45.162.20.100 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Argentina

Internet Service Provider: Elda Salerno

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jul 24 09:03:37 mail.srvfarm.net postfix/smtps/smtpd[2137410]: warning: unknown[45.162.20.100]: SASL PLAIN authentication failed: Jul 24 09:03:38 mail.srvfarm.net postfix/smtps/smtpd[2137410]: lost connection after AUTH from unknown[45.162.20.100] Jul 24 09:03:53 mail.srvfarm.net postfix/smtpd[2140857]: warning: unknown[45.162.20.100]: SASL PLAIN authentication failed: Jul 24 09:03:53 mail.srvfarm.net postfix/smtpd[2140857]: lost connection after AUTH from unknown[45.162.20.100] Jul 24 09:07:40 mail.srvfarm.net postfix/smtps/smtpd[2140084]: warning: unknown[45.162.20.100]: SASL PLAIN authentication failed:	2020-07-25 03:52:53

Type

Details

Datetime

attackspam

Jul 24 09:03:37 mail.srvfarm.net postfix/smtps/smtpd[2137410]: warning: unknown[45.162.20.100]: SASL PLAIN authentication failed: 
Jul 24 09:03:38 mail.srvfarm.net postfix/smtps/smtpd[2137410]: lost connection after AUTH from unknown[45.162.20.100]
Jul 24 09:03:53 mail.srvfarm.net postfix/smtpd[2140857]: warning: unknown[45.162.20.100]: SASL PLAIN authentication failed: 
Jul 24 09:03:53 mail.srvfarm.net postfix/smtpd[2140857]: lost connection after AUTH from unknown[45.162.20.100]
Jul 24 09:07:40 mail.srvfarm.net postfix/smtps/smtpd[2140084]: warning: unknown[45.162.20.100]: SASL PLAIN authentication failed:

2020-07-25 03:52:53

Comments on same subnet:

IP	Type	Details	Datetime
45.162.20.189	attackspam	Brute force attempt	2020-08-15 07:28:43
45.162.20.68	attackspam	Unauthorized connection attempt from IP address 45.162.20.68 on Port 25(SMTP)	2020-08-03 02:36:41
45.162.20.249	attack	failed_logins	2020-07-09 15:33:29
45.162.20.191	attackspam	Jun 15 17:15:43 mail.srvfarm.net postfix/smtps/smtpd[332286]: warning: unknown[45.162.20.191]: SASL PLAIN authentication failed: Jun 15 17:19:48 mail.srvfarm.net postfix/smtpd[350758]: warning: unknown[45.162.20.191]: SASL PLAIN authentication failed: Jun 15 17:19:48 mail.srvfarm.net postfix/smtpd[350758]: lost connection after AUTH from unknown[45.162.20.191] Jun 15 17:24:11 mail.srvfarm.net postfix/smtpd[354813]: warning: unknown[45.162.20.191]: SASL PLAIN authentication failed: Jun 15 17:24:11 mail.srvfarm.net postfix/smtpd[354813]: lost connection after AUTH from unknown[45.162.20.191]	2020-07-02 05:38:26
45.162.20.65	attack	(AR/Argentina/-) SMTP Bruteforcing attempts	2020-06-19 15:43:33
45.162.20.128	attackspam	Jun 18 18:01:43 mail.srvfarm.net postfix/smtpd[1562467]: warning: unknown[45.162.20.128]: SASL PLAIN authentication failed: Jun 18 18:01:44 mail.srvfarm.net postfix/smtpd[1562467]: lost connection after AUTH from unknown[45.162.20.128] Jun 18 18:03:31 mail.srvfarm.net postfix/smtpd[1562515]: warning: unknown[45.162.20.128]: SASL PLAIN authentication failed: Jun 18 18:03:32 mail.srvfarm.net postfix/smtpd[1562515]: lost connection after AUTH from unknown[45.162.20.128] Jun 18 18:04:30 mail.srvfarm.net postfix/smtpd[1565799]: warning: unknown[45.162.20.128]: SASL PLAIN authentication failed:	2020-06-19 01:33:33
45.162.20.52	attackspambots	Jun 16 05:04:48 mail.srvfarm.net postfix/smtps/smtpd[915909]: warning: unknown[45.162.20.52]: SASL PLAIN authentication failed: Jun 16 05:04:49 mail.srvfarm.net postfix/smtps/smtpd[915909]: lost connection after AUTH from unknown[45.162.20.52] Jun 16 05:08:26 mail.srvfarm.net postfix/smtpd[935947]: warning: unknown[45.162.20.52]: SASL PLAIN authentication failed: Jun 16 05:08:27 mail.srvfarm.net postfix/smtpd[935947]: lost connection after AUTH from unknown[45.162.20.52] Jun 16 05:13:48 mail.srvfarm.net postfix/smtps/smtpd[938133]: warning: unknown[45.162.20.52]: SASL PLAIN authentication failed:	2020-06-16 17:29:26
45.162.20.154	attackspam	Jun 13 22:53:02 mail.srvfarm.net postfix/smtpd[1295647]: warning: unknown[45.162.20.154]: SASL PLAIN authentication failed: Jun 13 22:53:03 mail.srvfarm.net postfix/smtpd[1295647]: lost connection after AUTH from unknown[45.162.20.154] Jun 13 22:55:30 mail.srvfarm.net postfix/smtpd[1295658]: warning: unknown[45.162.20.154]: SASL PLAIN authentication failed: Jun 13 22:55:31 mail.srvfarm.net postfix/smtpd[1295658]: lost connection after AUTH from unknown[45.162.20.154] Jun 13 23:01:14 mail.srvfarm.net postfix/smtps/smtpd[1293481]: warning: unknown[45.162.20.154]: SASL PLAIN authentication failed:	2020-06-14 08:42:58
45.162.20.174	attackspambots	Jun 13 22:51:44 mail.srvfarm.net postfix/smtps/smtpd[1294952]: warning: unknown[45.162.20.174]: SASL PLAIN authentication failed: Jun 13 22:51:45 mail.srvfarm.net postfix/smtps/smtpd[1294952]: lost connection after AUTH from unknown[45.162.20.174] Jun 13 22:52:27 mail.srvfarm.net postfix/smtpd[1296189]: warning: unknown[45.162.20.174]: SASL PLAIN authentication failed: Jun 13 22:52:28 mail.srvfarm.net postfix/smtpd[1296189]: lost connection after AUTH from unknown[45.162.20.174] Jun 13 23:01:18 mail.srvfarm.net postfix/smtpd[1295647]: warning: unknown[45.162.20.174]: SASL PLAIN authentication failed:	2020-06-14 08:42:42
45.162.20.154	attack	Jun 6 01:31:47 mail.srvfarm.net postfix/smtps/smtpd[3446935]: warning: unknown[45.162.20.154]: SASL PLAIN authentication failed: Jun 6 01:31:48 mail.srvfarm.net postfix/smtps/smtpd[3446935]: lost connection after AUTH from unknown[45.162.20.154] Jun 6 01:34:02 mail.srvfarm.net postfix/smtps/smtpd[3460261]: warning: unknown[45.162.20.154]: SASL PLAIN authentication failed: Jun 6 01:34:03 mail.srvfarm.net postfix/smtps/smtpd[3460261]: lost connection after AUTH from unknown[45.162.20.154] Jun 6 01:40:33 mail.srvfarm.net postfix/smtps/smtpd[3463322]: warning: unknown[45.162.20.154]: SASL PLAIN authentication failed:	2020-06-08 00:28:46
45.162.20.60	attackbotsspam	Jun 5 17:43:24 mail.srvfarm.net postfix/smtpd[3156526]: warning: unknown[45.162.20.60]: SASL PLAIN authentication failed: Jun 5 17:43:25 mail.srvfarm.net postfix/smtpd[3156526]: lost connection after AUTH from unknown[45.162.20.60] Jun 5 17:43:40 mail.srvfarm.net postfix/smtpd[3156527]: warning: unknown[45.162.20.60]: SASL PLAIN authentication failed: Jun 5 17:43:41 mail.srvfarm.net postfix/smtpd[3156527]: lost connection after AUTH from unknown[45.162.20.60] Jun 5 17:46:18 mail.srvfarm.net postfix/smtps/smtpd[3154996]: warning: unknown[45.162.20.60]: SASL PLAIN authentication failed:	2020-06-08 00:20:37
45.162.20.191	attackbotsspam	(AR/Argentina/-) SMTP Bruteforcing attempts	2020-06-05 14:35:56
45.162.20.249	attack	(AR/Argentina/-) SMTP Bruteforcing attempts	2020-06-05 14:31:29
45.162.20.251	attackbotsspam	(AR/Argentina/-) SMTP Bruteforcing attempts	2020-06-05 14:29:16
45.162.20.171	attackbots	SSH invalid-user multiple login try	2020-05-26 19:32:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.162.20.100
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33962
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.162.20.100.			IN	A

;; AUTHORITY SECTION:
.			311	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020072401 1800 900 604800 86400

;; Query time: 74 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jul 25 03:52:50 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 100.20.162.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 100.20.162.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
132.232.59.247	attack	Oct 2 14:35:53 vps647732 sshd[28012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.59.247 Oct 2 14:35:55 vps647732 sshd[28012]: Failed password for invalid user tc from 132.232.59.247 port 52600 ssh2 ...	2019-10-02 20:48:09
167.114.192.162	attackspam	Oct 2 11:56:45 mail sshd\[17773\]: Failed password for invalid user vasu from 167.114.192.162 port 24592 ssh2 Oct 2 12:00:56 mail sshd\[18936\]: Invalid user admin from 167.114.192.162 port 44841 Oct 2 12:00:56 mail sshd\[18936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.192.162 Oct 2 12:00:58 mail sshd\[18936\]: Failed password for invalid user admin from 167.114.192.162 port 44841 ssh2 Oct 2 12:05:06 mail sshd\[19650\]: Invalid user peng from 167.114.192.162 port 65095	2019-10-02 20:23:47
130.211.246.128	attackspam	Oct 2 14:37:48 host sshd\[4582\]: Invalid user user1 from 130.211.246.128 port 58636 Oct 2 14:37:50 host sshd\[4582\]: Failed password for invalid user user1 from 130.211.246.128 port 58636 ssh2 ...	2019-10-02 20:43:38
180.244.233.128	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 02-10-2019 13:35:54.	2019-10-02 20:47:35
167.71.211.102	attackspambots	Oct 2 02:31:53 sachi sshd\[17152\]: Invalid user niao from 167.71.211.102 Oct 2 02:31:53 sachi sshd\[17152\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.211.102 Oct 2 02:31:55 sachi sshd\[17152\]: Failed password for invalid user niao from 167.71.211.102 port 49888 ssh2 Oct 2 02:35:59 sachi sshd\[17546\]: Invalid user bcbackup from 167.71.211.102 Oct 2 02:35:59 sachi sshd\[17546\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.71.211.102	2019-10-02 20:41:06
14.189.74.126	attackbots	Chat Spam	2019-10-02 20:16:21
90.48.97.114	attack	Lines containing failures of 90.48.97.114 Oct 2 11:39:58 jarvis sshd[8864]: Invalid user pi from 90.48.97.114 port 52114 Oct 2 11:39:58 jarvis sshd[8866]: Invalid user pi from 90.48.97.114 port 52120 Oct 2 11:39:58 jarvis sshd[8864]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.48.97.114 Oct 2 11:39:58 jarvis sshd[8866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=90.48.97.114 Oct 2 11:40:00 jarvis sshd[8864]: Failed password for invalid user pi from 90.48.97.114 port 52114 ssh2 Oct 2 11:40:00 jarvis sshd[8866]: Failed password for invalid user pi from 90.48.97.114 port 52120 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=90.48.97.114	2019-10-02 20:25:31
172.105.89.161	attackbotsspam	10/02/2019-08:35:59.645449 172.105.89.161 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-10-02 20:43:12
148.70.212.162	attack	Oct 2 07:03:12 lnxded64 sshd[26479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.212.162	2019-10-02 20:32:38
183.82.124.233	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 02-10-2019 13:35:56.	2019-10-02 20:44:33
114.108.175.184	attackbotsspam	Oct 2 02:27:34 sachi sshd\[16752\]: Invalid user posp from 114.108.175.184 Oct 2 02:27:34 sachi sshd\[16752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.108.175.184 Oct 2 02:27:36 sachi sshd\[16752\]: Failed password for invalid user posp from 114.108.175.184 port 38572 ssh2 Oct 2 02:32:52 sachi sshd\[17243\]: Invalid user christ from 114.108.175.184 Oct 2 02:32:52 sachi sshd\[17243\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.108.175.184	2019-10-02 20:33:19
112.175.120.199	attack	3389BruteforceFW21	2019-10-02 20:45:29
45.55.187.39	attack	$f2bV_matches	2019-10-02 20:10:27
94.191.89.180	attack	Invalid user nagios from 94.191.89.180 port 46667	2019-10-02 20:09:35
193.35.153.145	attackbots	Postfix RBL failed	2019-10-02 20:50:11

Recently Reported IPs

2.91.31.81	142.238.4.33	2a01:4f8:200:54aa::2	129.226.177.59
81.38.63.240	62.23.142.220	91.106.46.59	58.71.29.162
88.117.67.226	240.209.139.109	197.1.124.238	49.174.8.152
210.16.89.43	196.0.86.162	181.238.175.193	189.91.4.129
236.41.14.104	228.239.0.121	10.194.238.61	164.14.194.149