45.120.69.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: South Korea

Internet Service Provider: GABIA Inc.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Apr 16 17:22:32 dev0-dcde-rnet sshd[24392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.99 Apr 16 17:22:34 dev0-dcde-rnet sshd[24392]: Failed password for invalid user eb from 45.120.69.99 port 3093 ssh2 Apr 16 17:33:45 dev0-dcde-rnet sshd[24532]: Failed password for root from 45.120.69.99 port 4785 ssh2	2020-04-17 01:14:47
attackbotsspam	Invalid user node from 45.120.69.99 port 9807	2020-03-19 05:03:07

Type

Details

Datetime

attackbots

Apr 16 17:22:32 dev0-dcde-rnet sshd[24392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.99
Apr 16 17:22:34 dev0-dcde-rnet sshd[24392]: Failed password for invalid user eb from 45.120.69.99 port 3093 ssh2
Apr 16 17:33:45 dev0-dcde-rnet sshd[24532]: Failed password for root from 45.120.69.99 port 4785 ssh2

2020-04-17 01:14:47

attackbotsspam

Invalid user node from 45.120.69.99 port 9807

2020-03-19 05:03:07

Comments on same subnet:

IP	Type	Details	Datetime
45.120.69.97	attack	Jul 5 14:48:36 gestao sshd[2076]: Failed password for root from 45.120.69.97 port 51230 ssh2 Jul 5 14:52:18 gestao sshd[2137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.97 Jul 5 14:52:20 gestao sshd[2137]: Failed password for invalid user ubuntu from 45.120.69.97 port 48832 ssh2 ...	2020-07-05 22:03:37
45.120.69.97	attack	Jun 20 20:02:33 meumeu sshd[1040110]: Invalid user nick from 45.120.69.97 port 38236 Jun 20 20:02:33 meumeu sshd[1040110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.97 Jun 20 20:02:33 meumeu sshd[1040110]: Invalid user nick from 45.120.69.97 port 38236 Jun 20 20:02:35 meumeu sshd[1040110]: Failed password for invalid user nick from 45.120.69.97 port 38236 ssh2 Jun 20 20:05:57 meumeu sshd[1040219]: Invalid user zhoujing from 45.120.69.97 port 36946 Jun 20 20:05:57 meumeu sshd[1040219]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.97 Jun 20 20:05:57 meumeu sshd[1040219]: Invalid user zhoujing from 45.120.69.97 port 36946 Jun 20 20:05:59 meumeu sshd[1040219]: Failed password for invalid user zhoujing from 45.120.69.97 port 36946 ssh2 Jun 20 20:09:14 meumeu sshd[1040408]: Invalid user martin from 45.120.69.97 port 35658 ...	2020-06-21 03:21:11
45.120.69.97	attack	Fail2Ban Ban Triggered	2020-06-13 17:27:16
45.120.69.97	attackspam	Brute force attempt	2020-06-13 00:30:52
45.120.69.97	attack	2020-06-10T23:27:51.1830671495-001 sshd[26358]: Failed password for invalid user oracle from 45.120.69.97 port 51380 ssh2 2020-06-10T23:31:25.5686851495-001 sshd[26536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.97 user=root 2020-06-10T23:31:27.8370361495-001 sshd[26536]: Failed password for root from 45.120.69.97 port 51880 ssh2 2020-06-10T23:35:19.2691691495-001 sshd[26734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.97 user=root 2020-06-10T23:35:21.6627711495-001 sshd[26734]: Failed password for root from 45.120.69.97 port 52378 ssh2 2020-06-10T23:39:04.8529631495-001 sshd[26849]: Invalid user tech from 45.120.69.97 port 52892 ...	2020-06-11 13:07:53
45.120.69.97	attackbots	$f2bV_matches	2020-06-08 08:12:36
45.120.69.14	attackbots	Jun 6 06:53:30 h2646465 sshd[20762]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.14 user=root Jun 6 06:53:32 h2646465 sshd[20762]: Failed password for root from 45.120.69.14 port 34470 ssh2 Jun 6 08:01:05 h2646465 sshd[25557]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.14 user=root Jun 6 08:01:07 h2646465 sshd[25557]: Failed password for root from 45.120.69.14 port 50208 ssh2 Jun 6 08:04:34 h2646465 sshd[25671]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.14 user=root Jun 6 08:04:36 h2646465 sshd[25671]: Failed password for root from 45.120.69.14 port 48790 ssh2 Jun 6 08:07:58 h2646465 sshd[25872]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.14 user=root Jun 6 08:07:59 h2646465 sshd[25872]: Failed password for root from 45.120.69.14 port 47384 ssh2 Jun 6 08:11:29 h2646465 sshd[26163]	2020-06-06 19:49:30
45.120.69.14	attack	May 31 13:25:42 propaganda sshd[2831]: Connection from 45.120.69.14 port 40028 on 10.0.0.160 port 22 rdomain "" May 31 13:25:43 propaganda sshd[2831]: Connection closed by 45.120.69.14 port 40028 [preauth]	2020-06-01 05:41:44
45.120.69.14	attack	SSH fail RA	2020-05-30 23:33:34
45.120.69.97	attack	May 29 18:23:55 web9 sshd\[29445\]: Invalid user samir from 45.120.69.97 May 29 18:23:55 web9 sshd\[29445\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.97 May 29 18:23:57 web9 sshd\[29445\]: Failed password for invalid user samir from 45.120.69.97 port 44372 ssh2 May 29 18:27:45 web9 sshd\[29983\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.97 user=root May 29 18:27:47 web9 sshd\[29983\]: Failed password for root from 45.120.69.97 port 50124 ssh2	2020-05-30 12:28:26
45.120.69.82	attackspam	May 29 07:33:16 PorscheCustomer sshd[7263]: Failed password for root from 45.120.69.82 port 42034 ssh2 May 29 07:38:02 PorscheCustomer sshd[7412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.82 May 29 07:38:04 PorscheCustomer sshd[7412]: Failed password for invalid user admin from 45.120.69.82 port 48254 ssh2 ...	2020-05-29 13:59:38
45.120.69.14	attackspambots	May 28 22:27:10 vps687878 sshd\[15847\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.14 user=mysql May 28 22:27:12 vps687878 sshd\[15847\]: Failed password for mysql from 45.120.69.14 port 42830 ssh2 May 28 22:30:56 vps687878 sshd\[16291\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.14 user=root May 28 22:30:58 vps687878 sshd\[16291\]: Failed password for root from 45.120.69.14 port 42116 ssh2 May 28 22:34:33 vps687878 sshd\[16651\]: Invalid user signalhill from 45.120.69.14 port 41382 May 28 22:34:33 vps687878 sshd\[16651\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.14 ...	2020-05-29 04:57:31
45.120.69.14	attackspam	Invalid user gayla from 45.120.69.14 port 35536	2020-05-27 14:52:33
45.120.69.97	attackspambots	May 26 10:33:24 hosting sshd[25172]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.97 user=root May 26 10:33:26 hosting sshd[25172]: Failed password for root from 45.120.69.97 port 41988 ssh2 ...	2020-05-26 15:45:23
45.120.69.97	attackspam	May 25 00:58:06 buvik sshd[21282]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.120.69.97 May 25 00:58:08 buvik sshd[21282]: Failed password for invalid user www from 45.120.69.97 port 35944 ssh2 May 25 01:02:13 buvik sshd[22272]: Invalid user bicker from 45.120.69.97 ...	2020-05-25 07:31:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.120.69.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37844
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.120.69.99.			IN	A

;; AUTHORITY SECTION:
.			393	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031801 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 19 05:03:03 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 99.69.120.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 99.69.120.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.178.62	attack	2020-05-15T22:50:48.0951191240 sshd\[31183\]: Invalid user redis from 106.12.178.62 port 55600 2020-05-15T22:50:48.0981901240 sshd\[31183\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.178.62 2020-05-15T22:50:50.2432801240 sshd\[31183\]: Failed password for invalid user redis from 106.12.178.62 port 55600 ssh2 ...	2020-05-16 05:18:00
45.231.12.37	attackbots	Invalid user ub from 45.231.12.37 port 33496	2020-05-16 04:46:56
103.253.42.59	attack	[2020-05-15 16:49:38] NOTICE[1157][C-000050a5] chan_sip.c: Call from '' (103.253.42.59:61227) to extension '901146462607642' rejected because extension not found in context 'public'. [2020-05-15 16:49:38] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-15T16:49:38.085-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="901146462607642",SessionID="0x7f5f100266a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/103.253.42.59/61227",ACLName="no_extension_match" [2020-05-15 16:50:56] NOTICE[1157][C-000050a7] chan_sip.c: Call from '' (103.253.42.59:56677) to extension '801146462607642' rejected because extension not found in context 'public'. [2020-05-15 16:50:56] SECURITY[1173] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-05-15T16:50:56.813-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="801146462607642",SessionID="0x7f5f107b3898",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/ ...	2020-05-16 05:13:25
114.98.234.214	attackbots	May 15 23:02:30 abendstille sshd\[5325\]: Invalid user minecraft from 114.98.234.214 May 15 23:02:30 abendstille sshd\[5325\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.98.234.214 May 15 23:02:32 abendstille sshd\[5325\]: Failed password for invalid user minecraft from 114.98.234.214 port 42958 ssh2 May 15 23:06:24 abendstille sshd\[9072\]: Invalid user rancher from 114.98.234.214 May 15 23:06:24 abendstille sshd\[9072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.98.234.214 ...	2020-05-16 05:06:50
222.186.180.17	attackbotsspam	May 15 22:57:41 abendstille sshd\[1011\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root May 15 22:57:43 abendstille sshd\[1011\]: Failed password for root from 222.186.180.17 port 28978 ssh2 May 15 22:57:54 abendstille sshd\[1011\]: Failed password for root from 222.186.180.17 port 28978 ssh2 May 15 22:57:57 abendstille sshd\[1011\]: Failed password for root from 222.186.180.17 port 28978 ssh2 May 15 22:58:00 abendstille sshd\[1386\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.17 user=root ...	2020-05-16 05:12:14
62.210.206.78	attackbotsspam	2020-05-15T14:50:53.330837linuxbox-skyline sshd[29835]: Invalid user admin from 62.210.206.78 port 52588 ...	2020-05-16 05:15:46
103.108.87.161	attack	May 15 23:42:38 pkdns2 sshd\[58946\]: Invalid user informix from 103.108.87.161May 15 23:42:41 pkdns2 sshd\[58946\]: Failed password for invalid user informix from 103.108.87.161 port 50922 ssh2May 15 23:46:48 pkdns2 sshd\[59117\]: Invalid user test from 103.108.87.161May 15 23:46:50 pkdns2 sshd\[59117\]: Failed password for invalid user test from 103.108.87.161 port 55794 ssh2May 15 23:50:59 pkdns2 sshd\[59310\]: Invalid user cherry from 103.108.87.161May 15 23:51:01 pkdns2 sshd\[59310\]: Failed password for invalid user cherry from 103.108.87.161 port 60668 ssh2 ...	2020-05-16 05:08:25
188.213.165.189	attackspam	SSH brute-force attempt	2020-05-16 05:00:53
185.147.215.13	attackbots	\[May 16 06:46:52\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.13:49367' - Wrong password \[May 16 06:47:20\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.13:60313' - Wrong password \[May 16 06:47:48\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.13:54955' - Wrong password \[May 16 06:48:17\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.13:50452' - Wrong password \[May 16 06:48:48\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.13:64400' - Wrong password \[May 16 06:49:18\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed for '185.147.215.13:60968' - Wrong password \[May 16 06:49:48\] NOTICE\[2019\] chan_sip.c: Registration from '\' failed ...	2020-05-16 04:56:00
112.85.42.174	attack	May 15 22:38:32 server sshd[15315]: Failed none for root from 112.85.42.174 port 39828 ssh2 May 15 22:38:34 server sshd[15315]: Failed password for root from 112.85.42.174 port 39828 ssh2 May 15 22:38:39 server sshd[15315]: Failed password for root from 112.85.42.174 port 39828 ssh2	2020-05-16 04:43:13
106.12.136.242	attack	May 15 22:41:40 ovpn sshd\[8346\]: Invalid user admin from 106.12.136.242 May 15 22:41:40 ovpn sshd\[8346\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.136.242 May 15 22:41:42 ovpn sshd\[8346\]: Failed password for invalid user admin from 106.12.136.242 port 55752 ssh2 May 15 22:51:00 ovpn sshd\[10580\]: Invalid user melev from 106.12.136.242 May 15 22:51:00 ovpn sshd\[10580\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.136.242	2020-05-16 05:08:05
217.165.65.246	attackspambots	May 15 22:18:41 localhost sshd[259204]: Invalid user administrator from 217.165.65.246 port 63674 ...	2020-05-16 04:46:10
83.97.20.33	attack	port scan and connect, tcp 1025 (NFS-or-IIS)	2020-05-16 04:42:50
197.157.195.185	attack	Automatic report - Port Scan Attack	2020-05-16 04:56:26
190.85.92.218	attack	Brute forcing RDP port 3389	2020-05-16 05:15:18

Recently Reported IPs

123.94.150.185	47.214.94.203	99.170.93.79	85.100.122.211
148.61.75.98	103.61.124.188	82.232.59.0	97.75.230.7
175.144.251.70	98.19.147.41	71.188.126.3	84.226.57.231
177.151.104.154	67.191.235.227	78.231.30.41	17.20.28.134
74.223.230.148	91.173.81.106	190.162.113.63	206.213.1.243