212.119.44.149

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
212.119.44.167	attackspambots	(mod_security) mod_security (id:210730) triggered by 212.119.44.167 (RU/Russia/-): 5 in the last 300 secs	2020-10-04 02:30:28
212.119.44.167	attack	(mod_security) mod_security (id:210730) triggered by 212.119.44.167 (RU/Russia/-): 5 in the last 300 secs	2020-10-03 18:17:47
212.119.44.215	attackspambots	9.311.211,11-04/03 [bc18/m78] PostRequest-Spammer scoring: Durban02	2019-11-21 03:14:02
212.119.44.53	attack	212.119.44.53 - - [20/Oct/2019:08:05:08 -0400] "GET /?page=products&action=../../../../../../etc/passwd&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17147 "https://newportbrassfaucets.com/?page=products&action=../../../../../../etc/passwd&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" 212.119.44.53 - - [20/Oct/2019:08:05:08 -0400] "GET /?page=products&action=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17138 "https://newportbrassfaucets.com/?page=products&action=..%2f..%2f..%2f..%2f..%2f..%2fetc%2fpasswd&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" ...	2019-10-20 20:49:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.119.44.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62957
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;212.119.44.149.			IN	A

;; AUTHORITY SECTION:
.			557	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022101101 1800 900 604800 86400

;; Query time: 27 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 12 02:06:33 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 149.44.119.212.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 149.44.119.212.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
111.254.11.18	attackbots	May 30 22:31:23 debian-2gb-nbg1-2 kernel: \[13129462.698106\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=111.254.11.18 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=52 ID=4302 PROTO=TCP SPT=45846 DPT=23 WINDOW=41732 RES=0x00 SYN URGP=0	2020-05-31 05:27:25
68.99.85.62	attack	May 30 22:43:34 tuxlinux sshd[42533]: Invalid user matilda from 68.99.85.62 port 47594 May 30 22:43:34 tuxlinux sshd[42533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.99.85.62 May 30 22:43:34 tuxlinux sshd[42533]: Invalid user matilda from 68.99.85.62 port 47594 May 30 22:43:34 tuxlinux sshd[42533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.99.85.62 May 30 22:43:34 tuxlinux sshd[42533]: Invalid user matilda from 68.99.85.62 port 47594 May 30 22:43:34 tuxlinux sshd[42533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.99.85.62 May 30 22:43:36 tuxlinux sshd[42533]: Failed password for invalid user matilda from 68.99.85.62 port 47594 ssh2 ...	2020-05-31 05:53:13
205.217.246.99	attackspambots	12,85-10/02 [bc00/m01] PostRequest-Spammer scoring: maputo01_x2b	2020-05-31 05:38:11
200.73.128.148	attack	May 31 00:15:24 journals sshd\[44894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.128.148 user=root May 31 00:15:26 journals sshd\[44894\]: Failed password for root from 200.73.128.148 port 40460 ssh2 May 31 00:17:51 journals sshd\[45090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.128.148 user=root May 31 00:17:53 journals sshd\[45090\]: Failed password for root from 200.73.128.148 port 33756 ssh2 May 31 00:20:19 journals sshd\[45333\]: Invalid user adi from 200.73.128.148 May 31 00:20:19 journals sshd\[45333\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.73.128.148 ...	2020-05-31 05:54:01
5.9.70.113	attackspam	abuseConfidenceScore blocked for 12h	2020-05-31 05:50:26
95.181.48.10	attack	May 30 22:21:48 ns382633 sshd\[7773\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.48.10 user=root May 30 22:21:50 ns382633 sshd\[7773\]: Failed password for root from 95.181.48.10 port 33522 ssh2 May 30 22:29:53 ns382633 sshd\[8817\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.48.10 user=root May 30 22:29:55 ns382633 sshd\[8817\]: Failed password for root from 95.181.48.10 port 55512 ssh2 May 30 22:33:36 ns382633 sshd\[9581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.48.10 user=root	2020-05-31 06:00:07
123.148.244.246	attack	Attack, like DDOS, Brute-Force, Port Scan, Hack, etc.	2020-05-31 05:40:43
39.152.17.192	attack	May 30 23:32:12 vmi345603 sshd[30736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.152.17.192 May 30 23:32:15 vmi345603 sshd[30736]: Failed password for invalid user alison from 39.152.17.192 port 11151 ssh2 ...	2020-05-31 05:33:56
51.254.143.190	attackbots	SSH Invalid Login	2020-05-31 05:50:09
222.186.15.246	attackbotsspam	May 30 23:33:07 plex sshd[17776]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.246 user=root May 30 23:33:09 plex sshd[17776]: Failed password for root from 222.186.15.246 port 16757 ssh2	2020-05-31 05:47:10
162.243.93.52	attackbotsspam	DATE:2020-05-30 22:31:26, IP:162.243.93.52, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-05-31 05:27:00
138.197.189.136	attackspam	May 30 16:44:19 ny01 sshd[2779]: Failed password for root from 138.197.189.136 port 59584 ssh2 May 30 16:47:35 ny01 sshd[3142]: Failed password for root from 138.197.189.136 port 36320 ssh2 May 30 16:50:52 ny01 sshd[3533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.189.136	2020-05-31 05:34:29
59.80.40.147	attackspambots	May 30 23:41:19 abendstille sshd\[15049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.80.40.147 user=root May 30 23:41:21 abendstille sshd\[15049\]: Failed password for root from 59.80.40.147 port 46926 ssh2 May 30 23:45:13 abendstille sshd\[19055\]: Invalid user jeffyh from 59.80.40.147 May 30 23:45:13 abendstille sshd\[19055\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.80.40.147 May 30 23:45:15 abendstille sshd\[19055\]: Failed password for invalid user jeffyh from 59.80.40.147 port 41742 ssh2 ...	2020-05-31 06:01:25
91.222.89.30	attack	Unauthorized connection attempt from IP address 91.222.89.30 on Port 445(SMB)	2020-05-31 05:39:17
222.186.175.23	attack	30.05.2020 21:53:36 SSH access blocked by firewall	2020-05-31 05:56:00

Recently Reported IPs

177.59.196.46	177.138.50.227	178.208.176.99	106.214.121.223
95.214.24.5	61.7.175.22	89.187.163.137	191.101.223.145
193.233.249.209	45.72.55.28	194.35.225.106	121.136.118.160
88.234.221.143	86.120.171.218	93.230.94.120	85.228.241.182
88.237.112.20	149.57.194.60	45.180.80.158	191.96.157.107