186.248.13.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: Cemig Telecomunicações SA

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
186.248.131.226	attackspam	Request: "GET / HTTP/1.1"	2019-06-22 11:30:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 186.248.13.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36690
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;186.248.13.99.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 16 01:18:01 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 99.13.248.186.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 99.13.248.186.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
221.207.8.251	attackbots	Oct 13 22:48:30 vm0 sshd[31283]: Failed password for root from 221.207.8.251 port 33228 ssh2 Oct 13 22:54:57 vm0 sshd[7007]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.207.8.251 ...	2020-10-14 05:50:24
51.81.152.2	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 42 - port: 4243 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:43:45
103.86.158.210	attackspambots	ET SCAN Suspicious inbound to MSSQL port 1433 - port: 1433 proto: tcp cat: Potentially Bad Trafficbytes: 60	2020-10-14 05:37:22
78.128.113.42	attackbotsspam	TCP (SYN) 78.128.113.42:52105 -> port 3132, len 44	2020-10-14 05:40:54
87.181.51.143	attackbotsspam	SSH Brute Force	2020-10-14 06:12:21
45.129.33.80	attackspam	TCP (SYN) 45.129.33.80:56794 -> port 5319, len 44	2020-10-14 05:46:44
45.129.33.9	attackbotsspam	TCP (SYN) 45.129.33.9:53668 -> port 10226, len 44	2020-10-14 05:49:00
182.76.9.122	attackspambots	SSH Brute Force	2020-10-14 05:53:15
103.110.89.148	attackspam	SSH Brute Force	2020-10-14 06:10:27
149.202.208.104	attackbots	SSH Brute Force	2020-10-14 06:07:04
62.114.151.182	attack	firewall-block, port(s): 445/tcp	2020-10-14 06:14:28
89.144.47.246	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 79 - port: 3389 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:39:13
45.227.255.204	attackbots	TCP (SYN) 45.227.255.204:62790 -> port 1080, len 60	2020-10-14 05:44:18
92.118.160.61	attackspambots	[Wed Oct 14 04:02:08.771804 2020] [:error] [pid 18140:tid 140204174145280] [client 92.118.160.61:51035] [client 92.118.160.61] ModSecurity: Access denied with code 403 (phase 1). Match of "within %{tx.allowed_http_versions}" against "REQUEST_PROTOCOL" required. [file "/etc/modsecurity/coreruleset-3.3.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "1041"] [id "920430"] [msg "HTTP protocol version is not allowed by policy"] [data "HTTP/1.0"] [severity "CRITICAL"] [ver "OWASP_CRS/3.3.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [hostname "karangploso.jatim.bmkg.go.id"] [uri "/"] [unique_id "X4YV0AhFQrstw8CY0VTYQwAAABU"] ...	2020-10-14 05:38:29
151.80.149.223	attack	SSH Brute Force	2020-10-14 05:55:41

Recently Reported IPs

1.46.0.207	136.37.169.214	149.202.171.122	111.149.125.102
99.231.168.146	37.87.47.116	182.151.189.245	2003:d8:5bea:2314:8556:3919:fb41:473a
31.145.0.131	36.140.96.230	40.107.78.54	88.192.133.52
70.203.35.16	24.34.64.165	119.2.249.25	181.1.95.104
158.46.159.83	151.46.174.13	85.156.36.232	196.89.246.103