192.99.244.145

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: OVH Hosting Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 21 18:19:18 ms-srv sshd[7449]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.145 Oct 21 18:19:20 ms-srv sshd[7449]: Failed password for invalid user odoo from 192.99.244.145 port 41078 ssh2	2020-02-03 06:48:22
attackspambots	Nov 30 04:52:55 zeus sshd[5397]: Failed password for root from 192.99.244.145 port 58484 ssh2 Nov 30 04:55:51 zeus sshd[5422]: Failed password for root from 192.99.244.145 port 37672 ssh2 Nov 30 04:58:57 zeus sshd[5471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.145	2019-11-30 13:00:56
attack	$f2bV_matches	2019-11-27 07:14:20
attackbots	2019-11-19T22:12:49.546395centos sshd\[24853\]: Invalid user info from 192.99.244.145 port 60798 2019-11-19T22:12:49.554519centos sshd\[24853\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.ip-192-99-244.net 2019-11-19T22:12:51.539799centos sshd\[24853\]: Failed password for invalid user info from 192.99.244.145 port 60798 ssh2	2019-11-20 06:45:30
attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/192.99.244.145/ FR - 1H : (71) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : FR NAME ASN : ASN16276 IP : 192.99.244.145 CIDR : 192.99.0.0/16 PREFIX COUNT : 132 UNIQUE IP COUNT : 3052544 ATTACKS DETECTED ASN16276 : 1H - 2 3H - 3 6H - 7 12H - 18 24H - 30 DateTime : 2019-10-27 13:09:18 INFO : Port SSH 22 Scan Detected and Blocked by ADMIN - data recovery	2019-10-27 20:25:57
attackspambots	$f2bV_matches	2019-10-22 00:38:15
attack	Automatic report - Banned IP Access	2019-10-21 08:26:08
attackspam	Oct 17 00:03:01 ns381471 sshd[26793]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.145 Oct 17 00:03:03 ns381471 sshd[26793]: Failed password for invalid user Selfie@123 from 192.99.244.145 port 57168 ssh2 Oct 17 00:06:48 ns381471 sshd[26914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.145	2019-10-17 06:12:13
attackspam	Oct 14 10:27:02 wbs sshd\[22461\]: Invalid user pass from 192.99.244.145 Oct 14 10:27:02 wbs sshd\[22461\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.ip-192-99-244.net Oct 14 10:27:04 wbs sshd\[22461\]: Failed password for invalid user pass from 192.99.244.145 port 37030 ssh2 Oct 14 10:31:11 wbs sshd\[22798\]: Invalid user fz123 from 192.99.244.145 Oct 14 10:31:11 wbs sshd\[22798\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.ip-192-99-244.net	2019-10-15 04:39:08
attackspam	SSH bruteforce (Triggered fail2ban)	2019-10-13 19:47:57
attackspambots	2019-10-06T23:46:16.606916abusebot-5.cloudsearch.cf sshd\[16724\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.ip-192-99-244.net user=root	2019-10-07 07:56:14
attackbotsspam	Oct 6 09:47:27 pornomens sshd\[6982\]: Invalid user Ocean@2017 from 192.99.244.145 port 44044 Oct 6 09:47:27 pornomens sshd\[6982\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.145 Oct 6 09:47:29 pornomens sshd\[6982\]: Failed password for invalid user Ocean@2017 from 192.99.244.145 port 44044 ssh2 ...	2019-10-06 19:23:20
attack	ssh failed login	2019-09-29 21:45:03
attackbotsspam	2019-09-24T02:51:13.613223tmaserv sshd\[4249\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.ip-192-99-244.net 2019-09-24T02:51:15.396299tmaserv sshd\[4249\]: Failed password for invalid user admin from 192.99.244.145 port 60698 ssh2 2019-09-24T03:03:09.044554tmaserv sshd\[4785\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.ip-192-99-244.net user=root 2019-09-24T03:03:10.790631tmaserv sshd\[4785\]: Failed password for root from 192.99.244.145 port 44008 ssh2 2019-09-24T03:07:11.343131tmaserv sshd\[5402\]: Invalid user ah from 192.99.244.145 port 57264 2019-09-24T03:07:11.347334tmaserv sshd\[5402\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.ip-192-99-244.net ...	2019-09-24 08:26:05
attackspam	$f2bV_matches	2019-09-14 03:29:14
attackspambots	Sep 11 02:18:15 lukav-desktop sshd\[32725\]: Invalid user usuario from 192.99.244.145 Sep 11 02:18:15 lukav-desktop sshd\[32725\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.145 Sep 11 02:18:18 lukav-desktop sshd\[32725\]: Failed password for invalid user usuario from 192.99.244.145 port 46456 ssh2 Sep 11 02:23:39 lukav-desktop sshd\[307\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.145 user=root Sep 11 02:23:42 lukav-desktop sshd\[307\]: Failed password for root from 192.99.244.145 port 51552 ssh2	2019-09-11 08:30:19

Comments on same subnet:

IP	Type	Details	Datetime
192.99.244.45	attack	TCP (SYN) 192.99.244.45:47115 -> port 3389, len 40	2020-08-15 22:20:59
192.99.244.225	attack	SSH Brute-Forcing (server1)	2020-06-18 18:40:46
192.99.244.225	attack	detected by Fail2Ban	2020-06-17 00:18:09
192.99.244.225	attackbotsspam	Jun 14 06:26:53 lanister sshd[16241]: Invalid user zabbix from 192.99.244.225 Jun 14 06:26:53 lanister sshd[16241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 14 06:26:53 lanister sshd[16241]: Invalid user zabbix from 192.99.244.225 Jun 14 06:26:56 lanister sshd[16241]: Failed password for invalid user zabbix from 192.99.244.225 port 33874 ssh2	2020-06-14 20:23:45
192.99.244.225	attack	Jun 13 14:04:56 dignus sshd[17471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 user=root Jun 13 14:04:58 dignus sshd[17471]: Failed password for root from 192.99.244.225 port 34506 ssh2 Jun 13 14:08:36 dignus sshd[17803]: Invalid user admin from 192.99.244.225 port 52596 Jun 13 14:08:36 dignus sshd[17803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 13 14:08:38 dignus sshd[17803]: Failed password for invalid user admin from 192.99.244.225 port 52596 ssh2 ...	2020-06-14 06:08:39
192.99.244.225	attackbots	Jun 13 09:24:11 ns382633 sshd\[1017\]: Invalid user laravel from 192.99.244.225 port 34212 Jun 13 09:24:11 ns382633 sshd\[1017\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 13 09:24:13 ns382633 sshd\[1017\]: Failed password for invalid user laravel from 192.99.244.225 port 34212 ssh2 Jun 13 09:34:09 ns382633 sshd\[2984\]: Invalid user xiewenjing from 192.99.244.225 port 42610 Jun 13 09:34:09 ns382633 sshd\[2984\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225	2020-06-13 17:08:11
192.99.244.225	attack	2020-06-11T21:00:53+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-06-12 04:33:28
192.99.244.225	attack	Jun 10 23:38:42 legacy sshd[23091]: Failed password for root from 192.99.244.225 port 40462 ssh2 Jun 10 23:42:49 legacy sshd[23274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 10 23:42:51 legacy sshd[23274]: Failed password for invalid user yuanwd from 192.99.244.225 port 34592 ssh2 ...	2020-06-11 05:57:17
192.99.244.225	attackbots	detected by Fail2Ban	2020-06-04 14:12:12
192.99.244.225	attackbots	Invalid user renata from 192.99.244.225 port 36116	2020-05-30 20:13:22
192.99.244.225	attackspam	ssh brute force	2020-05-25 13:23:00
192.99.244.225	attack	May 20 20:26:31 ArkNodeAT sshd\[8379\]: Invalid user iab from 192.99.244.225 May 20 20:26:31 ArkNodeAT sshd\[8379\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 20 20:26:33 ArkNodeAT sshd\[8379\]: Failed password for invalid user iab from 192.99.244.225 port 42422 ssh2	2020-05-21 02:38:34
192.99.244.225	attack	May 15 00:41:57 vps639187 sshd\[24808\]: Invalid user testftp from 192.99.244.225 port 35828 May 15 00:41:57 vps639187 sshd\[24808\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 15 00:42:00 vps639187 sshd\[24808\]: Failed password for invalid user testftp from 192.99.244.225 port 35828 ssh2 ...	2020-05-15 06:56:46
192.99.244.225	attackspambots	May 11 22:46:11 ns382633 sshd\[8965\]: Invalid user admin from 192.99.244.225 port 49380 May 11 22:46:11 ns382633 sshd\[8965\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 11 22:46:13 ns382633 sshd\[8965\]: Failed password for invalid user admin from 192.99.244.225 port 49380 ssh2 May 11 22:55:22 ns382633 sshd\[10627\]: Invalid user alvin from 192.99.244.225 port 53024 May 11 22:55:22 ns382633 sshd\[10627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225	2020-05-12 07:09:30
192.99.244.225	attackspambots	Apr 4 22:13:00 ks10 sshd[2532827]: Failed password for root from 192.99.244.225 port 42356 ssh2 ...	2020-04-05 06:08:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.99.244.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51406
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;192.99.244.145.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019091003 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Sep 11 08:30:13 CST 2019
;; MSG SIZE  rcvd: 118

Host info

145.244.99.192.in-addr.arpa domain name pointer 145.ip-192-99-244.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
145.244.99.192.in-addr.arpa	name = 145.ip-192-99-244.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
189.212.92.90	attackbots	unauthorized connection attempt	2020-02-07 18:17:49
222.240.121.180	attackspambots	unauthorized connection attempt	2020-02-07 18:16:10
125.164.131.70	attackspambots	unauthorized connection attempt	2020-02-07 18:11:21
108.235.230.225	attackspam	unauthorized connection attempt	2020-02-07 18:12:14
179.184.37.42	attack	unauthorized connection attempt	2020-02-07 18:37:20
41.69.234.71	attackspambots	unauthorized connection attempt	2020-02-07 18:46:06
123.21.3.107	attackspam	2020-02-0705:53:371izve4-0003Ed-AZ\<=info@whatsup2013.chH=$localhost$[14.186.55.66]:56326P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2068id=5E5BEDBEB5614FFC20256CD420872F89@whatsup2013.chT="lonelinessisnothappy"foralshajiri1973@gmail.com2020-02-0705:51:391izvcA-00039z-1f\<=info@whatsup2013.chH=$localhost$[14.252.129.58]:39459P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2130id=D8DD6B3833E7C97AA6A3EA52A62A8613@whatsup2013.chT="girllikearainbow"forpoochie122122@gmail.com2020-02-0705:52:161izvcl-0003BI-Dt\<=info@whatsup2013.chH=$localhost$[123.21.3.107]:56467P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2140id=C2C7712229FDD360BCB9F048BC58A7CF@whatsup2013.chT="Iwantsomethingbeautiful"fornobeldhanush@gmail.com2020-02-0705:54:571izvfM-0003JA-RE\<=info@whatsup2013.chH=$localhost$[123.20.83.19]:50909P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_lo	2020-02-07 18:15:49
42.112.16.179	attackbotsspam	unauthorized connection attempt	2020-02-07 18:44:08
78.128.113.58	attackbotsspam	20 attempts against mh-misbehave-ban on grain	2020-02-07 18:23:19
202.77.121.69	attackspambots	unauthorized connection attempt	2020-02-07 18:49:16
172.106.80.102	attackbots	unauthorized connection attempt	2020-02-07 18:46:33
66.240.205.34	attackbots	Feb 7 11:13:40 debian-2gb-nbg1-2 kernel: \[3329662.937805\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=66.240.205.34 DST=195.201.40.59 LEN=44 TOS=0x10 PREC=0x00 TTL=110 ID=4620 PROTO=TCP SPT=6211 DPT=7415 WINDOW=28375 RES=0x00 SYN URGP=0	2020-02-07 18:23:53
14.186.55.66	attackspambots	2020-02-0705:53:371izve4-0003Ed-AZ\<=info@whatsup2013.chH=$localhost$[14.186.55.66]:56326P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2068id=5E5BEDBEB5614FFC20256CD420872F89@whatsup2013.chT="lonelinessisnothappy"foralshajiri1973@gmail.com2020-02-0705:51:391izvcA-00039z-1f\<=info@whatsup2013.chH=$localhost$[14.252.129.58]:39459P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2130id=D8DD6B3833E7C97AA6A3EA52A62A8613@whatsup2013.chT="girllikearainbow"forpoochie122122@gmail.com2020-02-0705:52:161izvcl-0003BI-Dt\<=info@whatsup2013.chH=$localhost$[123.21.3.107]:56467P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2140id=C2C7712229FDD360BCB9F048BC58A7CF@whatsup2013.chT="Iwantsomethingbeautiful"fornobeldhanush@gmail.com2020-02-0705:54:571izvfM-0003JA-RE\<=info@whatsup2013.chH=$localhost$[123.20.83.19]:50909P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_lo	2020-02-07 18:25:58
196.188.51.248	attackbotsspam	unauthorized connection attempt	2020-02-07 18:35:59
1.53.4.112	attack	unauthorized connection attempt	2020-02-07 18:48:45

Recently Reported IPs

115.213.61.9	183.8.185.169	251.208.85.10	109.76.72.159
245.52.109.131	84.132.219.97	172.220.5.244	37.187.226.96
104.97.128.87	180.192.86.7	155.252.249.113	181.125.224.176
51.235.175.127	112.238.113.86	87.72.176.20	193.207.235.170
118.169.241.230	103.114.106.134	40.114.53.171	180.191.84.112