90.150.253.29 - IPInfo

Basic Info

City: Tyumen

Region: Tyumen’ Oblast

Country: Russia

Internet Service Provider: Rostelecom

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 90.150.253.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24945
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;90.150.253.29.			IN	A

;; AUTHORITY SECTION:
.			474	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031101 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 12 04:36:40 CST 2020
;; MSG SIZE  rcvd: 117

Host info

29.253.150.90.in-addr.arpa domain name pointer 29.253.access.ttknet.ru.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
29.253.150.90.in-addr.arpa	name = 29.253.access.ttknet.ru.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
147.135.158.100	attackbotsspam	[AUTOMATIC REPORT] - 24 tries in total - SSH BRUTE FORCE - IP banned	2019-07-10 15:40:28
191.113.15.217	attackspambots	port scan and connect, tcp 23 (telnet)	2019-07-10 15:13:53
153.36.232.49	attackbots	19/7/10@03:23:49: FAIL: IoT-SSH address from=153.36.232.49 ...	2019-07-10 15:29:00
218.203.204.144	attackbots	Jul 10 01:13:56 Proxmox sshd\[28693\]: Invalid user demouser from 218.203.204.144 port 36252 Jul 10 01:13:56 Proxmox sshd\[28693\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.203.204.144 Jul 10 01:13:58 Proxmox sshd\[28693\]: Failed password for invalid user demouser from 218.203.204.144 port 36252 ssh2 Jul 10 01:16:59 Proxmox sshd\[31595\]: User root from 218.203.204.144 not allowed because not listed in AllowUsers Jul 10 01:16:59 Proxmox sshd\[31595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.203.204.144 user=root Jul 10 01:17:01 Proxmox sshd\[31595\]: Failed password for invalid user root from 218.203.204.144 port 48165 ssh2	2019-07-10 15:41:15
211.149.210.240	attackspam	10 attempts against mh-pma-try-ban on grass.magehost.pro	2019-07-10 15:35:46
60.174.192.240	attackbotsspam	$f2bV_matches	2019-07-10 15:32:06
138.197.65.185	attackbots	Automatic report - Web App Attack	2019-07-10 15:33:34
105.235.116.254	attackbotsspam	Jul 10 06:25:51 thevastnessof sshd[18189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=105.235.116.254 ...	2019-07-10 14:56:43
106.13.35.212	attackbotsspam	SSH bruteforce	2019-07-10 15:46:36
67.160.238.143	attackspam	Brute force SMTP login attempted. ...	2019-07-10 15:39:34
154.68.5.55	attack	smtp brute force login	2019-07-10 15:15:06
141.8.132.24	attackspam	[Wed Jul 10 06:18:52.302937 2019] [:error] [pid 12219:tid 139977212000000] [client 141.8.132.24:40127] [client 141.8.132.24] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.1.1/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "792"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.1.1"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XSUg3FIMVtpCcCd8oJ8TkAAAAAg"] ...	2019-07-10 15:00:35
51.75.202.58	attackbotsspam	Jul 10 07:56:00 dedicated sshd[10083]: Invalid user dam from 51.75.202.58 port 49493 Jul 10 07:56:00 dedicated sshd[10083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.75.202.58 Jul 10 07:56:00 dedicated sshd[10083]: Invalid user dam from 51.75.202.58 port 49493 Jul 10 07:56:02 dedicated sshd[10083]: Failed password for invalid user dam from 51.75.202.58 port 49493 ssh2 Jul 10 07:57:25 dedicated sshd[10199]: Invalid user sampserver from 51.75.202.58 port 57998	2019-07-10 15:08:49
192.119.65.229	attack	firewall-block, port(s): 1900/udp	2019-07-10 15:02:58
218.92.0.211	attack	Jul 10 06:35:53 rpi sshd[5999]: Failed password for root from 218.92.0.211 port 20899 ssh2 Jul 10 06:35:56 rpi sshd[5999]: Failed password for root from 218.92.0.211 port 20899 ssh2	2019-07-10 15:37:23

Recently Reported IPs

18.252.13.37	1.202.239.10	219.56.31.70	104.20.2.253
90.86.98.93	222.46.235.86	31.207.47.48	123.240.101.2
57.87.164.65	60.96.40.118	200.56.14.222	94.4.233.54
115.43.161.133	41.224.249.111	132.195.67.114	190.203.1.51
217.243.30.226	144.53.235.130	191.58.253.113	158.46.187.181