.91.149 port 52936 ssh2	2019-09-15 08:43:12
attackbots	Sep 12 23:25:15 localhost sshd\[7439\]: Invalid user vnc from 190.136.91.149 port 60602 Sep 12 23:25:15 localhost sshd\[7439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.136.91.149 Sep 12 23:25:17 localhost sshd\[7439\]: Failed password for invalid user vnc from 190.136.91.149 port 60602 ssh2	2019-09-13 05:50:45
attack	Sep 1 11:51:19 php2 sshd\[6600\]: Invalid user oracle from 190.136.91.149 Sep 1 11:51:19 php2 sshd\[6600\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host149.190-136-91.telecom.net.ar Sep 1 11:51:21 php2 sshd\[6600\]: Failed password for invalid user oracle from 190.136.91.149 port 54010 ssh2 Sep 1 11:57:52 php2 sshd\[7128\]: Invalid user tibero1 from 190.136.91.149 Sep 1 11:57:52 php2 sshd\[7128\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host149.190-136-91.telecom.net.ar	2019-09-02 07:34:56
attackspambots	Aug 27 11:27:38 kapalua sshd\[31515\]: Invalid user ubuntu from 190.136.91.149 Aug 27 11:27:38 kapalua sshd\[31515\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host149.190-136-91.telecom.net.ar Aug 27 11:27:39 kapalua sshd\[31515\]: Failed password for invalid user ubuntu from 190.136.91.149 port 61536 ssh2 Aug 27 11:34:09 kapalua sshd\[32051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host149.190-136-91.telecom.net.ar user=root Aug 27 11:34:10 kapalua sshd\[32051\]: Failed password for root from 190.136.91.149 port 50702 ssh2	2019-08-28 06:29:51
attackbotsspam	Aug 27 08:10:34 kapalua sshd\[15168\]: Invalid user squid from 190.136.91.149 Aug 27 08:10:34 kapalua sshd\[15168\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host149.190-136-91.telecom.net.ar Aug 27 08:10:35 kapalua sshd\[15168\]: Failed password for invalid user squid from 190.136.91.149 port 48010 ssh2 Aug 27 08:17:07 kapalua sshd\[15668\]: Invalid user programming from 190.136.91.149 Aug 27 08:17:07 kapalua sshd\[15668\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host149.190-136-91.telecom.net.ar	2019-08-28 02:31:00
attackspambots	F2B jail: sshd. Time: 2019-08-26 19:58:15, Reported by: VKReport	2019-08-27 05:46:13

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 190.136.91.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20345
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;190.136.91.149.			IN	A

;; AUTHORITY SECTION:
.			1160	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082601 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 27 05:46:08 CST 2019
;; MSG SIZE  rcvd: 118

Host info

149.91.136.190.in-addr.arpa domain name pointer host149.190-136-91.telecom.net.ar.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
149.91.136.190.in-addr.arpa	name = host149.190-136-91.telecom.net.ar.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.203.162.186	attackspambots	SSH / Telnet Brute Force Attempts on Honeypot	2020-07-04 11:09:41
187.109.34.69	attack	$f2bV_matches	2020-07-04 11:18:12
172.86.125.151	attack	2020-07-03T21:56:36.134015sorsha.thespaminator.com sshd[31650]: Failed password for root from 172.86.125.151 port 54114 ssh2 2020-07-03T21:59:20.284580sorsha.thespaminator.com sshd[31672]: Invalid user prashant from 172.86.125.151 port 35322 ...	2020-07-04 11:31:06
112.85.42.173	attackspambots	Jul 4 04:17:28 ajax sshd[25722]: Failed password for root from 112.85.42.173 port 18487 ssh2 Jul 4 04:17:31 ajax sshd[25722]: Failed password for root from 112.85.42.173 port 18487 ssh2	2020-07-04 11:19:47
54.36.108.162	attack	Jul 3 19:51:48 mailman sshd[28323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3112521.ip-54-36-108.eu user=root	2020-07-04 10:58:03
141.98.81.210	attackspam	2020-07-04T02:16:10.330211dmca.cloudsearch.cf sshd[27336]: Invalid user admin from 141.98.81.210 port 32983 2020-07-04T02:16:10.335507dmca.cloudsearch.cf sshd[27336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.210 2020-07-04T02:16:10.330211dmca.cloudsearch.cf sshd[27336]: Invalid user admin from 141.98.81.210 port 32983 2020-07-04T02:16:12.054849dmca.cloudsearch.cf sshd[27336]: Failed password for invalid user admin from 141.98.81.210 port 32983 ssh2 2020-07-04T02:16:24.421310dmca.cloudsearch.cf sshd[27404]: Invalid user admin from 141.98.81.210 port 12589 2020-07-04T02:16:24.427013dmca.cloudsearch.cf sshd[27404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=141.98.81.210 2020-07-04T02:16:24.421310dmca.cloudsearch.cf sshd[27404]: Invalid user admin from 141.98.81.210 port 12589 2020-07-04T02:16:26.402190dmca.cloudsearch.cf sshd[27404]: Failed password for invalid user admin from 141.98.81. ...	2020-07-04 11:16:21
222.186.175.202	attack	2020-07-04T06:05:09.395355afi-git.jinr.ru sshd[7785]: Failed password for root from 222.186.175.202 port 49968 ssh2 2020-07-04T06:05:13.008661afi-git.jinr.ru sshd[7785]: Failed password for root from 222.186.175.202 port 49968 ssh2 2020-07-04T06:05:16.164609afi-git.jinr.ru sshd[7785]: Failed password for root from 222.186.175.202 port 49968 ssh2 2020-07-04T06:05:16.164794afi-git.jinr.ru sshd[7785]: error: maximum authentication attempts exceeded for root from 222.186.175.202 port 49968 ssh2 [preauth] 2020-07-04T06:05:16.164810afi-git.jinr.ru sshd[7785]: Disconnecting: Too many authentication failures [preauth] ...	2020-07-04 11:17:19
193.254.135.252	attack	[ssh] SSH attack	2020-07-04 11:12:53
141.98.81.207	attack	SSH Brute-Force attacks	2020-07-04 11:26:07
95.255.14.141	attack	2020-07-04T00:58:27.122020shield sshd\[7967\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-95-255-14-141.business.telecomitalia.it user=root 2020-07-04T00:58:29.365873shield sshd\[7967\]: Failed password for root from 95.255.14.141 port 44040 ssh2 2020-07-04T01:00:19.385694shield sshd\[8331\]: Invalid user ftpuser from 95.255.14.141 port 49118 2020-07-04T01:00:19.389876shield sshd\[8331\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host-95-255-14-141.business.telecomitalia.it 2020-07-04T01:00:21.006988shield sshd\[8331\]: Failed password for invalid user ftpuser from 95.255.14.141 port 49118 ssh2	2020-07-04 11:14:21
188.166.233.216	attack	WordPress login Brute force / Web App Attack on client site.	2020-07-04 11:14:50
14.160.39.138	attackspam	Dovecot Invalid User Login Attempt.	2020-07-04 10:52:36
182.61.1.31	attackbots	Jul 4 03:34:22 vpn01 sshd[1681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.1.31 Jul 4 03:34:24 vpn01 sshd[1681]: Failed password for invalid user ubuntu from 182.61.1.31 port 56728 ssh2 ...	2020-07-04 11:25:39
49.234.143.121	attackbots	Jul 4 03:54:37 odroid64 sshd\[17907\]: Invalid user jboss from 49.234.143.121 Jul 4 03:54:37 odroid64 sshd\[17907\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.143.121 ...	2020-07-04 11:08:44
68.207.243.38	attackbots	Fail2Ban Ban Triggered (2)	2020-07-04 11:26:59

Recently Reported IPs

86.149.198.83	49.49.195.48	189.39.242.129	187.49.70.94
177.220.177.79	81.98.125.220	81.208.213.148	114.154.50.75
202.181.126.80	118.168.71.208	95.88.169.51	40.176.3.159
77.101.197.199	71.198.208.147	222.186.15.18	200.95.223.93
150.109.66.216	62.210.182.188	192.169.156.194	186.34.118.157