Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
149.56.70.122 attackbotsspam
Oct 13 14:07:13 NPSTNNYC01T sshd[8719]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.70.122
Oct 13 14:07:14 NPSTNNYC01T sshd[8719]: Failed password for invalid user sopron from 149.56.70.122 port 48796 ssh2
Oct 13 14:10:38 NPSTNNYC01T sshd[8921]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.70.122
...
2020-10-14 02:27:31
149.56.70.9 attack
Lines containing failures of 149.56.70.9 (max 1000)
Aug  7 06:41:24 HOSTNAME sshd[9462]: Failed password for invalid user r.r from 149.56.70.9 port 57486 ssh2
Aug  7 06:41:24 HOSTNAME sshd[9462]: Received disconnect from 149.56.70.9 port 57486:11: Bye Bye [preauth]
Aug  7 06:41:24 HOSTNAME sshd[9462]: Disconnected from 149.56.70.9 port 57486 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=149.56.70.9
2020-08-10 06:44:55
149.56.70.9 attack
2020-08-07T06:44:17.530815correo.[domain] sshd[48357]: Failed password for root from 149.56.70.9 port 59868 ssh2 2020-08-07T06:47:36.566883correo.[domain] sshd[48769]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=vps939.cloudpublic.com.br user=root 2020-08-07T06:47:38.335971correo.[domain] sshd[48769]: Failed password for root from 149.56.70.9 port 52912 ssh2 ...
2020-08-08 07:12:00
149.56.7.159 attackbotsspam
Honeypot attack, port: 445, PTR: PTR record not found
2020-07-26 00:57:45
149.56.78.253 attack
Lines containing failures of 149.56.78.253
Oct 22 15:36:52 box sshd[3736]: Did not receive identification string from 149.56.78.253 port 54333
Oct 22 15:39:17 box sshd[3822]: Received disconnect from 149.56.78.253 port 55482:11: Normal Shutdown, Thank you for playing [preauth]
Oct 22 15:39:17 box sshd[3822]: Disconnected from authenticating user r.r 149.56.78.253 port 55482 [preauth]
Oct 22 15:39:48 box sshd[3824]: Received disconnect from 149.56.78.253 port 52058:11: Normal Shutdown, Thank you for playing [preauth]
Oct 22 15:39:48 box sshd[3824]: Disconnected from authenticating user r.r 149.56.78.253 port 52058 [preauth]
Oct 22 15:40:19 box sshd[4207]: Received disconnect from 149.56.78.253 port 48624:11: Normal Shutdown, Thank you for playing [preauth]
Oct 22 15:40:19 box sshd[4207]: Disconnected from authenticating user r.r 149.56.78.253 port 48624 [preauth]
Oct 22 15:40:49 box sshd[4210]: Received disconnect from 149.56.78.253 port 44456:11: Normal Shutdown, Thank y........
------------------------------
2019-10-23 19:05:23
149.56.78.214 attackspambots
Jul 29 22:26:25 web1 postfix/smtpd[28474]: warning: ip214.ip-149-56-78.net[149.56.78.214]: SASL LOGIN authentication failed: authentication failure
...
2019-07-30 12:31:32
149.56.71.54 attackbotsspam
VoIP Brute Force - 149.56.71.54 - Auto Report
...
2019-07-25 06:31:23
149.56.76.252 attack
Time:     Fri Jul  5 03:42:59 2019 -0400
IP:       149.56.76.252 (CA/Canada/ip252.ip-149-56-76.net)
Failures: 30 (smtpauth)
Interval: 3600 seconds
Blocked:  Permanent Block
2019-07-05 19:42:17
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.56.7.190
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26287
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.56.7.190.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 54 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 14:46:24 CST 2022
;; MSG SIZE  rcvd: 105
Host info
190.7.56.149.in-addr.arpa domain name pointer ip190.ip-149-56-7.net.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
190.7.56.149.in-addr.arpa	name = ip190.ip-149-56-7.net.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
134.175.19.71 attack
Failed password for invalid user newadmin from 134.175.19.71 port 39132 ssh2
2020-08-17 06:17:09
45.120.115.218 attack
2020-08-16T22:32:50.155000 X postfix/smtpd[482410]: NOQUEUE: reject: RCPT from unknown[45.120.115.218]: 554 5.7.1 Service unavailable; Client host [45.120.115.218] blocked using zen.spamhaus.org; from= to= proto=ESMTP helo=
2020-08-17 06:03:09
18.223.247.126 attackspam
16.08.2020 22:32:19 - Bad Robot 
Ignore Robots.txt
2020-08-17 06:28:11
49.234.163.189 attackbotsspam
Aug 16 14:43:16 dignus sshd[28222]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.163.189  user=root
Aug 16 14:43:18 dignus sshd[28222]: Failed password for root from 49.234.163.189 port 52302 ssh2
Aug 16 14:46:43 dignus sshd[28758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.163.189  user=root
Aug 16 14:46:45 dignus sshd[28758]: Failed password for root from 49.234.163.189 port 36366 ssh2
Aug 16 14:50:15 dignus sshd[29257]: Invalid user ts3bot from 49.234.163.189 port 48658
...
2020-08-17 06:12:22
98.126.7.234 attackspam
IP 98.126.7.234 attacked honeypot on port: 1433 at 8/16/2020 1:31:52 PM
2020-08-17 06:05:21
103.17.55.200 attackspambots
(ftpd) Failed FTP login from 103.17.55.200 (ID/Indonesia/-): 10 in the last 300 secs
2020-08-17 06:09:39
106.52.152.168 attackbots
2020-08-16T20:56:58.706335shield sshd\[28002\]: Invalid user all from 106.52.152.168 port 33994
2020-08-16T20:56:58.714489shield sshd\[28002\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.152.168
2020-08-16T20:57:00.667809shield sshd\[28002\]: Failed password for invalid user all from 106.52.152.168 port 33994 ssh2
2020-08-16T20:59:13.749480shield sshd\[28141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.152.168  user=root
2020-08-16T20:59:15.903496shield sshd\[28141\]: Failed password for root from 106.52.152.168 port 59356 ssh2
2020-08-17 06:20:00
134.249.124.67 attack
Automatic report - Banned IP Access
2020-08-17 06:08:29
222.186.180.130 attackspam
Aug 17 00:13:45 abendstille sshd\[21920\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130  user=root
Aug 17 00:13:46 abendstille sshd\[21913\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.130  user=root
Aug 17 00:13:47 abendstille sshd\[21920\]: Failed password for root from 222.186.180.130 port 46610 ssh2
Aug 17 00:13:48 abendstille sshd\[21913\]: Failed password for root from 222.186.180.130 port 56864 ssh2
Aug 17 00:13:49 abendstille sshd\[21920\]: Failed password for root from 222.186.180.130 port 46610 ssh2
...
2020-08-17 06:16:40
79.137.77.131 attack
Aug 16 14:39:14 dignus sshd[27577]: Failed password for invalid user moon from 79.137.77.131 port 49680 ssh2
Aug 16 14:42:57 dignus sshd[28192]: Invalid user qa from 79.137.77.131 port 58554
Aug 16 14:42:57 dignus sshd[28192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.137.77.131
Aug 16 14:43:00 dignus sshd[28192]: Failed password for invalid user qa from 79.137.77.131 port 58554 ssh2
Aug 16 14:46:49 dignus sshd[28780]: Invalid user kz from 79.137.77.131 port 39200
...
2020-08-17 06:12:40
123.207.175.111 attack
Aug 16 20:39:59 vlre-nyc-1 sshd\[25686\]: Invalid user geoeast from 123.207.175.111
Aug 16 20:39:59 vlre-nyc-1 sshd\[25686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.175.111
Aug 16 20:40:01 vlre-nyc-1 sshd\[25686\]: Failed password for invalid user geoeast from 123.207.175.111 port 41566 ssh2
Aug 16 20:45:35 vlre-nyc-1 sshd\[25826\]: Invalid user xiao from 123.207.175.111
Aug 16 20:45:35 vlre-nyc-1 sshd\[25826\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.175.111
...
2020-08-17 06:32:49
5.166.56.250 attackspam
SSH Invalid Login
2020-08-17 06:22:29
189.1.132.75 attack
Aug 16 23:55:43 buvik sshd[1987]: Failed password for invalid user zte from 189.1.132.75 port 60160 ssh2
Aug 16 23:59:35 buvik sshd[2522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.1.132.75  user=root
Aug 16 23:59:38 buvik sshd[2522]: Failed password for root from 189.1.132.75 port 34600 ssh2
...
2020-08-17 06:02:09
115.159.53.215 attackbots
Aug 16 23:29:36 host sshd[25477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.53.215  user=root
Aug 16 23:29:38 host sshd[25477]: Failed password for root from 115.159.53.215 port 38776 ssh2
...
2020-08-17 06:27:50
181.59.252.136 attackbotsspam
2020-08-16 23:32:55,458 fail2ban.actions: WARNING [ssh] Ban 181.59.252.136
2020-08-17 06:38:15

Recently Reported IPs

149.56.10.120 149.56.78.144 149.72.128.32 149.72.194.53
149.72.207.42 149.34.22.195 149.56.242.170 149.72.37.212
149.81.166.139 15.152.1.230 15.152.106.11 15.152.111.183
15.152.105.109 15.152.110.70 15.152.101.215 15.152.114.158
149.86.82.5 15.152.114.227 15.152.113.46 15.152.114.214