2.249.90.74 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Sweden

Internet Service Provider: Telia Network Services

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Honeypot attack, port: 5555, PTR: 2-249-90-74-no2207.tbcn.telia.com.	2020-02-11 09:59:50

Comments on same subnet:

IP	Type	Details	Datetime
2.249.90.227	attack	unauthorized connection attempt	2020-02-16 16:47:45
2.249.90.227	attackbots	port 23 attempt blocked	2019-08-11 08:44:43

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.249.90.74
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28965
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;2.249.90.74.			IN	A

;; AUTHORITY SECTION:
.			559	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020021100 1800 900 604800 86400

;; Query time: 108 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 11 09:59:47 CST 2020
;; MSG SIZE  rcvd: 115

Host info

74.90.249.2.in-addr.arpa domain name pointer 2-249-90-74-no2207.tbcn.telia.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
74.90.249.2.in-addr.arpa	name = 2-249-90-74-no2207.tbcn.telia.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.216.67.179	attackbots	Aug 15 02:55:06 mail.srvfarm.net postfix/smtpd[972891]: warning: unknown[186.216.67.179]: SASL PLAIN authentication failed: Aug 15 02:55:06 mail.srvfarm.net postfix/smtpd[972891]: lost connection after AUTH from unknown[186.216.67.179] Aug 15 02:59:08 mail.srvfarm.net postfix/smtpd[970999]: warning: unknown[186.216.67.179]: SASL PLAIN authentication failed: Aug 15 02:59:08 mail.srvfarm.net postfix/smtpd[970999]: lost connection after AUTH from unknown[186.216.67.179] Aug 15 03:04:49 mail.srvfarm.net postfix/smtps/smtpd[986783]: warning: unknown[186.216.67.179]: SASL PLAIN authentication failed:	2020-08-15 13:46:17
189.91.4.230	attack	Aug 15 01:44:54 mail.srvfarm.net postfix/smtpd[947512]: warning: unknown[189.91.4.230]: SASL PLAIN authentication failed: Aug 15 01:44:54 mail.srvfarm.net postfix/smtpd[947512]: lost connection after AUTH from unknown[189.91.4.230] Aug 15 01:51:40 mail.srvfarm.net postfix/smtps/smtpd[945247]: warning: unknown[189.91.4.230]: SASL PLAIN authentication failed: Aug 15 01:51:41 mail.srvfarm.net postfix/smtps/smtpd[945247]: lost connection after AUTH from unknown[189.91.4.230] Aug 15 01:52:05 mail.srvfarm.net postfix/smtps/smtpd[944894]: warning: unknown[189.91.4.230]: SASL PLAIN authentication failed:	2020-08-15 13:44:50
202.142.168.54	attack	1597463821 - 08/15/2020 05:57:01 Host: 202.142.168.54/202.142.168.54 Port: 445 TCP Blocked	2020-08-15 13:15:57
189.42.210.84	attackbotsspam	Aug 14 19:03:16 eddieflores sshd\[29499\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.42.210.84 user=root Aug 14 19:03:18 eddieflores sshd\[29499\]: Failed password for root from 189.42.210.84 port 54696 ssh2 Aug 14 19:07:55 eddieflores sshd\[29833\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.42.210.84 user=root Aug 14 19:07:57 eddieflores sshd\[29833\]: Failed password for root from 189.42.210.84 port 59713 ssh2 Aug 14 19:12:54 eddieflores sshd\[30321\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.42.210.84 user=root	2020-08-15 13:19:55
121.66.38.237	attack	Aug 15 05:56:35 mout sshd[20787]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=121.66.38.237 user=pi Aug 15 05:56:37 mout sshd[20787]: Failed password for pi from 121.66.38.237 port 45507 ssh2 Aug 15 05:56:37 mout sshd[20787]: Connection closed by authenticating user pi 121.66.38.237 port 45507 [preauth]	2020-08-15 13:31:48
60.248.218.128	attackspambots	Aug 15 07:03:03 ns381471 sshd[2057]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.248.218.128 Aug 15 07:03:05 ns381471 sshd[2057]: Failed password for invalid user P@$$W0rd#@! from 60.248.218.128 port 60178 ssh2	2020-08-15 13:28:39
189.91.5.29	attackspambots	Aug 15 02:09:26 mail.srvfarm.net postfix/smtpd[963151]: warning: unknown[189.91.5.29]: SASL PLAIN authentication failed: Aug 15 02:09:26 mail.srvfarm.net postfix/smtpd[963151]: lost connection after AUTH from unknown[189.91.5.29] Aug 15 02:14:40 mail.srvfarm.net postfix/smtpd[965135]: warning: unknown[189.91.5.29]: SASL PLAIN authentication failed: Aug 15 02:14:40 mail.srvfarm.net postfix/smtpd[965135]: lost connection after AUTH from unknown[189.91.5.29] Aug 15 02:15:03 mail.srvfarm.net postfix/smtpd[965135]: warning: unknown[189.91.5.29]: SASL PLAIN authentication failed:	2020-08-15 13:37:47
74.82.47.26	attack	Unwanted checking 80 or 443 port ...	2020-08-15 13:11:59
222.186.175.148	attackspam	2020-08-15T05:15:22.225624server.espacesoutien.com sshd[4587]: Failed password for root from 222.186.175.148 port 34518 ssh2 2020-08-15T05:15:25.458100server.espacesoutien.com sshd[4587]: Failed password for root from 222.186.175.148 port 34518 ssh2 2020-08-15T05:15:29.432083server.espacesoutien.com sshd[4587]: Failed password for root from 222.186.175.148 port 34518 ssh2 2020-08-15T05:15:32.628489server.espacesoutien.com sshd[4587]: Failed password for root from 222.186.175.148 port 34518 ssh2 ...	2020-08-15 13:25:06
185.234.217.151	attackbots	Aug 15 03:06:40 web01.agentur-b-2.de postfix/smtpd[3370668]: warning: unknown[185.234.217.151]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 03:06:40 web01.agentur-b-2.de postfix/smtpd[3370668]: lost connection after AUTH from unknown[185.234.217.151] Aug 15 03:07:01 web01.agentur-b-2.de postfix/smtpd[3370668]: warning: unknown[185.234.217.151]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Aug 15 03:07:01 web01.agentur-b-2.de postfix/smtpd[3370668]: lost connection after AUTH from unknown[185.234.217.151] Aug 15 03:07:24 web01.agentur-b-2.de postfix/smtpd[3373712]: warning: unknown[185.234.217.151]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-08-15 13:47:14
189.127.37.28	attackbots	Aug 15 01:51:51 mail.srvfarm.net postfix/smtps/smtpd[944894]: warning: unknown[189.127.37.28]: SASL PLAIN authentication failed: Aug 15 01:51:51 mail.srvfarm.net postfix/smtps/smtpd[944894]: lost connection after AUTH from unknown[189.127.37.28] Aug 15 01:53:34 mail.srvfarm.net postfix/smtps/smtpd[944623]: warning: unknown[189.127.37.28]: SASL PLAIN authentication failed: Aug 15 01:53:35 mail.srvfarm.net postfix/smtps/smtpd[944623]: lost connection after AUTH from unknown[189.127.37.28] Aug 15 01:59:19 mail.srvfarm.net postfix/smtps/smtpd[950235]: warning: unknown[189.127.37.28]: SASL PLAIN authentication failed:	2020-08-15 13:44:22
81.219.95.83	attackspambots	Aug 15 02:04:30 mail.srvfarm.net postfix/smtps/smtpd[944894]: warning: 81-219-95-83.ostmedia.pl[81.219.95.83]: SASL PLAIN authentication failed: Aug 15 02:04:30 mail.srvfarm.net postfix/smtps/smtpd[944894]: lost connection after AUTH from 81-219-95-83.ostmedia.pl[81.219.95.83] Aug 15 02:11:35 mail.srvfarm.net postfix/smtpd[948604]: warning: 81-219-95-83.ostmedia.pl[81.219.95.83]: SASL PLAIN authentication failed: Aug 15 02:11:35 mail.srvfarm.net postfix/smtpd[948604]: lost connection after AUTH from 81-219-95-83.ostmedia.pl[81.219.95.83] Aug 15 02:13:26 mail.srvfarm.net postfix/smtpd[963152]: warning: 81-219-95-83.ostmedia.pl[81.219.95.83]: SASL PLAIN authentication failed:	2020-08-15 13:40:34
103.213.195.132	attack	Aug 15 02:12:11 mail.srvfarm.net postfix/smtpd[963159]: warning: unknown[103.213.195.132]: SASL PLAIN authentication failed: Aug 15 02:12:12 mail.srvfarm.net postfix/smtpd[963159]: lost connection after AUTH from unknown[103.213.195.132] Aug 15 02:13:02 mail.srvfarm.net postfix/smtpd[963149]: warning: unknown[103.213.195.132]: SASL PLAIN authentication failed: Aug 15 02:13:02 mail.srvfarm.net postfix/smtpd[963149]: lost connection after AUTH from unknown[103.213.195.132] Aug 15 02:14:27 mail.srvfarm.net postfix/smtps/smtpd[963282]: warning: unknown[103.213.195.132]: SASL PLAIN authentication failed:	2020-08-15 13:39:06
201.55.159.237	attack	Aug 15 01:51:53 mail.srvfarm.net postfix/smtpd[947315]: warning: 201-55-159-237.witelecom.com.br[201.55.159.237]: SASL PLAIN authentication failed: Aug 15 01:51:53 mail.srvfarm.net postfix/smtpd[947315]: lost connection after AUTH from 201-55-159-237.witelecom.com.br[201.55.159.237] Aug 15 01:52:17 mail.srvfarm.net postfix/smtpd[948605]: warning: 201-55-159-237.witelecom.com.br[201.55.159.237]: SASL PLAIN authentication failed: Aug 15 01:52:17 mail.srvfarm.net postfix/smtpd[948605]: lost connection after AUTH from 201-55-159-237.witelecom.com.br[201.55.159.237] Aug 15 01:56:04 mail.srvfarm.net postfix/smtpd[948604]: warning: 201-55-159-237.witelecom.com.br[201.55.159.237]: SASL PLAIN authentication failed:	2020-08-15 13:42:29
91.228.32.21	attack	Aug 15 02:02:36 mail.srvfarm.net postfix/smtps/smtpd[944893]: warning: unknown[91.228.32.21]: SASL PLAIN authentication failed: Aug 15 02:02:36 mail.srvfarm.net postfix/smtps/smtpd[944893]: lost connection after AUTH from unknown[91.228.32.21] Aug 15 02:08:39 mail.srvfarm.net postfix/smtps/smtpd[949850]: warning: unknown[91.228.32.21]: SASL PLAIN authentication failed: Aug 15 02:08:39 mail.srvfarm.net postfix/smtps/smtpd[949850]: lost connection after AUTH from unknown[91.228.32.21] Aug 15 02:10:35 mail.srvfarm.net postfix/smtpd[948607]: warning: unknown[91.228.32.21]: SASL PLAIN authentication failed:	2020-08-15 13:40:03

Recently Reported IPs

231.131.240.254	112.118.18.173	51.15.174.7	64.184.225.42
5.196.87.158	37.6.136.198	177.43.139.203	181.193.48.229
111.229.49.165	105.107.121.193	79.62.228.135	113.254.113.241
49.81.88.83	154.156.43.14	156.200.102.25	218.106.122.66
85.228.104.57	185.156.177.214	80.143.160.204	10.30.217.3