85.119.149.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: OOO Network of Data-Centers Selectel

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	RUSSIAN SCAMMERS !	2020-06-12 20:26:54

Comments on same subnet:

IP	Type	Details	Datetime
85.119.149.130	attackspambots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-08-29 00:09:16
85.119.149.130	attack	08/07/2019-03:20:25.813987 85.119.149.130 Protocol: 6 ET SCAN Potential SSH Scan	2019-08-07 15:21:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.119.149.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36247
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.119.149.99.			IN	A

;; AUTHORITY SECTION:
.			459	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061200 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jun 12 20:26:50 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 99.149.119.85.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 99.149.119.85.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.196.14.98	attackspam	port scan and connect, tcp 80 (http)	2020-02-13 09:12:43
41.32.106.225	attack	firewall-block, port(s): 23/tcp	2020-02-13 09:39:19
185.103.110.204	attackspambots	0,47-01/03 [bc01/m10] PostRequest-Spammer scoring: rome	2020-02-13 09:02:49
37.193.51.8	attack	firewall-block, port(s): 445/tcp	2020-02-13 09:55:03
106.13.200.50	attack	Feb 12 15:54:31 h1745522 sshd[5086]: Invalid user 123456 from 106.13.200.50 port 37824 Feb 12 15:54:31 h1745522 sshd[5086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.200.50 Feb 12 15:54:31 h1745522 sshd[5086]: Invalid user 123456 from 106.13.200.50 port 37824 Feb 12 15:54:33 h1745522 sshd[5086]: Failed password for invalid user 123456 from 106.13.200.50 port 37824 ssh2 Feb 12 15:58:26 h1745522 sshd[5228]: Invalid user ship from 106.13.200.50 port 59264 Feb 12 15:58:26 h1745522 sshd[5228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.200.50 Feb 12 15:58:26 h1745522 sshd[5228]: Invalid user ship from 106.13.200.50 port 59264 Feb 12 15:58:29 h1745522 sshd[5228]: Failed password for invalid user ship from 106.13.200.50 port 59264 ssh2 Feb 12 16:02:22 h1745522 sshd[5357]: Invalid user zen123 from 106.13.200.50 port 52526 ...	2020-02-13 09:36:38
92.53.53.169	attackbotsspam	PHI,WP GET /wp-login.php	2020-02-13 09:58:13
45.126.161.186	attack	Feb 12 20:35:55 plusreed sshd[16155]: Invalid user statue from 45.126.161.186 ...	2020-02-13 09:54:30
13.238.224.130	attackbots	Sql/code injection probe	2020-02-13 09:38:34
212.47.253.178	attackspambots	2020-02-12T17:35:39.396198linuxbox sshd[41397]: Invalid user ji from 212.47.253.178 port 59230 ...	2020-02-13 09:18:14
84.33.122.235	attackspambots	Automatic report - Port Scan Attack	2020-02-13 09:59:45
27.72.115.218	attack	Unauthorized connection attempt detected from IP address 27.72.115.218 to port 445	2020-02-13 09:03:11
104.248.116.140	attackspambots	Invalid user qgm from 104.248.116.140 port 59036	2020-02-13 09:00:08
201.48.206.146	attack	5x Failed Password	2020-02-13 09:05:19
77.40.34.247	attackspam	Feb 13 01:48:57 web1 postfix/smtpd\[9350\]: warning: unknown\[77.40.34.247\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 13 01:49:07 web1 postfix/smtpd\[9350\]: warning: unknown\[77.40.34.247\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Feb 13 01:49:18 web1 postfix/smtpd\[9350\]: warning: unknown\[77.40.34.247\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-02-13 08:56:35
134.175.206.12	attack	Feb 13 00:03:58 plex sshd[12066]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.206.12 user=root Feb 13 00:03:59 plex sshd[12066]: Failed password for root from 134.175.206.12 port 50384 ssh2	2020-02-13 08:56:08

Recently Reported IPs

116.2.173.137	51.210.102.246	123.5.52.47	120.146.153.51
51.210.103.47	34.223.23.251	185.63.253.20	220.175.106.43
190.19.176.147	118.143.201.168	177.136.123.148	172.109.146.210
181.126.27.178	19.150.43.74	95.144.4.246	28.233.185.194
49.88.112.88	103.198.81.2	190.73.23.224	113.180.16.178