94.74.148.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Iran (ISLAMIC Republic Of)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
94.74.148.17	attack	Sep 12 18:09:19 mail.srvfarm.net postfix/smtpd[534038]: warning: unknown[94.74.148.17]: SASL PLAIN authentication failed: Sep 12 18:09:19 mail.srvfarm.net postfix/smtpd[534038]: lost connection after AUTH from unknown[94.74.148.17] Sep 12 18:14:16 mail.srvfarm.net postfix/smtpd[533998]: warning: unknown[94.74.148.17]: SASL PLAIN authentication failed: Sep 12 18:14:16 mail.srvfarm.net postfix/smtpd[533998]: lost connection after AUTH from unknown[94.74.148.17] Sep 12 18:19:04 mail.srvfarm.net postfix/smtpd[533956]: warning: unknown[94.74.148.17]: SASL PLAIN authentication failed:	2020-09-14 01:43:38
94.74.148.17	attack	Sep 12 18:09:19 mail.srvfarm.net postfix/smtpd[534038]: warning: unknown[94.74.148.17]: SASL PLAIN authentication failed: Sep 12 18:09:19 mail.srvfarm.net postfix/smtpd[534038]: lost connection after AUTH from unknown[94.74.148.17] Sep 12 18:14:16 mail.srvfarm.net postfix/smtpd[533998]: warning: unknown[94.74.148.17]: SASL PLAIN authentication failed: Sep 12 18:14:16 mail.srvfarm.net postfix/smtpd[533998]: lost connection after AUTH from unknown[94.74.148.17] Sep 12 18:19:04 mail.srvfarm.net postfix/smtpd[533956]: warning: unknown[94.74.148.17]: SASL PLAIN authentication failed:	2020-09-13 17:39:58
94.74.148.120	attack	Jul 5 13:34:53 mailman postfix/smtpd[12455]: warning: unknown[94.74.148.120]: SASL PLAIN authentication failed: authentication failure	2020-07-06 04:46:39
94.74.148.73	attackspam	Jul 14 12:16:52 rigel postfix/smtpd[30023]: connect from unknown[94.74.148.73] Jul 14 12:16:53 rigel postfix/smtpd[30023]: warning: unknown[94.74.148.73]: SASL CRAM-MD5 authentication failed: authentication failure Jul 14 12:16:53 rigel postfix/smtpd[30023]: warning: unknown[94.74.148.73]: SASL PLAIN authentication failed: authentication failure Jul 14 12:16:54 rigel postfix/smtpd[30023]: warning: unknown[94.74.148.73]: SASL LOGIN authentication failed: authentication failure ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=94.74.148.73	2019-07-15 04:31:04
94.74.148.85	attack	imap. Unknown user	2019-06-26 05:23:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 94.74.148.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39931
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;94.74.148.2.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 02:35:05 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 2.148.74.94.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 2.148.74.94.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.32.163.182	attack	SSH Server BruteForce Attack	2019-07-29 08:44:28
116.203.93.61	attackbotsspam	Time: Sun Jul 28 18:12:05 2019 -0300 IP: 116.203.93.61 (DE/Germany/static.61.93.203.116.clients.your-server.de) Failures: 20 (WordPressBruteForcePOST) Interval: 3600 seconds Blocked: Permanent Block	2019-07-29 08:10:55
45.82.153.7	attackspam	29.07.2019 00:36:20 Connection to port 5590 blocked by firewall	2019-07-29 08:44:01
202.179.137.54	attackspambots	Unauthorized connection attempt from IP address 202.179.137.54 on Port 445(SMB)	2019-07-29 08:14:51
106.12.142.52	attackbots	Jul 27 03:02:57 pl2server sshd[2129033]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 user=r.r Jul 27 03:02:59 pl2server sshd[2129033]: Failed password for r.r from 106.12.142.52 port 35226 ssh2 Jul 27 03:03:00 pl2server sshd[2129033]: Received disconnect from 106.12.142.52: 11: Bye Bye [preauth] Jul 27 03:21:40 pl2server sshd[2133010]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 user=r.r Jul 27 03:21:41 pl2server sshd[2133010]: Failed password for r.r from 106.12.142.52 port 35808 ssh2 Jul 27 03:21:42 pl2server sshd[2133010]: Received disconnect from 106.12.142.52: 11: Bye Bye [preauth] Jul 27 03:26:21 pl2server sshd[2133959]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.142.52 user=r.r ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=106.12.142.52	2019-07-29 08:51:28
45.64.11.3	attack	2019-07-29T04:28:15.203187enmeeting.mahidol.ac.th sshd\[5110\]: User root from 45.64.11.3 not allowed because not listed in AllowUsers 2019-07-29T04:28:15.325661enmeeting.mahidol.ac.th sshd\[5110\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.11.3 user=root 2019-07-29T04:28:17.773193enmeeting.mahidol.ac.th sshd\[5110\]: Failed password for invalid user root from 45.64.11.3 port 48832 ssh2 ...	2019-07-29 08:54:30
178.17.174.229	attackspam	Jul 28 21:29:54 **** sshd[21489]: Invalid user administrator from 178.17.174.229 port 42282	2019-07-29 08:23:19
183.82.250.11	attackbotsspam	Unauthorized connection attempt from IP address 183.82.250.11 on Port 445(SMB)	2019-07-29 08:14:10
60.21.73.44	attackspam	" "	2019-07-29 08:55:57
103.210.21.165	attackbots	Jul 29 01:48:39 OPSO sshd\[8267\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.210.21.165 user=root Jul 29 01:48:41 OPSO sshd\[8267\]: Failed password for root from 103.210.21.165 port 47460 ssh2 Jul 29 01:53:34 OPSO sshd\[8824\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.210.21.165 user=root Jul 29 01:53:36 OPSO sshd\[8824\]: Failed password for root from 103.210.21.165 port 42712 ssh2 Jul 29 01:58:26 OPSO sshd\[9537\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.210.21.165 user=root	2019-07-29 08:12:14
14.29.67.202	attackbots	Unauthorized connection attempt from IP address 14.29.67.202 on Port 445(SMB)	2019-07-29 08:09:35
61.219.11.153	attackbotsspam	Fail2Ban Ban Triggered	2019-07-29 08:39:00
167.99.79.66	attack	xmlrpc attack	2019-07-29 08:53:56
90.225.27.152	attackspam	Honeypot attack, port: 23, PTR: 90-225-27-152-no2784.tbcn.telia.com.	2019-07-29 08:16:38
118.21.111.124	attackbots	2019-07-29T00:24:10.617838abusebot-5.cloudsearch.cf sshd\[29534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=i118-21-111-124.s30.a048.ap.plala.or.jp user=root	2019-07-29 08:27:26

Recently Reported IPs

94.74.75.246	200.56.75.242	201.170.10.180	103.79.233.51
123.113.109.238	213.166.76.102	178.176.41.40	187.226.12.56
162.241.203.97	110.86.177.88	59.89.97.17	89.203.96.154
72.186.36.141	185.136.204.159	172.115.213.197	185.139.27.220
34.92.108.250	14.139.238.124	171.37.173.82	175.178.67.24