136.243.2.149 - IPInfo

Basic Info

City: Falkenstein

Region: Sachsen

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
136.243.2.41	attackspambots	hzb4 136.243.2.41 [01/Oct/2020:05:57:38 "-" "POST /wp-login.php 200 2185 136.243.2.41 [01/Oct/2020:12:14:58 "-" "GET /wp-login.php 200 1767 136.243.2.41 [01/Oct/2020:12:14:59 "-" "POST /wp-login.php 200 2151	2020-10-02 00:55:27
136.243.2.41	attackspam	hzb4 136.243.2.41 [01/Oct/2020:05:57:38 "-" "POST /wp-login.php 200 2185 136.243.2.41 [01/Oct/2020:12:14:58 "-" "GET /wp-login.php 200 1767 136.243.2.41 [01/Oct/2020:12:14:59 "-" "POST /wp-login.php 200 2151	2020-10-01 17:02:14
136.243.254.153	attackspambots	$f2bV_matches	2020-07-10 13:31:41
136.243.26.248	normal	continua inutilmente ad occupare spazio	2020-06-18 02:19:37
136.243.208.164	attackbotsspam	Scanned 64 unique addresses for 1 unique ports in 24 hours (ports 80)	2020-06-02 03:10:43
136.243.208.164	attackspam	[Mon May 25 23:26:54 2020] - Syn Flood From IP: 136.243.208.164 Port: 60000	2020-05-26 11:19:06
136.243.238.215	attackspam	SSH Brute Force	2020-05-17 07:44:26
136.243.26.248	spam	Only spam by mail.	2020-03-31 03:42:41
136.243.205.112	attackspambots	This IOC was found in a paste: https://paste.cryptolaemus.com/emotet/2020/03/23/emotet-c2-rsa-update-03-23-20-1.html with the title "Emotet C2 and RSA Key Update - 03/23/2020 09:45" For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-03-27 01:33:03
136.243.26.248	spam	Mi mandano almeno 10 mail al giorno ,tutto spam mail truffe.	2020-03-22 04:40:57
136.243.26.248	spam	Mi mandano almeno 10 mail al giorno ,tutto spam mail truffe.	2020-03-22 04:40:26
136.243.247.44	attackbots	Port Scan: TCP/22	2019-11-20 06:30:12
136.243.208.250	attack	2019-09-15T14:01:23.436562abusebot-8.cloudsearch.cf sshd\[23823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.hostpioneers.com user=daemon	2019-09-16 02:06:01
136.243.22.123	attack	Many RDP login attempts detected by IDS script	2019-07-18 20:33:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 136.243.2.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60142
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;136.243.2.149.			IN	A

;; AUTHORITY SECTION:
.			354	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023121501 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Dec 16 05:05:03 CST 2023
;; MSG SIZE  rcvd: 106

Host info

149.2.243.136.in-addr.arpa domain name pointer static.149.2.243.136.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.2.243.136.in-addr.arpa	name = static.149.2.243.136.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.77.144.50	attackspambots	Sep 29 03:09:20 hcbb sshd\[5622\]: Invalid user masunaga from 51.77.144.50 Sep 29 03:09:20 hcbb sshd\[5622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.ip-51-77-144.eu Sep 29 03:09:21 hcbb sshd\[5622\]: Failed password for invalid user masunaga from 51.77.144.50 port 32810 ssh2 Sep 29 03:13:32 hcbb sshd\[5969\]: Invalid user abdeslem from 51.77.144.50 Sep 29 03:13:32 hcbb sshd\[5969\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.ip-51-77-144.eu	2019-09-29 22:22:07
219.223.234.9	attackspambots	Sep 29 15:56:10 vps691689 sshd[12405]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.223.234.9 Sep 29 15:56:11 vps691689 sshd[12405]: Failed password for invalid user temp from 219.223.234.9 port 13880 ssh2 ...	2019-09-29 22:09:19
198.108.66.118	attackspam	6379/tcp 8080/tcp 1433/tcp... [2019-08-10/09-29]14pkt,11pt.(tcp)	2019-09-29 21:54:42
118.25.231.17	attackbots	Sep 29 15:16:55 MK-Soft-VM3 sshd[14775]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.231.17 Sep 29 15:16:57 MK-Soft-VM3 sshd[14775]: Failed password for invalid user susi from 118.25.231.17 port 48460 ssh2 ...	2019-09-29 21:54:10
94.191.127.240	attack	Failed SSH login from 5 in the last 3600 secs	2019-09-29 22:17:09
84.128.174.16	attackbots	Automatic report - Port Scan Attack	2019-09-29 22:02:18
92.53.65.189	attack	5251/tcp 5233/tcp 5260/tcp... [2019-07-29/09-29]317pkt,242pt.(tcp)	2019-09-29 21:54:27
51.75.120.244	attackspam	Sep 29 15:29:34 ns3110291 sshd\[14729\]: Invalid user apple1 from 51.75.120.244 Sep 29 15:29:36 ns3110291 sshd\[14729\]: Failed password for invalid user apple1 from 51.75.120.244 port 59190 ssh2 Sep 29 15:33:03 ns3110291 sshd\[14927\]: Invalid user ben from 51.75.120.244 Sep 29 15:33:06 ns3110291 sshd\[14927\]: Failed password for invalid user ben from 51.75.120.244 port 43682 ssh2 Sep 29 15:36:31 ns3110291 sshd\[15054\]: Invalid user upload from 51.75.120.244 ...	2019-09-29 22:03:09
112.64.170.166	attackspam	Sep 29 13:10:18 ip-172-31-1-72 sshd\[27490\]: Invalid user temp from 112.64.170.166 Sep 29 13:10:18 ip-172-31-1-72 sshd\[27490\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.170.166 Sep 29 13:10:20 ip-172-31-1-72 sshd\[27490\]: Failed password for invalid user temp from 112.64.170.166 port 47844 ssh2 Sep 29 13:14:26 ip-172-31-1-72 sshd\[27548\]: Invalid user hatokura from 112.64.170.166 Sep 29 13:14:26 ip-172-31-1-72 sshd\[27548\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.64.170.166	2019-09-29 22:11:37
191.5.130.69	attackbots	2019-09-29T14:20:28.350152abusebot-5.cloudsearch.cf sshd\[30709\]: Invalid user ec2-user from 191.5.130.69 port 47625	2019-09-29 22:39:02
128.199.175.6	attack	xmlrpc attack	2019-09-29 22:20:51
114.7.120.10	attackspam	Sep 29 03:57:27 tdfoods sshd\[14655\]: Invalid user appuser from 114.7.120.10 Sep 29 03:57:27 tdfoods sshd\[14655\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.7.120.10 Sep 29 03:57:29 tdfoods sshd\[14655\]: Failed password for invalid user appuser from 114.7.120.10 port 58383 ssh2 Sep 29 04:02:44 tdfoods sshd\[15580\]: Invalid user le from 114.7.120.10 Sep 29 04:02:44 tdfoods sshd\[15580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.7.120.10	2019-09-29 22:15:02
41.65.64.36	attackspam	ssh failed login	2019-09-29 22:37:36
190.145.55.89	attackbotsspam	Automated report - ssh fail2ban: Sep 29 15:06:11 authentication failure Sep 29 15:06:13 wrong password, user=deploy, port=45288, ssh2 Sep 29 15:23:32 authentication failure	2019-09-29 22:20:32
51.77.195.149	attackspambots	Sep 29 15:56:23 SilenceServices sshd[18869]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.195.149 Sep 29 15:56:25 SilenceServices sshd[18869]: Failed password for invalid user noreply from 51.77.195.149 port 56006 ssh2 Sep 29 16:04:02 SilenceServices sshd[20910]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.195.149	2019-09-29 22:21:49

Recently Reported IPs

26.30.145.182	209.25.227.63	111.90.250.150	103.141.108.187
10.44.161.169	124.217.251.24	182.120.4.238	12.123.111.112
240e:36b:6628:ca00::2c8	240e:36b:6628:ca00:7148:3d64:ba27:322e	124.6.58.219	192.241.233.35
162.216.149.178	87.249.112.81	104.255.107.131	192.185.81.173
111.193.176.166	104.122.37.246	46.39.31.173	188.39.255.38