167.99.14.213 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.99.149.11	attack	Automatic report generated by Wazuh	2020-10-10 03:56:19
167.99.149.11	attack	can 167.99.149.11 [09/Oct/2020:18:09:47 "-" "POST /wp-login.php 200 5780 167.99.149.11 [09/Oct/2020:18:42:33 "-" "GET /wp-login.php 200 9378 167.99.149.11 [09/Oct/2020:18:42:40 "-" "POST /wp-login.php 200 9495	2020-10-09 19:52:36
167.99.144.50	attackspambots	Port scan denied	2020-09-01 16:42:05
167.99.14.39	attackspam	[portscan] Port scan	2020-08-29 08:32:12
167.99.144.50	attackspambots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-27 21:02:32
167.99.146.47	attackspam	" "	2020-08-21 06:12:52
167.99.144.50	attackbotsspam	firewall-block, port(s): 18510/tcp	2020-08-14 17:18:27
167.99.146.47	attackspam	scans once in preceeding hours on the ports (in chronological order) 1070 resulting in total of 2 scans from 167.99.0.0/16 block.	2020-08-14 00:03:52
167.99.146.47	attackspam	Unauthorized connection attempt detected from IP address 167.99.146.47 to port 1880	2020-08-01 17:32:11
167.99.144.50	attackbots	TCP (SYN) 167.99.144.50:58852 -> port 62209, len 44	2020-07-31 02:52:48
167.99.146.47	attackbotsspam	TCP (SYN) 167.99.146.47:43381 -> port 1080, len 44	2020-07-30 21:51:54
167.99.144.50	attackbots	Jul 26 22:14:26 debian-2gb-nbg1-2 kernel: \[18052974.720600\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=167.99.144.50 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=242 ID=8273 PROTO=TCP SPT=58852 DPT=60265 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-27 06:15:46
167.99.146.47	attack	" "	2020-07-22 00:29:16
167.99.144.50	attackbotsspam	Port Scan detected from 167.99.144.50 (US/United States/New Jersey/North Bergen/-). 4 hits in the last -14053 seconds	2020-07-18 13:35:27
167.99.144.50	attack	trying to access non-authorized port	2020-07-08 08:30:42

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.99.14.213
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5164
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;167.99.14.213.			IN	A

;; AUTHORITY SECTION:
.			418	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 62 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 21:07:14 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 213.14.99.167.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 213.14.99.167.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
80.178.115.146	attack	Nov 23 01:54:03 gw1 sshd[23794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.178.115.146 Nov 23 01:54:04 gw1 sshd[23794]: Failed password for invalid user dc from 80.178.115.146 port 40198 ssh2 ...	2019-11-23 05:02:10
222.186.169.194	attackbotsspam	Nov 22 22:02:50 nextcloud sshd\[28499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.169.194 user=root Nov 22 22:02:51 nextcloud sshd\[28499\]: Failed password for root from 222.186.169.194 port 1120 ssh2 Nov 22 22:03:02 nextcloud sshd\[28499\]: Failed password for root from 222.186.169.194 port 1120 ssh2 ...	2019-11-23 05:04:49
87.119.64.181	attackbots	Unauthorised access (Nov 22) SRC=87.119.64.181 LEN=40 TTL=51 ID=41156 TCP DPT=23 WINDOW=16966 SYN	2019-11-23 04:52:27
43.231.96.108	attack	Portscan or hack attempt detected by psad/fwsnort	2019-11-23 05:01:15
118.89.48.251	attack	Nov 22 10:38:43 web9 sshd\[3445\]: Invalid user arisan from 118.89.48.251 Nov 22 10:38:43 web9 sshd\[3445\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.48.251 Nov 22 10:38:45 web9 sshd\[3445\]: Failed password for invalid user arisan from 118.89.48.251 port 52454 ssh2 Nov 22 10:42:57 web9 sshd\[3944\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.48.251 user=root Nov 22 10:42:59 web9 sshd\[3944\]: Failed password for root from 118.89.48.251 port 60104 ssh2	2019-11-23 04:46:40
180.247.161.143	attackspambots	Unauthorized connection attempt from IP address 180.247.161.143 on Port 445(SMB)	2019-11-23 04:45:22
51.254.39.64	attack	Automatic report - Banned IP Access	2019-11-23 05:11:52
223.4.70.106	attackbots	Nov 22 15:45:56 jane sshd[26094]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.4.70.106 Nov 22 15:45:58 jane sshd[26094]: Failed password for invalid user rhonda from 223.4.70.106 port 53010 ssh2 ...	2019-11-23 04:58:57
111.42.102.74	attack	Mirai and Reaper Exploitation Traffic	2019-11-23 05:19:47
106.13.105.88	attackspam	Nov 22 17:10:11 debian sshd\[28605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.105.88 user=root Nov 22 17:10:13 debian sshd\[28605\]: Failed password for root from 106.13.105.88 port 59584 ssh2 Nov 22 17:45:54 debian sshd\[31094\]: Invalid user hoeger from 106.13.105.88 port 47902 Nov 22 17:45:54 debian sshd\[31094\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.105.88 ...	2019-11-23 05:01:57
176.31.43.255	attackbots	Nov 22 20:48:37 vpn01 sshd[11646]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.43.255 Nov 22 20:48:39 vpn01 sshd[11646]: Failed password for invalid user shinsuke from 176.31.43.255 port 49678 ssh2 ...	2019-11-23 04:57:22
171.111.72.174	attackspam	Telnet Server BruteForce Attack	2019-11-23 05:08:50
222.73.120.40	attack	Unauthorized connection attempt from IP address 222.73.120.40 on Port 445(SMB)	2019-11-23 04:46:00
186.47.99.138	attack	Unauthorized connection attempt from IP address 186.47.99.138 on Port 445(SMB)	2019-11-23 05:04:01
114.30.145.235	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/114.30.145.235/ KR - 1H : (11) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : KR NAME ASN : ASN38121 IP : 114.30.145.235 CIDR : 114.30.144.0/21 PREFIX COUNT : 93 UNIQUE IP COUNT : 49152 ATTACKS DETECTED ASN38121 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-11-22 15:45:42 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-11-23 05:14:12

Recently Reported IPs

167.99.136.85	167.99.142.207	167.99.144.206	167.99.149.48
167.99.15.252	167.99.151.59	167.99.146.187	167.99.145.228
167.99.15.237	167.99.151.23	167.99.151.160	167.99.152.42
167.99.152.245	167.99.153.59	167.99.154.71	167.99.147.66
167.99.15.170	167.99.153.190	167.99.154.37	167.99.155.94