68.149.180.6 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: Shaw Communications Inc.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	RDP brute forcing (d)	2019-12-12 08:25:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 68.149.180.6
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 40163
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;68.149.180.6.			IN	A

;; AUTHORITY SECTION:
.			584	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121101 1800 900 604800 86400

;; Query time: 52 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Dec 12 08:25:14 CST 2019
;; MSG SIZE  rcvd: 116

Host info

6.180.149.68.in-addr.arpa domain name pointer S0106905851c6168b.ed.shawcable.net.

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

Non-authoritative answer:
6.180.149.68.in-addr.arpa	name = S0106905851c6168b.ed.shawcable.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
108.36.253.227	attackbots	Port Scan detected from 108.36.253.227 (US/United States/Pennsylvania/Philadelphia/static-108-36-253-227.phlapa.fios.verizon.net). 4 hits in the last 215 seconds	2020-08-05 17:32:37
58.37.28.240	attackspam	20 attempts against mh-ssh on glow	2020-08-05 17:57:33
139.162.106.178	attackspambots	TCP (SYN) 139.162.106.178:38448 -> port 23, len 40	2020-08-05 18:04:34
167.172.38.80	attack	Port Scan ...	2020-08-05 17:29:42
183.103.115.2	attack	(sshd) Failed SSH login from 183.103.115.2 (KR/South Korea/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 5 10:50:00 grace sshd[5684]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.103.115.2 user=root Aug 5 10:50:01 grace sshd[5684]: Failed password for root from 183.103.115.2 port 6980 ssh2 Aug 5 11:00:58 grace sshd[7430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.103.115.2 user=root Aug 5 11:01:00 grace sshd[7430]: Failed password for root from 183.103.115.2 port 14857 ssh2 Aug 5 11:04:22 grace sshd[7602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.103.115.2 user=root	2020-08-05 17:52:27
37.49.230.7	attackspambots	TCP (SYN) 37.49.230.7:57477 -> port 81, len 44	2020-08-05 17:47:39
45.129.33.13	attackbotsspam	TCP (SYN) 45.129.33.13:50671 -> port 1817, len 44	2020-08-05 17:42:30
182.50.151.13	attackspam	Looking for old copies of wordpress configuration	2020-08-05 18:04:06
46.225.123.42	attackspam	08/04/2020-23:50:00.630735 46.225.123.42 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-08-05 17:56:21
190.0.62.230	attack	port scan and connect, tcp 1433 (ms-sql-s)	2020-08-05 17:31:10
167.172.156.227	attackspambots	TCP (SYN) 167.172.156.227:45441 -> port 6520, len 44	2020-08-05 17:48:34
180.126.32.166	attackspambots	20 attempts against mh-ssh on flow	2020-08-05 18:02:23
111.40.214.20	attackspambots	Aug 5 10:43:42 nextcloud sshd\[20485\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.40.214.20 user=root Aug 5 10:43:44 nextcloud sshd\[20485\]: Failed password for root from 111.40.214.20 port 22785 ssh2 Aug 5 10:47:13 nextcloud sshd\[25464\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.40.214.20 user=root	2020-08-05 17:46:17
218.92.0.221	attackspambots	Unauthorized connection attempt detected from IP address 218.92.0.221 to port 22	2020-08-05 17:56:55
139.59.93.93	attack	Aug 5 10:39:04 pornomens sshd\[30297\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.93.93 user=root Aug 5 10:39:06 pornomens sshd\[30297\]: Failed password for root from 139.59.93.93 port 33652 ssh2 Aug 5 10:43:38 pornomens sshd\[30306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.93.93 user=root ...	2020-08-05 18:01:56

Recently Reported IPs

80.211.2.150	177.92.249.112	149.56.158.24	165.231.253.90
45.178.1.60	41.170.12.92	161.136.146.73	59.4.107.29
230.62.26.121	239.126.221.28	176.56.169.123	93.109.32.83
5.202.83.82	130.111.175.95	235.56.45.139	173.135.231.91
137.16.63.107	124.54.78.51	51.199.2.125	70.155.34.100