City: unknown
Region: unknown
Country: Russia
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
% This is the RIPE Database query service.
% The objects are in RPSL format.
%
% The RIPE Database is subject to Terms and Conditions.
% See https://docs.db.ripe.net/terms-conditions.html
% Note: this output has been filtered.
% To receive output for a database update, use the "-B" flag.
% Information related to '213.180.199.0 - 213.180.199.255'
% Abuse contact for '213.180.199.0 - 213.180.199.255' is 'abuse@yandex.ru'
inetnum: 213.180.199.0 - 213.180.199.255
netname: YANDEX-213-180-199-0
status: ASSIGNED PA
country: RU
descr: Yandex enterprise network
mnt-by: YANDEX-MNT
admin-c: YNDX1-RIPE
tech-c: YNDX1-RIPE
org: ORG-YA1-RIPE
remarks: INFRA-AW
source: RIPE
created: 2015-04-09T10:16:51Z
last-modified: 2024-10-28T10:36:33Z
organisation: ORG-YA1-RIPE
org-name: YANDEX LLC
country: RU
org-type: LIR
address: LVA TOLSTOY STREET, 16
address: 119021
address: Moscow
address: RUSSIAN FEDERATION
phone: +74957397000
fax-no: +74957397070
admin-c: YNDX1-RIPE
tech-c: YNDX1-RIPE
abuse-c: YAH6-RIPE
mnt-ref: RIPE-NCC-HM-MNT
mnt-ref: YANDEX-MNT
mnt-by: RIPE-NCC-HM-MNT
mnt-by: YANDEX-MNT
created: 2004-04-22T14:39:02Z
last-modified: 2025-08-04T11:07:18Z
source: RIPE # Filtered
role: Yandex LLC Network Operations
address: Yandex LLC
address: 16, Leo Tolstoy St.
address: 119021
address: Moscow
address: Russian Federation
phone: +7 495 739 7000
fax-no: +7 495 739 7070
remarks: trouble: ------------------------------------------------------
remarks: trouble: Points of contact for Yandex LLC Network Operations
remarks: trouble: ------------------------------------------------------
remarks: trouble: Routing and peering issues: noc@yandex.net
remarks: trouble: SPAM issues: abuse@yandex.ru
remarks: trouble: Network security issues: abuse@yandex.ru
remarks: trouble: Mail issues: postmaster@yandex.ru
remarks: trouble: General information: info@yandex.ru
remarks: trouble: ------------------------------------------------------
admin-c: MK24579-RIPE
tech-c: EM3673-RIPE
tech-c: AUR2-RIPE
nic-hdl: YNDX1-RIPE
mnt-by: YANDEX-MNT
created: 2002-06-07T05:35:50Z
last-modified: 2025-12-30T09:47:31Z
source: RIPE # Filtered
abuse-mailbox: abuse@yandex.ru
% Information related to '213.180.199.0/24AS13238'
route: 213.180.199.0/24
descr: Yandex network
origin: AS13238
mnt-by: YANDEX-MNT
created: 2021-07-26T12:11:59Z
last-modified: 2021-07-26T12:11:59Z
source: RIPE
% This query was served by the RIPE Database Query Service version 1.121.2 (BUSA); <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.180.199.9
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25836
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;213.180.199.9. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026041100 1800 900 604800 86400
;; Query time: 6 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Apr 12 01:15:05 CST 2026
;; MSG SIZE rcvd: 106b'9.199.180.213.in-addr.arpa domain name pointer kp-nginx-stable-balancer.kp.yandex.net.
'Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
9.199.180.213.in-addr.arpa name = kp-nginx-stable-balancer.kp.yandex.net.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 139.59.57.2 | attack | Aug 21 22:21:25 abendstille sshd\[21616\]: Invalid user herman from 139.59.57.2 Aug 21 22:21:25 abendstille sshd\[21616\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.57.2 Aug 21 22:21:27 abendstille sshd\[21616\]: Failed password for invalid user herman from 139.59.57.2 port 45050 ssh2 Aug 21 22:25:38 abendstille sshd\[25585\]: Invalid user test from 139.59.57.2 Aug 21 22:25:38 abendstille sshd\[25585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.57.2 ... |
2020-08-22 04:35:28 |
| 183.82.0.156 | attack | Unauthorized connection attempt from IP address 183.82.0.156 on Port 445(SMB) |
2020-08-22 04:26:31 |
| 54.38.65.215 | attack | Aug 21 22:30:15 vmd17057 sshd[25688]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.65.215 Aug 21 22:30:17 vmd17057 sshd[25688]: Failed password for invalid user test1 from 54.38.65.215 port 60067 ssh2 ... |
2020-08-22 04:36:08 |
| 190.121.136.3 | attack | Aug 21 22:11:32 sip sshd[1381152]: Invalid user gzw from 190.121.136.3 port 53700 Aug 21 22:11:34 sip sshd[1381152]: Failed password for invalid user gzw from 190.121.136.3 port 53700 ssh2 Aug 21 22:17:01 sip sshd[1381181]: Invalid user oracle from 190.121.136.3 port 60664 ... |
2020-08-22 04:20:58 |
| 104.197.85.155 | attack | Honeypot hit. |
2020-08-22 04:52:05 |
| 110.45.155.101 | attackspam | 2020-08-21T23:19:14.960078mail.standpoint.com.ua sshd[16475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.45.155.101 2020-08-21T23:19:14.957159mail.standpoint.com.ua sshd[16475]: Invalid user stef from 110.45.155.101 port 42218 2020-08-21T23:19:16.845773mail.standpoint.com.ua sshd[16475]: Failed password for invalid user stef from 110.45.155.101 port 42218 ssh2 2020-08-21T23:23:25.209014mail.standpoint.com.ua sshd[16998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=110.45.155.101 user=root 2020-08-21T23:23:26.888651mail.standpoint.com.ua sshd[16998]: Failed password for root from 110.45.155.101 port 50374 ssh2 ... |
2020-08-22 04:45:19 |
| 117.34.74.252 | attackbots | Unauthorized connection attempt from IP address 117.34.74.252 on Port 445(SMB) |
2020-08-22 04:25:30 |
| 1.4.196.19 | attackspam | Failed password for invalid user ftp from 1.4.196.19 port 55728 ssh2 |
2020-08-22 04:54:44 |
| 79.41.72.95 | attackbots | Automatic report - Port Scan Attack |
2020-08-22 04:33:00 |
| 193.232.254.24 | attackbots | Unauthorized connection attempt from IP address 193.232.254.24 on Port 445(SMB) |
2020-08-22 04:22:17 |
| 3.227.1.64 | attackbots | vBulletin Remote Code Execution Vulnerability, PTR: ec2-3-227-1-64.compute-1.amazonaws.com. |
2020-08-22 04:21:39 |
| 222.186.15.62 | attackbotsspam | $f2bV_matches |
2020-08-22 04:38:27 |
| 101.251.206.30 | attackspam | Aug 21 20:17:05 ip-172-31-16-56 sshd\[14857\]: Failed password for root from 101.251.206.30 port 53234 ssh2\ Aug 21 20:21:45 ip-172-31-16-56 sshd\[14923\]: Invalid user ram from 101.251.206.30\ Aug 21 20:21:47 ip-172-31-16-56 sshd\[14923\]: Failed password for invalid user ram from 101.251.206.30 port 60780 ssh2\ Aug 21 20:26:05 ip-172-31-16-56 sshd\[15038\]: Invalid user torrent from 101.251.206.30\ Aug 21 20:26:08 ip-172-31-16-56 sshd\[15038\]: Failed password for invalid user torrent from 101.251.206.30 port 40098 ssh2\ |
2020-08-22 04:41:48 |
| 94.191.60.213 | attackspambots | Aug 21 20:38:33 game-panel sshd[2632]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.60.213 Aug 21 20:38:34 game-panel sshd[2632]: Failed password for invalid user lmx from 94.191.60.213 port 37702 ssh2 Aug 21 20:42:59 game-panel sshd[3003]: Failed password for root from 94.191.60.213 port 58670 ssh2 |
2020-08-22 04:46:40 |
| 104.236.100.42 | attackspam | 104.236.100.42 - - [21/Aug/2020:21:25:42 +0100] "POST /wp-login.php HTTP/1.1" 200 2345 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.100.42 - - [21/Aug/2020:21:25:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2329 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.236.100.42 - - [21/Aug/2020:21:25:45 +0100] "POST /wp-login.php HTTP/1.1" 200 2329 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2020-08-22 04:32:00 |