201.148.139.53

Basic Info

City: Huixquilucan

Region: México

Country: Mexico

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
201.148.139.50	attack	Jan 28 22:39:09 odroid64 sshd\[14933\]: Invalid user wwwrun from 201.148.139.50 Jan 28 22:39:09 odroid64 sshd\[14933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.148.139.50 Jan 28 22:39:11 odroid64 sshd\[14933\]: Failed password for invalid user wwwrun from 201.148.139.50 port 58768 ssh2 ...	2019-10-18 07:42:20

Type

Details

Datetime

201.148.139.50

attack

Jan 28 22:39:09 odroid64 sshd\[14933\]: Invalid user wwwrun from 201.148.139.50
Jan 28 22:39:09 odroid64 sshd\[14933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.148.139.50
Jan 28 22:39:11 odroid64 sshd\[14933\]: Failed password for invalid user wwwrun from 201.148.139.50 port 58768 ssh2
...

2019-10-18 07:42:20

Whois info:

Dig info:

b'
; <<>> DiG 9.11.3-1ubuntu1.15-Ubuntu <<>> 201.148.139.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5011
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 0, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 65494
;; QUESTION SECTION:
;201.148.139.53.			IN	A

;; Query time: 1 msec
;; SERVER: 127.0.0.53#53(127.0.0.53)
;; WHEN: Sat Jun 26 17:47:49 CST 2021
;; MSG SIZE  rcvd: 43

'

Host info

53.139.148.201.in-addr.arpa domain name pointer host139053.metrored.net.mx.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.139.148.201.in-addr.arpa	name = host139053.metrored.net.mx.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
27.54.54.64	attack	Automatic report - Port Scan Attack	2020-09-03 21:24:47
218.92.0.138	attackspam	Time: Thu Sep 3 12:49:26 2020 +0000 IP: 218.92.0.138 (-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 3 12:49:09 ca-16-ede1 sshd[12859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.138 user=root Sep 3 12:49:11 ca-16-ede1 sshd[12859]: Failed password for root from 218.92.0.138 port 21234 ssh2 Sep 3 12:49:14 ca-16-ede1 sshd[12859]: Failed password for root from 218.92.0.138 port 21234 ssh2 Sep 3 12:49:18 ca-16-ede1 sshd[12859]: Failed password for root from 218.92.0.138 port 21234 ssh2 Sep 3 12:49:21 ca-16-ede1 sshd[12859]: Failed password for root from 218.92.0.138 port 21234 ssh2	2020-09-03 20:57:49
5.188.84.95	attack	0,70-01/02 [bc01/m15] PostRequest-Spammer scoring: harare01	2020-09-03 21:15:05
103.120.207.3	attackbots	Automatic report - Port Scan Attack	2020-09-03 21:12:27
45.40.166.136	attack	Automatic report - XMLRPC Attack	2020-09-03 20:48:30
51.38.83.164	attackbots	Invalid user logger from 51.38.83.164 port 39928	2020-09-03 21:10:53
119.236.251.23	attackbots	Bruteforce detected by fail2ban	2020-09-03 20:51:24
45.227.255.205	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-09-03T10:46:32Z	2020-09-03 21:26:12
157.230.39.120	attackspambots	SSH brute force attempt	2020-09-03 21:21:08
36.48.68.153	attackbots	Sep 3 02:44:10 gw1 sshd[28248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.48.68.153 Sep 3 02:44:11 gw1 sshd[28248]: Failed password for invalid user test from 36.48.68.153 port 42584 ssh2 ...	2020-09-03 21:08:34
222.186.31.83	attackbots	Sep 3 08:37:32 ny01 sshd[27133]: Failed password for root from 222.186.31.83 port 53275 ssh2 Sep 3 08:37:51 ny01 sshd[27161]: Failed password for root from 222.186.31.83 port 56490 ssh2 Sep 3 08:37:53 ny01 sshd[27161]: Failed password for root from 222.186.31.83 port 56490 ssh2	2020-09-03 20:53:27
112.85.42.173	attack	Tried sshing with brute force.	2020-09-03 21:02:37
177.205.164.41	attack	Automatic report - Port Scan Attack	2020-09-03 21:17:11
165.22.32.60	attackbots	firewall-block, port(s): 53413/udp	2020-09-03 21:30:11
222.186.175.154	attackspam	Sep 3 14:55:37 abendstille sshd\[27270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Sep 3 14:55:39 abendstille sshd\[27270\]: Failed password for root from 222.186.175.154 port 2532 ssh2 Sep 3 14:55:56 abendstille sshd\[27700\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root Sep 3 14:55:58 abendstille sshd\[27700\]: Failed password for root from 222.186.175.154 port 10224 ssh2 Sep 3 14:56:21 abendstille sshd\[28068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.154 user=root ...	2020-09-03 20:56:54

Recently Reported IPs

209.52.88.219	86.195.154.96	73.94.221.96	152.186.46.233
173.34.33.143	76.64.92.120	99.241.190.239	82.24.16.9
76.67.238.240	204.48.95.58	141.8.63.203	89.78.6.98
207.253.145.230	36.154.241.126	59.95.175.83	118.174.234.21
83.171.227.15	2.58.12.169	31.40.224.146	116.87.172.6