213.149.20.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
213.149.207.20	attack	RecipientDoesNotExist Timestamp : 03-May-20 12:35 (From . no-reply-dhl@alhoutisons.com) Listed on rbldns-ru unsubscore uceprotect-1 s5h-net (228)	2020-05-03 23:06:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.149.20.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60325
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;213.149.20.99.			IN	A

;; AUTHORITY SECTION:
.			582	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021300 1800 900 604800 86400

;; Query time: 55 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 16:44:14 CST 2022
;; MSG SIZE  rcvd: 106

Host info

99.20.149.213.in-addr.arpa domain name pointer ppp20-99.tis-dialog.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
99.20.149.213.in-addr.arpa	name = ppp20-99.tis-dialog.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.83.41.76	attackspambots	Oct 18 14:01:18 xtremcommunity sshd\[651453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.41.76 user=root Oct 18 14:01:20 xtremcommunity sshd\[651453\]: Failed password for root from 51.83.41.76 port 48114 ssh2 Oct 18 14:05:09 xtremcommunity sshd\[651527\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.41.76 user=root Oct 18 14:05:10 xtremcommunity sshd\[651527\]: Failed password for root from 51.83.41.76 port 39758 ssh2 Oct 18 14:09:00 xtremcommunity sshd\[651622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.83.41.76 user=root ...	2019-10-19 02:17:33
118.127.10.152	attack	Oct 18 13:41:22 pornomens sshd\[19215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.127.10.152 user=root Oct 18 13:41:24 pornomens sshd\[19215\]: Failed password for root from 118.127.10.152 port 43942 ssh2 Oct 18 13:55:48 pornomens sshd\[19242\]: Invalid user gw from 118.127.10.152 port 33374 Oct 18 13:55:48 pornomens sshd\[19242\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.127.10.152 ...	2019-10-19 02:19:00
116.196.81.5	attack	Automatic report - Banned IP Access	2019-10-19 02:13:18
150.95.27.59	attackspam	Oct 18 12:53:46 firewall sshd[16248]: Invalid user qweASDzxc from 150.95.27.59 Oct 18 12:53:48 firewall sshd[16248]: Failed password for invalid user qweASDzxc from 150.95.27.59 port 44384 ssh2 Oct 18 12:58:42 firewall sshd[16357]: Invalid user ey@123 from 150.95.27.59 ...	2019-10-19 01:51:24
121.254.26.153	attackbots	2019-10-12 19:35:25,035 fail2ban.actions [843]: NOTICE [sshd] Ban 121.254.26.153 2019-10-12 22:45:07,359 fail2ban.actions [843]: NOTICE [sshd] Ban 121.254.26.153 2019-10-13 01:53:52,176 fail2ban.actions [843]: NOTICE [sshd] Ban 121.254.26.153 ...	2019-10-19 02:11:31
41.90.113.126	attackspam	41.90.113.126 - - [18/Oct/2019:07:34:52 -0400] "GET /?page=products&action=%2fetc%2fpasswd%00&manufacturerID=61&productID=4701-RIM&linkID=16812 HTTP/1.1" 200 17417 "https://exitdevice.com/?page=products&action=%2fetc%2fpasswd%00&manufacturerID=61&productID=4701-RIM&linkID=16812" "Mozilla/5.0 (Windows NT 10.0; WOW64; Rv:50.0) Gecko/20100101 Firefox/50.0" ...	2019-10-19 01:59:05
201.249.204.20	attack	Port Scan: TCP/25	2019-10-19 02:17:12
54.36.172.105	attackspambots	Lines containing failures of 54.36.172.105 Oct 16 11:41:41 zabbix sshd[43557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.172.105 user=r.r Oct 16 11:41:43 zabbix sshd[43557]: Failed password for r.r from 54.36.172.105 port 48128 ssh2 Oct 16 11:41:43 zabbix sshd[43557]: Received disconnect from 54.36.172.105 port 48128:11: Bye Bye [preauth] Oct 16 11:41:43 zabbix sshd[43557]: Disconnected from authenticating user r.r 54.36.172.105 port 48128 [preauth] Oct 16 11:56:38 zabbix sshd[44546]: Invalid user ftpadmin from 54.36.172.105 port 32770 Oct 16 11:56:38 zabbix sshd[44546]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.36.172.105 Oct 16 11:56:40 zabbix sshd[44546]: Failed password for invalid user ftpadmin from 54.36.172.105 port 32770 ssh2 Oct 16 11:56:40 zabbix sshd[44546]: Received disconnect from 54.36.172.105 port 32770:11: Bye Bye [preauth] Oct 16 11:56:40 zabbix sshd[445........ ------------------------------	2019-10-19 01:48:35
46.105.99.163	attack	C2,WP GET /wp-login.php	2019-10-19 02:06:05
67.215.225.103	attackspambots	Oct 18 05:12:36 friendsofhawaii sshd\[22233\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.215.225.103 user=root Oct 18 05:12:38 friendsofhawaii sshd\[22233\]: Failed password for root from 67.215.225.103 port 33564 ssh2 Oct 18 05:16:43 friendsofhawaii sshd\[22556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.215.225.103 user=root Oct 18 05:16:45 friendsofhawaii sshd\[22556\]: Failed password for root from 67.215.225.103 port 55858 ssh2 Oct 18 05:20:54 friendsofhawaii sshd\[22890\]: Invalid user nano from 67.215.225.103	2019-10-19 01:44:07
65.124.94.138	attackbots	Oct 18 18:53:31 MK-Soft-VM7 sshd[21720]: Failed password for root from 65.124.94.138 port 43076 ssh2 ...	2019-10-19 01:56:53
185.232.67.6	attack	Oct 18 20:06:49 dedicated sshd[15321]: Invalid user admin from 185.232.67.6 port 56014	2019-10-19 02:24:21
186.227.166.154	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/186.227.166.154/ BR - 1H : (377) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : BR NAME ASN : ASN262721 IP : 186.227.166.154 CIDR : 186.227.166.0/23 PREFIX COUNT : 30 UNIQUE IP COUNT : 8192 WYKRYTE ATAKI Z ASN262721 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-18 13:35:20 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-19 01:43:11
14.232.29.93	attack	Oct 18 13:26:47 keyhelp sshd[32347]: Invalid user admin from 14.232.29.93 Oct 18 13:26:47 keyhelp sshd[32347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.232.29.93 Oct 18 13:26:49 keyhelp sshd[32347]: Failed password for invalid user admin from 14.232.29.93 port 34518 ssh2 Oct 18 13:26:50 keyhelp sshd[32347]: Connection closed by 14.232.29.93 port 34518 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.232.29.93	2019-10-19 01:42:49
106.12.119.148	attackspambots	Oct 18 18:23:55 ncomp sshd[26890]: Invalid user haldaemon from 106.12.119.148 Oct 18 18:23:55 ncomp sshd[26890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.119.148 Oct 18 18:23:55 ncomp sshd[26890]: Invalid user haldaemon from 106.12.119.148 Oct 18 18:23:57 ncomp sshd[26890]: Failed password for invalid user haldaemon from 106.12.119.148 port 50184 ssh2	2019-10-19 02:04:49

Recently Reported IPs

213.149.10.92	213.149.20.57	213.149.21.180	213.149.20.184
213.149.21.92	213.149.196.74	213.149.10.185	213.149.16.62
213.149.24.236	213.149.21.78	213.149.24.111	213.149.21.169
213.149.23.70	213.149.61.38	213.149.51.122	213.149.5.149
213.149.5.113	213.149.62.221	213.149.6.173	213.153.34.132