201.142.129.59

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: Telefonos del Noroeste S.A. de C.V.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Triggered: repeated knocking on closed ports.	2020-04-19 07:46:38

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.142.129.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21082
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.142.129.59.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041801 1800 900 604800 86400

;; Query time: 98 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 19 07:46:34 CST 2020
;; MSG SIZE  rcvd: 118

Host info

59.129.142.201.in-addr.arpa domain name pointer 201.142.129.59.dsl.dyn.telnor.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
59.129.142.201.in-addr.arpa	name = 201.142.129.59.dsl.dyn.telnor.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
123.206.69.81	attackbotsspam	2020-06-12T11:59:55.863372Z 053f0d41b924 New connection: 123.206.69.81:50368 (172.17.0.3:2222) [session: 053f0d41b924] 2020-06-12T12:06:47.556131Z 9d672f9fff0c New connection: 123.206.69.81:54296 (172.17.0.3:2222) [session: 9d672f9fff0c]	2020-06-12 22:43:40
5.196.218.152	attackbots	Jun 12 16:22:41 dbanaszewski sshd[26313]: Unable to negotiate with 5.196.218.152 port 52053: no matching host key type found. Their offer: ssh-rsa,ssh-dss [preauth] Jun 12 16:33:43 dbanaszewski sshd[26484]: Unable to negotiate with 5.196.218.152 port 43652: no matching host key type found. Their offer: ssh-rsa,ssh-dss [preauth]	2020-06-12 22:46:15
18.222.37.21	attackspambots	mue-Direct access to plugin not allowed	2020-06-12 22:45:50
101.255.102.54	attack	Jun 12 15:09:47 zulu412 sshd\[17237\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.102.54 user=root Jun 12 15:09:49 zulu412 sshd\[17237\]: Failed password for root from 101.255.102.54 port 47588 ssh2 Jun 12 15:16:53 zulu412 sshd\[17853\]: Invalid user cmc from 101.255.102.54 port 54226 Jun 12 15:16:53 zulu412 sshd\[17853\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.255.102.54 ...	2020-06-12 22:22:42
117.3.52.229	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-06-12 22:40:47
89.248.160.150	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 89 - port: 40854 proto: UDP cat: Misc Attack	2020-06-12 22:25:37
150.109.63.204	attack	Jun 12 15:24:24 roki sshd[14857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.63.204 user=root Jun 12 15:24:25 roki sshd[14857]: Failed password for root from 150.109.63.204 port 35430 ssh2 Jun 12 15:29:51 roki sshd[15252]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.63.204 user=root Jun 12 15:29:53 roki sshd[15252]: Failed password for root from 150.109.63.204 port 37374 ssh2 Jun 12 15:32:41 roki sshd[15459]: Invalid user apache from 150.109.63.204 Jun 12 15:32:41 roki sshd[15459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.63.204 ...	2020-06-12 22:38:40
183.89.215.238	attackspam	12-6-2020 14:06:55 Unauthorized connection attempt (Brute-Force). 12-6-2020 14:06:55 Connection from IP address: 183.89.215.238 on port: 587 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=183.89.215.238	2020-06-12 22:38:08
49.234.147.154	attack	Jun 12 16:10:07 santamaria sshd\[25415\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.147.154 user=root Jun 12 16:10:09 santamaria sshd\[25415\]: Failed password for root from 49.234.147.154 port 56824 ssh2 Jun 12 16:14:31 santamaria sshd\[25477\]: Invalid user xiaoping from 49.234.147.154 Jun 12 16:14:31 santamaria sshd\[25477\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.147.154 ...	2020-06-12 22:23:39
189.7.129.60	attack	Jun 12 16:07:51 santamaria sshd\[25318\]: Invalid user saikrushna from 189.7.129.60 Jun 12 16:07:51 santamaria sshd\[25318\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.129.60 Jun 12 16:07:52 santamaria sshd\[25318\]: Failed password for invalid user saikrushna from 189.7.129.60 port 46536 ssh2 ...	2020-06-12 22:40:13
103.253.42.59	attack	[2020-06-12 10:27:33] NOTICE[1273][C-0000026b] chan_sip.c: Call from '' (103.253.42.59:53466) to extension '900146462607642' rejected because extension not found in context 'public'. [2020-06-12 10:27:33] SECURITY[1288] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-12T10:27:33.795-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900146462607642",SessionID="0x7f31c0334138",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.253.42.59/53466",ACLName="no_extension_match" [2020-06-12 10:28:44] NOTICE[1273][C-0000026c] chan_sip.c: Call from '' (103.253.42.59:49947) to extension '900246462607642' rejected because extension not found in context 'public'. [2020-06-12 10:28:44] SECURITY[1288] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-06-12T10:28:44.692-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="900246462607642",SessionID="0x7f31c0334138",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/ ...	2020-06-12 22:46:45
49.88.112.113	attackbots	This IP address has been launching brute force and SIP attack on my network	2020-06-12 22:47:21
51.222.16.194	attackbotsspam	Jun 12 14:06:35 santamaria sshd\[23865\]: Invalid user riakcs from 51.222.16.194 Jun 12 14:06:35 santamaria sshd\[23865\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.222.16.194 Jun 12 14:06:37 santamaria sshd\[23865\]: Failed password for invalid user riakcs from 51.222.16.194 port 38950 ssh2 ...	2020-06-12 22:50:33
181.215.182.57	attack	SSH/22 MH Probe, BF, Hack -	2020-06-12 22:40:33
222.186.173.226	attackspam	Jun 12 16:32:40 cosmoit sshd[23296]: Failed password for root from 222.186.173.226 port 13054 ssh2	2020-06-12 22:41:26

Recently Reported IPs

62.131.244.70	213.180.203.59	193.89.72.64	178.54.229.22
93.51.90.185	208.218.108.192	122.117.126.96	216.201.235.111
57.74.150.38	60.164.28.31	115.217.19.1	73.219.106.208
151.254.113.95	250.45.216.19	58.59.120.134	34.90.90.55
136.56.24.121	206.77.210.191	18.10.254.28	170.140.176.80