192.99.244.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Canada

Internet Service Provider: OVH Hosting Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	TCP (SYN) 192.99.244.45:47115 -> port 3389, len 40	2020-08-15 22:20:59

Comments on same subnet:

IP	Type	Details	Datetime
192.99.244.225	attack	SSH Brute-Forcing (server1)	2020-06-18 18:40:46
192.99.244.225	attack	detected by Fail2Ban	2020-06-17 00:18:09
192.99.244.225	attackbotsspam	Jun 14 06:26:53 lanister sshd[16241]: Invalid user zabbix from 192.99.244.225 Jun 14 06:26:53 lanister sshd[16241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 14 06:26:53 lanister sshd[16241]: Invalid user zabbix from 192.99.244.225 Jun 14 06:26:56 lanister sshd[16241]: Failed password for invalid user zabbix from 192.99.244.225 port 33874 ssh2	2020-06-14 20:23:45
192.99.244.225	attack	Jun 13 14:04:56 dignus sshd[17471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 user=root Jun 13 14:04:58 dignus sshd[17471]: Failed password for root from 192.99.244.225 port 34506 ssh2 Jun 13 14:08:36 dignus sshd[17803]: Invalid user admin from 192.99.244.225 port 52596 Jun 13 14:08:36 dignus sshd[17803]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 13 14:08:38 dignus sshd[17803]: Failed password for invalid user admin from 192.99.244.225 port 52596 ssh2 ...	2020-06-14 06:08:39
192.99.244.225	attackbots	Jun 13 09:24:11 ns382633 sshd\[1017\]: Invalid user laravel from 192.99.244.225 port 34212 Jun 13 09:24:11 ns382633 sshd\[1017\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 13 09:24:13 ns382633 sshd\[1017\]: Failed password for invalid user laravel from 192.99.244.225 port 34212 ssh2 Jun 13 09:34:09 ns382633 sshd\[2984\]: Invalid user xiewenjing from 192.99.244.225 port 42610 Jun 13 09:34:09 ns382633 sshd\[2984\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225	2020-06-13 17:08:11
192.99.244.225	attack	2020-06-11T21:00:53+0200 Failed SSH Authentication/Brute Force Attack.(Server 2)	2020-06-12 04:33:28
192.99.244.225	attack	Jun 10 23:38:42 legacy sshd[23091]: Failed password for root from 192.99.244.225 port 40462 ssh2 Jun 10 23:42:49 legacy sshd[23274]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 Jun 10 23:42:51 legacy sshd[23274]: Failed password for invalid user yuanwd from 192.99.244.225 port 34592 ssh2 ...	2020-06-11 05:57:17
192.99.244.225	attackbots	detected by Fail2Ban	2020-06-04 14:12:12
192.99.244.225	attackbots	Invalid user renata from 192.99.244.225 port 36116	2020-05-30 20:13:22
192.99.244.225	attackspam	ssh brute force	2020-05-25 13:23:00
192.99.244.225	attack	May 20 20:26:31 ArkNodeAT sshd\[8379\]: Invalid user iab from 192.99.244.225 May 20 20:26:31 ArkNodeAT sshd\[8379\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 20 20:26:33 ArkNodeAT sshd\[8379\]: Failed password for invalid user iab from 192.99.244.225 port 42422 ssh2	2020-05-21 02:38:34
192.99.244.225	attack	May 15 00:41:57 vps639187 sshd\[24808\]: Invalid user testftp from 192.99.244.225 port 35828 May 15 00:41:57 vps639187 sshd\[24808\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 15 00:42:00 vps639187 sshd\[24808\]: Failed password for invalid user testftp from 192.99.244.225 port 35828 ssh2 ...	2020-05-15 06:56:46
192.99.244.225	attackspambots	May 11 22:46:11 ns382633 sshd\[8965\]: Invalid user admin from 192.99.244.225 port 49380 May 11 22:46:11 ns382633 sshd\[8965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225 May 11 22:46:13 ns382633 sshd\[8965\]: Failed password for invalid user admin from 192.99.244.225 port 49380 ssh2 May 11 22:55:22 ns382633 sshd\[10627\]: Invalid user alvin from 192.99.244.225 port 53024 May 11 22:55:22 ns382633 sshd\[10627\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.244.225	2020-05-12 07:09:30
192.99.244.225	attackspambots	Apr 4 22:13:00 ks10 sshd[2532827]: Failed password for root from 192.99.244.225 port 42356 ssh2 ...	2020-04-05 06:08:03
192.99.244.225	attackspam	Mar 29 07:40:00 askasleikir sshd[105299]: Failed password for invalid user srs from 192.99.244.225 port 52354 ssh2 Mar 29 07:19:53 askasleikir sshd[104337]: Failed password for invalid user fyjiang from 192.99.244.225 port 55904 ssh2 Mar 29 07:35:15 askasleikir sshd[105081]: Failed password for invalid user shenhao from 192.99.244.225 port 39318 ssh2	2020-03-30 01:47:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 192.99.244.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58307
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;192.99.244.45.			IN	A

;; AUTHORITY SECTION:
.			463	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081500 1800 900 604800 86400

;; Query time: 29 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Aug 15 22:20:55 CST 2020
;; MSG SIZE  rcvd: 117

Host info

45.244.99.192.in-addr.arpa domain name pointer 45.ip-192-99-244.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.244.99.192.in-addr.arpa	name = 45.ip-192-99-244.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
105.242.21.250	attackbotsspam	20 attempts against mh-ssh on echoip	2020-05-24 13:16:13
61.181.93.10	attack	Invalid user anv from 61.181.93.10 port 57908	2020-05-24 13:24:41
222.252.25.186	attackbotsspam	Invalid user pca from 222.252.25.186 port 64213	2020-05-24 12:53:18
45.124.86.65	attack	May 24 04:25:08 game-panel sshd[25179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.124.86.65 May 24 04:25:09 game-panel sshd[25179]: Failed password for invalid user vdt from 45.124.86.65 port 47884 ssh2 May 24 04:29:48 game-panel sshd[25312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.124.86.65	2020-05-24 13:33:40
138.197.151.213	attackbots	Invalid user xgz from 138.197.151.213 port 50684	2020-05-24 13:02:22
134.209.178.109	attackbotsspam	Failed password for invalid user bfc from 134.209.178.109 port 40388 ssh2	2020-05-24 13:22:34
45.172.108.75	attackspambots	2020-05-24T05:48:07.383593struts4.enskede.local sshd\[14923\]: Invalid user zhaokk from 45.172.108.75 port 33258 2020-05-24T05:48:07.391094struts4.enskede.local sshd\[14923\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.172.108.75 2020-05-24T05:48:10.318826struts4.enskede.local sshd\[14923\]: Failed password for invalid user zhaokk from 45.172.108.75 port 33258 ssh2 2020-05-24T05:54:23.445354struts4.enskede.local sshd\[14941\]: Invalid user eln from 45.172.108.75 port 40652 2020-05-24T05:54:23.451459struts4.enskede.local sshd\[14941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.172.108.75 ...	2020-05-24 13:28:30
183.89.214.144	attack	(imapd) Failed IMAP login from 183.89.214.144 (TH/Thailand/mx-ll-183.89.214-144.dynamic.3bb.in.th): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: May 24 08:24:58 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=183.89.214.144, lip=5.63.12.44, TLS: Connection closed, session=<9ekT01ym8J63WdaQ>	2020-05-24 13:06:15
159.89.157.126	attackspam	firewall-block, port(s): 22/tcp	2020-05-24 13:25:57
124.251.110.148	attackbotsspam	Invalid user tsq from 124.251.110.148 port 55256	2020-05-24 13:22:10
149.202.133.43	attackbots	prod8 ...	2020-05-24 12:54:01
49.233.80.20	attackbots	May 24 01:01:17 Tower sshd[11696]: Connection from 49.233.80.20 port 45414 on 192.168.10.220 port 22 rdomain "" May 24 01:01:19 Tower sshd[11696]: Invalid user hod from 49.233.80.20 port 45414 May 24 01:01:19 Tower sshd[11696]: error: Could not get shadow information for NOUSER May 24 01:01:19 Tower sshd[11696]: Failed password for invalid user hod from 49.233.80.20 port 45414 ssh2 May 24 01:01:19 Tower sshd[11696]: Received disconnect from 49.233.80.20 port 45414:11: Bye Bye [preauth] May 24 01:01:19 Tower sshd[11696]: Disconnected from invalid user hod 49.233.80.20 port 45414 [preauth]	2020-05-24 13:06:43
122.152.220.197	attack	May 24 07:22:22 eventyay sshd[27421]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.220.197 May 24 07:22:24 eventyay sshd[27421]: Failed password for invalid user xiaoshengchang from 122.152.220.197 port 59724 ssh2 May 24 07:26:00 eventyay sshd[27505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.152.220.197 ...	2020-05-24 13:28:58
122.51.211.249	attackbots	May 24 06:50:22 h2779839 sshd[2762]: Invalid user zom from 122.51.211.249 port 42568 May 24 06:50:22 h2779839 sshd[2762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.211.249 May 24 06:50:22 h2779839 sshd[2762]: Invalid user zom from 122.51.211.249 port 42568 May 24 06:50:24 h2779839 sshd[2762]: Failed password for invalid user zom from 122.51.211.249 port 42568 ssh2 May 24 06:53:50 h2779839 sshd[2836]: Invalid user iet from 122.51.211.249 port 53040 May 24 06:53:50 h2779839 sshd[2836]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.211.249 May 24 06:53:50 h2779839 sshd[2836]: Invalid user iet from 122.51.211.249 port 53040 May 24 06:53:52 h2779839 sshd[2836]: Failed password for invalid user iet from 122.51.211.249 port 53040 ssh2 May 24 06:57:19 h2779839 sshd[3129]: Invalid user osp from 122.51.211.249 port 35276 ...	2020-05-24 13:19:59
37.187.181.155	attackspambots	Invalid user jsj from 37.187.181.155 port 53098	2020-05-24 13:21:53

Recently Reported IPs

83.20.43.106	167.58.240.138	61.27.185.159	93.8.160.179
176.202.128.8	159.65.239.34	45.167.9.189	117.202.93.231
54.90.37.91	107.54.33.152	196.247.31.165	71.112.158.35
183.245.117.154	179.49.20.50	45.83.67.157	75.82.233.30
44.253.79.3	187.167.195.62	175.138.172.14	57.139.160.209