152.149.246.185

Basic Info

City: unknown

Region: unknown

Country: South Korea

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 152.149.246.185
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21361
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;152.149.246.185.		IN	A

;; AUTHORITY SECTION:
.			302	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022072600 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jul 26 20:05:57 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 185.246.149.152.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 185.246.149.152.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.212.82.201	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-09-09 00:04:32
36.72.197.119	attackspambots	Honeypot attack, port: 81, PTR: PTR record not found	2020-09-09 00:20:17
211.22.64.206	attackbotsspam	TCP (SYN) 211.22.64.206:10442 -> port 23, len 44	2020-09-09 00:27:32
91.121.65.15	attack	...	2020-09-09 00:30:34
121.135.10.90	attackspambots	Automatic report - Banned IP Access	2020-09-09 00:02:56
190.218.124.200	attackbotsspam	Sep 7 14:38:23 logopedia-1vcpu-1gb-nyc1-01 sshd[151819]: Invalid user admin from 190.218.124.200 port 42700 ...	2020-09-09 00:20:43
111.229.104.94	attackspam	Port Scan ...	2020-09-09 00:00:00
179.113.169.216	attackbots	Lines containing failures of 179.113.169.216 Sep 7 01:43:04 dns-3 sshd[27300]: User r.r from 179.113.169.216 not allowed because not listed in AllowUsers Sep 7 01:43:04 dns-3 sshd[27300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.113.169.216 user=r.r Sep 7 01:43:06 dns-3 sshd[27300]: Failed password for invalid user r.r from 179.113.169.216 port 48338 ssh2 Sep 7 01:43:08 dns-3 sshd[27300]: Received disconnect from 179.113.169.216 port 48338:11: Bye Bye [preauth] Sep 7 01:43:08 dns-3 sshd[27300]: Disconnected from invalid user r.r 179.113.169.216 port 48338 [preauth] Sep 7 01:47:58 dns-3 sshd[27380]: User r.r from 179.113.169.216 not allowed because not listed in AllowUsers Sep 7 01:47:58 dns-3 sshd[27380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=179.113.169.216 user=r.r Sep 7 01:48:00 dns-3 sshd[27380]: Failed password for invalid user r.r from 179.113.169.216 port........ ------------------------------	2020-09-09 00:33:32
106.13.134.142	attackspam	(sshd) Failed SSH login from 106.13.134.142 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 8 10:48:46 optimus sshd[26065]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.142 user=root Sep 8 10:48:48 optimus sshd[26065]: Failed password for root from 106.13.134.142 port 58966 ssh2 Sep 8 10:54:08 optimus sshd[28026]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.134.142 user=root Sep 8 10:54:10 optimus sshd[28026]: Failed password for root from 106.13.134.142 port 57340 ssh2 Sep 8 10:59:37 optimus sshd[29889]: Did not receive identification string from 106.13.134.142	2020-09-09 00:13:09
184.22.36.166	attackbotsspam	Honeypot attack, port: 445, PTR: 184-22-36-0.24.nat.cwdc-cgn02.myaisfibre.com.	2020-09-08 23:47:35
31.202.195.1	attack	Sep 7 19:26:00 scw-focused-cartwright sshd[30118]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.202.195.1 Sep 7 19:26:03 scw-focused-cartwright sshd[30118]: Failed password for invalid user user from 31.202.195.1 port 49052 ssh2	2020-09-09 00:37:16
186.219.216.56	attackspambots	Honeypot attack, port: 445, PTR: 56-216-219-186.static.redeidlnet.com.br.	2020-09-08 23:58:55
37.239.102.42	attackbots	[Mon Sep 07 11:47:31.235746 2020] [php7:error] [pid 72470] [client 37.239.102.42:60794] script /Library/Server/Web/Data/Sites/worldawakeinc.org/wp-login.php not found or unable to stat	2020-09-09 00:10:36
79.138.40.22	attackspambots	SSH_scan	2020-09-08 23:46:57
138.197.213.134	attack	Lines containing failures of 138.197.213.134 (max 1000) Sep 7 12:31:44 localhost sshd[7999]: User r.r from 138.197.213.134 not allowed because listed in DenyUsers Sep 7 12:31:44 localhost sshd[7999]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.213.134 user=r.r Sep 7 12:31:46 localhost sshd[7999]: Failed password for invalid user r.r from 138.197.213.134 port 37984 ssh2 Sep 7 12:31:48 localhost sshd[7999]: Received disconnect from 138.197.213.134 port 37984:11: Bye Bye [preauth] Sep 7 12:31:48 localhost sshd[7999]: Disconnected from invalid user r.r 138.197.213.134 port 37984 [preauth] Sep 7 12:34:24 localhost sshd[9325]: User r.r from 138.197.213.134 not allowed because listed in DenyUsers Sep 7 12:34:24 localhost sshd[9325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.213.134 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=138.197.213.13	2020-09-08 23:49:25

Recently Reported IPs

212.159.230.24	212.159.230.13	51.210.101.191	208.129.217.181
112.85.42.11	70.76.111.252	148.0.8.59	117.248.4.88
172.21.223.42	80.245.117.211	45.80.90.10	212.159.213.24
148.0.239.133	118.254.49.83	45.91.21.39	14.29.0.0
31.7.151.223	210.221.72.113	95.137.249.129	2.37.197.14