45.142.120.149

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: NTX Technologies S.R.O.

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Oct 12 16:50:23 srv01 postfix/smtpd\[2852\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 16:50:29 srv01 postfix/smtpd\[29235\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 16:50:45 srv01 postfix/smtpd\[29235\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 16:50:47 srv01 postfix/smtpd\[2968\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 16:50:47 srv01 postfix/smtpd\[2975\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 16:50:47 srv01 postfix/smtpd\[2996\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-12 22:59:04
attackspambots	2020-10-12T00:21:02.620430linuxbox-skyline auth[40727]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=gavro rhost=45.142.120.149 ...	2020-10-12 14:24:31
attack	Oct 10 18:52:54 srv01 postfix/smtpd\[22995\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 18:52:55 srv01 postfix/smtpd\[22174\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 18:53:02 srv01 postfix/smtpd\[22002\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 18:53:05 srv01 postfix/smtpd\[22175\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 18:53:08 srv01 postfix/smtpd\[22176\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-11 01:05:41
attackbots	Oct 10 10:42:14 srv01 postfix/smtpd\[18522\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 10:42:16 srv01 postfix/smtpd\[18147\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 10:42:23 srv01 postfix/smtpd\[18552\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 10:42:25 srv01 postfix/smtpd\[18522\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 10 10:42:28 srv01 postfix/smtpd\[18147\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-10 16:57:01
attack	Oct 9 00:38:01 srv01 postfix/smtpd\[30658\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 00:38:11 srv01 postfix/smtpd\[30658\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 00:38:12 srv01 postfix/smtpd\[30441\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 00:38:21 srv01 postfix/smtpd\[30822\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 9 00:38:23 srv01 postfix/smtpd\[30832\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-09 06:48:09
attackspam	Oct 8 17:08:45 srv01 postfix/smtpd\[14420\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 8 17:08:53 srv01 postfix/smtpd\[14560\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 8 17:08:53 srv01 postfix/smtpd\[14562\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 8 17:08:53 srv01 postfix/smtpd\[14614\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 8 17:08:55 srv01 postfix/smtpd\[4316\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-08 23:11:47
attackbots	Oct 8 08:58:19 srv01 postfix/smtpd\[448\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 8 08:58:20 srv01 postfix/smtpd\[430\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 8 08:58:24 srv01 postfix/smtpd\[600\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 8 08:58:25 srv01 postfix/smtpd\[4725\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 8 08:58:27 srv01 postfix/smtpd\[422\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 8 08:58:27 srv01 postfix/smtpd\[448\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-08 15:06:37
attack	2020-10-07T17:10:51.502333linuxbox-skyline auth[40304]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=BLUNCK rhost=45.142.120.149 ...	2020-10-08 07:17:24
attackbots	Oct 7 17:38:16 srv01 postfix/smtpd\[15033\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 17:38:22 srv01 postfix/smtpd\[15013\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 17:38:23 srv01 postfix/smtpd\[15041\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 17:38:25 srv01 postfix/smtpd\[14934\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 17:38:27 srv01 postfix/smtpd\[15033\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-07 23:43:56
attackbots	Oct 7 09:46:59 srv01 postfix/smtpd\[11750\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 09:47:06 srv01 postfix/smtpd\[11874\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 09:47:07 srv01 postfix/smtpd\[11914\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 09:47:09 srv01 postfix/smtpd\[11996\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 7 09:47:10 srv01 postfix/smtpd\[11969\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-07 15:48:13
attackbots	Oct 5 01:13:30 srv01 postfix/smtpd\[24596\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 01:13:39 srv01 postfix/smtpd\[23028\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 01:13:40 srv01 postfix/smtpd\[23016\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 01:13:44 srv01 postfix/smtpd\[17888\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 01:13:49 srv01 postfix/smtpd\[23035\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-05 07:26:03
attack	Oct 4 17:23:51 srv01 postfix/smtpd\[1239\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 17:23:57 srv01 postfix/smtpd\[1503\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 17:24:00 srv01 postfix/smtpd\[1504\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 17:24:03 srv01 postfix/smtpd\[1239\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 17:24:08 srv01 postfix/smtpd\[3923\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-04 23:40:43
attackspambots	Oct 4 09:13:04 srv01 postfix/smtpd\[29099\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 09:13:14 srv01 postfix/smtpd\[25052\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 09:13:16 srv01 postfix/smtpd\[29105\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 09:13:17 srv01 postfix/smtpd\[25051\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 4 09:13:20 srv01 postfix/smtpd\[29491\]: warning: unknown\[45.142.120.149\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-04 15:24:22

Comments on same subnet:

IP	Type	Details	Datetime
45.142.120.133	attackspambots	(smtpauth) Failed SMTP AUTH login from 45.142.120.133 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-10-13 18:51:02 dovecot_login authenticator failed for (localhost) [45.142.120.133]:60028: 535 Incorrect authentication data (set_id=linksrv@xeoserver.com) 2020-10-13 18:51:10 dovecot_login authenticator failed for (localhost) [45.142.120.133]:65202: 535 Incorrect authentication data (set_id=investor@xeoserver.com) 2020-10-13 18:51:11 dovecot_login authenticator failed for (localhost) [45.142.120.133]:64624: 535 Incorrect authentication data (set_id=netflow@xeoserver.com) 2020-10-13 18:51:13 dovecot_login authenticator failed for (localhost) [45.142.120.133]:5260: 535 Incorrect authentication data (set_id=my1@xeoserver.com) 2020-10-13 18:51:13 dovecot_login authenticator failed for (localhost) [45.142.120.133]:60612: 535 Incorrect authentication data (set_id=netflow@xeoserver.com)	2020-10-14 07:08:55
45.142.120.39	attackspambots	Oct 13 17:00:35 relay postfix/smtpd\[21525\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 17:00:42 relay postfix/smtpd\[21523\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 17:01:03 relay postfix/smtpd\[14535\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 17:01:11 relay postfix/smtpd\[21523\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 17:01:14 relay postfix/smtpd\[21515\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-13 23:22:55
45.142.120.83	attack	2020-10-13T16:56:53.050844mail1 postfix/smtpd[30077]: warning: unknown[45.142.120.83]: SASL LOGIN authentication failed: authentication failure 2020-10-13T16:56:53.061946mail1 postfix/smtpd[30076]: warning: unknown[45.142.120.83]: SASL LOGIN authentication failed: authentication failure 2020-10-13T16:56:53.074257mail1 postfix/smtpd[30078]: warning: unknown[45.142.120.83]: SASL LOGIN authentication failed: authentication failure ...	2020-10-13 22:57:45
45.142.120.39	attackspam	Oct 13 08:24:45 relay postfix/smtpd\[21411\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 08:24:46 relay postfix/smtpd\[25617\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 08:24:56 relay postfix/smtpd\[21412\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 08:25:01 relay postfix/smtpd\[23014\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 13 08:25:02 relay postfix/smtpd\[20309\]: warning: unknown\[45.142.120.39\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-13 14:40:00
45.142.120.83	attackspam	Oct 13 09:11:24 baraca dovecot: auth-worker(57062): passwd(suter@net.ua,45.142.120.83): unknown user Oct 13 09:11:25 baraca dovecot: auth-worker(57062): passwd(blocher@net.ua,45.142.120.83): unknown user Oct 13 09:11:31 baraca dovecot: auth-worker(57062): passwd(manatliga@net.ua,45.142.120.83): unknown user Oct 13 09:11:32 baraca dovecot: auth-worker(57062): passwd(hypersonic@net.ua,45.142.120.83): unknown user Oct 13 09:11:32 baraca dovecot: auth-worker(57062): passwd(inequitable@net.ua,45.142.120.83): unknown user Oct 13 09:11:41 baraca dovecot: auth-worker(57062): passwd(mellersta@net.ua,45.142.120.83): unknown user ...	2020-10-13 14:17:39
45.142.120.39	attackbots	2020-10-13T01:18:01.652407news2.dwmp.it postfix/smtpd[21424]: warning: unknown[45.142.120.39]: SASL LOGIN authentication failed: authentication failure 2020-10-13T01:18:08.461529news2.dwmp.it postfix/smtpd[21427]: warning: unknown[45.142.120.39]: SASL LOGIN authentication failed: authentication failure 2020-10-13T01:18:09.646719news2.dwmp.it postfix/smtpd[21424]: warning: unknown[45.142.120.39]: SASL LOGIN authentication failed: authentication failure ...	2020-10-13 07:20:03
45.142.120.83	attackbots	2020-10-13T00:49:12.085054mail1 postfix/smtpd[23895]: warning: unknown[45.142.120.83]: SASL LOGIN authentication failed: authentication failure 2020-10-13T00:49:14.539642mail1 postfix/smtpd[23898]: warning: unknown[45.142.120.83]: SASL LOGIN authentication failed: authentication failure 2020-10-13T00:49:14.539643mail1 postfix/smtpd[23897]: warning: unknown[45.142.120.83]: SASL LOGIN authentication failed: authentication failure ...	2020-10-13 06:59:39
45.142.120.58	attack	2020-10-12 21:29:50 dovecot_login authenticator failed for $localhost$ \[45.142.120.58\]: 535 Incorrect authentication data $set_id=dc01@no-server.de$ 2020-10-12 21:29:50 dovecot_login authenticator failed for $localhost$ \[45.142.120.58\]: 535 Incorrect authentication data $set_id=files@no-server.de$ 2020-10-12 21:29:59 dovecot_login authenticator failed for $localhost$ \[45.142.120.58\]: 535 Incorrect authentication data $set_id=skincare@no-server.de$ 2020-10-12 21:30:02 dovecot_login authenticator failed for $localhost$ \[45.142.120.58\]: 535 Incorrect authentication data $set_id=cactiuser@no-server.de$ 2020-10-12 21:30:03 dovecot_login authenticator failed for $localhost$ \[45.142.120.58\]: 535 Incorrect authentication data $set_id=server4@no-server.de$ ...	2020-10-13 03:32:02
45.142.120.93	attack	Oct 12 14:53:16 mail postfix/smtpd\[8633\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 12 15:23:24 mail postfix/smtpd\[9450\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 12 15:23:25 mail postfix/smtpd\[9653\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 12 15:53:31 mail postfix/smtpd\[10439\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-10-12 22:15:03
45.142.120.38	attack	Oct 12 15:51:28 srv01 postfix/smtpd\[6937\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 15:51:30 srv01 postfix/smtpd\[10698\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 15:51:36 srv01 postfix/smtpd\[4051\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 15:51:38 srv01 postfix/smtpd\[6937\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 15:51:47 srv01 postfix/smtpd\[10698\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 15:51:47 srv01 postfix/smtpd\[11495\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-12 22:04:56
45.142.120.32	attackspam	(smtpauth) Failed SMTP AUTH login from 45.142.120.32 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-10-12 08:48:51 dovecot_login authenticator failed for (localhost) [45.142.120.32]:5840: 535 Incorrect authentication data (set_id=yessir@xeoserver.com) 2020-10-12 08:48:58 dovecot_login authenticator failed for (localhost) [45.142.120.32]:28072: 535 Incorrect authentication data (set_id=avalon16@xeoserver.com) 2020-10-12 08:49:02 dovecot_login authenticator failed for (localhost) [45.142.120.32]:25922: 535 Incorrect authentication data (set_id=arun@xeoserver.com) 2020-10-12 08:49:02 dovecot_login authenticator failed for (localhost) [45.142.120.32]:48140: 535 Incorrect authentication data (set_id=generate@xeoserver.com) 2020-10-12 08:49:08 dovecot_login authenticator failed for (localhost) [45.142.120.32]:3702: 535 Incorrect authentication data (set_id=banana@xeoserver.com)	2020-10-12 20:59:07
45.142.120.58	attackbotsspam	2020-10-12 12:42:11 dovecot_login authenticator failed for $localhost$ \[45.142.120.58\]: 535 Incorrect authentication data $set_id=janjan@no-server.de$ 2020-10-12 12:47:12 dovecot_login authenticator failed for $localhost$ \[45.142.120.58\]: 535 Incorrect authentication data 2020-10-12 12:47:17 dovecot_login authenticator failed for $localhost$ \[45.142.120.58\]: 535 Incorrect authentication data 2020-10-12 12:47:21 dovecot_login authenticator failed for $localhost$ \[45.142.120.58\]: 535 Incorrect authentication data 2020-10-12 12:51:51 dovecot_login authenticator failed for $localhost$ \[45.142.120.58\]: 535 Incorrect authentication data $set_id=werewolf@no-server.de$ ...	2020-10-12 19:03:44
45.142.120.93	attackspambots	Oct 12 06:20:19 mail postfix/smtpd\[22669\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 12 06:20:20 mail postfix/smtpd\[22649\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 12 06:20:20 mail postfix/smtpd\[23089\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\ Oct 12 06:50:28 mail postfix/smtpd\[23875\]: warning: unknown\[45.142.120.93\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6\	2020-10-12 13:43:43
45.142.120.38	attackbotsspam	Oct 12 07:20:16 srv01 postfix/smtpd\[19287\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 07:20:21 srv01 postfix/smtpd\[19146\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 07:20:23 srv01 postfix/smtpd\[19773\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 12 07:20:23 srv01 postfix/smtpd\[19783\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: VXNlcm5hbWU6 Oct 12 07:20:24 srv01 postfix/smtpd\[19734\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-12 13:32:22
45.142.120.32	attack	(smtpauth) Failed SMTP AUTH login from 45.142.120.32 (RU/Russia/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-10-12 00:22:58 dovecot_login authenticator failed for (localhost) [45.142.120.32]:31028: 535 Incorrect authentication data (set_id=cardtype@xeoserver.com) 2020-10-12 00:23:05 dovecot_login authenticator failed for (localhost) [45.142.120.32]:8820: 535 Incorrect authentication data (set_id=athena@xeoserver.com) 2020-10-12 00:23:05 dovecot_login authenticator failed for (localhost) [45.142.120.32]:10946: 535 Incorrect authentication data (set_id=vince@xeoserver.com) 2020-10-12 00:23:05 dovecot_login authenticator failed for (localhost) [45.142.120.32]:53238: 535 Incorrect authentication data (set_id=columns@xeoserver.com) 2020-10-12 00:23:16 dovecot_login authenticator failed for (localhost) [45.142.120.32]:51138: 535 Incorrect authentication data (set_id=from@xeoserver.com)	2020-10-12 12:28:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.142.120.149
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12308
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.142.120.149.			IN	A

;; AUTHORITY SECTION:
.			543	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100301 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 04 15:24:14 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 149.120.142.45.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 149.120.142.45.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
206.81.1.76	attackbotsspam	2020-08-17T13:19:39.669981abusebot-7.cloudsearch.cf sshd[27900]: Invalid user ftpuser from 206.81.1.76 port 33048 2020-08-17T13:19:39.674142abusebot-7.cloudsearch.cf sshd[27900]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.1.76 2020-08-17T13:19:39.669981abusebot-7.cloudsearch.cf sshd[27900]: Invalid user ftpuser from 206.81.1.76 port 33048 2020-08-17T13:19:41.946107abusebot-7.cloudsearch.cf sshd[27900]: Failed password for invalid user ftpuser from 206.81.1.76 port 33048 ssh2 2020-08-17T13:28:34.460258abusebot-7.cloudsearch.cf sshd[28011]: Invalid user rac from 206.81.1.76 port 44356 2020-08-17T13:28:34.464219abusebot-7.cloudsearch.cf sshd[28011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.1.76 2020-08-17T13:28:34.460258abusebot-7.cloudsearch.cf sshd[28011]: Invalid user rac from 206.81.1.76 port 44356 2020-08-17T13:28:36.515360abusebot-7.cloudsearch.cf sshd[28011]: Failed password fo ...	2020-08-18 03:06:18
101.251.206.30	attackbotsspam	2020-08-16T16:05:40.117815hostname sshd[51604]: Failed password for invalid user librenms from 101.251.206.30 port 56788 ssh2 ...	2020-08-18 03:17:18
157.230.38.102	attackspambots	Aug 17 17:53:54 localhost sshd[68980]: Invalid user tar from 157.230.38.102 port 39108 Aug 17 17:53:54 localhost sshd[68980]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.38.102 Aug 17 17:53:54 localhost sshd[68980]: Invalid user tar from 157.230.38.102 port 39108 Aug 17 17:53:57 localhost sshd[68980]: Failed password for invalid user tar from 157.230.38.102 port 39108 ssh2 Aug 17 17:58:45 localhost sshd[69486]: Invalid user rack from 157.230.38.102 port 57152 ...	2020-08-18 03:00:30
5.196.94.68	attackbots	Aug 17 20:01:45 rotator sshd\[11972\]: Invalid user ams from 5.196.94.68Aug 17 20:01:47 rotator sshd\[11972\]: Failed password for invalid user ams from 5.196.94.68 port 53392 ssh2Aug 17 20:04:31 rotator sshd\[12035\]: Invalid user techsupport from 5.196.94.68Aug 17 20:04:33 rotator sshd\[12035\]: Failed password for invalid user techsupport from 5.196.94.68 port 54200 ssh2Aug 17 20:07:19 rotator sshd\[12820\]: Failed password for root from 5.196.94.68 port 54990 ssh2Aug 17 20:10:11 rotator sshd\[13025\]: Failed password for postgres from 5.196.94.68 port 55800 ssh2 ...	2020-08-18 03:03:03
13.68.137.194	attackspam	2020-08-16T13:14:21.627930hostname sshd[49640]: Failed password for root from 13.68.137.194 port 41712 ssh2 ...	2020-08-18 03:23:32
193.227.11.125	attackbots	Unauthorized connection attempt from IP address 193.227.11.125 on Port 445(SMB)	2020-08-18 03:14:19
202.141.231.13	attackbotsspam	Unauthorized connection attempt from IP address 202.141.231.13 on Port 445(SMB)	2020-08-18 03:01:50
84.0.26.9	attackbotsspam	$f2bV_matches	2020-08-18 03:13:13
101.178.175.30	attack	Aug 17 19:53:48 inter-technics sshd[7866]: Invalid user loginuser from 101.178.175.30 port 20461 Aug 17 19:53:48 inter-technics sshd[7866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.178.175.30 Aug 17 19:53:48 inter-technics sshd[7866]: Invalid user loginuser from 101.178.175.30 port 20461 Aug 17 19:53:50 inter-technics sshd[7866]: Failed password for invalid user loginuser from 101.178.175.30 port 20461 ssh2 Aug 17 19:58:35 inter-technics sshd[8149]: Invalid user wolf from 101.178.175.30 port 53484 ...	2020-08-18 03:28:16
154.70.208.66	attackbots	Aug 17 14:01:03 sshgateway sshd\[25220\]: Invalid user uday from 154.70.208.66 Aug 17 14:01:03 sshgateway sshd\[25220\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=proxmox1-tc2.macrolan.co.za Aug 17 14:01:05 sshgateway sshd\[25220\]: Failed password for invalid user uday from 154.70.208.66 port 50586 ssh2	2020-08-18 03:10:55
80.51.169.53	attack	failed_logins	2020-08-18 03:07:57
201.242.234.71	attack	Unauthorized connection attempt from IP address 201.242.234.71 on Port 445(SMB)	2020-08-18 03:11:56
213.135.85.197	attackspambots	2020-08-17T13:51:40.707965devel sshd[19479]: Invalid user eva from 213.135.85.197 port 47458 2020-08-17T13:51:42.573366devel sshd[19479]: Failed password for invalid user eva from 213.135.85.197 port 47458 ssh2 2020-08-17T14:02:31.236982devel sshd[21705]: Invalid user teamspeak from 213.135.85.197 port 49522	2020-08-18 03:35:38
104.198.100.105	attackspam	Brute-force attempt banned	2020-08-18 03:11:41
193.27.229.190	attackbotsspam	[Sun Aug 02 18:12:26 2020] - DDoS Attack From IP: 193.27.229.190 Port: 62000	2020-08-18 03:18:56

Recently Reported IPs

122.176.94.202	45.148.122.198	191.234.186.93	165.232.43.124
138.197.15.190	37.238.84.20	2.5.170.56	60.57.111.40
27.203.159.220	183.105.172.94	252.33.63.85	193.193.229.66
165.232.41.110	139.59.88.86	112.237.22.191	172.220.92.210
118.27.28.171	180.76.135.187	165.232.106.112	187.63.164.105