149.56.99.64 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
149.56.99.85	attack	SSH invalid-user multiple login try	2020-08-29 04:54:35
149.56.99.85	attack	Aug 27 15:01:08 rancher-0 sshd[1303504]: Failed password for root from 149.56.99.85 port 34618 ssh2 Aug 27 15:01:10 rancher-0 sshd[1303504]: error: maximum authentication attempts exceeded for root from 149.56.99.85 port 34618 ssh2 [preauth] ...	2020-08-27 23:31:44
149.56.99.85	attackspambots	Port Scan/VNC login attempt ...	2020-08-05 22:33:38
149.56.99.85	attackbotsspam	Automatic report - Banned IP Access	2020-07-22 07:05:34
149.56.99.85	attackbots	2020-06-12T03:59:07.819587homeassistant sshd[30337]: Invalid user letsencrypt from 149.56.99.85 port 57314 2020-06-12T03:59:07.834549homeassistant sshd[30337]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.99.85 ...	2020-06-12 12:16:29
149.56.99.85	attack	2020-06-05T08:44[Censored Hostname] sshd[2725389]: Failed password for sshd from 149.56.99.85 port 41408 ssh2 2020-06-05T08:44[Censored Hostname] sshd[2725389]: Failed password for sshd from 149.56.99.85 port 41408 ssh2 2020-06-05T08:44[Censored Hostname] sshd[2725389]: Failed password for sshd from 149.56.99.85 port 41408 ssh2[...]	2020-06-05 16:01:54
149.56.99.85	attackspambots	CMS (WordPress or Joomla) login attempt.	2020-05-23 03:11:40
149.56.99.85	attackspam	Unauthorized access detected from black listed ip!	2020-02-22 03:29:44
149.56.99.85	attackspambots	Jan 26 14:21:18 xeon sshd[56735]: Failed password for root from 149.56.99.85 port 53108 ssh2	2020-01-26 22:10:38
149.56.99.85	attack	Oct 24 08:05:04 thevastnessof sshd[11602]: Failed password for root from 149.56.99.85 port 40996 ssh2 ...	2019-10-24 19:36:27
149.56.99.180	attack	Aug 15 02:20:49 php1 sshd\[7390\]: Invalid user lee from 149.56.99.180 Aug 15 02:20:49 php1 sshd\[7390\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.ip-149-56-99.net Aug 15 02:20:51 php1 sshd\[7390\]: Failed password for invalid user lee from 149.56.99.180 port 58988 ssh2 Aug 15 02:25:13 php1 sshd\[8270\]: Invalid user oracle from 149.56.99.180 Aug 15 02:25:13 php1 sshd\[8270\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.ip-149-56-99.net	2019-08-15 20:38:25
149.56.99.180	attack	Jul 18 12:01:32 MK-Soft-VM3 sshd\[31277\]: Invalid user prueba from 149.56.99.180 port 55472 Jul 18 12:01:32 MK-Soft-VM3 sshd\[31277\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.56.99.180 Jul 18 12:01:34 MK-Soft-VM3 sshd\[31277\]: Failed password for invalid user prueba from 149.56.99.180 port 55472 ssh2 ...	2019-07-18 20:26:12
149.56.99.180	attack	$f2bV_matches	2019-07-08 02:48:26

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 149.56.99.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29519
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;149.56.99.64.			IN	A

;; AUTHORITY SECTION:
.			446	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 12:51:20 CST 2022
;; MSG SIZE  rcvd: 105

Host info

64.99.56.149.in-addr.arpa domain name pointer 64.ip-149-56-99.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.99.56.149.in-addr.arpa	name = 64.ip-149-56-99.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
170.0.51.146	attack	failed_logins	2019-06-27 06:46:01
200.207.220.128	attack	Jun 26 13:01:05 work-partkepr sshd\[12537\]: Invalid user student from 200.207.220.128 port 33407 Jun 26 13:01:05 work-partkepr sshd\[12537\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.207.220.128 ...	2019-06-27 06:14:34
142.44.133.83	attack	Automatic report - Web App Attack	2019-06-27 06:19:42
1.109.50.199	attackbots	Jun 26 22:19:25 vmd17057 sshd\[8828\]: Invalid user guai from 1.109.50.199 port 55728 Jun 26 22:19:25 vmd17057 sshd\[8828\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.109.50.199 Jun 26 22:19:27 vmd17057 sshd\[8828\]: Failed password for invalid user guai from 1.109.50.199 port 55728 ssh2 ...	2019-06-27 06:34:10
128.14.134.134	attackspam	Scanning random ports - tries to find possible vulnerable services	2019-06-27 06:21:21
59.127.172.234	attack	Jun 26 22:59:16 *** sshd[20534]: Invalid user glassfish from 59.127.172.234	2019-06-27 07:03:13
213.234.194.190	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 08:59:10,771 INFO [amun_request_handler] PortScan Detected on Port: 445 (213.234.194.190)	2019-06-27 06:55:00
37.32.5.157	attack	From CCTV User Interface Log ...::ffff:37.32.5.157 - - [26/Jun/2019:09:01:01 +0000] "GET / HTTP/1.1" 200 960 ...	2019-06-27 06:33:40
187.58.65.21	attack	Invalid user guest from 187.58.65.21 port 9407 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.58.65.21 Failed password for invalid user guest from 187.58.65.21 port 9407 ssh2 Invalid user worldpress from 187.58.65.21 port 43638 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.58.65.21	2019-06-27 06:53:01
196.1.99.12	attackspam	Invalid user jester from 196.1.99.12 port 49394	2019-06-27 06:14:58
157.55.39.67	attack	Automatic report - Web App Attack	2019-06-27 06:47:02
2.179.39.131	attackspam	" "	2019-06-27 06:28:51
123.125.71.36	attackbotsspam	Automatic report - Web App Attack	2019-06-27 06:54:37
191.53.223.239	attackbots	SASL PLAIN auth failed: ruser=...	2019-06-27 06:54:06
202.137.134.108	attack	Jun 26 15:01:51 mout sshd[18613]: Invalid user admin from 202.137.134.108 port 60622 Jun 26 15:01:53 mout sshd[18613]: Failed password for invalid user admin from 202.137.134.108 port 60622 ssh2 Jun 26 15:01:54 mout sshd[18613]: Connection closed by 202.137.134.108 port 60622 [preauth]	2019-06-27 06:13:44

Recently Reported IPs

149.62.145.46	149.57.31.7	149.62.204.43	149.62.77.224
149.56.98.86	149.62.158.149	149.56.9.37	149.62.173.235
149.7.16.223	149.7.16.227	149.69.254.50	149.7.16.246
149.72.241.255	149.71.234.32	149.76.8.130	149.72.112.186
149.72.148.254	149.71.129.96	149.72.54.131	149.72.187.87