Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 31.17.74.137
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51196
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;31.17.74.137.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012601 1800 900 604800 86400

;; Query time: 33 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 27 10:47:36 CST 2025
;; MSG SIZE  rcvd: 105
Host info
137.74.17.31.in-addr.arpa domain name pointer ip1f114a89.dynamic.kabel-deutschland.de.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
137.74.17.31.in-addr.arpa	name = ip1f114a89.dynamic.kabel-deutschland.de.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
186.10.248.182 attackbotsspam
 TCP (SYN) 186.10.248.182:6583 -> port 7547, len 44
2020-09-04 04:15:10
177.87.68.137 attackbotsspam
Brute force attempt
2020-09-04 03:56:41
159.89.157.126 attackspambots
 TCP (SYN) 159.89.157.126:31234 -> port 443, len 44
2020-09-04 04:06:48
178.19.152.65 attack
 TCP (SYN) 178.19.152.65:11385 -> port 23, len 44
2020-09-04 04:05:42
217.218.222.34 attackbotsspam
Honeypot attack, port: 445, PTR: PTR record not found
2020-09-04 04:27:12
178.19.154.204 attackbotsspam
 TCP (SYN) 178.19.154.204:3892 -> port 7547, len 44
2020-09-04 04:00:50
132.145.242.238 attackspam
Sep  3 19:51:55 ns382633 sshd\[29565\]: Invalid user probe from 132.145.242.238 port 47006
Sep  3 19:51:55 ns382633 sshd\[29565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.242.238
Sep  3 19:51:57 ns382633 sshd\[29565\]: Failed password for invalid user probe from 132.145.242.238 port 47006 ssh2
Sep  3 19:55:48 ns382633 sshd\[30271\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.145.242.238  user=root
Sep  3 19:55:51 ns382633 sshd\[30271\]: Failed password for root from 132.145.242.238 port 53150 ssh2
2020-09-04 04:02:15
71.6.232.9 attack
srvr3: (mod_security) mod_security (id:920350) triggered by 71.6.232.9 (US/United States/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/09/03 15:39:46 [error] 365944#0: *1926 [client 71.6.232.9] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host'  [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "15991403863.514882"] [ref "o0,11v21,11"], client: 71.6.232.9, [redacted] request: "GET / HTTP/1.1" [redacted]
2020-09-04 04:07:01
194.87.139.159 attackspam
DATE:2020-09-03 21:38:21, IP:194.87.139.159, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)
2020-09-04 04:19:16
220.164.226.212 attackbotsspam
 TCP (SYN) 220.164.226.212:65307 -> port 1433, len 48
2020-09-04 04:18:45
165.227.101.226 attackspambots
$f2bV_matches
2020-09-04 04:05:58
220.134.126.57 attack
Port Scan
...
2020-09-04 04:19:00
85.185.82.97 attack
Honeypot attack, port: 445, PTR: PTR record not found
2020-09-04 04:23:44
118.76.188.43 attackspam
(Sep  3)  LEN=40 TTL=46 ID=35780 TCP DPT=8080 WINDOW=59479 SYN 
 (Sep  3)  LEN=40 TTL=46 ID=55373 TCP DPT=8080 WINDOW=54094 SYN 
 (Sep  2)  LEN=40 TTL=46 ID=57650 TCP DPT=8080 WINDOW=54094 SYN 
 (Sep  2)  LEN=40 TTL=46 ID=15088 TCP DPT=8080 WINDOW=59479 SYN 
 (Sep  2)  LEN=40 TTL=46 ID=25431 TCP DPT=8080 WINDOW=59479 SYN 
 (Sep  2)  LEN=40 TTL=46 ID=2325 TCP DPT=8080 WINDOW=59479 SYN 
 (Sep  1)  LEN=40 TTL=46 ID=61807 TCP DPT=8080 WINDOW=54094 SYN 
 (Aug 31)  LEN=40 TTL=46 ID=30372 TCP DPT=8080 WINDOW=54094 SYN 
 (Aug 30)  LEN=40 TTL=46 ID=60720 TCP DPT=8080 WINDOW=59479 SYN 
 (Aug 30)  LEN=40 TTL=46 ID=54456 TCP DPT=8080 WINDOW=54094 SYN
2020-09-04 04:02:39
153.232.29.168 attack
Automatic report - Banned IP Access
2020-09-04 04:16:38

Recently Reported IPs

22.54.101.176 254.199.57.134 19.75.76.182 255.143.251.206
63.111.65.5 130.157.241.124 46.255.108.17 50.36.198.173
235.160.162.228 133.116.119.147 28.1.6.44 193.246.135.9
193.32.189.245 134.237.24.165 66.96.85.177 235.102.240.32
16.252.42.151 35.161.39.49 184.81.161.103 157.201.49.152