45.119.85.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: Long Van System Solution JSC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Registration form abuse	2020-03-11 13:00:08
attackbotsspam	2019-12-22 22:53:48 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[45.119.85.20]:60831 I=[192.147.25.65]:25 input="CONNECT 45.33.35.141:80 HTTP/1.0" 2019-12-22 22:53:53 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[45.119.85.20]:61053 I=[192.147.25.65]:25 input="\004\001" 2019-12-22 22:53:58 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[45.119.85.20]:61054 I=[192.147.25.65]:25 input="\005\001" ...	2019-12-23 14:22:37

Type

Details

Datetime

attackspam

Registration form abuse

2020-03-11 13:00:08

attackbotsspam

2019-12-22 22:53:48 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[45.119.85.20]:60831 I=[192.147.25.65]:25 input="CONNECT 45.33.35.141:80 HTTP/1.0"
2019-12-22 22:53:53 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[45.119.85.20]:61053 I=[192.147.25.65]:25 input="\004\001"
2019-12-22 22:53:58 SMTP protocol synchronization error (input sent without waiting for greeting): rejected connection from H=[45.119.85.20]:61054 I=[192.147.25.65]:25 input="\005\001"
...

2019-12-23 14:22:37

Comments on same subnet:

IP	Type	Details	Datetime
45.119.85.132	attackbotsspam	Automatic report - Banned IP Access	2020-08-08 22:37:58
45.119.85.145	attackspambots	(smtpauth) Failed SMTP AUTH login from 45.119.85.145 (VN/Vietnam/-): 5 in the last 3600 secs	2020-07-31 23:12:13
45.119.85.43	attackbots	RDP Bruteforce	2020-06-26 03:31:49
45.119.85.132	attackbots	Automatic report - Port Scan Attack	2020-06-22 23:24:23

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.119.85.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 23282
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.119.85.20.			IN	A

;; AUTHORITY SECTION:
.			59	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122201 1800 900 604800 86400

;; Query time: 121 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 23 14:22:33 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 20.85.119.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 20.85.119.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.216.2.79	attackspambots	Apr 18 10:01:44 debian-2gb-nbg1-2 kernel: \[9455876.659484\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=61.216.2.79 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=19792 PROTO=TCP SPT=41906 DPT=29558 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-18 16:12:49
37.187.101.60	attackspam	prod6 ...	2020-04-18 16:37:21
80.211.53.33	attackspambots	Apr 18 07:48:49 ns3164893 sshd[30158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.53.33 Apr 18 07:48:52 ns3164893 sshd[30158]: Failed password for invalid user sz from 80.211.53.33 port 36606 ssh2 ...	2020-04-18 16:39:57
178.32.117.80	attackspam	(sshd) Failed SSH login from 178.32.117.80 (FR/France/ip80.ip-178-32-117.eu): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 18 10:06:45 amsweb01 sshd[712]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.117.80 user=root Apr 18 10:06:47 amsweb01 sshd[712]: Failed password for root from 178.32.117.80 port 35888 ssh2 Apr 18 10:16:16 amsweb01 sshd[1989]: Invalid user kx from 178.32.117.80 port 39624 Apr 18 10:16:18 amsweb01 sshd[1989]: Failed password for invalid user kx from 178.32.117.80 port 39624 ssh2 Apr 18 10:19:13 amsweb01 sshd[2302]: Invalid user iz from 178.32.117.80 port 35712	2020-04-18 16:43:42
157.7.44.149	attackspam	Attacks websites by trying to access known vulnerables of plugins, brute-force of backends or probing of administrative tools	2020-04-18 16:45:25
183.111.204.148	attackspambots	Unauthorized connection attempt detected from IP address 183.111.204.148 to port 8759	2020-04-18 16:32:32
222.186.31.166	attackspambots	Apr 18 10:20:36 vmd38886 sshd\[26816\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.166 user=root Apr 18 10:20:38 vmd38886 sshd\[26816\]: Failed password for root from 222.186.31.166 port 49237 ssh2 Apr 18 10:20:40 vmd38886 sshd\[26816\]: Failed password for root from 222.186.31.166 port 49237 ssh2	2020-04-18 16:27:23
178.128.27.171	attackbots	SSH Scan	2020-04-18 16:41:35
125.224.17.242	attackbots	Port probing on unauthorized port 4567	2020-04-18 16:34:19
184.105.247.231	attackbotsspam	scan r	2020-04-18 16:10:37
51.83.236.19	attackspam	SIP-5060-Unauthorized	2020-04-18 16:17:29
106.75.157.51	attack	Apr 17 16:58:10 scivo sshd[3575]: Invalid user vishal from 106.75.157.51 Apr 17 16:58:10 scivo sshd[3575]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.157.51 Apr 17 16:58:13 scivo sshd[3575]: Failed password for invalid user vishal from 106.75.157.51 port 38744 ssh2 Apr 17 16:58:13 scivo sshd[3575]: Received disconnect from 106.75.157.51: 11: Bye Bye [preauth] Apr 17 17:04:34 scivo sshd[3898]: Invalid user desktop from 106.75.157.51 Apr 17 17:04:34 scivo sshd[3898]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.75.157.51 Apr 17 17:04:36 scivo sshd[3898]: Failed password for invalid user desktop from 106.75.157.51 port 46032 ssh2 Apr 17 17:04:36 scivo sshd[3898]: Received disconnect from 106.75.157.51: 11: Bye Bye [preauth] Apr 17 17:06:52 scivo sshd[3997]: Invalid user hw from 106.75.157.51 Apr 17 17:06:52 scivo sshd[3997]: pam_unix(sshd:auth): authentication failure; logn........ -------------------------------	2020-04-18 16:06:41
106.13.123.29	attackbotsspam	Invalid user tutorial from 106.13.123.29 port 58924	2020-04-18 16:12:28
188.165.255.8	attackbotsspam	Apr 18 09:13:42 ourumov-web sshd\[29005\]: Invalid user pr from 188.165.255.8 port 39730 Apr 18 09:13:42 ourumov-web sshd\[29005\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.165.255.8 Apr 18 09:13:44 ourumov-web sshd\[29005\]: Failed password for invalid user pr from 188.165.255.8 port 39730 ssh2 ...	2020-04-18 16:09:45
92.118.37.86	attackspam	Apr 18 08:14:41 debian-2gb-nbg1-2 kernel: \[9449454.450619\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=92.118.37.86 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=31326 PROTO=TCP SPT=41777 DPT=9001 WINDOW=1024 RES=0x00 SYN URGP=0	2020-04-18 16:09:15

Recently Reported IPs

58.76.130.148	1.212.71.18	138.73.72.220	47.3.191.217
221.114.151.42	43.135.176.217	117.213.87.82	89.178.140.30
110.6.179.31	42.140.66.205	220.79.255.207	58.247.41.85
76.169.35.189	193.59.186.106	58.70.175.93	192.179.74.2
213.188.6.47	251.94.62.180	139.54.159.232	234.188.121.240