2.42.165.45 - IPInfo

Basic Info

City: San Vito dei Normanni

Region: Regione Puglia

Country: Italy

Internet Service Provider: Vodafone

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 2.42.165.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25600
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;2.42.165.45.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2024120600 1800 900 604800 86400

;; Query time: 15 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 06 22:15:02 CST 2024
;; MSG SIZE  rcvd: 104

Host info

45.165.42.2.in-addr.arpa domain name pointer net-2-42-165-45.cust.vodafonedsl.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.165.42.2.in-addr.arpa	name = net-2-42-165-45.cust.vodafonedsl.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.13.12.210	attackbotsspam	Nov 9 13:14:07 ws19vmsma01 sshd[69538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.12.210 Nov 9 13:14:09 ws19vmsma01 sshd[69538]: Failed password for invalid user ts from 106.13.12.210 port 34186 ssh2 ...	2019-11-10 05:40:03
106.12.210.229	attackbots	Nov 9 19:59:50 minden010 sshd[13462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.210.229 Nov 9 19:59:52 minden010 sshd[13462]: Failed password for invalid user 123edcxz from 106.12.210.229 port 35520 ssh2 Nov 9 20:03:32 minden010 sshd[16572]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.210.229 ...	2019-11-10 05:31:11
27.7.166.177	attack	TCP Port Scanning	2019-11-10 05:32:25
190.104.149.193	attack	Bruteforcing port 3389 (Remote Desktop) - Exceed maximum 10 attempts/hour	2019-11-10 05:43:35
168.121.229.55	attackspambots	proto=tcp . spt=54262 . dpt=25 . (Found on Blocklist de Nov 08) (877)	2019-11-10 05:49:24
192.144.144.215	attackbotsspam	blacklist username openelec Invalid user openelec from 192.144.144.215 port 47076	2019-11-10 05:52:27
173.212.193.229	attackspambots	173.212.193.229 - - [09/Nov/2019:19:36:16 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 173.212.193.229 - - [09/Nov/2019:19:36:17 +0100] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 173.212.193.229 - - [09/Nov/2019:19:36:17 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 173.212.193.229 - - [09/Nov/2019:19:36:18 +0100] "POST /wp-login.php HTTP/1.1" 200 1632 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 173.212.193.229 - - [09/Nov/2019:19:36:18 +0100] "GET /wp-login.php HTTP/1.1" 200 1238 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 173.212.193.229 - - [09/Nov/2019:19:36:18 +0100] "POST /wp-login.php HTTP/1.1" 200 1630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" .	2019-11-10 05:47:05
218.157.166.40	attackspam	Automatic report - XMLRPC Attack	2019-11-10 05:25:16
77.120.163.103	attackbots	proto=tcp . spt=36690 . dpt=25 . (Listed on MailSpike (spam wave plus L3-L5) also truncate-gbudb and unsubscore) (879)	2019-11-10 05:42:00
61.145.96.162	attack	Nov 9 19:03:44 www2 sshd\[59391\]: Failed password for root from 61.145.96.162 port 53259 ssh2Nov 9 19:10:02 www2 sshd\[60028\]: Invalid user ciserve from 61.145.96.162Nov 9 19:10:04 www2 sshd\[60028\]: Failed password for invalid user ciserve from 61.145.96.162 port 19642 ssh2 ...	2019-11-10 05:53:35
116.66.238.152	attackspambots	Unauthorised access (Nov 9) SRC=116.66.238.152 LEN=52 TTL=114 ID=752 DF TCP DPT=445 WINDOW=8192 SYN	2019-11-10 05:30:14
79.189.99.109	attackspam	Trying ports that it shouldn't be.	2019-11-10 05:41:45
82.64.19.17	attack	Lines containing failures of 82.64.19.17 Nov 7 20:42:30 nextcloud sshd[21489]: Invalid user saedi from 82.64.19.17 port 42022 Nov 7 20:42:31 nextcloud sshd[21489]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.19.17 Nov 7 20:42:33 nextcloud sshd[21489]: Failed password for invalid user saedi from 82.64.19.17 port 42022 ssh2 Nov 7 20:42:33 nextcloud sshd[21489]: Received disconnect from 82.64.19.17 port 42022:11: Bye Bye [preauth] Nov 7 20:42:33 nextcloud sshd[21489]: Disconnected from invalid user saedi 82.64.19.17 port 42022 [preauth] Nov 7 20:56:52 nextcloud sshd[23814]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.19.17 user=r.r Nov 7 20:56:54 nextcloud sshd[23814]: Failed password for r.r from 82.64.19.17 port 52332 ssh2 Nov 7 20:56:54 nextcloud sshd[23814]: Received disconnect from 82.64.19.17 port 52332:11: Bye Bye [preauth] Nov 7 20:56:54 nextcloud sshd[23814........ ------------------------------	2019-11-10 05:54:03
3.124.221.134	attackbotsspam	Brute forcing RDP port 3389	2019-11-10 05:22:55
89.248.168.202	attackbotsspam	11/09/2019-21:49:57.773459 89.248.168.202 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-11-10 05:21:56

Recently Reported IPs

145.27.253.83	222.166.0.154	198.93.121.225	159.54.246.188
8.5.139.194	12.197.199.235	242.242.103.153	187.243.131.189
125.31.117.108	146.126.127.65	35.92.124.49	165.121.157.118
253.8.44.141	155.224.187.49	171.139.229.171	62.115.70.162
191.95.191.211	185.74.223.225	96.66.84.30	29.18.82.34