45.11.99.166 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Turkey

Internet Service Provider: Cibra Internet Hizmetleri ve Bilisim Teknolojileri

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	From bounces01@primeiroeunico.live Thu Jul 09 09:06:49 2020 Received: from unicomx4.primeiroeunico.live ([45.11.99.166]:34838)	2020-07-09 23:50:18

Comments on same subnet:

IP	Type	Details	Datetime
45.11.99.160	attackbots	From devolver@nochostleads.live Mon Aug 17 20:52:40 2020 Received: from nocmx7.nochostleads.live ([45.11.99.160]:56191)	2020-08-18 16:31:39
45.11.99.76	attack	From hardreturn@consultoriaplanos.live Wed Aug 12 09:40:18 2020 Received: from sultormx6.consultoriaplanos.live ([45.11.99.76]:46631)	2020-08-13 00:18:11
45.11.99.60	attackbotsspam	From failemail@ultramaster.live Mon Jul 27 00:56:57 2020 Received: from ultramx9.ultramaster.live ([45.11.99.60]:45339)	2020-07-27 12:08:17
45.11.99.231	attackbotsspam	From infobounce@melhorplanoaqui.live Sat May 23 17:13:06 2020 Received: from [45.11.99.231] (port=56998 helo=melhormx9.melhorplanoaqui.live)	2020-05-24 07:02:19
45.11.99.200	attack	From back@saudeempresarial.live Mon May 11 00:47:15 2020 Received: from giga-mx2.saudeempresarial.live ([45.11.99.200]:37126)	2020-05-11 20:05:52
45.11.99.161	attackspambots	[ 📨 ] From devolvido@onlinecoteseguro.live Sun Apr 19 00:11:15 2020 Received: from mega-mx11.onlinecoteseguro.live ([45.11.99.161]:48896)	2020-05-09 14:07:15
45.11.99.227	attackbotsspam	From bounce01@melhorplanoaqui.live Fri May 01 08:48:35 2020 Received: from melhormx5.melhorplanoaqui.live ([45.11.99.227]:46270)	2020-05-01 23:35:41
45.11.99.172	attackspam	From returns@onlinecoteseguro.live Mon Apr 27 00:57:58 2020 Received: from mega-mx5.onlinecoteseguro.live ([45.11.99.172]:50185)	2020-04-27 13:39:50
45.11.99.164	attackbots	[ 📨 ] From devolvidos@onlinecoteseguro.live Fri Apr 17 00:56:48 2020 Received: from mega-mx2.onlinecoteseguro.live ([45.11.99.164]:59150)	2020-04-17 14:36:25
45.11.99.14	attackbots	SMTP try to deliver spam to harvested address.	2019-09-20 12:44:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.11.99.166
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4327
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.11.99.166.			IN	A

;; AUTHORITY SECTION:
.			254	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070901 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 09 23:50:13 CST 2020
;; MSG SIZE  rcvd: 116

Host info

166.99.11.45.in-addr.arpa domain name pointer unicomx4.primeiroeunico.live.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
166.99.11.45.in-addr.arpa	name = unicomx4.primeiroeunico.live.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
158.69.64.9	attackspambots	Dec 20 16:08:15 vps691689 sshd[6537]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=158.69.64.9 Dec 20 16:08:17 vps691689 sshd[6537]: Failed password for invalid user cindelyn from 158.69.64.9 port 43564 ssh2 ...	2019-12-20 23:23:52
159.203.197.172	attack	Port Scan detected from 159.203.197.172 (US/United States/zg-0911a-8.stretchoid.com). 4 hits in the last 255 seconds	2019-12-20 23:35:58
222.186.173.183	attack	Dec 20 16:41:38 amit sshd\[22718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root Dec 20 16:41:40 amit sshd\[22718\]: Failed password for root from 222.186.173.183 port 8662 ssh2 Dec 20 16:42:02 amit sshd\[22720\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.183 user=root ...	2019-12-20 23:48:56
96.78.175.33	attackspambots	Brute-force attempt banned	2019-12-21 00:01:12
45.55.42.17	attackspambots	Dec 20 15:54:55 MK-Soft-VM6 sshd[383]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.42.17 Dec 20 15:54:57 MK-Soft-VM6 sshd[383]: Failed password for invalid user test from 45.55.42.17 port 58785 ssh2 ...	2019-12-20 23:43:52
60.210.40.197	attackbots	Dec 20 12:14:33 ws19vmsma01 sshd[121765]: Failed password for root from 60.210.40.197 port 4175 ssh2 Dec 20 12:25:54 ws19vmsma01 sshd[114512]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.210.40.197 ...	2019-12-20 23:42:57
81.22.45.250	attackspam	Dec 20 16:16:16 mc1 kernel: \[1013789.785658\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.250 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=50707 PROTO=TCP SPT=57664 DPT=6129 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 20 16:18:28 mc1 kernel: \[1013921.619036\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.250 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=16706 PROTO=TCP SPT=57664 DPT=16000 WINDOW=1024 RES=0x00 SYN URGP=0 Dec 20 16:25:44 mc1 kernel: \[1014357.686044\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.250 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=42138 PROTO=TCP SPT=57664 DPT=6636 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-12-20 23:26:37
104.175.32.206	attack	Dec 20 16:38:10 sd-53420 sshd\[18075\]: Invalid user kulseth from 104.175.32.206 Dec 20 16:38:10 sd-53420 sshd\[18075\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.175.32.206 Dec 20 16:38:12 sd-53420 sshd\[18075\]: Failed password for invalid user kulseth from 104.175.32.206 port 48064 ssh2 Dec 20 16:43:34 sd-53420 sshd\[20013\]: Invalid user mahmud from 104.175.32.206 Dec 20 16:43:34 sd-53420 sshd\[20013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.175.32.206 ...	2019-12-20 23:51:18
195.224.76.58	attackbots	Dec 20 15:54:47 debian-2gb-nbg1-2 kernel: \[506449.358016\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=195.224.76.58 DST=195.201.40.59 LEN=52 TOS=0x00 PREC=0x00 TTL=117 ID=26540 DF PROTO=TCP SPT=42619 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0	2019-12-20 23:53:01
106.12.55.131	attackspambots	Dec 20 16:08:47 localhost sshd\[12637\]: Invalid user scss from 106.12.55.131 Dec 20 16:08:47 localhost sshd\[12637\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.55.131 Dec 20 16:08:48 localhost sshd\[12637\]: Failed password for invalid user scss from 106.12.55.131 port 44412 ssh2 Dec 20 16:15:41 localhost sshd\[13106\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.55.131 user=root Dec 20 16:15:43 localhost sshd\[13106\]: Failed password for root from 106.12.55.131 port 34852 ssh2 ...	2019-12-20 23:43:18
218.92.0.184	attack	Dec 20 05:44:14 hanapaa sshd\[7453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.184 user=root Dec 20 05:44:15 hanapaa sshd\[7453\]: Failed password for root from 218.92.0.184 port 55776 ssh2 Dec 20 05:44:33 hanapaa sshd\[7475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.184 user=root Dec 20 05:44:35 hanapaa sshd\[7475\]: Failed password for root from 218.92.0.184 port 21985 ssh2 Dec 20 05:44:38 hanapaa sshd\[7475\]: Failed password for root from 218.92.0.184 port 21985 ssh2	2019-12-20 23:59:36
94.191.76.19	attack	Dec 20 14:51:44 pi sshd\[27664\]: Invalid user sindlinger from 94.191.76.19 port 48542 Dec 20 14:51:44 pi sshd\[27664\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.76.19 Dec 20 14:51:46 pi sshd\[27664\]: Failed password for invalid user sindlinger from 94.191.76.19 port 48542 ssh2 Dec 20 14:59:09 pi sshd\[28056\]: Invalid user egashira from 94.191.76.19 port 40858 Dec 20 14:59:09 pi sshd\[28056\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.76.19 ...	2019-12-21 00:01:36
60.51.17.238	attackbots	3389BruteforceFW21	2019-12-20 23:54:15
40.92.3.22	attackbots	Dec 20 17:55:12 debian-2gb-vpn-nbg1-1 kernel: [1232070.780513] [UFW BLOCK] IN=eth0 OUT= MAC=96:00:00:38:96:44:d2:74:7f:6e:37:e3:08:00 SRC=40.92.3.22 DST=78.46.192.101 LEN=40 TOS=0x00 PREC=0x00 TTL=233 ID=40670 DF PROTO=TCP SPT=30862 DPT=25 WINDOW=0 RES=0x00 ACK RST URGP=0	2019-12-20 23:20:22
218.92.0.165	attack	Dec 20 16:37:58 * sshd[16682]: Failed password for root from 218.92.0.165 port 5023 ssh2 Dec 20 16:38:12 * sshd[16682]: error: maximum authentication attempts exceeded for root from 218.92.0.165 port 5023 ssh2 [preauth]	2019-12-20 23:44:21

Recently Reported IPs

197.89.140.194	188.217.46.36	187.67.46.213	168.215.34.59
175.214.105.17	112.185.221.205	94.44.158.92	18.93.65.123
188.70.26.205	56.236.237.175	74.153.113.131	51.157.150.84
35.225.206.189	59.126.105.139	27.71.206.104	206.189.207.74
24.147.74.206	167.71.237.144	88.229.110.87	80.151.5.38