109.244.99.145

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
109.244.99.21	attackspambots	Sep 21 18:48:32 Ubuntu-1404-trusty-64-minimal sshd\[14098\]: Invalid user jenkins from 109.244.99.21 Sep 21 18:48:32 Ubuntu-1404-trusty-64-minimal sshd\[14098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.99.21 Sep 21 18:48:34 Ubuntu-1404-trusty-64-minimal sshd\[14098\]: Failed password for invalid user jenkins from 109.244.99.21 port 52088 ssh2 Sep 21 18:53:08 Ubuntu-1404-trusty-64-minimal sshd\[16815\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.99.21 user=root Sep 21 18:53:10 Ubuntu-1404-trusty-64-minimal sshd\[16815\]: Failed password for root from 109.244.99.21 port 35646 ssh2	2020-09-22 01:34:10
109.244.99.21	attackspambots	Sep 21 04:05:11 hidden sshd[661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.99.21 user=root Sep 21 04:05:13 hidden sshd[661]: Failed password for hidden from 109.244.99.21 port 46012 ssh2 Sep 21 04:08:27 hidden sshd[725]: Invalid user postgres from 109.244.99.21 port 57610	2020-09-21 17:17:23
109.244.99.21	attack	109.244.99.21 (CN/China/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Sep 17 09:35:20 server4 sshd[32494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.99.21 user=root Sep 17 09:28:09 server4 sshd[26681]: Failed password for root from 60.53.186.113 port 44111 ssh2 Sep 17 09:34:38 server4 sshd[31905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.146.1.186 user=root Sep 17 09:26:00 server4 sshd[24556]: Failed password for root from 51.91.100.120 port 51058 ssh2 Sep 17 09:34:40 server4 sshd[31905]: Failed password for root from 186.146.1.186 port 33850 ssh2 Sep 17 09:28:08 server4 sshd[26681]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.53.186.113 user=root IP Addresses Blocked:	2020-09-17 21:52:58
109.244.99.21	attack	Sep 16 12:59:04 ws19vmsma01 sshd[140719]: Failed password for root from 109.244.99.21 port 52338 ssh2 Sep 16 14:00:43 ws19vmsma01 sshd[179324]: Failed password for root from 109.244.99.21 port 45582 ssh2 ...	2020-09-17 05:09:01
109.244.99.33	attack	Aug 3 08:56:33 cumulus sshd[3229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.99.33 user=r.r Aug 3 08:56:35 cumulus sshd[3229]: Failed password for r.r from 109.244.99.33 port 49152 ssh2 Aug 3 08:56:35 cumulus sshd[3229]: Received disconnect from 109.244.99.33 port 49152:11: Bye Bye [preauth] Aug 3 08:56:35 cumulus sshd[3229]: Disconnected from 109.244.99.33 port 49152 [preauth] Aug 3 08:59:05 cumulus sshd[3466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.99.33 user=r.r Aug 3 08:59:06 cumulus sshd[3466]: Failed password for r.r from 109.244.99.33 port 45922 ssh2 Aug 3 08:59:06 cumulus sshd[3466]: Received disconnect from 109.244.99.33 port 45922:11: Bye Bye [preauth] Aug 3 08:59:06 cumulus sshd[3466]: Disconnected from 109.244.99.33 port 45922 [preauth] Aug 3 09:01:25 cumulus sshd[3754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 t........ -------------------------------	2020-08-10 05:19:22
109.244.99.33	attackbotsspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-08-08 22:50:07
109.244.99.33	attack	Aug 3 08:56:33 cumulus sshd[3229]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.99.33 user=r.r Aug 3 08:56:35 cumulus sshd[3229]: Failed password for r.r from 109.244.99.33 port 49152 ssh2 Aug 3 08:56:35 cumulus sshd[3229]: Received disconnect from 109.244.99.33 port 49152:11: Bye Bye [preauth] Aug 3 08:56:35 cumulus sshd[3229]: Disconnected from 109.244.99.33 port 49152 [preauth] Aug 3 08:59:05 cumulus sshd[3466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.244.99.33 user=r.r Aug 3 08:59:06 cumulus sshd[3466]: Failed password for r.r from 109.244.99.33 port 45922 ssh2 Aug 3 08:59:06 cumulus sshd[3466]: Received disconnect from 109.244.99.33 port 45922:11: Bye Bye [preauth] Aug 3 08:59:06 cumulus sshd[3466]: Disconnected from 109.244.99.33 port 45922 [preauth] Aug 3 09:01:25 cumulus sshd[3754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 t........ -------------------------------	2020-08-06 14:03:55
109.244.99.159	attackbotsspam	Unauthorized connection attempt detected from IP address 109.244.99.159 to port 80	2020-05-30 01:27:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 109.244.99.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2959
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;109.244.99.145.			IN	A

;; AUTHORITY SECTION:
.			595	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030301 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 04 04:09:57 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 145.99.244.109.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.99.244.109.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
107.189.11.148	attack	3389BruteforceFW21	2019-11-16 15:16:04
103.217.112.14	attackspam	scan z	2019-11-16 15:05:57
200.60.91.42	attackbotsspam	Triggered by Fail2Ban at Vostok web server	2019-11-16 15:44:37
14.18.100.90	attackspambots	Nov 16 08:23:37 server sshd\[24698\]: Invalid user ubuntu from 14.18.100.90 port 36980 Nov 16 08:23:37 server sshd\[24698\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.100.90 Nov 16 08:23:38 server sshd\[24698\]: Failed password for invalid user ubuntu from 14.18.100.90 port 36980 ssh2 Nov 16 08:28:53 server sshd\[21114\]: User root from 14.18.100.90 not allowed because listed in DenyUsers Nov 16 08:28:53 server sshd\[21114\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.18.100.90 user=root	2019-11-16 15:30:38
137.74.199.180	attackspambots	Nov 16 07:47:24 SilenceServices sshd[15161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.199.180 Nov 16 07:47:27 SilenceServices sshd[15161]: Failed password for invalid user vcsa from 137.74.199.180 port 50458 ssh2 Nov 16 07:50:56 SilenceServices sshd[16250]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.74.199.180	2019-11-16 15:06:32
222.186.52.78	attackbotsspam	Nov 16 01:55:00 ny01 sshd[28575]: Failed password for root from 222.186.52.78 port 30197 ssh2 Nov 16 01:55:01 ny01 sshd[28575]: Failed password for root from 222.186.52.78 port 30197 ssh2 Nov 16 01:55:03 ny01 sshd[28575]: Failed password for root from 222.186.52.78 port 30197 ssh2	2019-11-16 15:02:21
46.105.16.246	attack	$f2bV_matches	2019-11-16 15:09:05
106.54.225.244	attack	Nov 16 08:13:19 localhost sshd\[30586\]: Invalid user mysql from 106.54.225.244 port 40026 Nov 16 08:13:19 localhost sshd\[30586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.225.244 Nov 16 08:13:21 localhost sshd\[30586\]: Failed password for invalid user mysql from 106.54.225.244 port 40026 ssh2	2019-11-16 15:29:05
92.118.38.38	attackbotsspam	Nov 16 08:29:29 andromeda postfix/smtpd\[42299\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 16 08:29:33 andromeda postfix/smtpd\[40692\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 16 08:29:45 andromeda postfix/smtpd\[43810\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 16 08:30:05 andromeda postfix/smtpd\[40692\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure Nov 16 08:30:09 andromeda postfix/smtpd\[43810\]: warning: unknown\[92.118.38.38\]: SASL LOGIN authentication failed: authentication failure	2019-11-16 15:40:11
212.237.55.37	attackspam	F2B jail: sshd. Time: 2019-11-16 07:28:47, Reported by: VKReport	2019-11-16 15:33:59
46.143.206.240	attackspam	" "	2019-11-16 15:13:46
190.228.145.242	attackspam	SSH Brute-Force attacks	2019-11-16 15:28:40
222.186.180.8	attackspambots	2019-11-16T07:29:56.688181abusebot-7.cloudsearch.cf sshd\[9923\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root	2019-11-16 15:31:04
36.236.23.128	attackbots	Honeypot attack, port: 23, PTR: 36-236-23-128.dynamic-ip.hinet.net.	2019-11-16 15:07:02
31.209.97.66	attackbotsspam	SPAM Delivery Attempt	2019-11-16 15:07:51

Recently Reported IPs

109.242.234.230	48.4.96.207	109.245.39.109	109.246.48.30
109.248.133.67	109.248.143.252	109.248.167.101	109.248.204.227
109.248.253.66	145.31.198.190	109.248.6.8	109.249.184.206
109.249.184.215	109.249.187.15	109.249.187.81	109.250.0.220
109.250.174.188	109.250.174.240	109.250.2.114	109.250.20.17