149.56.98.93 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: OVH Hosting Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2019-06-26T17:24:41.447637wiz-ks3 sshd[19028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.ip-149-56-98.net user=root 2019-06-26T17:24:42.991511wiz-ks3 sshd[19028]: Failed password for root from 149.56.98.93 port 36566 ssh2 2019-06-26T17:24:59.476789wiz-ks3 sshd[19030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.ip-149-56-98.net user=bin 2019-06-26T17:25:01.492296wiz-ks3 sshd[19030]: Failed password for bin from 149.56.98.93 port 40424 ssh2 2019-06-26T17:25:18.509051wiz-ks3 sshd[19032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.ip-149-56-98.net user=daemon 2019-06-26T17:25:20.798821wiz-ks3 sshd[19032]: Failed password for daemon from 149.56.98.93 port 44228 ssh2 2019-06-26T17:25:36.134905wiz-ks3 sshd[19034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.ip-149-56-98.net user=adm 2019-06-26T17:25:37.894682wiz-ks3 sshd[19	2019-07-20 10:50:52
attack	Jun 25 22:51:15 bouncer sshd\[14151\]: Invalid user elasticsearch from 149.56.98.93 port 33408 Jun 25 22:51:15 bouncer sshd\[14151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.98.93 Jun 25 22:51:17 bouncer sshd\[14151\]: Failed password for invalid user elasticsearch from 149.56.98.93 port 33408 ssh2 ...	2019-06-26 05:00:45

Type

Details

Datetime

attack

2019-06-26T17:24:41.447637wiz-ks3 sshd[19028]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.ip-149-56-98.net  user=root
2019-06-26T17:24:42.991511wiz-ks3 sshd[19028]: Failed password for root from 149.56.98.93 port 36566 ssh2
2019-06-26T17:24:59.476789wiz-ks3 sshd[19030]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.ip-149-56-98.net  user=bin
2019-06-26T17:25:01.492296wiz-ks3 sshd[19030]: Failed password for bin from 149.56.98.93 port 40424 ssh2
2019-06-26T17:25:18.509051wiz-ks3 sshd[19032]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.ip-149-56-98.net  user=daemon
2019-06-26T17:25:20.798821wiz-ks3 sshd[19032]: Failed password for daemon from 149.56.98.93 port 44228 ssh2
2019-06-26T17:25:36.134905wiz-ks3 sshd[19034]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.ip-149-56-98.net  user=adm
2019-06-26T17:25:37.894682wiz-ks3 sshd[19

2019-07-20 10:50:52

attack

Jun 25 22:51:15 bouncer sshd\[14151\]: Invalid user elasticsearch from 149.56.98.93 port 33408
Jun 25 22:51:15 bouncer sshd\[14151\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.98.93 
Jun 25 22:51:17 bouncer sshd\[14151\]: Failed password for invalid user elasticsearch from 149.56.98.93 port 33408 ssh2
...

2019-06-26 05:00:45

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.56.98.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50105
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;149.56.98.93.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062501 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Jun 26 05:00:39 CST 2019
;; MSG SIZE  rcvd: 116

Host info

93.98.56.149.in-addr.arpa domain name pointer 93.ip-149-56-98.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
93.98.56.149.in-addr.arpa	name = 93.ip-149-56-98.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
220.167.166.25	attackbotsspam	Unauthorized connection attempt from IP address 220.167.166.25 on Port 445(SMB)	2019-12-04 08:10:13
106.13.93.199	attack	Dec 4 00:59:12 lnxweb62 sshd[12164]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.93.199	2019-12-04 08:01:56
118.24.111.239	attackbots	F2B jail: sshd. Time: 2019-12-04 01:30:56, Reported by: VKReport	2019-12-04 08:34:50
94.199.198.137	attackbotsspam	Dec 4 01:37:19 ncomp sshd[3616]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.199.198.137 user=root Dec 4 01:37:21 ncomp sshd[3616]: Failed password for root from 94.199.198.137 port 54024 ssh2 Dec 4 01:42:54 ncomp sshd[3772]: Invalid user hung from 94.199.198.137	2019-12-04 08:14:56
129.213.18.41	attackbots	Dec 4 00:13:51 fr01 sshd[29414]: Invalid user juan from 129.213.18.41 Dec 4 00:13:51 fr01 sshd[29414]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.213.18.41 Dec 4 00:13:51 fr01 sshd[29414]: Invalid user juan from 129.213.18.41 Dec 4 00:13:54 fr01 sshd[29414]: Failed password for invalid user juan from 129.213.18.41 port 22046 ssh2 ...	2019-12-04 07:55:52
106.13.217.93	attackbots	Dec 4 00:36:08 vmanager6029 sshd\[19271\]: Invalid user xihuidc!@\#\$%\^ from 106.13.217.93 port 39122 Dec 4 00:36:08 vmanager6029 sshd\[19271\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.217.93 Dec 4 00:36:10 vmanager6029 sshd\[19271\]: Failed password for invalid user xihuidc!@\#\$%\^ from 106.13.217.93 port 39122 ssh2	2019-12-04 08:12:37
213.147.113.61	attackspam	Unauthorized connection attempt from IP address 213.147.113.61 on Port 445(SMB)	2019-12-04 08:05:35
41.205.13.58	attackbots	Unauthorized connection attempt from IP address 41.205.13.58 on Port 445(SMB)	2019-12-04 08:11:50
113.160.178.148	attackbotsspam	Dec 3 23:30:58 vmd17057 sshd\[6289\]: Invalid user admin from 113.160.178.148 port 33196 Dec 3 23:30:58 vmd17057 sshd\[6289\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.160.178.148 Dec 3 23:31:00 vmd17057 sshd\[6289\]: Failed password for invalid user admin from 113.160.178.148 port 33196 ssh2 ...	2019-12-04 07:59:18
140.143.197.56	attackbotsspam	Dec 4 01:23:00 server sshd\[29609\]: Invalid user pi from 140.143.197.56 Dec 4 01:23:00 server sshd\[29609\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.197.56 Dec 4 01:23:02 server sshd\[29609\]: Failed password for invalid user pi from 140.143.197.56 port 54266 ssh2 Dec 4 01:30:25 server sshd\[32121\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.197.56 user=root Dec 4 01:30:27 server sshd\[32121\]: Failed password for root from 140.143.197.56 port 60698 ssh2 ...	2019-12-04 08:32:06
104.131.111.64	attackbotsspam	ssh failed login	2019-12-04 07:57:55
105.157.187.178	attack	Automatic report - Port Scan Attack	2019-12-04 08:08:33
112.80.54.62	attackspam	SSH bruteforce	2019-12-04 08:10:45
222.186.175.161	attack	Dec 4 01:17:24 vmanager6029 sshd\[20349\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.161 user=root Dec 4 01:17:26 vmanager6029 sshd\[20349\]: Failed password for root from 222.186.175.161 port 52882 ssh2 Dec 4 01:17:30 vmanager6029 sshd\[20349\]: Failed password for root from 222.186.175.161 port 52882 ssh2	2019-12-04 08:24:16
81.144.150.6	attackbots	Unauthorized connection attempt from IP address 81.144.150.6 on Port 445(SMB)	2019-12-04 08:22:59

Recently Reported IPs

187.94.80.229	66.134.109.22	14.141.141.56	21.186.88.0
83.183.220.145	177.200.136.159	242.251.35.16	25.224.38.131
2.207.150.47	8.56.66.88	221.249.206.208	249.113.137.114
43.190.234.169	153.167.244.99	228.164.248.3	213.212.215.122
17.186.64.48	159.71.227.90	137.148.189.89	213.114.244.87