104.149.217.149

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 104.149.217.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24135
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;104.149.217.149.		IN	A

;; AUTHORITY SECTION:
.			107	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022001 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 21 05:17:30 CST 2022
;; MSG SIZE  rcvd: 108

Host info

149.217.149.104.in-addr.arpa domain name pointer mail4.formacionintegral21.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.217.149.104.in-addr.arpa	name = mail4.formacionintegral21.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.149.162.21	attackspam	IP 54.149.162.21 attacked honeypot on port: 80 at 7/15/2020 8:48:16 PM	2020-07-16 19:34:58
138.197.136.72	attack	138.197.136.72 - - [16/Jul/2020:07:24:28 +0100] "POST /wp-login.php HTTP/1.1" 200 2046 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.136.72 - - [16/Jul/2020:07:24:30 +0100] "POST /wp-login.php HTTP/1.1" 200 2020 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 138.197.136.72 - - [16/Jul/2020:07:24:31 +0100] "POST /wp-login.php HTTP/1.1" 200 2019 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-16 19:11:46
182.253.71.107	attack	20/7/15@23:48:30: FAIL: Alarm-Network address from=182.253.71.107 ...	2020-07-16 19:46:25
39.156.9.132	attackspam	$f2bV_matches	2020-07-16 19:42:01
152.136.102.131	attackspam	$f2bV_matches	2020-07-16 19:22:38
124.13.32.74	attack	Automatic report - XMLRPC Attack	2020-07-16 19:30:21
94.102.54.82	attackbots	Fail2Ban Ban Triggered (2)	2020-07-16 19:46:50
220.132.9.202	attackbots	Hits on port : 85	2020-07-16 19:09:55
1.175.149.33	attack	Hits on port : 26	2020-07-16 19:15:20
185.39.10.18	attackspam	firewall-block, port(s): 24020/tcp, 24028/tcp, 24040/tcp, 24043/tcp, 24078/tcp, 24138/tcp, 24155/tcp, 24229/tcp, 24258/tcp, 24277/tcp, 24284/tcp, 24306/tcp, 24359/tcp, 24391/tcp, 24394/tcp, 24443/tcp, 24446/tcp, 24447/tcp, 24471/tcp, 24527/tcp, 24531/tcp, 24540/tcp, 24543/tcp, 24587/tcp, 24624/tcp, 24653/tcp, 24665/tcp, 24668/tcp, 24708/tcp, 24715/tcp, 24731/tcp, 24761/tcp, 24815/tcp, 24840/tcp, 24877/tcp, 24882/tcp, 24884/tcp, 24893/tcp	2020-07-16 19:44:38
185.176.27.206	attackspam	Fail2Ban Ban Triggered	2020-07-16 19:35:33
159.89.165.5	attack	Jul 16 13:03:57 ns382633 sshd\[11149\]: Invalid user linux from 159.89.165.5 port 34918 Jul 16 13:03:57 ns382633 sshd\[11149\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.5 Jul 16 13:03:59 ns382633 sshd\[11149\]: Failed password for invalid user linux from 159.89.165.5 port 34918 ssh2 Jul 16 13:11:55 ns382633 sshd\[12886\]: Invalid user lzy from 159.89.165.5 port 48996 Jul 16 13:11:55 ns382633 sshd\[12886\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.165.5	2020-07-16 19:23:22
217.182.206.121	attackspam	fail2ban/Jul 16 09:19:27 h1962932 sshd[27807]: Invalid user oliver from 217.182.206.121 port 39814 Jul 16 09:19:27 h1962932 sshd[27807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.ip-217-182-206.eu Jul 16 09:19:27 h1962932 sshd[27807]: Invalid user oliver from 217.182.206.121 port 39814 Jul 16 09:19:29 h1962932 sshd[27807]: Failed password for invalid user oliver from 217.182.206.121 port 39814 ssh2 Jul 16 09:24:51 h1962932 sshd[28003]: Invalid user hadoop from 217.182.206.121 port 60750	2020-07-16 19:38:07
150.136.8.207	attack	SSH brute force attempt	2020-07-16 19:37:15
112.105.37.24	attack	DATE:2020-07-16 10:28:37, IP:112.105.37.24, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-07-16 19:13:51

Recently Reported IPs

104.149.217.146	104.152.109.90	104.152.110.58	104.149.217.148
104.149.217.82	104.149.217.150	104.152.52.129	104.152.208.65
104.152.52.100	104.154.106.43	104.154.131.234	104.154.142.214
104.154.147.14	104.154.145.231	104.154.149.32	104.154.155.145
104.154.167.26	104.153.251.126	104.154.168.186	104.154.180.229