99.57.170.30 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: AT&T Corp.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jun 26 03:44:59 MK-Soft-VM4 sshd\[11416\]: Invalid user odoo from 99.57.170.30 port 36114 Jun 26 03:44:59 MK-Soft-VM4 sshd\[11416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.57.170.30 Jun 26 03:45:01 MK-Soft-VM4 sshd\[11416\]: Failed password for invalid user odoo from 99.57.170.30 port 36114 ssh2 ...	2019-06-26 18:53:09

Type

Details

Datetime

attack

Jun 26 03:44:59 MK-Soft-VM4 sshd\[11416\]: Invalid user odoo from 99.57.170.30 port 36114
Jun 26 03:44:59 MK-Soft-VM4 sshd\[11416\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=99.57.170.30
Jun 26 03:45:01 MK-Soft-VM4 sshd\[11416\]: Failed password for invalid user odoo from 99.57.170.30 port 36114 ssh2
...

2019-06-26 18:53:09

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 99.57.170.30
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24607
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;99.57.170.30.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019061901 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Jun 20 09:53:31 CST 2019
;; MSG SIZE  rcvd: 116

Host info

30.170.57.99.in-addr.arpa domain name pointer 99-57-170-30.lightspeed.livnmi.sbcglobal.net.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
30.170.57.99.in-addr.arpa	name = 99-57-170-30.lightspeed.livnmi.sbcglobal.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
177.92.73.74	attack	Unauthorized connection attempt from IP address 177.92.73.74 on Port 445(SMB)	2020-09-18 02:55:26
79.143.44.122	attack	Sep 17 20:42:24 vps639187 sshd\[30637\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.143.44.122 user=root Sep 17 20:42:27 vps639187 sshd\[30637\]: Failed password for root from 79.143.44.122 port 42331 ssh2 Sep 17 20:46:23 vps639187 sshd\[30705\]: Invalid user aylwin from 79.143.44.122 port 48046 Sep 17 20:46:23 vps639187 sshd\[30705\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=79.143.44.122 ...	2020-09-18 03:11:15
58.87.127.16	attack	Brute-Force,SSH	2020-09-18 03:07:57
218.92.0.175	attack	Sep 17 15:17:01 NPSTNNYC01T sshd[14417]: Failed password for root from 218.92.0.175 port 61284 ssh2 Sep 17 15:17:04 NPSTNNYC01T sshd[14417]: Failed password for root from 218.92.0.175 port 61284 ssh2 Sep 17 15:17:07 NPSTNNYC01T sshd[14417]: Failed password for root from 218.92.0.175 port 61284 ssh2 Sep 17 15:17:13 NPSTNNYC01T sshd[14417]: error: maximum authentication attempts exceeded for root from 218.92.0.175 port 61284 ssh2 [preauth] ...	2020-09-18 03:17:39
134.175.230.242	attackspam	Sep 17 15:43:43 mx sshd[10744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.230.242 Sep 17 15:43:45 mx sshd[10744]: Failed password for invalid user oracle10 from 134.175.230.242 port 52484 ssh2	2020-09-18 02:55:41
172.81.248.199	attackspam	2020-09-17T21:05:18.420576vps773228.ovh.net sshd[2166]: Failed password for root from 172.81.248.199 port 40604 ssh2 2020-09-17T21:09:14.842387vps773228.ovh.net sshd[2191]: Invalid user dwairiuko from 172.81.248.199 port 58750 2020-09-17T21:09:14.866590vps773228.ovh.net sshd[2191]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=172.81.248.199 2020-09-17T21:09:14.842387vps773228.ovh.net sshd[2191]: Invalid user dwairiuko from 172.81.248.199 port 58750 2020-09-17T21:09:16.978565vps773228.ovh.net sshd[2191]: Failed password for invalid user dwairiuko from 172.81.248.199 port 58750 ssh2 ...	2020-09-18 03:23:29
179.32.131.97	attack	Unauthorized connection attempt from IP address 179.32.131.97 on Port 445(SMB)	2020-09-18 03:18:05
140.143.25.65	attackbots	Sep 17 20:28:01 piServer sshd[18129]: Failed password for root from 140.143.25.65 port 58776 ssh2 Sep 17 20:30:33 piServer sshd[18395]: Failed password for root from 140.143.25.65 port 33322 ssh2 Sep 17 20:33:09 piServer sshd[18664]: Failed password for root from 140.143.25.65 port 36106 ssh2 ...	2020-09-18 02:57:01
91.126.47.184	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-18 02:48:53
220.191.254.194	attack	Unauthorized connection attempt from IP address 220.191.254.194 on Port 445(SMB)	2020-09-18 03:09:43
218.191.214.1	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-18 02:44:49
45.95.168.130	attackbotsspam	2020-09-17T18:15:00.443212abusebot-2.cloudsearch.cf sshd[19464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.95.168.130 user=root 2020-09-17T18:15:02.505257abusebot-2.cloudsearch.cf sshd[19464]: Failed password for root from 45.95.168.130 port 36940 ssh2 2020-09-17T18:15:10.702281abusebot-2.cloudsearch.cf sshd[19466]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.95.168.130 user=root 2020-09-17T18:15:12.468469abusebot-2.cloudsearch.cf sshd[19466]: Failed password for root from 45.95.168.130 port 54736 ssh2 2020-09-17T18:15:18.775464abusebot-2.cloudsearch.cf sshd[19468]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.95.168.130 user=root 2020-09-17T18:15:21.309149abusebot-2.cloudsearch.cf sshd[19468]: Failed password for root from 45.95.168.130 port 44750 ssh2 2020-09-17T18:16:58.043978abusebot-2.cloudsearch.cf sshd[19470]: Invalid user oracle from 4 ...	2020-09-18 03:01:18
64.227.125.204	attackspambots	Invalid user service from 64.227.125.204 port 44020	2020-09-18 02:49:43
113.184.155.40	attackspambots	20/9/17@13:01:55: FAIL: Alarm-Telnet address from=113.184.155.40 ...	2020-09-18 03:11:35
200.52.80.34	attack	2020-09-18T00:52:28.873063billing sshd[22326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.52.80.34 2020-09-18T00:52:28.861870billing sshd[22326]: Invalid user vmail from 200.52.80.34 port 46166 2020-09-18T00:52:30.658972billing sshd[22326]: Failed password for invalid user vmail from 200.52.80.34 port 46166 ssh2 ...	2020-09-18 03:09:01

Recently Reported IPs

188.131.141.187	89.18.211.128	118.89.35.125	144.76.96.236
74.91.58.42	184.105.247.218	221.154.147.235	244.194.59.173
66.249.79.142	153.165.72.155	109.228.58.164	34.74.238.180
192.126.187.229	91.202.198.49	123.206.21.48	180.171.28.243
83.87.49.141	79.68.137.136	180.97.28.86	73.169.107.244