192.99.244.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: OVH Hosting Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	TCP (SYN) 192.99.244.45:47115 -> port 3389, len 40	2020-08-15 22:20:59

Comments on same subnet:

IP	Type	Details	Datetime
192.99.244.225	attack	SSH Brute-Forcing (server1)	2020-06-18 18:40:46
192.99.244.225	attack	detected by Fail2Ban	2020-06-17 00:18:09
192.99.244.225	attackbotsspam	Jun 14 06:26:53 lanister sshd[16241]: Invalid user zabbix from 192.99.244.225 Jun 14 06:26:53 lanister sshd[16241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 14 06:26:53 lanister sshd[16241]: Invalid user zabbix from 192.99.244.225 Jun 14 06:26:56 lanister sshd[16241]: Failed password for invalid user zabbix from 192.99.244.225 port 33874 ssh2	2020-06-14 20:23:45
192.99.244.225	attack	Jun 13 14:04:56 dignus sshd[17471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 user=root Jun 13 14:04:58 dignus sshd[17471]: Failed password for root from 192.99.244.225 port 34506 ssh2 Jun 13 14:08:36 dignus sshd[17803]: Invalid user admin from 192.99.244.225 port 52596 Jun 13 14:08:36 dignus sshd[17803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 13 14:08:38 dignus sshd[17803]: Failed password for invalid user admin from 192.99.244.225 port 52596 ssh2 ...	2020-06-14 06:08:39
192.99.244.225	attackbots	Jun 13 09:24:11 ns382633 sshd\[1017\]: Invalid user laravel from 192.99.244.225 port 34212 Jun 13 09:24:11 ns382633 sshd\[1017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 13 09:24:13 ns382633 sshd\[1017\]: Failed password for invalid user laravel from 192.99.244.225 port 34212 ssh2 Jun 13 09:34:09 ns382633 sshd\[2984\]: Invalid user xiewenjing from 192.99.244.225 port 42610 Jun 13 09:34:09 ns382633 sshd\[2984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225	2020-06-13 17:08:11
192.99.244.225	attack	2020-06-11T21:00:53+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-06-12 04:33:28
192.99.244.225	attack	Jun 10 23:38:42 legacy sshd[23091]: Failed password for root from 192.99.244.225 port 40462 ssh2 Jun 10 23:42:49 legacy sshd[23274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 10 23:42:51 legacy sshd[23274]: Failed password for invalid user yuanwd from 192.99.244.225 port 34592 ssh2 ...	2020-06-11 05:57:17
192.99.244.225	attackbots	detected by Fail2Ban	2020-06-04 14:12:12
192.99.244.225	attackbots	Invalid user renata from 192.99.244.225 port 36116	2020-05-30 20:13:22
192.99.244.225	attackspam	ssh brute force	2020-05-25 13:23:00
192.99.244.225	attack	May 20 20:26:31 ArkNodeAT sshd\[8379\]: Invalid user iab from 192.99.244.225 May 20 20:26:31 ArkNodeAT sshd\[8379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 20 20:26:33 ArkNodeAT sshd\[8379\]: Failed password for invalid user iab from 192.99.244.225 port 42422 ssh2	2020-05-21 02:38:34
192.99.244.225	attack	May 15 00:41:57 vps639187 sshd\[24808\]: Invalid user testftp from 192.99.244.225 port 35828 May 15 00:41:57 vps639187 sshd\[24808\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 15 00:42:00 vps639187 sshd\[24808\]: Failed password for invalid user testftp from 192.99.244.225 port 35828 ssh2 ...	2020-05-15 06:56:46
192.99.244.225	attackspambots	May 11 22:46:11 ns382633 sshd\[8965\]: Invalid user admin from 192.99.244.225 port 49380 May 11 22:46:11 ns382633 sshd\[8965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 11 22:46:13 ns382633 sshd\[8965\]: Failed password for invalid user admin from 192.99.244.225 port 49380 ssh2 May 11 22:55:22 ns382633 sshd\[10627\]: Invalid user alvin from 192.99.244.225 port 53024 May 11 22:55:22 ns382633 sshd\[10627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225	2020-05-12 07:09:30
192.99.244.225	attackspambots	Apr 4 22:13:00 ks10 sshd[2532827]: Failed password for root from 192.99.244.225 port 42356 ssh2 ...	2020-04-05 06:08:03
192.99.244.225	attackspam	Mar 29 07:40:00 askasleikir sshd[105299]: Failed password for invalid user srs from 192.99.244.225 port 52354 ssh2 Mar 29 07:19:53 askasleikir sshd[104337]: Failed password for invalid user fyjiang from 192.99.244.225 port 55904 ssh2 Mar 29 07:35:15 askasleikir sshd[105081]: Failed password for invalid user shenhao from 192.99.244.225 port 39318 ssh2	2020-03-30 01:47:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.99.244.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58307
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;192.99.244.45.			IN	A

;; AUTHORITY SECTION:
.			463	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081500 1800 900 604800 86400

;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 15 22:20:55 CST 2020
;; MSG SIZE  rcvd: 117

Host info

45.244.99.192.in-addr.arpa domain name pointer 45.ip-192-99-244.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.244.99.192.in-addr.arpa	name = 45.ip-192-99-244.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
88.98.232.53	attackspam	Oct 2 06:55:34 MK-Soft-Root2 sshd[17944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.98.232.53 Oct 2 06:55:37 MK-Soft-Root2 sshd[17944]: Failed password for invalid user lyb from 88.98.232.53 port 55361 ssh2 ...	2019-10-02 12:56:06
222.241.253.57	attackspambots	Unauthorised access (Oct 2) SRC=222.241.253.57 LEN=40 TOS=0x10 PREC=0x40 TTL=49 ID=3158 TCP DPT=8080 WINDOW=20227 SYN	2019-10-02 13:22:02
192.227.252.28	attackbots	Invalid user ts from 192.227.252.28 port 54516	2019-10-02 13:11:09
54.201.2.170	attackspam	Bad bot/spoofed identity	2019-10-02 13:27:59
31.184.218.68	attackspambots	Port scan on 7 port(s): 1001 2002 2220 3003 4004 9009 9990	2019-10-02 13:01:48
51.174.116.225	attackspam	Oct 2 04:51:04 game-panel sshd[9815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.174.116.225 Oct 2 04:51:06 game-panel sshd[9815]: Failed password for invalid user uftp from 51.174.116.225 port 43310 ssh2 Oct 2 04:54:59 game-panel sshd[9900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.174.116.225	2019-10-02 13:21:31
201.238.239.151	attackbots	Oct 2 07:21:16 localhost sshd\[5565\]: Invalid user muriel123 from 201.238.239.151 port 51671 Oct 2 07:21:16 localhost sshd\[5565\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.238.239.151 Oct 2 07:21:18 localhost sshd\[5565\]: Failed password for invalid user muriel123 from 201.238.239.151 port 51671 ssh2	2019-10-02 13:24:33
117.255.216.106	attack	Oct 2 07:08:00 site3 sshd\[204646\]: Invalid user bd from 117.255.216.106 Oct 2 07:08:00 site3 sshd\[204646\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.255.216.106 Oct 2 07:08:02 site3 sshd\[204646\]: Failed password for invalid user bd from 117.255.216.106 port 16502 ssh2 Oct 2 07:12:58 site3 sshd\[204826\]: Invalid user localadmin from 117.255.216.106 Oct 2 07:12:58 site3 sshd\[204826\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.255.216.106 ...	2019-10-02 13:26:16
191.5.130.69	attack	Oct 2 06:52:21 bouncer sshd\[3777\]: Invalid user chris from 191.5.130.69 port 36314 Oct 2 06:52:21 bouncer sshd\[3777\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.5.130.69 Oct 2 06:52:23 bouncer sshd\[3777\]: Failed password for invalid user chris from 191.5.130.69 port 36314 ssh2 ...	2019-10-02 13:12:18
223.87.178.249	attackbots	Oct 2 01:08:37 TORMINT sshd\[7932\]: Invalid user test from 223.87.178.249 Oct 2 01:08:37 TORMINT sshd\[7932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.87.178.249 Oct 2 01:08:39 TORMINT sshd\[7932\]: Failed password for invalid user test from 223.87.178.249 port 64862 ssh2 ...	2019-10-02 13:16:24
45.14.227.203	attackbots	Oct 1 13:00:50 josie sshd[1191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.227.203 user=r.r Oct 1 13:00:52 josie sshd[1191]: Failed password for r.r from 45.14.227.203 port 35167 ssh2 Oct 1 13:00:52 josie sshd[1192]: Received disconnect from 45.14.227.203: 11: Bye Bye Oct 1 13:00:53 josie sshd[1219]: Invalid user admin from 45.14.227.203 Oct 1 13:00:53 josie sshd[1219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.227.203 Oct 1 13:00:55 josie sshd[1219]: Failed password for invalid user admin from 45.14.227.203 port 36572 ssh2 Oct 1 13:00:55 josie sshd[1220]: Received disconnect from 45.14.227.203: 11: Bye Bye Oct 1 13:00:56 josie sshd[1242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.227.203 user=r.r Oct 1 13:00:58 josie sshd[1242]: Failed password for r.r from 45.14.227.203 port 38165 ssh2 Oct 1 13:00:58 j........ -------------------------------	2019-10-02 13:13:57
31.222.116.167	attackbots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/31.222.116.167/ ES - 1H : (175) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ES NAME ASN : ASN50129 IP : 31.222.116.167 CIDR : 31.222.116.0/22 PREFIX COUNT : 98 UNIQUE IP COUNT : 50432 WYKRYTE ATAKI Z ASN50129 : 1H - 1 3H - 1 6H - 1 12H - 2 24H - 4 DateTime : 2019-10-02 05:54:01 INFO : Port MAX SCAN Scan Detected and Blocked by ADMIN - data recovery	2019-10-02 12:54:38
94.158.22.49	attackspam	B: Magento admin pass test (wrong country)	2019-10-02 13:22:56
200.11.219.206	attackbotsspam	Oct 1 18:55:14 hpm sshd\[12091\]: Invalid user nagios from 200.11.219.206 Oct 1 18:55:14 hpm sshd\[12091\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.11.219.206 Oct 1 18:55:16 hpm sshd\[12091\]: Failed password for invalid user nagios from 200.11.219.206 port 28534 ssh2 Oct 1 18:59:24 hpm sshd\[12503\]: Invalid user glutton from 200.11.219.206 Oct 1 18:59:24 hpm sshd\[12503\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.11.219.206	2019-10-02 13:05:36
94.191.50.165	attackbotsspam	Oct 2 07:13:34 mail sshd\[10277\]: Invalid user tar from 94.191.50.165 port 53638 Oct 2 07:13:34 mail sshd\[10277\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.50.165 Oct 2 07:13:37 mail sshd\[10277\]: Failed password for invalid user tar from 94.191.50.165 port 53638 ssh2 Oct 2 07:19:52 mail sshd\[11141\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.50.165 user=root Oct 2 07:19:54 mail sshd\[11141\]: Failed password for root from 94.191.50.165 port 34122 ssh2	2019-10-02 13:29:47

Recently Reported IPs

83.20.43.106	167.58.240.138	61.27.185.159	93.8.160.179
176.202.128.8	159.65.239.34	45.167.9.189	117.202.93.231
54.90.37.91	107.54.33.152	196.247.31.165	71.112.158.35
183.245.117.154	179.49.20.50	45.83.67.157	75.82.233.30
44.253.79.3	187.167.195.62	175.138.172.14	57.139.160.209