220.2.56.149 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Japan

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 220.2.56.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20919
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;220.2.56.149.			IN	A

;; AUTHORITY SECTION:
.			201	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022010702 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 08 07:27:15 CST 2022
;; MSG SIZE  rcvd: 105

Host info

149.56.2.220.in-addr.arpa domain name pointer softbank220002056149.bbtec.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
149.56.2.220.in-addr.arpa	name = softbank220002056149.bbtec.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.82.77.33	attackspambots	srv02 Mass scanning activity detected Target: 9000 ..	2020-08-16 13:23:47
37.143.144.1	attack	Automatic report - Port Scan Attack	2020-08-16 13:50:15
172.82.230.3	attack	Aug 16 06:32:24 mail.srvfarm.net postfix/smtpd[1931086]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Aug 16 06:35:37 mail.srvfarm.net postfix/smtpd[1931103]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Aug 16 06:36:41 mail.srvfarm.net postfix/smtpd[1931103]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Aug 16 06:38:03 mail.srvfarm.net postfix/smtpd[1931086]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3] Aug 16 06:39:11 mail.srvfarm.net postfix/smtpd[1931085]: lost connection after STARTTLS from r3.news.eu.rvca.com[172.82.230.3]	2020-08-16 13:19:31
78.128.113.116	attackbotsspam	2020-08-16 07:21:31 dovecot_login authenticator failed for \(ip-113-116.4vendeta.com.\) \[78.128.113.116\]: 535 Incorrect authentication data \(set_id=spamzorbadoo@no-server.de\) 2020-08-16 07:21:38 dovecot_login authenticator failed for \(ip-113-116.4vendeta.com.\) \[78.128.113.116\]: 535 Incorrect authentication data 2020-08-16 07:21:47 dovecot_login authenticator failed for \(ip-113-116.4vendeta.com.\) \[78.128.113.116\]: 535 Incorrect authentication data 2020-08-16 07:21:53 dovecot_login authenticator failed for \(ip-113-116.4vendeta.com.\) \[78.128.113.116\]: 535 Incorrect authentication data 2020-08-16 07:22:04 dovecot_login authenticator failed for \(ip-113-116.4vendeta.com.\) \[78.128.113.116\]: 535 Incorrect authentication data ...	2020-08-16 13:24:04
46.249.59.113	attackspam	(sshd) Failed SSH login from 46.249.59.113 (NL/Netherlands/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Aug 16 06:35:34 amsweb01 sshd[21562]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.249.59.113 user=root Aug 16 06:35:36 amsweb01 sshd[21562]: Failed password for root from 46.249.59.113 port 39020 ssh2 Aug 16 06:35:39 amsweb01 sshd[21562]: Failed password for root from 46.249.59.113 port 39020 ssh2 Aug 16 06:35:41 amsweb01 sshd[21562]: Failed password for root from 46.249.59.113 port 39020 ssh2 Aug 16 06:35:44 amsweb01 sshd[21562]: Failed password for root from 46.249.59.113 port 39020 ssh2	2020-08-16 13:36:37
45.85.218.130	attack	Aug 16 05:15:31 web01.agentur-b-2.de postfix/smtpd[4152294]: NOQUEUE: reject: RCPT from unknown[45.85.218.130]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Aug 16 05:16:55 web01.agentur-b-2.de postfix/smtpd[4153680]: NOQUEUE: reject: RCPT from unknown[45.85.218.130]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Aug 16 05:18:27 web01.agentur-b-2.de postfix/smtpd[4152294]: NOQUEUE: reject: RCPT from unknown[45.85.218.130]: 450 4.7.1 : Helo command rejected: Host not found; from= to= proto=ESMTP helo= Aug 16 05:21:06 web01.agentur-b-2.de postfix/smtpd[4171274]: NOQUEUE: reject: RCPT from unknown[45.85.218.130]: 450 4.7.1 : Helo command rejected: Host not found; from= to=	2020-08-16 13:08:42
216.10.245.49	attackspambots	216.10.245.49 - - [16/Aug/2020:04:56:05 +0100] "POST /wp-login.php HTTP/1.1" 200 1875 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 216.10.245.49 - - [16/Aug/2020:04:56:07 +0100] "POST /wp-login.php HTTP/1.1" 200 1860 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 216.10.245.49 - - [16/Aug/2020:04:56:10 +0100] "POST /wp-login.php HTTP/1.1" 200 1857 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-08-16 13:45:51
167.71.227.102	attack	WordPress login Brute force / Web App Attack on client site.	2020-08-16 13:41:33
222.186.175.215	attackspambots	Aug 15 22:22:59 dignus sshd[7383]: Failed password for root from 222.186.175.215 port 12800 ssh2 Aug 15 22:23:02 dignus sshd[7383]: Failed password for root from 222.186.175.215 port 12800 ssh2 Aug 15 22:23:06 dignus sshd[7383]: Failed password for root from 222.186.175.215 port 12800 ssh2 Aug 15 22:23:09 dignus sshd[7383]: Failed password for root from 222.186.175.215 port 12800 ssh2 Aug 15 22:23:12 dignus sshd[7383]: Failed password for root from 222.186.175.215 port 12800 ssh2 ...	2020-08-16 13:39:59
220.130.10.13	attackspambots	Aug 16 07:08:02 lnxded63 sshd[27785]: Failed password for root from 220.130.10.13 port 45304 ssh2 Aug 16 07:13:01 lnxded63 sshd[28243]: Failed password for root from 220.130.10.13 port 45026 ssh2	2020-08-16 13:30:37
195.69.222.175	attack	" "	2020-08-16 13:51:34
62.210.194.6	attackbots	Aug 16 06:28:58 mail.srvfarm.net postfix/smtpd[1913728]: lost connection after STARTTLS from r6.news.eu.rvca.com[62.210.194.6] Aug 16 06:32:25 mail.srvfarm.net postfix/smtpd[1929155]: lost connection after STARTTLS from r6.news.eu.rvca.com[62.210.194.6] Aug 16 06:35:37 mail.srvfarm.net postfix/smtpd[1924776]: lost connection after STARTTLS from r6.news.eu.rvca.com[62.210.194.6] Aug 16 06:36:42 mail.srvfarm.net postfix/smtpd[1931084]: lost connection after STARTTLS from r6.news.eu.rvca.com[62.210.194.6] Aug 16 06:38:04 mail.srvfarm.net postfix/smtpd[1931084]: lost connection after STARTTLS from r6.news.eu.rvca.com[62.210.194.6]	2020-08-16 13:25:16
161.53.49.55	attack	Aug 16 07:37:24 Ubuntu-1404-trusty-64-minimal sshd\[11896\]: Invalid user user from 161.53.49.55 Aug 16 07:37:24 Ubuntu-1404-trusty-64-minimal sshd\[11896\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.53.49.55 Aug 16 07:37:26 Ubuntu-1404-trusty-64-minimal sshd\[11896\]: Failed password for invalid user user from 161.53.49.55 port 53795 ssh2 Aug 16 07:48:17 Ubuntu-1404-trusty-64-minimal sshd\[16818\]: Invalid user admin from 161.53.49.55 Aug 16 07:48:17 Ubuntu-1404-trusty-64-minimal sshd\[16818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.53.49.55	2020-08-16 13:51:05
222.186.42.137	attackspambots	Aug 16 06:27:55 rocket sshd[24370]: Failed password for root from 222.186.42.137 port 56481 ssh2 Aug 16 06:27:57 rocket sshd[24370]: Failed password for root from 222.186.42.137 port 56481 ssh2 Aug 16 06:28:00 rocket sshd[24370]: Failed password for root from 222.186.42.137 port 56481 ssh2 ...	2020-08-16 13:39:38
103.25.134.140	attackbots	Aug 16 05:00:26 mail.srvfarm.net postfix/smtpd[1872412]: warning: unknown[103.25.134.140]: SASL PLAIN authentication failed: Aug 16 05:00:26 mail.srvfarm.net postfix/smtpd[1872412]: lost connection after AUTH from unknown[103.25.134.140] Aug 16 05:03:03 mail.srvfarm.net postfix/smtpd[1887487]: warning: unknown[103.25.134.140]: SASL PLAIN authentication failed: Aug 16 05:03:04 mail.srvfarm.net postfix/smtpd[1887487]: lost connection after AUTH from unknown[103.25.134.140] Aug 16 05:09:52 mail.srvfarm.net postfix/smtps/smtpd[1887810]: warning: unknown[103.25.134.140]: SASL PLAIN authentication failed:	2020-08-16 13:21:42

Recently Reported IPs

79.190.194.216	35.128.201.107	149.123.8.165	54.162.10.145
99.79.189.169	10.142.112.100	199.58.249.254	190.48.67.151
96.193.88.195	253.65.196.212	239.25.132.71	138.128.201.243
66.215.233.78	12.191.249.228	56.117.132.171	185.254.195.132
216.97.254.195	122.24.37.143	187.70.84.79	47.70.140.137