45.13.39.126 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: Bunea Telecom SRL

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	2019-07-23T04:14:25.821185ns1.unifynetsol.net postfix/smtpd\[11671\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:15:26.338524ns1.unifynetsol.net postfix/smtpd\[12496\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:16:29.533593ns1.unifynetsol.net postfix/smtpd\[11671\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:17:32.496194ns1.unifynetsol.net postfix/smtpd\[12496\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-23T04:18:34.273440ns1.unifynetsol.net postfix/smtpd\[12496\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure	2019-07-23 07:05:33
attack	Jul 21 19:40:51 mail postfix/smtpd\[29872\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 21 19:41:51 mail postfix/smtpd\[29874\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 21 19:42:53 mail postfix/smtpd\[29874\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-22 01:51:30
attackspambots	Jul 20 17:27:24 relay postfix/smtpd\[9342\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 20 17:27:54 relay postfix/smtpd\[15928\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 20 17:28:16 relay postfix/smtpd\[9343\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 20 17:28:46 relay postfix/smtpd\[15904\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 20 17:29:08 relay postfix/smtpd\[9343\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-07-20 23:42:47
attackspambots	2019-07-12 17:21:26 -> 2019-07-17 22:29:29 : 16753 login attempts (45.13.39.126)	2019-07-18 08:25:58
attackbotsspam	2019-07-17T07:13:51.000991ns1.unifynetsol.net postfix/smtpd\[11727\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-17T07:14:28.879150ns1.unifynetsol.net postfix/smtpd\[11710\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-17T07:15:07.998591ns1.unifynetsol.net postfix/smtpd\[11727\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-17T07:15:46.795250ns1.unifynetsol.net postfix/smtpd\[11727\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure 2019-07-17T07:16:24.842385ns1.unifynetsol.net postfix/smtpd\[11710\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: authentication failure	2019-07-17 10:14:35
attackspambots	Jul 16 14:13:36 mail postfix/smtpd\[10285\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 16 14:14:11 mail postfix/smtpd\[9890\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 16 14:14:47 mail postfix/smtpd\[10285\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 16 14:44:53 mail postfix/smtpd\[11034\]: warning: unknown\[45.13.39.126\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-16 20:44:58
attack	2019-07-12T16:55:20.479560 X postfix/smtpd[17103]: warning: unknown[45.13.39.126]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-07-12T16:57:54.393480 X postfix/smtpd[17302]: warning: unknown[45.13.39.126]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-07-12T16:58:11.038326 X postfix/smtpd[17302]: warning: unknown[45.13.39.126]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-15 23:53:54
attack	smtp port probing	2019-07-15 14:31:32
attack	2019-07-14 00:00:36 -> 2019-07-14 12:01:04 : [45.13.39.126]:56570 connection denied (globally) - 9 login attempts	2019-07-14 18:28:41
attackbots	v+mailserver-auth-bruteforce	2019-07-14 00:39:10
attack	Unauthorized SMTP/IMAP/POP3 connection attempt	2019-07-13 08:40:00

Comments on same subnet:

IP	Type	Details	Datetime
45.13.39.150	attackspam	Exceeded maximum number of incorrect SMTP login attempts	2019-09-03 22:53:29
45.13.39.140	attack	Exceeded maximum number of incorrect SMTP login attempts	2019-09-03 22:44:35
45.13.39.123	attack	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-08-03 07:47:53
45.13.39.167	attackbotsspam	Jul 29 18:04:29 web1 postfix/smtpd[14352]: warning: unknown[45.13.39.167]: SASL LOGIN authentication failed: authentication failure ...	2019-07-30 06:04:44
45.13.39.123	attackbotsspam	Jun 18 15:39:04 mercury smtpd[1174]: 1aa6badc56aebfd3 smtp event=failed-command address=45.13.39.123 host=45.13.39.123 command="AUTH LOGIN" result="503 5.5.1 Invalid command: Command not supported" ...	2019-07-30 05:50:04
45.13.39.12	attackbotsspam	Jul 28 14:08:57 mail postfix/smtpd\[753\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 14:09:49 mail postfix/smtpd\[30971\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 14:10:45 mail postfix/smtpd\[753\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-28 20:24:42
45.13.39.12	attackbotsspam	Jul 28 06:22:01 mail postfix/smtpd\[24317\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 06:22:54 mail postfix/smtpd\[25964\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 28 06:23:49 mail postfix/smtpd\[25964\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-28 12:34:44
45.13.39.115	attackbots	imap or smtp brute force	2019-07-25 21:04:00
45.13.39.12	attackbotsspam	Jul 25 07:58:53 mail postfix/smtpd\[14708\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 25 08:29:16 mail postfix/smtpd\[17228\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 25 08:30:10 mail postfix/smtpd\[15624\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 25 08:31:03 mail postfix/smtpd\[17091\]: warning: unknown\[45.13.39.12\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-25 16:04:58
45.13.39.167	attackbotsspam	Jul 24 23:21:37 mail postfix/smtpd\[26415\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 24 23:52:09 mail postfix/smtpd\[27633\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 24 23:52:44 mail postfix/smtpd\[28095\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 24 23:53:22 mail postfix/smtpd\[28113\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-25 05:52:05
45.13.39.123	attackbots	CloudCIX Reconnaissance Scan Detected, PTR: PTR record not found	2019-07-25 03:13:42
45.13.39.167	attackbots	Jul 22 13:05:59 marvibiene postfix/smtpd[4836]: warning: unknown[45.13.39.167]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 13:06:46 marvibiene postfix/smtpd[4211]: warning: unknown[45.13.39.167]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-07-22 22:31:44
45.13.39.115	attackspam	Jul 22 09:26:53 mailserver postfix/smtps/smtpd[20376]: warning: unknown[45.13.39.115]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 09:27:05 mailserver postfix/smtps/smtpd[20376]: lost connection after AUTH from unknown[45.13.39.115] Jul 22 09:27:05 mailserver postfix/smtps/smtpd[20376]: disconnect from unknown[45.13.39.115] Jul 22 10:28:00 mailserver postfix/smtps/smtpd[21040]: connect from unknown[45.13.39.115] Jul 22 10:29:33 mailserver dovecot: auth-worker(21045): sql([hidden],45.13.39.115): unknown user Jul 22 10:29:35 mailserver postfix/smtps/smtpd[21040]: warning: unknown[45.13.39.115]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 10:29:47 mailserver postfix/smtps/smtpd[21040]: lost connection after AUTH from unknown[45.13.39.115] Jul 22 10:29:47 mailserver postfix/smtps/smtpd[21040]: disconnect from unknown[45.13.39.115] Jul 22 10:29:57 mailserver postfix/smtps/smtpd[21040]: connect from unknown[45.13.39.115] Jul 22 10:31:32 mailserver dovecot: auth-worker(21069): sql([hidden],45.13.	2019-07-22 17:05:58
45.13.39.167	attackbotsspam	Jul 22 07:26:30 mail postfix/smtpd\[29980\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 07:27:04 mail postfix/smtpd\[29671\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 07:27:51 mail postfix/smtpd\[30068\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Jul 22 07:58:32 mail postfix/smtpd\[31966\]: warning: unknown\[45.13.39.167\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2019-07-22 14:04:04
45.13.39.115	attackspambots	Jul 22 04:35:41 mail postfix/smtps/smtpd\[9765\]: warning: unknown\[45.13.39.115\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 04:37:37 mail postfix/smtps/smtpd\[9765\]: warning: unknown\[45.13.39.115\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jul 22 04:39:28 mail postfix/smtps/smtpd\[9765\]: warning: unknown\[45.13.39.115\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-07-22 10:43:40

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.13.39.126
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61295
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.13.39.126.			IN	A

;; AUTHORITY SECTION:
.			220	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071201 1800 900 604800 86400

;; Query time: 415 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 13 04:30:29 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 126.39.13.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 126.39.13.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.124.30.186	attackspambots	Feb 17 19:01:26 markkoudstaal sshd[7201]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.30.186 Feb 17 19:01:28 markkoudstaal sshd[7201]: Failed password for invalid user nootan from 125.124.30.186 port 43048 ssh2 Feb 17 19:02:23 markkoudstaal sshd[7370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.30.186	2020-02-18 02:48:01
122.116.75.124	attackspam	Feb 17 18:48:08 MK-Soft-VM5 sshd[28012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.116.75.124 Feb 17 18:48:11 MK-Soft-VM5 sshd[28012]: Failed password for invalid user youtube from 122.116.75.124 port 44064 ssh2 ...	2020-02-18 02:58:53
183.81.109.98	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 17-02-2020 13:35:14.	2020-02-18 02:49:46
5.206.37.184	attackspambots	port scan and connect, tcp 1433 (ms-sql-s)	2020-02-18 02:40:59
110.43.208.244	spambotsattackproxynormal	This IP Address keeps trying to access my camera phones in my house !!!	2020-02-18 02:38:43
111.231.132.94	attackspam	Feb 17 16:14:40 game-panel sshd[6625]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.132.94 Feb 17 16:14:42 game-panel sshd[6625]: Failed password for invalid user user7 from 111.231.132.94 port 55792 ssh2 Feb 17 16:16:37 game-panel sshd[6723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.132.94	2020-02-18 02:48:53
81.120.65.55	attack	MYH,DEF GET /en//administraator/adminer.php	2020-02-18 03:11:15
106.52.54.235	attack	Feb 17 19:13:55 ns382633 sshd\[16389\]: Invalid user newpass from 106.52.54.235 port 54198 Feb 17 19:13:55 ns382633 sshd\[16389\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.54.235 Feb 17 19:13:57 ns382633 sshd\[16389\]: Failed password for invalid user newpass from 106.52.54.235 port 54198 ssh2 Feb 17 19:16:39 ns382633 sshd\[17035\]: Invalid user rachel from 106.52.54.235 port 37046 Feb 17 19:16:39 ns382633 sshd\[17035\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.54.235	2020-02-18 02:29:00
120.224.212.6	attack	Feb 17 14:35:25 vpn01 sshd[5612]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.224.212.6 Feb 17 14:35:27 vpn01 sshd[5612]: Failed password for invalid user pgsql from 120.224.212.6 port 33826 ssh2 ...	2020-02-18 02:40:07
49.88.112.55	attackbotsspam	Feb 17 19:32:15 legacy sshd[16691]: Failed password for root from 49.88.112.55 port 59618 ssh2 Feb 17 19:32:24 legacy sshd[16691]: Failed password for root from 49.88.112.55 port 59618 ssh2 Feb 17 19:32:28 legacy sshd[16691]: Failed password for root from 49.88.112.55 port 59618 ssh2 Feb 17 19:32:28 legacy sshd[16691]: error: maximum authentication attempts exceeded for root from 49.88.112.55 port 59618 ssh2 [preauth] ...	2020-02-18 02:46:50
178.128.72.80	attackspam	Feb 17 15:23:39 XXXXXX sshd[42176]: Invalid user redmine from 178.128.72.80 port 57352	2020-02-18 02:54:31
66.110.216.158	attack	Brute force attempt	2020-02-18 03:04:59
218.161.97.152	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 02:37:32
111.205.6.222	attack	Feb 17 19:20:51 srv-ubuntu-dev3 sshd[53721]: Invalid user mecs from 111.205.6.222 Feb 17 19:20:51 srv-ubuntu-dev3 sshd[53721]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.205.6.222 Feb 17 19:20:51 srv-ubuntu-dev3 sshd[53721]: Invalid user mecs from 111.205.6.222 Feb 17 19:20:53 srv-ubuntu-dev3 sshd[53721]: Failed password for invalid user mecs from 111.205.6.222 port 53075 ssh2 Feb 17 19:26:50 srv-ubuntu-dev3 sshd[54236]: Invalid user dot from 111.205.6.222 Feb 17 19:26:50 srv-ubuntu-dev3 sshd[54236]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.205.6.222 Feb 17 19:26:50 srv-ubuntu-dev3 sshd[54236]: Invalid user dot from 111.205.6.222 Feb 17 19:26:52 srv-ubuntu-dev3 sshd[54236]: Failed password for invalid user dot from 111.205.6.222 port 42400 ssh2 Feb 17 19:29:53 srv-ubuntu-dev3 sshd[54482]: Invalid user password from 111.205.6.222 ...	2020-02-18 02:30:11
213.32.211.24	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 02:29:37

Recently Reported IPs

114.91.121.231	104.248.218.6	88.148.21.55	163.147.114.99
190.145.136.186	145.211.140.106	142.233.10.109	68.232.5.11
185.236.217.221	186.138.7.178	1.210.43.60	248.252.122.48
69.64.44.44	20.170.3.183	235.46.100.170	41.126.35.170
94.8.208.239	180.79.29.129	148.160.25.97	122.214.18.131