191.99.52.59 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Ecuador

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 191.99.52.59
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58086
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;191.99.52.59.			IN	A

;; AUTHORITY SECTION:
.			203	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 17:29:52 CST 2022
;; MSG SIZE  rcvd: 105

Host info

59.52.99.191.in-addr.arpa domain name pointer cgnatgpon-191-99-52-59.customer.claro.com.ec.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
59.52.99.191.in-addr.arpa	name = cgnatgpon-191-99-52-59.customer.claro.com.ec.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.46.227.61	attackspam	Dec 30 22:12:33 dev sshd\[15551\]: Invalid user hsqldb from 82.46.227.61 port 41636 Dec 30 22:12:33 dev sshd\[15551\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.46.227.61 Dec 30 22:12:34 dev sshd\[15554\]: Invalid user hsqldb from 82.46.227.61 port 41656	2019-12-31 06:10:48
211.141.35.72	attackbots	Dec 30 21:08:34 sd-53420 sshd\[4027\]: User backup from 211.141.35.72 not allowed because none of user's groups are listed in AllowGroups Dec 30 21:08:34 sd-53420 sshd\[4027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.141.35.72 user=backup Dec 30 21:08:36 sd-53420 sshd\[4027\]: Failed password for invalid user backup from 211.141.35.72 port 38856 ssh2 Dec 30 21:12:25 sd-53420 sshd\[10640\]: User root from 211.141.35.72 not allowed because none of user's groups are listed in AllowGroups Dec 30 21:12:25 sd-53420 sshd\[10640\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.141.35.72 user=root ...	2019-12-31 05:50:21
182.254.154.89	attack	Dec 30 21:29:02 zeus sshd[13721]: Failed password for root from 182.254.154.89 port 56564 ssh2 Dec 30 21:32:08 zeus sshd[13783]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.154.89 Dec 30 21:32:10 zeus sshd[13783]: Failed password for invalid user alans from 182.254.154.89 port 52984 ssh2 Dec 30 21:35:16 zeus sshd[13897]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.254.154.89	2019-12-31 05:47:09
222.186.175.182	attackbotsspam	Dec 30 23:06:36 markkoudstaal sshd[8750]: Failed password for root from 222.186.175.182 port 46068 ssh2 Dec 30 23:06:50 markkoudstaal sshd[8750]: error: maximum authentication attempts exceeded for root from 222.186.175.182 port 46068 ssh2 [preauth] Dec 30 23:06:56 markkoudstaal sshd[8786]: Failed password for root from 222.186.175.182 port 56712 ssh2	2019-12-31 06:08:21
223.155.194.221	attackspam	Unauthorized connection attempt detected from IP address 223.155.194.221 to port 8080	2019-12-31 06:15:50
106.13.234.36	attackbots	Dec 30 22:45:59 [host] sshd[3107]: Invalid user gpadmin from 106.13.234.36 Dec 30 22:45:59 [host] sshd[3107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.234.36 Dec 30 22:46:01 [host] sshd[3107]: Failed password for invalid user gpadmin from 106.13.234.36 port 44651 ssh2	2019-12-31 06:06:57
218.201.84.58	attackbotsspam	Unauthorized connection attempt detected from IP address 218.201.84.58 to port 23	2019-12-31 06:18:22
81.252.228.195	attackbotsspam	Dec 30 21:21:47 h2779839 sshd[21100]: Invalid user frapier from 81.252.228.195 port 43527 Dec 30 21:21:47 h2779839 sshd[21100]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.252.228.195 Dec 30 21:21:47 h2779839 sshd[21100]: Invalid user frapier from 81.252.228.195 port 43527 Dec 30 21:21:48 h2779839 sshd[21100]: Failed password for invalid user frapier from 81.252.228.195 port 43527 ssh2 Dec 30 21:24:13 h2779839 sshd[21103]: Invalid user Administrator from 81.252.228.195 port 53190 Dec 30 21:24:13 h2779839 sshd[21103]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=81.252.228.195 Dec 30 21:24:13 h2779839 sshd[21103]: Invalid user Administrator from 81.252.228.195 port 53190 Dec 30 21:24:15 h2779839 sshd[21103]: Failed password for invalid user Administrator from 81.252.228.195 port 53190 ssh2 Dec 30 21:26:46 h2779839 sshd[21112]: Invalid user admin from 81.252.228.195 port 34756 ...	2019-12-31 06:15:05
190.181.3.103	attack	Malicious/Probing: /administrator/index.php	2019-12-31 05:55:59
167.172.241.42	attackspam	(sshd) Failed SSH login from 167.172.241.42 (US/United States/-): 3 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Dec 30 20:08:35 andromeda sshd[6979]: Did not receive identification string from 167.172.241.42 port 42654 Dec 30 20:11:50 andromeda sshd[7428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.241.42 user=root Dec 30 20:11:52 andromeda sshd[7435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.172.241.42 user=root	2019-12-31 06:09:41
78.128.113.85	attack	2019-12-30 22:08:11 dovecot_plain authenticator failed for \(ip-113-85.4vendeta.com.\) \[78.128.113.85\]: 535 Incorrect authentication data \(set_id=ms@opso.it\) 2019-12-30 22:08:19 dovecot_plain authenticator failed for \(ip-113-85.4vendeta.com.\) \[78.128.113.85\]: 535 Incorrect authentication data \(set_id=ms\) 2019-12-30 22:11:30 dovecot_plain authenticator failed for \(ip-113-85.4vendeta.com.\) \[78.128.113.85\]: 535 Incorrect authentication data \(set_id=support@opso.it\) 2019-12-30 22:11:37 dovecot_plain authenticator failed for \(ip-113-85.4vendeta.com.\) \[78.128.113.85\]: 535 Incorrect authentication data \(set_id=support\) 2019-12-30 22:14:36 dovecot_plain authenticator failed for \(ip-113-85.4vendeta.com.\) \[78.128.113.85\]: 535 Incorrect authentication data \(set_id=giuseppe@opso.it\)	2019-12-31 06:03:57
85.203.15.121	attack	\[2019-12-30 16:52:06\] NOTICE\[2839\] chan_sip.c: Registration from '\' failed for '85.203.15.121:64383' - Wrong password \[2019-12-30 16:52:06\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-30T16:52:06.875-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="3682",SessionID="0x7f0fb48c2048",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/85.203.15.121/64383",Challenge="0d73e352",ReceivedChallenge="0d73e352",ReceivedHash="bf19357e73c27e2b2d9e0dd509ec4543" \[2019-12-30 16:58:36\] NOTICE\[2839\] chan_sip.c: Registration from '\' failed for '85.203.15.121:62782' - Wrong password \[2019-12-30 16:58:36\] SECURITY\[2857\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-12-30T16:58:36.514-0500",Severity="Error",Service="SIP",EventVersion="2",AccountID="1538",SessionID="0x7f0fb48c2048",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/85.203.15	2019-12-31 06:05:03
222.94.195.65	attackspambots	Unauthorized connection attempt detected from IP address 222.94.195.65 to port 3128	2019-12-31 06:16:15
92.118.38.56	attackbots	Dec 30 22:48:05 vmanager6029 postfix/smtpd\[14373\]: warning: unknown\[92.118.38.56\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 30 22:48:37 vmanager6029 postfix/smtpd\[14373\]: warning: unknown\[92.118.38.56\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-12-31 05:49:15
83.220.171.239	attackspam	Dec 30 11:44:06 eola sshd[13305]: Invalid user baltzeeclipsen from 83.220.171.239 port 42128 Dec 30 11:44:06 eola sshd[13305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.220.171.239 Dec 30 11:44:08 eola sshd[13305]: Failed password for invalid user baltzeeclipsen from 83.220.171.239 port 42128 ssh2 Dec 30 11:44:08 eola sshd[13305]: Received disconnect from 83.220.171.239 port 42128:11: Bye Bye [preauth] Dec 30 11:44:08 eola sshd[13305]: Disconnected from 83.220.171.239 port 42128 [preauth] Dec 30 11:51:22 eola sshd[13430]: Invalid user kiehl from 83.220.171.239 port 40611 Dec 30 11:51:22 eola sshd[13430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.220.171.239 Dec 30 11:51:23 eola sshd[13430]: Failed password for invalid user kiehl from 83.220.171.239 port 40611 ssh2 Dec 30 11:51:24 eola sshd[13430]: Received disconnect from 83.220.171.239 port 40611:11: Bye Bye [preauth] De........ -------------------------------	2019-12-31 06:12:02

Recently Reported IPs

197.30.136.6	123.10.131.220	81.28.171.25	77.247.88.8
39.90.32.97	165.51.216.182	3.227.13.238	120.26.80.207
175.107.9.164	36.107.117.6	83.229.6.128	189.129.104.0
222.248.56.79	120.85.183.236	143.255.2.157	112.19.137.89
125.127.52.158	14.232.161.29	111.41.227.17	151.73.33.247