197.253.19.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Nigeria

Internet Service Provider: MainOne

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized SSH login attempts	2020-08-04 06:02:30
attack	Auto Fail2Ban report, multiple SSH login attempts.	2020-06-23 00:21:52
attackspambots	Jun 1 08:09:13 hosting sshd[14927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 user=root Jun 1 08:09:16 hosting sshd[14927]: Failed password for root from 197.253.19.74 port 2576 ssh2 ...	2020-06-01 15:43:05
attackspam	May 24 08:18:56 pi sshd[12714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 May 24 08:18:58 pi sshd[12714]: Failed password for invalid user zvx from 197.253.19.74 port 2649 ssh2	2020-05-24 19:29:42
attackbotsspam	Invalid user chunlin from 197.253.19.74 port 44103	2020-05-22 15:39:31
attack	Invalid user oracle from 197.253.19.74 port 1863	2020-05-17 06:09:47
attack	May 15 22:39:06 ny01 sshd[32755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 May 15 22:39:08 ny01 sshd[32755]: Failed password for invalid user contador from 197.253.19.74 port 36985 ssh2 May 15 22:43:00 ny01 sshd[851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74	2020-05-16 12:05:20
attackspambots	Invalid user oracle from 197.253.19.74 port 1863	2020-05-14 15:29:56
attackspambots	May 11 14:10:31 vps46666688 sshd[14706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 May 11 14:10:34 vps46666688 sshd[14706]: Failed password for invalid user cruse from 197.253.19.74 port 63071 ssh2 ...	2020-05-12 01:41:53
attackspam	May 10 07:04:45 lanister sshd[14644]: Invalid user tomcat from 197.253.19.74 May 10 07:04:45 lanister sshd[14644]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 May 10 07:04:45 lanister sshd[14644]: Invalid user tomcat from 197.253.19.74 May 10 07:04:47 lanister sshd[14644]: Failed password for invalid user tomcat from 197.253.19.74 port 44631 ssh2	2020-05-10 19:27:22
attack	May 9 03:45:48 minden010 sshd[8747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 May 9 03:45:50 minden010 sshd[8747]: Failed password for invalid user dangerous from 197.253.19.74 port 17535 ssh2 May 9 03:52:29 minden010 sshd[12049]: Failed password for root from 197.253.19.74 port 14313 ssh2 ...	2020-05-09 22:34:42
attackbots	May 9 03:45:48 minden010 sshd[8747]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 May 9 03:45:50 minden010 sshd[8747]: Failed password for invalid user dangerous from 197.253.19.74 port 17535 ssh2 May 9 03:52:29 minden010 sshd[12049]: Failed password for root from 197.253.19.74 port 14313 ssh2 ...	2020-05-09 18:24:39
attack	IP blocked	2020-05-02 18:46:02
attack	2020-04-16T03:02:16.3399461495-001 sshd[36008]: Invalid user postgres from 197.253.19.74 port 12120 2020-04-16T03:02:17.9884191495-001 sshd[36008]: Failed password for invalid user postgres from 197.253.19.74 port 12120 ssh2 2020-04-16T03:08:59.4180271495-001 sshd[36426]: Invalid user a from 197.253.19.74 port 50855 2020-04-16T03:08:59.4245801495-001 sshd[36426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 2020-04-16T03:08:59.4180271495-001 sshd[36426]: Invalid user a from 197.253.19.74 port 50855 2020-04-16T03:09:01.3961071495-001 sshd[36426]: Failed password for invalid user a from 197.253.19.74 port 50855 ssh2 ...	2020-04-16 16:15:27
attackbotsspam	Apr 5 01:00:17 vps46666688 sshd[4917]: Failed password for root from 197.253.19.74 port 22864 ssh2 ...	2020-04-05 12:33:22
attack	5x Failed Password	2020-04-01 23:25:14
attack	Mar 30 13:06:51 itv-usvr-02 sshd[20042]: Invalid user cwq from 197.253.19.74 port 7141 Mar 30 13:06:51 itv-usvr-02 sshd[20042]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 Mar 30 13:06:51 itv-usvr-02 sshd[20042]: Invalid user cwq from 197.253.19.74 port 7141 Mar 30 13:06:53 itv-usvr-02 sshd[20042]: Failed password for invalid user cwq from 197.253.19.74 port 7141 ssh2 Mar 30 13:14:16 itv-usvr-02 sshd[20330]: Invalid user aea from 197.253.19.74 port 6938	2020-03-30 14:34:50
attackbotsspam	Mar 28 21:21:50 php1 sshd\[19380\]: Invalid user kjj from 197.253.19.74 Mar 28 21:21:50 php1 sshd\[19380\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 Mar 28 21:21:52 php1 sshd\[19380\]: Failed password for invalid user kjj from 197.253.19.74 port 51378 ssh2 Mar 28 21:26:37 php1 sshd\[19798\]: Invalid user nancy from 197.253.19.74 Mar 28 21:26:37 php1 sshd\[19798\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74	2020-03-29 15:37:22
attackspam	2020-03-20T22:07:07.439257homeassistant sshd[31729]: Invalid user redmine from 197.253.19.74 port 10381 2020-03-20T22:07:07.450816homeassistant sshd[31729]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 ...	2020-03-21 08:48:01
attack	Mar 18 05:07:13 ewelt sshd[30141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 user=root Mar 18 05:07:16 ewelt sshd[30141]: Failed password for root from 197.253.19.74 port 46500 ssh2 Mar 18 05:09:45 ewelt sshd[1290]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 user=root Mar 18 05:09:46 ewelt sshd[1290]: Failed password for root from 197.253.19.74 port 24471 ssh2 ...	2020-03-18 16:11:15
attackbots	Feb 17 03:32:56 woltan sshd[2480]: Failed password for invalid user haldeamon from 197.253.19.74 port 46601 ssh2	2020-03-10 08:32:43
attackspam	Invalid user vsftpd from 197.253.19.74 port 57059	2020-03-01 07:26:39
attackspam	Jan 10 22:08:49 ns381471 sshd[7579]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 Jan 10 22:08:51 ns381471 sshd[7579]: Failed password for invalid user lrp from 197.253.19.74 port 28751 ssh2	2020-01-11 08:09:00
attack	Sep 23 08:28:48 aiointranet sshd\[13778\]: Invalid user herbert from 197.253.19.74 Sep 23 08:28:48 aiointranet sshd\[13778\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 Sep 23 08:28:50 aiointranet sshd\[13778\]: Failed password for invalid user herbert from 197.253.19.74 port 11342 ssh2 Sep 23 08:33:09 aiointranet sshd\[14111\]: Invalid user deploy from 197.253.19.74 Sep 23 08:33:09 aiointranet sshd\[14111\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74	2019-09-24 02:35:41
attackspam	Sep 13 23:22:20 pornomens sshd\[19005\]: Invalid user 1 from 197.253.19.74 port 42922 Sep 13 23:22:20 pornomens sshd\[19005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 Sep 13 23:22:22 pornomens sshd\[19005\]: Failed password for invalid user 1 from 197.253.19.74 port 42922 ssh2 ...	2019-09-14 06:07:15
attack	Sep 13 21:20:55 pornomens sshd\[18824\]: Invalid user password from 197.253.19.74 port 31525 Sep 13 21:20:55 pornomens sshd\[18824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 Sep 13 21:20:58 pornomens sshd\[18824\]: Failed password for invalid user password from 197.253.19.74 port 31525 ssh2 ...	2019-09-14 03:35:40
attackbots	Sep 1 04:43:29 srv206 sshd[6034]: Invalid user wright from 197.253.19.74 ...	2019-09-01 11:25:06
attackbots	SSH invalid-user multiple login attempts	2019-08-23 10:10:48
attackspam	Aug 17 20:19:07 tdfoods sshd\[16746\]: Invalid user jw from 197.253.19.74 Aug 17 20:19:07 tdfoods sshd\[16746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74 Aug 17 20:19:09 tdfoods sshd\[16746\]: Failed password for invalid user jw from 197.253.19.74 port 21650 ssh2 Aug 17 20:28:12 tdfoods sshd\[17558\]: Invalid user paulb from 197.253.19.74 Aug 17 20:28:12 tdfoods sshd\[17558\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.253.19.74	2019-08-18 19:23:35

Comments on same subnet:

IP	Type	Details	Datetime
197.253.198.244	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-15 08:52:15
197.253.196.44	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-12-24 22:01:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 197.253.19.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42356
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;197.253.19.74.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070600 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 06 19:28:59 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 74.19.253.197.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 74.19.253.197.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
162.243.139.150	attackbotsspam	23/tcp 5900/tcp 9200/tcp... [2019-04-28/06-28]46pkt,35pt.(tcp),4pt.(udp)	2019-07-01 04:52:43
185.199.8.69	attackbots	This IP address was blacklisted for the following reason: /de/jobs/chemielaborant-in-cta/&999999.1%20union%20select%20unhex(hex(version()))%20--%20and%201%3D1 @ 2019-03-07T12:07:22+01:00.	2019-07-01 04:56:48
185.137.233.224	attack	scan r	2019-07-01 04:37:19
117.96.253.153	attackbotsspam	Honeypot attack, port: 81, PTR: abts-north-dynamic-153.253.96.117.airtelbroadband.in.	2019-07-01 04:25:58
3.90.253.40	attackspambots	Brute forcing RDP port 3389	2019-07-01 04:32:46
178.175.244.50	attackspambots	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-01 04:28:21
162.144.143.98	attackbots	proto=tcp . spt=33654 . dpt=25 . (listed on Blocklist de Jun 29) (768)	2019-07-01 04:20:29
182.255.63.57	attackbotsspam	Jun 30 22:17:08 dedicated sshd[17947]: Invalid user test from 182.255.63.57 port 54412	2019-07-01 04:20:12
45.173.106.176	attackbotsspam	proto=tcp . spt=36284 . dpt=25 . (listed on Blocklist de Jun 29) (757)	2019-07-01 04:49:58
190.85.203.254	attack	Jun 30 21:54:41 mail sshd\[686\]: Invalid user support from 190.85.203.254 Jun 30 21:54:41 mail sshd\[686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.203.254 Jun 30 21:54:43 mail sshd\[686\]: Failed password for invalid user support from 190.85.203.254 port 30956 ssh2 ...	2019-07-01 04:33:17
146.185.25.186	attack	7678/tcp 44443/tcp 2123/udp... [2019-05-02/06-30]18pkt,8pt.(tcp),1pt.(udp)	2019-07-01 04:23:51
89.38.208.180	attackspambots	SQL Injection Exploit Attempts	2019-07-01 05:00:30
109.70.100.27	attackbots	GET posting.php	2019-07-01 04:24:53
159.65.134.74	attackspambots	proto=tcp . spt=44208 . dpt=25 . (listed on Blocklist de Jun 29) (760)	2019-07-01 04:43:10
223.19.110.34	attack	TCP port 445 (SMB) attempt blocked by firewall. [2019-06-30 15:14:14]	2019-07-01 04:25:28

Recently Reported IPs

115.150.224.139	134.175.39.246	217.112.128.185	175.8.108.232
177.84.125.187	191.53.195.64	42.231.184.113	195.201.225.12
177.135.83.70	190.69.26.178	88.251.135.87	42.224.78.115
185.232.41.110	168.228.149.38	84.166.190.177	190.205.55.226
96.56.137.252	218.211.96.204	177.87.68.244	67.213.118.77