45.160.136.66 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Teleart Internet

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Oct 4 17:18:44 mail.srvfarm.net postfix/smtps/smtpd[1046363]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: Oct 4 17:18:44 mail.srvfarm.net postfix/smtps/smtpd[1046363]: lost connection after AUTH from unknown[45.160.136.66] Oct 4 17:20:24 mail.srvfarm.net postfix/smtpd[1047066]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: Oct 4 17:20:24 mail.srvfarm.net postfix/smtpd[1047066]: lost connection after AUTH from unknown[45.160.136.66] Oct 4 17:26:44 mail.srvfarm.net postfix/smtps/smtpd[1047334]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed:	2020-10-05 05:23:03
attackspambots	Oct 4 08:28:52 mail.srvfarm.net postfix/smtpd[756560]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: Oct 4 08:28:53 mail.srvfarm.net postfix/smtpd[756560]: lost connection after AUTH from unknown[45.160.136.66] Oct 4 08:35:01 mail.srvfarm.net postfix/smtpd[756744]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: Oct 4 08:35:02 mail.srvfarm.net postfix/smtpd[756744]: lost connection after AUTH from unknown[45.160.136.66] Oct 4 08:35:42 mail.srvfarm.net postfix/smtpd[756518]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed:	2020-10-04 21:17:45
attackbotsspam	Oct 3 22:26:03 mail.srvfarm.net postfix/smtps/smtpd[662248]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: Oct 3 22:26:03 mail.srvfarm.net postfix/smtps/smtpd[662248]: lost connection after AUTH from unknown[45.160.136.66] Oct 3 22:29:35 mail.srvfarm.net postfix/smtps/smtpd[661644]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: Oct 3 22:29:36 mail.srvfarm.net postfix/smtps/smtpd[661644]: lost connection after AUTH from unknown[45.160.136.66] Oct 3 22:31:51 mail.srvfarm.net postfix/smtpd[660372]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed:	2020-10-04 13:03:11

Type

Details

Datetime

attackbotsspam

Oct  4 17:18:44 mail.srvfarm.net postfix/smtps/smtpd[1046363]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: 
Oct  4 17:18:44 mail.srvfarm.net postfix/smtps/smtpd[1046363]: lost connection after AUTH from unknown[45.160.136.66]
Oct  4 17:20:24 mail.srvfarm.net postfix/smtpd[1047066]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: 
Oct  4 17:20:24 mail.srvfarm.net postfix/smtpd[1047066]: lost connection after AUTH from unknown[45.160.136.66]
Oct  4 17:26:44 mail.srvfarm.net postfix/smtps/smtpd[1047334]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed:

2020-10-05 05:23:03

attackspambots

Oct  4 08:28:52 mail.srvfarm.net postfix/smtpd[756560]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: 
Oct  4 08:28:53 mail.srvfarm.net postfix/smtpd[756560]: lost connection after AUTH from unknown[45.160.136.66]
Oct  4 08:35:01 mail.srvfarm.net postfix/smtpd[756744]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: 
Oct  4 08:35:02 mail.srvfarm.net postfix/smtpd[756744]: lost connection after AUTH from unknown[45.160.136.66]
Oct  4 08:35:42 mail.srvfarm.net postfix/smtpd[756518]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed:

2020-10-04 21:17:45

attackbotsspam

Oct  3 22:26:03 mail.srvfarm.net postfix/smtps/smtpd[662248]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: 
Oct  3 22:26:03 mail.srvfarm.net postfix/smtps/smtpd[662248]: lost connection after AUTH from unknown[45.160.136.66]
Oct  3 22:29:35 mail.srvfarm.net postfix/smtps/smtpd[661644]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed: 
Oct  3 22:29:36 mail.srvfarm.net postfix/smtps/smtpd[661644]: lost connection after AUTH from unknown[45.160.136.66]
Oct  3 22:31:51 mail.srvfarm.net postfix/smtpd[660372]: warning: unknown[45.160.136.66]: SASL PLAIN authentication failed:

2020-10-04 13:03:11

Comments on same subnet:

IP	Type	Details	Datetime
45.160.136.107	attackbotsspam	Aug 27 04:46:22 mail.srvfarm.net postfix/smtps/smtpd[1331136]: warning: unknown[45.160.136.107]: SASL PLAIN authentication failed: Aug 27 04:46:23 mail.srvfarm.net postfix/smtps/smtpd[1331136]: lost connection after AUTH from unknown[45.160.136.107] Aug 27 04:49:12 mail.srvfarm.net postfix/smtpd[1334724]: warning: unknown[45.160.136.107]: SASL PLAIN authentication failed: Aug 27 04:49:13 mail.srvfarm.net postfix/smtpd[1334724]: lost connection after AUTH from unknown[45.160.136.107] Aug 27 04:51:20 mail.srvfarm.net postfix/smtps/smtpd[1335345]: warning: unknown[45.160.136.107]: SASL PLAIN authentication failed:	2020-08-28 09:23:20
45.160.136.227	attack	(BR/Brazil/-) SMTP Bruteforcing attempts	2020-06-19 15:50:56
45.160.136.227	attack	Jun 18 11:26:02 mail.srvfarm.net postfix/smtps/smtpd[1421524]: warning: unknown[45.160.136.227]: SASL PLAIN authentication failed: Jun 18 11:26:03 mail.srvfarm.net postfix/smtps/smtpd[1421524]: lost connection after AUTH from unknown[45.160.136.227] Jun 18 11:29:49 mail.srvfarm.net postfix/smtps/smtpd[1409843]: warning: unknown[45.160.136.227]: SASL PLAIN authentication failed: Jun 18 11:29:49 mail.srvfarm.net postfix/smtps/smtpd[1409843]: lost connection after AUTH from unknown[45.160.136.227] Jun 18 11:30:56 mail.srvfarm.net postfix/smtps/smtpd[1421519]: warning: unknown[45.160.136.227]: SASL PLAIN authentication failed:	2020-06-19 02:02:19
45.160.136.100	attack	Jun 18 13:02:44 mail.srvfarm.net postfix/smtpd[1452011]: warning: unknown[45.160.136.100]: SASL PLAIN authentication failed: Jun 18 13:02:45 mail.srvfarm.net postfix/smtpd[1452011]: lost connection after AUTH from unknown[45.160.136.100] Jun 18 13:10:06 mail.srvfarm.net postfix/smtps/smtpd[1453179]: warning: unknown[45.160.136.100]: SASL PLAIN authentication failed: Jun 18 13:10:07 mail.srvfarm.net postfix/smtps/smtpd[1453179]: lost connection after AUTH from unknown[45.160.136.100] Jun 18 13:11:16 mail.srvfarm.net postfix/smtpd[1452323]: warning: unknown[45.160.136.100]: SASL PLAIN authentication failed:	2020-06-19 01:00:52

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.160.136.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53948
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.160.136.66.			IN	A

;; AUTHORITY SECTION:
.			551	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020100301 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Oct 04 13:03:08 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 66.136.160.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 66.136.160.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
171.244.43.52	attackbots	Unauthorized connection attempt detected from IP address 171.244.43.52 to port 22	2020-01-10 13:57:31
192.144.164.134	attack	2020-01-10T06:33:02.244880scmdmz1 sshd[4756]: Invalid user cy from 192.144.164.134 port 57484 2020-01-10T06:33:02.247532scmdmz1 sshd[4756]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.164.134 2020-01-10T06:33:02.244880scmdmz1 sshd[4756]: Invalid user cy from 192.144.164.134 port 57484 2020-01-10T06:33:04.007409scmdmz1 sshd[4756]: Failed password for invalid user cy from 192.144.164.134 port 57484 ssh2 2020-01-10T06:36:10.003220scmdmz1 sshd[5029]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.164.134 user=root 2020-01-10T06:36:11.767501scmdmz1 sshd[5029]: Failed password for root from 192.144.164.134 port 26851 ssh2 ...	2020-01-10 13:47:12
190.28.120.164	attack	Jan 9 21:15:25 mockhub sshd[17797]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.28.120.164 Jan 9 21:15:27 mockhub sshd[17797]: Failed password for invalid user admin from 190.28.120.164 port 51488 ssh2 ...	2020-01-10 13:26:37
223.171.32.56	attackbotsspam	Jan 10 06:01:05 SilenceServices sshd[8732]: Failed password for root from 223.171.32.56 port 12441 ssh2 Jan 10 06:04:45 SilenceServices sshd[11499]: Failed password for root from 223.171.32.56 port 12441 ssh2	2020-01-10 13:44:41
189.212.122.53	attack	Automatic report - Port Scan Attack	2020-01-10 13:34:13
27.26.250.187	attackbotsspam	Automatic report - FTP Brute Force	2020-01-10 13:36:36
103.214.129.204	attackbots	Jan 9 17:26:35 server sshd\[18616\]: Invalid user vke from 103.214.129.204 Jan 9 17:26:35 server sshd\[18616\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.214.129.204 Jan 9 17:26:37 server sshd\[18616\]: Failed password for invalid user vke from 103.214.129.204 port 43154 ssh2 Jan 10 07:58:24 server sshd\[4027\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.214.129.204 user=root Jan 10 07:58:26 server sshd\[4027\]: Failed password for root from 103.214.129.204 port 32928 ssh2 ...	2020-01-10 13:29:30
160.16.238.205	attack	Jan 10 04:51:48 ip-172-31-62-245 sshd\[29815\]: Invalid user elx from 160.16.238.205\ Jan 10 04:51:51 ip-172-31-62-245 sshd\[29815\]: Failed password for invalid user elx from 160.16.238.205 port 57644 ssh2\ Jan 10 04:55:07 ip-172-31-62-245 sshd\[29890\]: Invalid user givein from 160.16.238.205\ Jan 10 04:55:08 ip-172-31-62-245 sshd\[29890\]: Failed password for invalid user givein from 160.16.238.205 port 60120 ssh2\ Jan 10 04:58:16 ip-172-31-62-245 sshd\[29969\]: Invalid user rowe from 160.16.238.205\	2020-01-10 13:35:31
86.41.241.77	attackbotsspam	SSH Brute-Forcing (server1)	2020-01-10 13:46:21
83.12.171.68	attack	Jan 10 04:51:41 ip-172-31-62-245 sshd\[29811\]: Invalid user nq from 83.12.171.68\ Jan 10 04:51:43 ip-172-31-62-245 sshd\[29811\]: Failed password for invalid user nq from 83.12.171.68 port 27748 ssh2\ Jan 10 04:54:56 ip-172-31-62-245 sshd\[29883\]: Invalid user bravo1 from 83.12.171.68\ Jan 10 04:54:58 ip-172-31-62-245 sshd\[29883\]: Failed password for invalid user bravo1 from 83.12.171.68 port 5928 ssh2\ Jan 10 04:58:08 ip-172-31-62-245 sshd\[29957\]: Invalid user 123 from 83.12.171.68\	2020-01-10 13:39:06
111.231.71.157	attack	Automatic report - Banned IP Access	2020-01-10 13:30:40
46.38.144.57	attackspam	Jan 10 07:04:50 relay postfix/smtpd\[4464\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 10 07:05:02 relay postfix/smtpd\[15381\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 10 07:05:36 relay postfix/smtpd\[6257\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 10 07:05:49 relay postfix/smtpd\[10880\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jan 10 07:06:25 relay postfix/smtpd\[10670\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-01-10 14:09:21
152.32.72.122	attackbotsspam	Jan 10 10:24:21 gw1 sshd[3951]: Failed password for root from 152.32.72.122 port 4874 ssh2 ...	2020-01-10 13:34:41
96.127.40.104	attack	RDP Bruteforce	2020-01-10 13:34:29
213.165.171.173	attack	Jan 10 05:58:04 grey postfix/smtpd\[369\]: NOQUEUE: reject: RCPT from c171-173.i02-3.onvol.net\[213.165.171.173\]: 554 5.7.1 Service unavailable\; Client host \[213.165.171.173\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[213.165.171.173\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-10 13:39:37

Recently Reported IPs

139.59.212.248	114.5.194.58	103.129.64.4	103.18.242.37
103.18.242.18	82.177.52.48	77.252.137.108	121.75.62.81
180.232.222.143	52.187.106.96	118.90.23.151	183.24.215.163
52.187.105.28	210.174.219.84	46.33.101.85	45.227.110.42
52.245.81.152	40.69.101.92	13.76.191.209	117.6.130.237