83.149.21.145 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
83.149.21.110	attackspam	1590785452 - 05/29/2020 22:50:52 Host: 83.149.21.110/83.149.21.110 Port: 445 TCP Blocked	2020-05-30 05:14:14
83.149.21.30	attack	SMB Server BruteForce Attack	2020-05-14 07:44:42
83.149.21.202	attackspam	04/16/2020-08:11:58.792704 83.149.21.202 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-04-17 00:35:38
83.149.21.148	attackbots	Unauthorized connection attempt from IP address 83.149.21.148 on Port 445(SMB)	2019-11-04 07:19:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 83.149.21.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13685
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;83.149.21.145.			IN	A

;; AUTHORITY SECTION:
.			362	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021122700 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 27 18:03:48 CST 2021
;; MSG SIZE  rcvd: 106

Host info

145.21.149.83.in-addr.arpa domain name pointer gprs-user-145.21.149.83.in-addr.arpa.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.21.149.83.in-addr.arpa	name = gprs-user-145.21.149.83.in-addr.arpa.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
197.51.82.175	attackspam	Brute force attempt	2019-07-09 16:28:27
66.249.66.84	attack	Automatic report - Web App Attack	2019-07-09 16:44:19
165.22.92.182	attack	Jul 8 16:36:47 twattle sshd[10549]: Received disconnect from 165.22.92= .182: 11: Bye Bye [preauth] Jul 8 16:36:53 twattle sshd[10551]: Invalid user admin from 165.22.92.= 182 Jul 8 16:36:53 twattle sshd[10551]: Received disconnect from 165.22.92= .182: 11: Bye Bye [preauth] Jul 8 16:36:58 twattle sshd[10553]: Invalid user admin from 165.22.92.= 182 Jul 8 16:36:58 twattle sshd[10553]: Received disconnect from 165.22.92= .182: 11: Bye Bye [preauth] Jul 8 16:37:03 twattle sshd[10555]: Invalid user user from 165.22.92.1= 82 Jul 8 16:37:03 twattle sshd[10555]: Received disconnect from 165.22.92= .182: 11: Bye Bye [preauth] Jul 8 16:37:08 twattle sshd[10557]: Invalid user ubnt from 165.22.92.1= 82 Jul 8 16:37:08 twattle sshd[10557]: Received disconnect from 165.22.92= .182: 11: Bye Bye [preauth] Jul 8 16:37:13 twattle sshd[10559]: Invalid user admin from 165.22.92.= 182 Jul 8 16:37:13 twattle sshd[10559]: Received disconnect from 165.22.92= .182: 11: Bye Bye [prea........ -------------------------------	2019-07-09 16:51:32
113.178.46.51	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 12:41:30,686 INFO [shellcode_manager] (113.178.46.51) no match, writing hexdump (d76e6d1c770f52d0826f4349174c7655 :2084854) - MS17010 (EternalBlue)	2019-07-09 16:36:28
178.128.150.79	attack	detected by Fail2Ban	2019-07-09 16:45:29
222.186.15.110	attackbotsspam	Jul 9 09:39:12 minden010 sshd[7373]: Failed password for root from 222.186.15.110 port 35369 ssh2 Jul 9 09:39:21 minden010 sshd[7423]: Failed password for root from 222.186.15.110 port 62767 ssh2 ...	2019-07-09 16:37:04
162.243.150.92	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-09 16:22:10
115.55.30.21	attackbotsspam	22/tcp [2019-07-09]1pkt	2019-07-09 16:46:41
138.197.156.62	attackspam	09.07.2019 03:23:12 SSH access blocked by firewall	2019-07-09 17:07:40
137.74.158.99	attackbots	WordPress login Brute force / Web App Attack on client site.	2019-07-09 16:59:34
163.53.75.227	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-08 12:41:24,109 INFO [shellcode_manager] (163.53.75.227) no match, writing hexdump (1a4b96612f4c09583a235e36772c8888 :1504) - SMB (Unknown)	2019-07-09 16:40:08
59.18.197.162	attack	Jul 9 06:04:54 ArkNodeAT sshd\[6952\]: Invalid user ey from 59.18.197.162 Jul 9 06:04:54 ArkNodeAT sshd\[6952\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.18.197.162 Jul 9 06:04:56 ArkNodeAT sshd\[6952\]: Failed password for invalid user ey from 59.18.197.162 port 45712 ssh2	2019-07-09 16:24:28
190.128.230.14	attack	SSH Brute-Force reported by Fail2Ban	2019-07-09 16:28:59
79.102.147.132	attackbotsspam	10 attempts against mh-pma-try-ban on db-slave.any-lamp.com	2019-07-09 16:33:46
112.81.234.8	attackbotsspam	Jul 9 09:06:41 nginx sshd[63514]: error: maximum authentication attempts exceeded for root from 112.81.234.8 port 64036 ssh2 [preauth] Jul 9 09:06:41 nginx sshd[63514]: Disconnecting: Too many authentication failures [preauth]	2019-07-09 16:15:18

Recently Reported IPs

193.224.186.228	9.108.212.221	5.182.140.205	220.213.78.161
178.218.31.65	111.201.246.147	16.14.226.26	215.61.235.137
40.208.77.52	162.251.174.21	126.149.240.102	1.11.125.114
10.212.214.138	233.69.187.65	168.245.71.189	219.92.89.190
67.105.36.45	178.22.153.153	236.185.46.147	234.217.181.105