213.45.71.112 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Telecom Italia S.p.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	RDP brute forcing (r)	2019-12-15 23:00:36

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 213.45.71.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56263
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;213.45.71.112.			IN	A

;; AUTHORITY SECTION:
.			491	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121500 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 15 23:00:28 CST 2019
;; MSG SIZE  rcvd: 117

Host info

112.71.45.213.in-addr.arpa domain name pointer host112-71-dynamic.45-213-r.retail.telecomitalia.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
112.71.45.213.in-addr.arpa	name = host112-71-dynamic.45-213-r.retail.telecomitalia.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
147.30.41.153	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-08 21:36:25,674 INFO [amun_request_handler] PortScan Detected on Port: 445 (147.30.41.153)	2019-08-09 09:39:23
67.69.18.51	attackbots	firewall-block, port(s): 445/tcp	2019-08-09 09:28:32
49.34.83.127	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-08 20:30:45,767 INFO [amun_request_handler] PortScan Detected on Port: 445 (49.34.83.127)	2019-08-09 10:07:55
222.97.57.225	attack	Port scan attempt detected by AWS-CCS, CTS, India	2019-08-09 09:33:07
190.0.159.69	attack	Aug 9 02:23:06 ArkNodeAT sshd\[14211\]: Invalid user milena from 190.0.159.69 Aug 9 02:23:06 ArkNodeAT sshd\[14211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.0.159.69 Aug 9 02:23:08 ArkNodeAT sshd\[14211\]: Failed password for invalid user milena from 190.0.159.69 port 55391 ssh2	2019-08-09 09:49:58
51.89.151.138	attack	Aug 9 03:38:27 SilenceServices sshd[19683]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.151.138 Aug 9 03:38:29 SilenceServices sshd[19683]: Failed password for invalid user trash from 51.89.151.138 port 46024 ssh2 Aug 9 03:43:49 SilenceServices sshd[25892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.89.151.138	2019-08-09 09:55:14
46.3.96.66	attackspam	Aug 9 03:44:53 lumpi kernel: INPUT:DROP:SPAMHAUS_DROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=46.3.96.66 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=44018 PROTO=TCP SPT=56726 DPT=35389 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-08-09 09:46:10
157.230.116.99	attackspambots	Aug 9 03:48:08 meumeu sshd[18748]: Failed password for invalid user z from 157.230.116.99 port 54978 ssh2 Aug 9 03:52:25 meumeu sshd[19162]: Failed password for invalid user default from 157.230.116.99 port 49922 ssh2 Aug 9 03:56:46 meumeu sshd[19578]: Failed password for invalid user doctor from 157.230.116.99 port 45210 ssh2 ...	2019-08-09 10:15:42
66.214.40.126	attack	SSH-bruteforce attempts	2019-08-09 10:12:15
103.218.240.17	attackspambots	Aug 9 03:42:47 vps647732 sshd[3931]: Failed password for root from 103.218.240.17 port 56634 ssh2 ...	2019-08-09 09:57:08
113.193.7.66	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-08-08 20:39:08,723 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.193.7.66)	2019-08-09 09:41:50
47.254.134.123	attackbots	port scan and connect, tcp 23 (telnet)	2019-08-09 10:05:54
59.148.43.97	attack	Aug 9 02:17:07 rpi sshd[25487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.148.43.97 Aug 9 02:17:10 rpi sshd[25487]: Failed password for invalid user admin from 59.148.43.97 port 33520 ssh2	2019-08-09 09:42:25
77.81.234.139	attackspam	Aug 9 04:17:19 server sshd\[11958\]: Invalid user baldwin from 77.81.234.139 port 56992 Aug 9 04:17:19 server sshd\[11958\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.234.139 Aug 9 04:17:20 server sshd\[11958\]: Failed password for invalid user baldwin from 77.81.234.139 port 56992 ssh2 Aug 9 04:21:27 server sshd\[21526\]: Invalid user admin from 77.81.234.139 port 51828 Aug 9 04:21:27 server sshd\[21526\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.81.234.139	2019-08-09 09:36:15
188.166.220.17	attack	Aug 9 04:27:18 pkdns2 sshd\[1956\]: Invalid user cp from 188.166.220.17Aug 9 04:27:20 pkdns2 sshd\[1956\]: Failed password for invalid user cp from 188.166.220.17 port 34429 ssh2Aug 9 04:31:58 pkdns2 sshd\[2135\]: Invalid user ryley from 188.166.220.17Aug 9 04:32:00 pkdns2 sshd\[2135\]: Failed password for invalid user ryley from 188.166.220.17 port 59216 ssh2Aug 9 04:36:47 pkdns2 sshd\[2313\]: Invalid user amdsa from 188.166.220.17Aug 9 04:36:49 pkdns2 sshd\[2313\]: Failed password for invalid user amdsa from 188.166.220.17 port 55827 ssh2 ...	2019-08-09 10:10:55

Recently Reported IPs

213.173.109.249	103.82.141.166	119.29.28.171	211.152.44.12
183.131.247.86	223.204.81.181	107.187.155.139	82.223.197.152
197.255.255.97	62.41.60.110	60.210.40.197	177.104.121.142
49.231.232.48	94.59.31.216	223.71.108.185	95.61.196.53
218.58.218.66	93.148.255.167	79.153.146.31	14.102.44.14