59.45.99.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Liaoning Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mar 18 04:08:28 ns382633 sshd\[26086\]: Invalid user tomcat from 59.45.99.99 port 43004 Mar 18 04:08:28 ns382633 sshd\[26086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Mar 18 04:08:30 ns382633 sshd\[26086\]: Failed password for invalid user tomcat from 59.45.99.99 port 43004 ssh2 Mar 18 04:45:55 ns382633 sshd\[1398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 user=root Mar 18 04:45:57 ns382633 sshd\[1398\]: Failed password for root from 59.45.99.99 port 54117 ssh2	2020-03-18 20:37:17
attack	Feb 27 07:15:41 srv-ubuntu-dev3 sshd[88291]: Invalid user deploy from 59.45.99.99 Feb 27 07:15:41 srv-ubuntu-dev3 sshd[88291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 27 07:15:41 srv-ubuntu-dev3 sshd[88291]: Invalid user deploy from 59.45.99.99 Feb 27 07:15:43 srv-ubuntu-dev3 sshd[88291]: Failed password for invalid user deploy from 59.45.99.99 port 34287 ssh2 Feb 27 07:17:30 srv-ubuntu-dev3 sshd[88448]: Invalid user shiyang from 59.45.99.99 Feb 27 07:17:30 srv-ubuntu-dev3 sshd[88448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 27 07:17:30 srv-ubuntu-dev3 sshd[88448]: Invalid user shiyang from 59.45.99.99 Feb 27 07:17:32 srv-ubuntu-dev3 sshd[88448]: Failed password for invalid user shiyang from 59.45.99.99 port 38244 ssh2 ...	2020-02-27 15:23:34
attackspam	Feb 19 22:49:02 srv-ubuntu-dev3 sshd[106380]: Invalid user cpanel from 59.45.99.99 Feb 19 22:49:02 srv-ubuntu-dev3 sshd[106380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 19 22:49:02 srv-ubuntu-dev3 sshd[106380]: Invalid user cpanel from 59.45.99.99 Feb 19 22:49:04 srv-ubuntu-dev3 sshd[106380]: Failed password for invalid user cpanel from 59.45.99.99 port 60710 ssh2 Feb 19 22:51:34 srv-ubuntu-dev3 sshd[106636]: Invalid user gitlab-prometheus from 59.45.99.99 Feb 19 22:51:34 srv-ubuntu-dev3 sshd[106636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 19 22:51:34 srv-ubuntu-dev3 sshd[106636]: Invalid user gitlab-prometheus from 59.45.99.99 Feb 19 22:51:36 srv-ubuntu-dev3 sshd[106636]: Failed password for invalid user gitlab-prometheus from 59.45.99.99 port 41621 ssh2 Feb 19 22:53:39 srv-ubuntu-dev3 sshd[106778]: Invalid user vmail from 59.45.99.99 ...	2020-02-20 09:39:02
attackspambots	Unauthorized connection attempt detected from IP address 59.45.99.99 to port 2220 [J]	2020-01-20 17:41:05
attackbots	Dec 12 23:44:05 srv01 sshd[13384]: Invalid user murakoshi from 59.45.99.99 port 47982 Dec 12 23:44:05 srv01 sshd[13384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Dec 12 23:44:05 srv01 sshd[13384]: Invalid user murakoshi from 59.45.99.99 port 47982 Dec 12 23:44:07 srv01 sshd[13384]: Failed password for invalid user murakoshi from 59.45.99.99 port 47982 ssh2 Dec 12 23:49:50 srv01 sshd[13881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 user=root Dec 12 23:49:52 srv01 sshd[13881]: Failed password for root from 59.45.99.99 port 47871 ssh2 ...	2019-12-13 07:33:09
attack	Nov 16 05:55:30 icinga sshd[18533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Nov 16 05:55:32 icinga sshd[18533]: Failed password for invalid user Danger123 from 59.45.99.99 port 51946 ssh2 ...	2019-11-16 13:56:57
attack	Automatic report - Banned IP Access	2019-11-16 03:04:17
attack	$f2bV_matches	2019-11-04 18:45:58
attackspam	SSH bruteforce	2019-11-03 14:23:36
attackspambots	Nov 1 05:55:02 vpn01 sshd[17752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Nov 1 05:55:04 vpn01 sshd[17752]: Failed password for invalid user albert from 59.45.99.99 port 38287 ssh2 ...	2019-11-01 16:09:06
attackspam	Oct 28 12:49:06 srv01 sshd[22968]: Invalid user db2das from 59.45.99.99 Oct 28 12:49:06 srv01 sshd[22968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Oct 28 12:49:06 srv01 sshd[22968]: Invalid user db2das from 59.45.99.99 Oct 28 12:49:09 srv01 sshd[22968]: Failed password for invalid user db2das from 59.45.99.99 port 57624 ssh2 Oct 28 12:54:25 srv01 sshd[23191]: Invalid user appowner from 59.45.99.99 ...	2019-10-28 20:00:54
attack	Oct 7 07:43:21 sauna sshd[216384]: Failed password for root from 59.45.99.99 port 40937 ssh2 ...	2019-10-07 12:55:34
attack	Aug 27 22:30:28 hcbb sshd\[12760\]: Invalid user zr from 59.45.99.99 Aug 27 22:30:28 hcbb sshd\[12760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Aug 27 22:30:30 hcbb sshd\[12760\]: Failed password for invalid user zr from 59.45.99.99 port 37874 ssh2 Aug 27 22:36:50 hcbb sshd\[13278\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 user=root Aug 27 22:36:52 hcbb sshd\[13278\]: Failed password for root from 59.45.99.99 port 60450 ssh2	2019-08-28 16:45:10
attackspambots	Aug 25 10:35:16 hiderm sshd\[18636\]: Invalid user server from 59.45.99.99 Aug 25 10:35:16 hiderm sshd\[18636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Aug 25 10:35:18 hiderm sshd\[18636\]: Failed password for invalid user server from 59.45.99.99 port 57202 ssh2 Aug 25 10:39:53 hiderm sshd\[19189\]: Invalid user visitante from 59.45.99.99 Aug 25 10:39:53 hiderm sshd\[19189\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99	2019-08-26 04:52:06
attackspambots	Aug 25 11:52:19 vps647732 sshd[4090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Aug 25 11:52:22 vps647732 sshd[4090]: Failed password for invalid user nk from 59.45.99.99 port 54276 ssh2 ...	2019-08-25 17:58:29
attack	Aug 10 15:53:29 www sshd\[59603\]: Invalid user user from 59.45.99.99Aug 10 15:53:32 www sshd\[59603\]: Failed password for invalid user user from 59.45.99.99 port 54323 ssh2Aug 10 15:59:25 www sshd\[59799\]: Invalid user shop from 59.45.99.99 ...	2019-08-10 21:02:35
attackspam	Aug 10 04:28:16 XXX sshd[60434]: Invalid user ghislain from 59.45.99.99 port 52147	2019-08-10 14:17:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.45.99.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49862
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.45.99.99.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080702 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 13:01:02 CST 2019
;; MSG SIZE  rcvd: 115

Host info

99.99.45.59.in-addr.arpa domain name pointer 99.99.45.59.broad.yk.ln.dynamic.163data.com.cn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
99.99.45.59.in-addr.arpa	name = 99.99.45.59.broad.yk.ln.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
94.177.215.195	attackspam	Jan 27 18:37:17 marvibiene sshd[25944]: Invalid user course from 94.177.215.195 port 42954 Jan 27 18:37:17 marvibiene sshd[25944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.215.195 Jan 27 18:37:17 marvibiene sshd[25944]: Invalid user course from 94.177.215.195 port 42954 Jan 27 18:37:20 marvibiene sshd[25944]: Failed password for invalid user course from 94.177.215.195 port 42954 ssh2 ...	2020-01-28 02:59:10
138.68.227.73	attackbotsspam	Apr 26 14:11:41 ubuntu sshd[17418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.227.73 Apr 26 14:11:43 ubuntu sshd[17418]: Failed password for invalid user pascal from 138.68.227.73 port 32982 ssh2 Apr 26 14:13:57 ubuntu sshd[17453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.227.73 Apr 26 14:13:59 ubuntu sshd[17453]: Failed password for invalid user marcus from 138.68.227.73 port 58610 ssh2	2020-01-28 03:12:39
93.143.184.148	attackbotsspam	2019-01-30 17:36:11 H=93-143-184-148.adsl.net.t-com.hr \[93.143.184.148\]:29023 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-30 17:36:22 H=93-143-184-148.adsl.net.t-com.hr \[93.143.184.148\]:29157 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-30 17:36:27 H=93-143-184-148.adsl.net.t-com.hr \[93.143.184.148\]:29232 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-28 03:31:50
93.190.2.186	attack	2019-07-05 21:44:12 1hjU7t-0000Jr-DI SMTP connection from $5dbe02ba.ttnk.hu$ \[93.190.2.186\]:24961 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-05 21:44:23 1hjU85-0000Jx-Bs SMTP connection from $5dbe02ba.ttnk.hu$ \[93.190.2.186\]:25021 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-05 21:44:27 1hjU89-0000K0-Tm SMTP connection from $5dbe02ba.ttnk.hu$ \[93.190.2.186\]:25040 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 02:59:25
138.68.20.158	attackbots	$f2bV_matches	2020-01-28 03:29:21
93.169.179.143	attackbotsspam	2019-07-08 03:45:32 1hkIii-0000G3-6Y SMTP connection from $\[93.169.179.143\]$ \[93.169.179.143\]:1606 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 03:45:38 1hkIin-0000GD-JM SMTP connection from $\[93.169.179.143\]$ \[93.169.179.143\]:1873 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 03:45:41 1hkIir-0000GF-4q SMTP connection from $\[93.169.179.143\]$ \[93.169.179.143\]:1728 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 03:16:36
121.154.67.139	attackspambots	Unauthorized connection attempt detected from IP address 121.154.67.139 to port 23 [J]	2020-01-28 02:57:49
170.106.76.4	attackspam	Unauthorized connection attempt detected from IP address 170.106.76.4 to port 2121 [J]	2020-01-28 02:57:20
218.76.60.162	attackspam	1433/tcp 1433/tcp 1433/tcp... [2019-11-29/2020-01-27]7pkt,1pt.(tcp)	2020-01-28 03:18:11
93.151.164.37	attackspambots	2019-06-22 11:10:46 1hec2n-0000WZ-0g SMTP connection from net-93-151-164-37.cust.dsl.teletu.it \[93.151.164.37\]:11713 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 11:11:00 1hec30-0000Wk-MR SMTP connection from net-93-151-164-37.cust.dsl.teletu.it \[93.151.164.37\]:11812 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-06-22 11:11:09 1hec3A-0000Wy-Bt SMTP connection from net-93-151-164-37.cust.dsl.teletu.it \[93.151.164.37\]:11892 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 03:24:23
93.142.139.255	attackbots	2019-10-23 18:11:57 1iNJEp-0001Ei-9u SMTP connection from 93-142-139-255.adsl.net.t-com.hr \[93.142.139.255\]:48485 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 18:12:09 1iNJF2-0001Ev-TN SMTP connection from 93-142-139-255.adsl.net.t-com.hr \[93.142.139.255\]:48584 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-10-23 18:12:19 1iNJFB-0001F1-GY SMTP connection from 93-142-139-255.adsl.net.t-com.hr \[93.142.139.255\]:48640 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 03:34:17
93.147.200.254	attackspambots	2019-09-23 20:03:17 1iCSg8-0002oL-90 SMTP connection from net-93-147-200-254.cust.vodafonedsl.it \[93.147.200.254\]:31388 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-23 20:03:30 1iCSgK-0002od-Pj SMTP connection from net-93-147-200-254.cust.vodafonedsl.it \[93.147.200.254\]:31497 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-23 20:03:40 1iCSgV-0002op-3L SMTP connection from net-93-147-200-254.cust.vodafonedsl.it \[93.147.200.254\]:31578 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 03:27:13
112.198.43.130	attackbots	Jan 27 19:36:58 MK-Soft-VM6 sshd[20140]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.198.43.130 Jan 27 19:37:01 MK-Soft-VM6 sshd[20140]: Failed password for invalid user oracle from 112.198.43.130 port 54585 ssh2 ...	2020-01-28 03:31:35
203.129.207.2	attackbots	Jan 27 19:48:47 eventyay sshd[32314]: Failed password for root from 203.129.207.2 port 35647 ssh2 Jan 27 19:53:16 eventyay sshd[32331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.129.207.2 Jan 27 19:53:18 eventyay sshd[32331]: Failed password for invalid user kay from 203.129.207.2 port 46701 ssh2 ...	2020-01-28 03:19:33
93.143.251.119	attack	2019-01-30 04:43:02 H=93-143-251-119.adsl.net.t-com.hr \[93.143.251.119\]:48907 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-30 04:43:24 H=93-143-251-119.adsl.net.t-com.hr \[93.143.251.119\]:49124 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed 2019-01-30 04:43:37 H=93-143-251-119.adsl.net.t-com.hr \[93.143.251.119\]:49261 I=\[193.107.88.166\]:25 F=\ rejected RCPT \: Sender verify failed ...	2020-01-28 03:30:50

Recently Reported IPs

143.70.33.103	240e:360:c202:2123:216:5d21:eb58:275	153.36.138.52	83.27.36.28
34.67.72.141	77.127.91.208	188.27.165.148	142.44.210.154
94.9.83.219	206.191.152.198	1.251.226.183	89.242.13.36
36.106.167.242	1.252.42.102	47.52.196.112	79.30.47.10
25.104.194.152	76.112.207.85	47.254.150.182	174.91.10.96