59.45.99.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Liaoning Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mar 18 04:08:28 ns382633 sshd\[26086\]: Invalid user tomcat from 59.45.99.99 port 43004 Mar 18 04:08:28 ns382633 sshd\[26086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Mar 18 04:08:30 ns382633 sshd\[26086\]: Failed password for invalid user tomcat from 59.45.99.99 port 43004 ssh2 Mar 18 04:45:55 ns382633 sshd\[1398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 user=root Mar 18 04:45:57 ns382633 sshd\[1398\]: Failed password for root from 59.45.99.99 port 54117 ssh2	2020-03-18 20:37:17
attack	Feb 27 07:15:41 srv-ubuntu-dev3 sshd[88291]: Invalid user deploy from 59.45.99.99 Feb 27 07:15:41 srv-ubuntu-dev3 sshd[88291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 27 07:15:41 srv-ubuntu-dev3 sshd[88291]: Invalid user deploy from 59.45.99.99 Feb 27 07:15:43 srv-ubuntu-dev3 sshd[88291]: Failed password for invalid user deploy from 59.45.99.99 port 34287 ssh2 Feb 27 07:17:30 srv-ubuntu-dev3 sshd[88448]: Invalid user shiyang from 59.45.99.99 Feb 27 07:17:30 srv-ubuntu-dev3 sshd[88448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 27 07:17:30 srv-ubuntu-dev3 sshd[88448]: Invalid user shiyang from 59.45.99.99 Feb 27 07:17:32 srv-ubuntu-dev3 sshd[88448]: Failed password for invalid user shiyang from 59.45.99.99 port 38244 ssh2 ...	2020-02-27 15:23:34
attackspam	Feb 19 22:49:02 srv-ubuntu-dev3 sshd[106380]: Invalid user cpanel from 59.45.99.99 Feb 19 22:49:02 srv-ubuntu-dev3 sshd[106380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 19 22:49:02 srv-ubuntu-dev3 sshd[106380]: Invalid user cpanel from 59.45.99.99 Feb 19 22:49:04 srv-ubuntu-dev3 sshd[106380]: Failed password for invalid user cpanel from 59.45.99.99 port 60710 ssh2 Feb 19 22:51:34 srv-ubuntu-dev3 sshd[106636]: Invalid user gitlab-prometheus from 59.45.99.99 Feb 19 22:51:34 srv-ubuntu-dev3 sshd[106636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 19 22:51:34 srv-ubuntu-dev3 sshd[106636]: Invalid user gitlab-prometheus from 59.45.99.99 Feb 19 22:51:36 srv-ubuntu-dev3 sshd[106636]: Failed password for invalid user gitlab-prometheus from 59.45.99.99 port 41621 ssh2 Feb 19 22:53:39 srv-ubuntu-dev3 sshd[106778]: Invalid user vmail from 59.45.99.99 ...	2020-02-20 09:39:02
attackspambots	Unauthorized connection attempt detected from IP address 59.45.99.99 to port 2220 [J]	2020-01-20 17:41:05
attackbots	Dec 12 23:44:05 srv01 sshd[13384]: Invalid user murakoshi from 59.45.99.99 port 47982 Dec 12 23:44:05 srv01 sshd[13384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Dec 12 23:44:05 srv01 sshd[13384]: Invalid user murakoshi from 59.45.99.99 port 47982 Dec 12 23:44:07 srv01 sshd[13384]: Failed password for invalid user murakoshi from 59.45.99.99 port 47982 ssh2 Dec 12 23:49:50 srv01 sshd[13881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 user=root Dec 12 23:49:52 srv01 sshd[13881]: Failed password for root from 59.45.99.99 port 47871 ssh2 ...	2019-12-13 07:33:09
attack	Nov 16 05:55:30 icinga sshd[18533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Nov 16 05:55:32 icinga sshd[18533]: Failed password for invalid user Danger123 from 59.45.99.99 port 51946 ssh2 ...	2019-11-16 13:56:57
attack	Automatic report - Banned IP Access	2019-11-16 03:04:17
attack	$f2bV_matches	2019-11-04 18:45:58
attackspam	SSH bruteforce	2019-11-03 14:23:36
attackspambots	Nov 1 05:55:02 vpn01 sshd[17752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Nov 1 05:55:04 vpn01 sshd[17752]: Failed password for invalid user albert from 59.45.99.99 port 38287 ssh2 ...	2019-11-01 16:09:06
attackspam	Oct 28 12:49:06 srv01 sshd[22968]: Invalid user db2das from 59.45.99.99 Oct 28 12:49:06 srv01 sshd[22968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Oct 28 12:49:06 srv01 sshd[22968]: Invalid user db2das from 59.45.99.99 Oct 28 12:49:09 srv01 sshd[22968]: Failed password for invalid user db2das from 59.45.99.99 port 57624 ssh2 Oct 28 12:54:25 srv01 sshd[23191]: Invalid user appowner from 59.45.99.99 ...	2019-10-28 20:00:54
attack	Oct 7 07:43:21 sauna sshd[216384]: Failed password for root from 59.45.99.99 port 40937 ssh2 ...	2019-10-07 12:55:34
attack	Aug 27 22:30:28 hcbb sshd\[12760\]: Invalid user zr from 59.45.99.99 Aug 27 22:30:28 hcbb sshd\[12760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Aug 27 22:30:30 hcbb sshd\[12760\]: Failed password for invalid user zr from 59.45.99.99 port 37874 ssh2 Aug 27 22:36:50 hcbb sshd\[13278\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 user=root Aug 27 22:36:52 hcbb sshd\[13278\]: Failed password for root from 59.45.99.99 port 60450 ssh2	2019-08-28 16:45:10
attackspambots	Aug 25 10:35:16 hiderm sshd\[18636\]: Invalid user server from 59.45.99.99 Aug 25 10:35:16 hiderm sshd\[18636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Aug 25 10:35:18 hiderm sshd\[18636\]: Failed password for invalid user server from 59.45.99.99 port 57202 ssh2 Aug 25 10:39:53 hiderm sshd\[19189\]: Invalid user visitante from 59.45.99.99 Aug 25 10:39:53 hiderm sshd\[19189\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99	2019-08-26 04:52:06
attackspambots	Aug 25 11:52:19 vps647732 sshd[4090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Aug 25 11:52:22 vps647732 sshd[4090]: Failed password for invalid user nk from 59.45.99.99 port 54276 ssh2 ...	2019-08-25 17:58:29
attack	Aug 10 15:53:29 www sshd\[59603\]: Invalid user user from 59.45.99.99Aug 10 15:53:32 www sshd\[59603\]: Failed password for invalid user user from 59.45.99.99 port 54323 ssh2Aug 10 15:59:25 www sshd\[59799\]: Invalid user shop from 59.45.99.99 ...	2019-08-10 21:02:35
attackspam	Aug 10 04:28:16 XXX sshd[60434]: Invalid user ghislain from 59.45.99.99 port 52147	2019-08-10 14:17:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.45.99.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49862
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.45.99.99.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080702 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 13:01:02 CST 2019
;; MSG SIZE  rcvd: 115

Host info

99.99.45.59.in-addr.arpa domain name pointer 99.99.45.59.broad.yk.ln.dynamic.163data.com.cn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
99.99.45.59.in-addr.arpa	name = 99.99.45.59.broad.yk.ln.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.226.117.160	attack	Jul 12 03:51:14 vlre-nyc-1 sshd\[10771\]: Invalid user shiqian from 129.226.117.160 Jul 12 03:51:14 vlre-nyc-1 sshd\[10771\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.117.160 Jul 12 03:51:17 vlre-nyc-1 sshd\[10771\]: Failed password for invalid user shiqian from 129.226.117.160 port 59880 ssh2 Jul 12 03:56:46 vlre-nyc-1 sshd\[10923\]: Invalid user nagios from 129.226.117.160 Jul 12 03:56:46 vlre-nyc-1 sshd\[10923\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.117.160 ...	2020-07-12 12:01:53
116.179.32.209	attack	/var/log/apache/pucorp.org.log:116.179.32.209 - - [12/Jul/2020:03:49:40 +0800] "GET /index.php?rest_route=%2Foembed%2F1.0%2Fembed&url=http%3A%2F%2Fwww.l-apres-midi.com%2F%3Fp%3D1741 HTTP/1.1" 200 3070 "-" "Mozilla/5.0 (compatible; Baiduspider/2.0; +hxxp://www.baidu.com/search/spider.html)" ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=116.179.32.209	2020-07-12 08:02:00
92.63.196.28	attackspam	07/11/2020-17:57:42.729809 92.63.196.28 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-12 07:38:22
93.81.150.33	attackbots	1594497870 - 07/11/2020 22:04:30 Host: 93.81.150.33/93.81.150.33 Port: 445 TCP Blocked	2020-07-12 07:45:59
51.255.35.58	attackbots	Invalid user mich from 51.255.35.58 port 54104	2020-07-12 07:47:53
222.186.180.223	attackspambots	Jul 12 01:48:15 sshgateway sshd\[9625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223 user=root Jul 12 01:48:17 sshgateway sshd\[9625\]: Failed password for root from 222.186.180.223 port 33012 ssh2 Jul 12 01:48:31 sshgateway sshd\[9625\]: error: maximum authentication attempts exceeded for root from 222.186.180.223 port 33012 ssh2 \[preauth\]	2020-07-12 07:49:20
46.38.150.188	attack	Jul 12 06:02:36 srv01 postfix/smtpd\[13879\]: warning: unknown\[46.38.150.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 06:02:36 srv01 postfix/smtpd\[15034\]: warning: unknown\[46.38.150.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 06:02:55 srv01 postfix/smtpd\[27990\]: warning: unknown\[46.38.150.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 06:02:56 srv01 postfix/smtpd\[13879\]: warning: unknown\[46.38.150.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 06:03:40 srv01 postfix/smtpd\[27990\]: warning: unknown\[46.38.150.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 12 06:03:40 srv01 postfix/smtpd\[13793\]: warning: unknown\[46.38.150.188\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-07-12 12:08:27
104.248.29.200	attackbotsspam	104.248.29.200 - - [12/Jul/2020:00:32:07 +0100] "POST /wp-login.php HTTP/1.1" 200 1792 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.29.200 - - [12/Jul/2020:00:32:14 +0100] "POST /wp-login.php HTTP/1.1" 200 1768 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 104.248.29.200 - - [12/Jul/2020:00:32:19 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-12 07:58:00
39.101.129.127	attackspambots	Automatic report - Web App Attack	2020-07-12 12:12:15
123.59.195.245	attackbots	SSH Invalid Login	2020-07-12 07:57:09
107.174.239.238	attackbotsspam	8,31-08/09 [bc04/m145] PostRequest-Spammer scoring: essen	2020-07-12 12:00:31
5.188.210.158	attack	Firewall Dropped Connection	2020-07-12 12:09:25
107.170.104.125	attackbots	SSH / Telnet Brute Force Attempts on Honeypot	2020-07-12 08:02:37
201.184.235.26	attackspambots	Telnet Server BruteForce Attack	2020-07-12 12:10:46
115.159.114.87	attack	2020-07-11T23:12:30.641800mail.broermann.family sshd[4571]: Invalid user arpesella from 115.159.114.87 port 60050 2020-07-11T23:12:30.647730mail.broermann.family sshd[4571]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.159.114.87 2020-07-11T23:12:30.641800mail.broermann.family sshd[4571]: Invalid user arpesella from 115.159.114.87 port 60050 2020-07-11T23:12:32.801318mail.broermann.family sshd[4571]: Failed password for invalid user arpesella from 115.159.114.87 port 60050 ssh2 2020-07-11T23:15:56.919343mail.broermann.family sshd[4726]: Invalid user edith from 115.159.114.87 port 41622 ...	2020-07-12 08:04:11

Recently Reported IPs

143.70.33.103	240e:360:c202:2123:216:5d21:eb58:275	153.36.138.52	83.27.36.28
34.67.72.141	77.127.91.208	188.27.165.148	142.44.210.154
94.9.83.219	206.191.152.198	1.251.226.183	89.242.13.36
36.106.167.242	1.252.42.102	47.52.196.112	79.30.47.10
25.104.194.152	76.112.207.85	47.254.150.182	174.91.10.96