149.242.64.44 - IPInfo

Basic Info

City: Hamburg

Region: Hamburg

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.242.64.44
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61347
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.242.64.44.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025010401 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jan 05 05:59:35 CST 2025
;; MSG SIZE  rcvd: 106

Host info

44.64.242.149.in-addr.arpa domain name pointer h402c.koerber.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
44.64.242.149.in-addr.arpa	name = h402c.koerber.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
174.235.10.247	attack	Brute forcing email accounts	2020-09-23 22:37:28
49.88.112.60	attackbotsspam	Sep 23 16:33:33 server sshd[55777]: Failed password for root from 49.88.112.60 port 13671 ssh2 Sep 23 16:33:35 server sshd[55777]: Failed password for root from 49.88.112.60 port 13671 ssh2 Sep 23 16:33:38 server sshd[55777]: Failed password for root from 49.88.112.60 port 13671 ssh2	2020-09-23 22:38:12
81.70.57.194	attackspam	Sep 23 08:17:59 r.ca sshd[12453]: Failed password for root from 81.70.57.194 port 35092 ssh2	2020-09-23 22:45:03
68.183.94.180	attackbotsspam	68.183.94.180 - - [23/Sep/2020:10:48:46 +0100] "POST /wp-login.php HTTP/1.1" 200 2252 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 68.183.94.180 - - [23/Sep/2020:10:48:49 +0100] "POST /wp-login.php HTTP/1.1" 200 2255 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 68.183.94.180 - - [23/Sep/2020:10:48:51 +0100] "POST /xmlrpc.php HTTP/1.1" 200 247 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-23 22:17:39
178.209.170.75	attack	$f2bV_matches	2020-09-23 22:26:01
134.209.58.167	attackbots	134.209.58.167 - - [23/Sep/2020:15:07:23 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 134.209.58.167 - - [23/Sep/2020:15:18:57 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-23 22:44:29
212.70.149.4	attackspam	Repeated attempts to log in (via SMTP) with numerous user/passwords (Too Many to list!)	2020-09-23 22:32:39
81.134.82.82	attackspam	Automatic report - Banned IP Access	2020-09-23 22:40:09
3.114.76.91	attackspambots	3.114.76.91 - - [23/Sep/2020:16:27:59 +0200] "GET /wp-login.php HTTP/1.1" 200 8796 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.114.76.91 - - [23/Sep/2020:16:28:38 +0200] "POST /wp-login.php HTTP/1.1" 200 9047 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 3.114.76.91 - - [23/Sep/2020:16:28:59 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-09-23 22:34:53
221.130.29.58	attackbotsspam	bruteforce detected	2020-09-23 22:51:11
47.31.208.154	attack	Unauthorized connection attempt from IP address 47.31.208.154 on Port 445(SMB)	2020-09-23 22:20:30
139.9.131.58	attackspam	Sep 22 18:46:51 nxxxxxxx0 sshd[20522]: reveeclipse mapping checking getaddrinfo for ecs-139-9-131-58.compute.hwclouds-dns.com [139.9.131.58] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 22 18:46:51 nxxxxxxx0 sshd[20522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.131.58 user=r.r Sep 22 18:46:53 nxxxxxxx0 sshd[20522]: Failed password for r.r from 139.9.131.58 port 47748 ssh2 Sep 22 18:46:53 nxxxxxxx0 sshd[20522]: Received disconnect from 139.9.131.58: 11: Bye Bye [preauth] Sep 22 18:48:09 nxxxxxxx0 sshd[20638]: reveeclipse mapping checking getaddrinfo for ecs-139-9-131-58.compute.hwclouds-dns.com [139.9.131.58] failed - POSSIBLE BREAK-IN ATTEMPT! Sep 22 18:48:09 nxxxxxxx0 sshd[20638]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.9.131.58 user=r.r Sep 22 18:48:11 nxxxxxxx0 sshd[20638]: Failed password for r.r from 139.9.131.58 port 33564 ssh2 Sep 22 18:48:11 nxxxxxxx0 sshd[20638........ -------------------------------	2020-09-23 22:11:01
27.116.21.82	attackspambots	Icarus honeypot on github	2020-09-23 22:40:30
111.67.202.119	attackspambots	Invalid user root1 from 111.67.202.119 port 36652	2020-09-23 22:22:00
185.191.171.7	attackbots	15 attempts against mh-modsecurity-ban on drop	2020-09-23 22:25:34

Recently Reported IPs

56.106.228.129	144.248.228.47	250.137.101.38	144.95.163.141
163.199.30.40	59.177.83.199	38.183.77.136	21.158.16.244
179.139.85.77	174.155.74.252	198.252.199.107	61.189.187.29
21.107.250.3	32.8.80.211	165.232.144.155	205.76.226.181
45.137.154.235	74.181.118.64	39.151.49.54	220.109.32.76