45.197.231.99 - IPInfo

Basic Info

City: Johannesburg

Region: Gauteng

Country: South Africa

Internet Service Provider: unknown

Hostname: unknown

Organization: MacroLAN

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.197.231.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45157
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.197.231.99.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072901 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Jul 30 03:22:37 CST 2019
;; MSG SIZE  rcvd: 117

Host info

Host 99.231.197.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 99.231.197.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
81.22.45.190	attack	Oct 18 17:00:33 h2177944 kernel: \[4286763.296561\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.190 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=60426 PROTO=TCP SPT=42732 DPT=14961 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 17:09:25 h2177944 kernel: \[4287295.031873\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.190 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=14099 PROTO=TCP SPT=42732 DPT=15201 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 17:31:09 h2177944 kernel: \[4288598.816433\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.190 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=62945 PROTO=TCP SPT=42732 DPT=14672 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 17:35:25 h2177944 kernel: \[4288854.751428\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.190 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=8590 PROTO=TCP SPT=42732 DPT=15207 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 18 17:38:57 h2177944 kernel: \[4289066.768837\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=81.22.45.190 DST=85.214.117.9 L	2019-10-18 23:39:55
195.154.223.226	attack	$f2bV_matches	2019-10-18 23:31:17
104.244.72.115	attackbotsspam	2019-10-18T15:00:29.324505abusebot.cloudsearch.cf sshd\[19026\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=tor-exit-hermes.greektor.net user=root	2019-10-18 23:14:43
201.66.230.67	attackbotsspam	Oct 18 05:03:41 tdfoods sshd\[3844\]: Invalid user operador from 201.66.230.67 Oct 18 05:03:41 tdfoods sshd\[3844\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.stv.com.br Oct 18 05:03:43 tdfoods sshd\[3844\]: Failed password for invalid user operador from 201.66.230.67 port 56502 ssh2 Oct 18 05:08:58 tdfoods sshd\[4371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=mail.stv.com.br user=root Oct 18 05:09:01 tdfoods sshd\[4371\]: Failed password for root from 201.66.230.67 port 46941 ssh2	2019-10-18 23:46:10
23.129.64.158	attackbots	Oct 18 17:09:43 rotator sshd\[17439\]: Failed password for root from 23.129.64.158 port 61684 ssh2Oct 18 17:09:46 rotator sshd\[17439\]: Failed password for root from 23.129.64.158 port 61684 ssh2Oct 18 17:09:50 rotator sshd\[17439\]: Failed password for root from 23.129.64.158 port 61684 ssh2Oct 18 17:09:53 rotator sshd\[17439\]: Failed password for root from 23.129.64.158 port 61684 ssh2Oct 18 17:09:55 rotator sshd\[17439\]: Failed password for root from 23.129.64.158 port 61684 ssh2Oct 18 17:09:58 rotator sshd\[17439\]: Failed password for root from 23.129.64.158 port 61684 ssh2 ...	2019-10-18 23:30:46
190.211.141.217	attackspambots	2019-10-18T14:50:41.585409abusebot-3.cloudsearch.cf sshd\[8616\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.211.141.217 user=root	2019-10-18 23:21:10
5.35.68.32	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/5.35.68.32/ RU - 1H : (157) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : RU NAME ASN : ASN31514 IP : 5.35.68.32 CIDR : 5.35.0.0/17 PREFIX COUNT : 14 UNIQUE IP COUNT : 139520 WYKRYTE ATAKI Z ASN31514 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 1 DateTime : 2019-10-18 13:39:35 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-18 23:26:09
167.86.114.108	attackspambots	2019-10-18T12:06:25.192675shield sshd\[21808\]: Invalid user sudip from 167.86.114.108 port 58342 2019-10-18T12:06:25.197118shield sshd\[21808\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi267007.contaboserver.net 2019-10-18T12:06:27.168471shield sshd\[21808\]: Failed password for invalid user sudip from 167.86.114.108 port 58342 ssh2 2019-10-18T12:10:23.723544shield sshd\[22971\]: Invalid user PASSWORD!23 from 167.86.114.108 port 40978 2019-10-18T12:10:23.728077shield sshd\[22971\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=vmi267007.contaboserver.net	2019-10-18 23:46:29
5.0.94.141	attackbotsspam	C1,WP GET /wp-login.php	2019-10-18 23:33:03
218.92.0.204	attack	2019-10-18T14:50:41.353605abusebot-8.cloudsearch.cf sshd\[5864\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.204 user=root	2019-10-18 23:20:15
157.230.156.51	attackspambots	Oct 18 16:28:20 ns381471 sshd[18518]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.156.51 Oct 18 16:28:22 ns381471 sshd[18518]: Failed password for invalid user waski from 157.230.156.51 port 38068 ssh2 Oct 18 16:32:52 ns381471 sshd[18650]: Failed password for root from 157.230.156.51 port 50020 ssh2	2019-10-18 23:25:33
222.186.15.246	attackbots	Oct 18 14:45:06 ip-172-31-1-72 sshd\[18891\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.246 user=root Oct 18 14:45:08 ip-172-31-1-72 sshd\[18891\]: Failed password for root from 222.186.15.246 port 18967 ssh2 Oct 18 14:46:01 ip-172-31-1-72 sshd\[18895\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.246 user=root Oct 18 14:46:03 ip-172-31-1-72 sshd\[18895\]: Failed password for root from 222.186.15.246 port 16798 ssh2 Oct 18 14:46:31 ip-172-31-1-72 sshd\[18897\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.246 user=root	2019-10-18 23:19:15
139.178.76.99	attack	Automatic report - Banned IP Access	2019-10-18 23:17:11
159.203.201.251	attackspam	10/18/2019-07:39:00.958901 159.203.201.251 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-10-18 23:44:00
96.127.158.237	attackspambots	3389BruteforceFW21	2019-10-18 23:29:36

Recently Reported IPs

207.46.13.112	53.31.104.238	135.250.225.131	221.122.157.82
146.246.173.6	59.66.137.118	134.222.3.91	14.169.223.234
164.69.212.124	111.87.198.107	83.162.194.6	216.228.131.4
58.111.118.163	187.86.99.30	112.70.1.53	94.46.16.62
125.192.152.11	113.173.47.150	67.76.151.17	100.27.229.146