45.64.99.144 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Indonesia

Internet Service Provider: Argon Data Communication

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Aug 2 14:46:55 eola sshd[23933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.99.144 user=r.r Aug 2 14:46:57 eola sshd[23933]: Failed password for r.r from 45.64.99.144 port 59640 ssh2 Aug 2 14:46:57 eola sshd[23933]: Received disconnect from 45.64.99.144 port 59640:11: Bye Bye [preauth] Aug 2 14:46:57 eola sshd[23933]: Disconnected from 45.64.99.144 port 59640 [preauth] Aug 2 15:03:26 eola sshd[25077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.99.144 user=r.r Aug 2 15:03:28 eola sshd[25077]: Failed password for r.r from 45.64.99.144 port 52134 ssh2 Aug 2 15:03:28 eola sshd[25077]: Received disconnect from 45.64.99.144 port 52134:11: Bye Bye [preauth] Aug 2 15:03:28 eola sshd[25077]: Disconnected from 45.64.99.144 port 52134 [preauth] Aug 2 15:12:06 eola sshd[25598]: Invalid user alma from 45.64.99.144 port 49324 Aug 2 15:12:06 eola sshd[25598]: pam_unix(sshd........ -------------------------------	2019-08-03 10:31:42

Type

Details

Datetime

attackbots

Aug  2 14:46:55 eola sshd[23933]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.99.144  user=r.r
Aug  2 14:46:57 eola sshd[23933]: Failed password for r.r from 45.64.99.144 port 59640 ssh2
Aug  2 14:46:57 eola sshd[23933]: Received disconnect from 45.64.99.144 port 59640:11: Bye Bye [preauth]
Aug  2 14:46:57 eola sshd[23933]: Disconnected from 45.64.99.144 port 59640 [preauth]
Aug  2 15:03:26 eola sshd[25077]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.99.144  user=r.r
Aug  2 15:03:28 eola sshd[25077]: Failed password for r.r from 45.64.99.144 port 52134 ssh2
Aug  2 15:03:28 eola sshd[25077]: Received disconnect from 45.64.99.144 port 52134:11: Bye Bye [preauth]
Aug  2 15:03:28 eola sshd[25077]: Disconnected from 45.64.99.144 port 52134 [preauth]
Aug  2 15:12:06 eola sshd[25598]: Invalid user alma from 45.64.99.144 port 49324
Aug  2 15:12:06 eola sshd[25598]: pam_unix(sshd........
-------------------------------

2019-08-03 10:31:42

Comments on same subnet:

IP	Type	Details	Datetime
45.64.99.147	attackspam	Sep 28 23:39:47 NG-HHDC-SVS-001 sshd[11608]: Invalid user king from 45.64.99.147 ...	2020-09-29 00:08:46
45.64.99.147	attack	$f2bV_matches	2020-09-28 16:10:50
45.64.99.147	attackbots	Sep 23 11:30:31 OPSO sshd\[23054\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.99.147 user=root Sep 23 11:30:33 OPSO sshd\[23054\]: Failed password for root from 45.64.99.147 port 39924 ssh2 Sep 23 11:36:20 OPSO sshd\[24279\]: Invalid user sysadmin from 45.64.99.147 port 47978 Sep 23 11:36:20 OPSO sshd\[24279\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.99.147 Sep 23 11:36:22 OPSO sshd\[24279\]: Failed password for invalid user sysadmin from 45.64.99.147 port 47978 ssh2	2020-09-23 20:53:23
45.64.99.147	attackbots	Sep 23 01:07:00 firewall sshd[12304]: Failed password for invalid user buero from 45.64.99.147 port 37770 ssh2 Sep 23 01:10:35 firewall sshd[12372]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.64.99.147 user=root Sep 23 01:10:37 firewall sshd[12372]: Failed password for root from 45.64.99.147 port 47616 ssh2 ...	2020-09-23 13:14:36
45.64.99.147	attack	3x Failed Password	2020-09-23 05:01:21
45.64.99.173	attackspam	$f2bV_matches	2020-06-13 02:52:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.64.99.144
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19832
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.64.99.144.			IN	A

;; AUTHORITY SECTION:
.			3409	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080202 1800 900 604800 86400

;; Query time: 0 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 03 10:31:12 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 144.99.64.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 144.99.64.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
156.208.92.174	attack	Invalid user admin from 156.208.92.174 port 38628	2019-09-13 10:18:46
121.142.111.214	attackbotsspam	2019-09-13T01:10:48.489947abusebot-2.cloudsearch.cf sshd\[5767\]: Invalid user rust from 121.142.111.214 port 52992	2019-09-13 09:42:07
81.28.100.62	attackbotsspam	Sep 13 03:10:12 smtp postfix/smtpd[40873]: NOQUEUE: reject: RCPT from huge.car-bluetooth2-cz.com[81.28.100.62]: 554 5.7.1 Service unavailable; Client host [81.28.100.62] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS; from= to= proto=ESMTP helo= ...	2019-09-13 10:06:55
193.7.203.39	attack	[portscan] Port scan	2019-09-13 09:52:49
139.199.21.245	attackbotsspam	Invalid user radio from 139.199.21.245 port 34614	2019-09-13 10:19:46
179.127.193.178	attackspambots	Mail sent to address hacked/leaked from Last.fm	2019-09-13 09:56:06
180.167.233.252	attack	Sep 13 03:56:28 lnxded64 sshd[9640]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.167.233.252	2019-09-13 10:02:09
176.31.191.61	attackbots	Sep 13 03:26:57 SilenceServices sshd[4928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.191.61 Sep 13 03:26:59 SilenceServices sshd[4928]: Failed password for invalid user sinusbot1 from 176.31.191.61 port 48376 ssh2 Sep 13 03:31:06 SilenceServices sshd[8374]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.31.191.61	2019-09-13 09:48:49
106.6.12.215	attackbots	DATE:2019-09-13 03:10:53, IP:106.6.12.215, PORT:1433 MSSQL brute force auth on honeypot server (honey-neo-dc)	2019-09-13 09:38:32
78.189.35.178	attackspam	" "	2019-09-13 09:49:19
123.207.94.252	attack	Invalid user arma3server from 123.207.94.252 port 29060	2019-09-13 10:24:18
157.230.204.252	attackbotsspam	Sep 12 15:45:49 php1 sshd\[12541\]: Invalid user odoo from 157.230.204.252 Sep 12 15:45:49 php1 sshd\[12541\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.204.252 Sep 12 15:45:51 php1 sshd\[12541\]: Failed password for invalid user odoo from 157.230.204.252 port 42472 ssh2 Sep 12 15:52:36 php1 sshd\[13142\]: Invalid user deploy from 157.230.204.252 Sep 12 15:52:36 php1 sshd\[13142\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.204.252	2019-09-13 10:07:20
132.145.21.100	attack	Invalid user testuser from 132.145.21.100 port 43921	2019-09-13 10:21:37
134.119.221.7	attackspambots	\[2019-09-12 21:23:38\] SECURITY\[20693\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-12T21:23:38.860-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="2246812112996",SessionID="0x7f8a6c2efb98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/54124",ACLName="no_extension_match" \[2019-09-12 21:26:49\] SECURITY\[20693\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-12T21:26:49.509-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="4001446812112996",SessionID="0x7f8a6c03bca8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/53464",ACLName="no_extension_match" \[2019-09-12 21:29:59\] SECURITY\[20693\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-09-12T21:29:59.955-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="60070046812112996",SessionID="0x7f8a6c8c4548",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/134.119.221.7/59016",ACLName="no	2019-09-13 09:47:53
165.22.59.25	attackbots	Sep 12 15:38:11 php1 sshd\[11788\]: Invalid user testtest from 165.22.59.25 Sep 12 15:38:11 php1 sshd\[11788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.59.25 Sep 12 15:38:12 php1 sshd\[11788\]: Failed password for invalid user testtest from 165.22.59.25 port 55760 ssh2 Sep 12 15:44:34 php1 sshd\[12433\]: Invalid user teamspeak from 165.22.59.25 Sep 12 15:44:34 php1 sshd\[12433\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.59.25	2019-09-13 09:51:56

Recently Reported IPs

130.61.120.30	104.248.112.152	42.56.56.20	177.73.77.245
113.23.79.146	190.122.222.134	157.230.253.125	109.64.67.200
49.69.48.65	91.249.191.108	112.43.106.240	75.67.29.248
101.31.62.207	34.80.250.15	200.181.214.208	134.209.103.114
125.120.223.76	190.146.231.157	175.173.119.107	171.80.208.130