149.224.85.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.224.85.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16256
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.224.85.74.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024120901 1800 900 604800 86400

;; Query time: 16 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 10 05:26:23 CST 2024
;; MSG SIZE  rcvd: 106

Host info

74.85.224.149.in-addr.arpa domain name pointer 149.224.85.74.dynamic-pppoe.dt.ipv4.wtnet.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
74.85.224.149.in-addr.arpa	name = 149.224.85.74.dynamic-pppoe.dt.ipv4.wtnet.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
178.62.248.61	attack	Invalid user uhq from 178.62.248.61 port 53748	2020-04-05 16:52:36
151.84.135.188	attackspam	SSH bruteforce (Triggered fail2ban)	2020-04-05 17:29:10
49.88.112.118	attackspam	Apr 5 11:32:16 vps sshd[88795]: Failed password for root from 49.88.112.118 port 60684 ssh2 Apr 5 11:32:18 vps sshd[88795]: Failed password for root from 49.88.112.118 port 60684 ssh2 Apr 5 11:35:55 vps sshd[108690]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.118 user=root Apr 5 11:35:56 vps sshd[108690]: Failed password for root from 49.88.112.118 port 11991 ssh2 Apr 5 11:35:58 vps sshd[108690]: Failed password for root from 49.88.112.118 port 11991 ssh2 ...	2020-04-05 17:36:22
89.252.179.61	attackbots	xmlrpc attack	2020-04-05 17:10:20
180.241.45.152	attackbots	SSH bruteforce (Triggered fail2ban)	2020-04-05 17:26:11
185.134.113.56	attackspambots	WordPress XMLRPC scan :: 185.134.113.56 0.084 BYPASS [05/Apr/2020:03:52:03 0000] www.[censored_2] "POST /xmlrpc.php HTTP/1.1" 200 217 "-" "Mozilla/5.0 (Linux; Android 7.0; SM-G610M) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/70.0.3538.80 Mobile Safari/537.36"	2020-04-05 17:24:36
92.118.37.53	attack	Apr 5 11:04:38 debian-2gb-nbg1-2 kernel: \[8336509.138917\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.53 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=30124 PROTO=TCP SPT=41650 DPT=28426 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-05 17:07:36
222.186.15.158	attackspambots	Unauthorized connection attempt detected from IP address 222.186.15.158 to port 22 [T]	2020-04-05 17:37:05
206.189.132.204	attackbots	Apr 5 10:50:07 plex sshd[8152]: Invalid user qhsupport from 206.189.132.204 port 34728 Apr 5 10:50:07 plex sshd[8152]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.132.204 Apr 5 10:50:07 plex sshd[8152]: Invalid user qhsupport from 206.189.132.204 port 34728 Apr 5 10:50:09 plex sshd[8152]: Failed password for invalid user qhsupport from 206.189.132.204 port 34728 ssh2 Apr 5 10:52:12 plex sshd[8182]: Invalid user matt from 206.189.132.204 port 54734	2020-04-05 17:32:22
37.187.7.34	attackspambots	Apr 4 23:50:41 bilbo sshd[20617]: User root from ks3372527.kimsufi.com not allowed because not listed in AllowUsers Apr 4 23:51:22 bilbo sshd[20672]: User root from ks3372527.kimsufi.com not allowed because not listed in AllowUsers Apr 4 23:51:26 bilbo sshd[20675]: User root from ks3372527.kimsufi.com not allowed because not listed in AllowUsers Apr 4 23:52:43 bilbo sshd[20722]: User root from ks3372527.kimsufi.com not allowed because not listed in AllowUsers ...	2020-04-05 16:57:17
157.245.12.36	attackbots	Mar 29 14:22:59 ns392434 sshd[5357]: Invalid user pby from 157.245.12.36 port 35478 Mar 29 14:22:59 ns392434 sshd[5357]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.12.36 Mar 29 14:22:59 ns392434 sshd[5357]: Invalid user pby from 157.245.12.36 port 35478 Mar 29 14:23:02 ns392434 sshd[5357]: Failed password for invalid user pby from 157.245.12.36 port 35478 ssh2 Mar 29 14:27:09 ns392434 sshd[5503]: Invalid user hfx from 157.245.12.36 port 53558 Mar 29 14:27:09 ns392434 sshd[5503]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.12.36 Mar 29 14:27:09 ns392434 sshd[5503]: Invalid user hfx from 157.245.12.36 port 53558 Mar 29 14:27:11 ns392434 sshd[5503]: Failed password for invalid user hfx from 157.245.12.36 port 53558 ssh2 Mar 29 14:30:57 ns392434 sshd[5656]: Invalid user sgb from 157.245.12.36 port 38486	2020-04-05 17:06:10
116.110.24.152	attack	port scan and connect, tcp 23 (telnet)	2020-04-05 16:58:54
62.28.34.125	attackspam	SSH bruteforce (Triggered fail2ban)	2020-04-05 17:05:51
51.75.30.214	attack	Mar 30 09:11:52 ns392434 sshd[12852]: Invalid user hnf from 51.75.30.214 port 59662 Mar 30 09:11:52 ns392434 sshd[12852]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.30.214 Mar 30 09:11:52 ns392434 sshd[12852]: Invalid user hnf from 51.75.30.214 port 59662 Mar 30 09:11:54 ns392434 sshd[12852]: Failed password for invalid user hnf from 51.75.30.214 port 59662 ssh2 Mar 30 09:43:29 ns392434 sshd[15517]: Invalid user wtk from 51.75.30.214 port 47840 Mar 30 09:43:29 ns392434 sshd[15517]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.30.214 Mar 30 09:43:29 ns392434 sshd[15517]: Invalid user wtk from 51.75.30.214 port 47840 Mar 30 09:43:31 ns392434 sshd[15517]: Failed password for invalid user wtk from 51.75.30.214 port 47840 ssh2 Mar 30 09:47:04 ns392434 sshd[15877]: Invalid user ivk from 51.75.30.214 port 60820	2020-04-05 17:22:47
41.230.31.16	attack	DATE:2020-04-05 05:52:15, IP:41.230.31.16, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-05 17:17:51

Recently Reported IPs

71.175.113.3	179.107.116.124	60.106.80.50	156.0.167.76
209.83.173.181	162.218.254.195	160.120.214.34	155.73.16.90
200.24.134.46	155.102.166.132	86.95.84.173	74.86.111.124
173.149.254.27	181.201.180.201	139.209.22.183	175.123.255.232
65.5.43.212	160.173.8.28	88.186.42.69	55.46.154.252