59.45.99.99 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Liaoning Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mar 18 04:08:28 ns382633 sshd\[26086\]: Invalid user tomcat from 59.45.99.99 port 43004 Mar 18 04:08:28 ns382633 sshd\[26086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Mar 18 04:08:30 ns382633 sshd\[26086\]: Failed password for invalid user tomcat from 59.45.99.99 port 43004 ssh2 Mar 18 04:45:55 ns382633 sshd\[1398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 user=root Mar 18 04:45:57 ns382633 sshd\[1398\]: Failed password for root from 59.45.99.99 port 54117 ssh2	2020-03-18 20:37:17
attack	Feb 27 07:15:41 srv-ubuntu-dev3 sshd[88291]: Invalid user deploy from 59.45.99.99 Feb 27 07:15:41 srv-ubuntu-dev3 sshd[88291]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 27 07:15:41 srv-ubuntu-dev3 sshd[88291]: Invalid user deploy from 59.45.99.99 Feb 27 07:15:43 srv-ubuntu-dev3 sshd[88291]: Failed password for invalid user deploy from 59.45.99.99 port 34287 ssh2 Feb 27 07:17:30 srv-ubuntu-dev3 sshd[88448]: Invalid user shiyang from 59.45.99.99 Feb 27 07:17:30 srv-ubuntu-dev3 sshd[88448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 27 07:17:30 srv-ubuntu-dev3 sshd[88448]: Invalid user shiyang from 59.45.99.99 Feb 27 07:17:32 srv-ubuntu-dev3 sshd[88448]: Failed password for invalid user shiyang from 59.45.99.99 port 38244 ssh2 ...	2020-02-27 15:23:34
attackspam	Feb 19 22:49:02 srv-ubuntu-dev3 sshd[106380]: Invalid user cpanel from 59.45.99.99 Feb 19 22:49:02 srv-ubuntu-dev3 sshd[106380]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 19 22:49:02 srv-ubuntu-dev3 sshd[106380]: Invalid user cpanel from 59.45.99.99 Feb 19 22:49:04 srv-ubuntu-dev3 sshd[106380]: Failed password for invalid user cpanel from 59.45.99.99 port 60710 ssh2 Feb 19 22:51:34 srv-ubuntu-dev3 sshd[106636]: Invalid user gitlab-prometheus from 59.45.99.99 Feb 19 22:51:34 srv-ubuntu-dev3 sshd[106636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Feb 19 22:51:34 srv-ubuntu-dev3 sshd[106636]: Invalid user gitlab-prometheus from 59.45.99.99 Feb 19 22:51:36 srv-ubuntu-dev3 sshd[106636]: Failed password for invalid user gitlab-prometheus from 59.45.99.99 port 41621 ssh2 Feb 19 22:53:39 srv-ubuntu-dev3 sshd[106778]: Invalid user vmail from 59.45.99.99 ...	2020-02-20 09:39:02
attackspambots	Unauthorized connection attempt detected from IP address 59.45.99.99 to port 2220 [J]	2020-01-20 17:41:05
attackbots	Dec 12 23:44:05 srv01 sshd[13384]: Invalid user murakoshi from 59.45.99.99 port 47982 Dec 12 23:44:05 srv01 sshd[13384]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Dec 12 23:44:05 srv01 sshd[13384]: Invalid user murakoshi from 59.45.99.99 port 47982 Dec 12 23:44:07 srv01 sshd[13384]: Failed password for invalid user murakoshi from 59.45.99.99 port 47982 ssh2 Dec 12 23:49:50 srv01 sshd[13881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 user=root Dec 12 23:49:52 srv01 sshd[13881]: Failed password for root from 59.45.99.99 port 47871 ssh2 ...	2019-12-13 07:33:09
attack	Nov 16 05:55:30 icinga sshd[18533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Nov 16 05:55:32 icinga sshd[18533]: Failed password for invalid user Danger123 from 59.45.99.99 port 51946 ssh2 ...	2019-11-16 13:56:57
attack	Automatic report - Banned IP Access	2019-11-16 03:04:17
attack	$f2bV_matches	2019-11-04 18:45:58
attackspam	SSH bruteforce	2019-11-03 14:23:36
attackspambots	Nov 1 05:55:02 vpn01 sshd[17752]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Nov 1 05:55:04 vpn01 sshd[17752]: Failed password for invalid user albert from 59.45.99.99 port 38287 ssh2 ...	2019-11-01 16:09:06
attackspam	Oct 28 12:49:06 srv01 sshd[22968]: Invalid user db2das from 59.45.99.99 Oct 28 12:49:06 srv01 sshd[22968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Oct 28 12:49:06 srv01 sshd[22968]: Invalid user db2das from 59.45.99.99 Oct 28 12:49:09 srv01 sshd[22968]: Failed password for invalid user db2das from 59.45.99.99 port 57624 ssh2 Oct 28 12:54:25 srv01 sshd[23191]: Invalid user appowner from 59.45.99.99 ...	2019-10-28 20:00:54
attack	Oct 7 07:43:21 sauna sshd[216384]: Failed password for root from 59.45.99.99 port 40937 ssh2 ...	2019-10-07 12:55:34
attack	Aug 27 22:30:28 hcbb sshd\[12760\]: Invalid user zr from 59.45.99.99 Aug 27 22:30:28 hcbb sshd\[12760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Aug 27 22:30:30 hcbb sshd\[12760\]: Failed password for invalid user zr from 59.45.99.99 port 37874 ssh2 Aug 27 22:36:50 hcbb sshd\[13278\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 user=root Aug 27 22:36:52 hcbb sshd\[13278\]: Failed password for root from 59.45.99.99 port 60450 ssh2	2019-08-28 16:45:10
attackspambots	Aug 25 10:35:16 hiderm sshd\[18636\]: Invalid user server from 59.45.99.99 Aug 25 10:35:16 hiderm sshd\[18636\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Aug 25 10:35:18 hiderm sshd\[18636\]: Failed password for invalid user server from 59.45.99.99 port 57202 ssh2 Aug 25 10:39:53 hiderm sshd\[19189\]: Invalid user visitante from 59.45.99.99 Aug 25 10:39:53 hiderm sshd\[19189\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99	2019-08-26 04:52:06
attackspambots	Aug 25 11:52:19 vps647732 sshd[4090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.45.99.99 Aug 25 11:52:22 vps647732 sshd[4090]: Failed password for invalid user nk from 59.45.99.99 port 54276 ssh2 ...	2019-08-25 17:58:29
attack	Aug 10 15:53:29 www sshd\[59603\]: Invalid user user from 59.45.99.99Aug 10 15:53:32 www sshd\[59603\]: Failed password for invalid user user from 59.45.99.99 port 54323 ssh2Aug 10 15:59:25 www sshd\[59799\]: Invalid user shop from 59.45.99.99 ...	2019-08-10 21:02:35
attackspam	Aug 10 04:28:16 XXX sshd[60434]: Invalid user ghislain from 59.45.99.99 port 52147	2019-08-10 14:17:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 59.45.99.99
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49862
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;59.45.99.99.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080702 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 13:01:02 CST 2019
;; MSG SIZE  rcvd: 115

Host info

99.99.45.59.in-addr.arpa domain name pointer 99.99.45.59.broad.yk.ln.dynamic.163data.com.cn.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
99.99.45.59.in-addr.arpa	name = 99.99.45.59.broad.yk.ln.dynamic.163data.com.cn.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
129.204.46.170	attack	Feb 16 23:36:38 srv-ubuntu-dev3 sshd[43423]: Invalid user download from 129.204.46.170 Feb 16 23:36:38 srv-ubuntu-dev3 sshd[43423]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.46.170 Feb 16 23:36:38 srv-ubuntu-dev3 sshd[43423]: Invalid user download from 129.204.46.170 Feb 16 23:36:40 srv-ubuntu-dev3 sshd[43423]: Failed password for invalid user download from 129.204.46.170 port 41562 ssh2 Feb 16 23:39:48 srv-ubuntu-dev3 sshd[43895]: Invalid user teste from 129.204.46.170 Feb 16 23:39:48 srv-ubuntu-dev3 sshd[43895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.46.170 Feb 16 23:39:48 srv-ubuntu-dev3 sshd[43895]: Invalid user teste from 129.204.46.170 Feb 16 23:39:50 srv-ubuntu-dev3 sshd[43895]: Failed password for invalid user teste from 129.204.46.170 port 41914 ssh2 Feb 16 23:43:06 srv-ubuntu-dev3 sshd[44144]: Invalid user client from 129.204.46.170 ...	2020-02-17 10:06:41
106.13.65.211	attack	Feb 17 01:53:44 plex sshd[15297]: Invalid user sdtserver from 106.13.65.211 port 52410	2020-02-17 09:59:25
78.186.200.80	attack	Automatic report - Port Scan Attack	2020-02-17 10:00:02
178.62.214.85	attackspambots	SASL PLAIN auth failed: ruser=...	2020-02-17 09:39:40
35.224.204.56	attackspambots	Feb 17 01:04:25 silence02 sshd[17948]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.224.204.56 Feb 17 01:04:27 silence02 sshd[17948]: Failed password for invalid user liwei from 35.224.204.56 port 41480 ssh2 Feb 17 01:06:52 silence02 sshd[18088]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.224.204.56	2020-02-17 09:35:39
14.187.99.95	attackspam	Feb 16 23:24:16 grey postfix/smtpd\[19041\]: NOQUEUE: reject: RCPT from unknown\[14.187.99.95\]: 554 5.7.1 Service unavailable\; Client host \[14.187.99.95\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?14.187.99.95\; from=\ to=\ proto=ESMTP helo=\ ...	2020-02-17 09:57:07
189.208.61.218	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 09:36:29
45.88.108.229	attackspam	Feb 17 00:59:36 host sshd[28067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.88.108.229 user=root Feb 17 00:59:38 host sshd[28067]: Failed password for root from 45.88.108.229 port 54800 ssh2 ...	2020-02-17 09:56:44
125.227.62.145	attackbotsspam	DATE:2020-02-17 02:23:09, IP:125.227.62.145, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-02-17 09:31:38
85.105.245.91	attackspam	DATE:2020-02-16 23:24:46, IP:85.105.245.91, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2020-02-17 09:33:31
211.107.100.96	attackbots	Fail2Ban Ban Triggered	2020-02-17 09:46:51
117.197.219.0	attack	1581891836 - 02/16/2020 23:23:56 Host: 117.197.219.0/117.197.219.0 Port: 445 TCP Blocked	2020-02-17 10:16:11
189.208.61.247	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-17 09:31:10
198.108.66.186	attackbotsspam	Portscan or hack attempt detected by psad/fwsnort	2020-02-17 09:54:38
111.231.33.135	attack	Feb 17 01:03:12 hell sshd[4594]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.33.135 Feb 17 01:03:15 hell sshd[4594]: Failed password for invalid user atscale from 111.231.33.135 port 50206 ssh2 ...	2020-02-17 10:07:16

Recently Reported IPs

143.70.33.103	240e:360:c202:2123:216:5d21:eb58:275	153.36.138.52	83.27.36.28
34.67.72.141	77.127.91.208	188.27.165.148	142.44.210.154
94.9.83.219	206.191.152.198	1.251.226.183	89.242.13.36
36.106.167.242	1.252.42.102	47.52.196.112	79.30.47.10
25.104.194.152	76.112.207.85	47.254.150.182	174.91.10.96