45.164.20.120 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Mexico

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.164.202.59	attack	Aug 31 16:10:19 mailman postfix/smtpd[29711]: warning: unknown[45.164.202.59]: SASL PLAIN authentication failed: authentication failure	2020-09-01 07:35:09
45.164.202.61	attack	Aug 15 01:44:34 mail.srvfarm.net postfix/smtpd[947514]: warning: unknown[45.164.202.61]: SASL PLAIN authentication failed: Aug 15 01:44:36 mail.srvfarm.net postfix/smtpd[947514]: lost connection after AUTH from unknown[45.164.202.61] Aug 15 01:47:22 mail.srvfarm.net postfix/smtpd[948188]: warning: unknown[45.164.202.61]: SASL PLAIN authentication failed: Aug 15 01:47:26 mail.srvfarm.net postfix/smtpd[948188]: lost connection after AUTH from unknown[45.164.202.61] Aug 15 01:50:11 mail.srvfarm.net postfix/smtps/smtpd[930971]: lost connection after CONNECT from unknown[45.164.202.61]	2020-08-15 13:57:52
45.164.203.170	attackspam	Aug 12 05:44:09 mail.srvfarm.net postfix/smtpd[2870462]: warning: unknown[45.164.203.170]: SASL PLAIN authentication failed: Aug 12 05:44:09 mail.srvfarm.net postfix/smtpd[2870462]: lost connection after AUTH from unknown[45.164.203.170] Aug 12 05:49:06 mail.srvfarm.net postfix/smtpd[2870459]: warning: unknown[45.164.203.170]: SASL PLAIN authentication failed: Aug 12 05:49:07 mail.srvfarm.net postfix/smtpd[2870459]: lost connection after AUTH from unknown[45.164.203.170] Aug 12 05:51:16 mail.srvfarm.net postfix/smtps/smtpd[2871474]: warning: unknown[45.164.203.170]: SASL PLAIN authentication failed:	2020-08-12 14:33:17
45.164.202.19	attackspambots	Aug 11 13:59:25 mail.srvfarm.net postfix/smtpd[2369192]: warning: unknown[45.164.202.19]: SASL PLAIN authentication failed: Aug 11 13:59:25 mail.srvfarm.net postfix/smtpd[2369192]: lost connection after AUTH from unknown[45.164.202.19] Aug 11 14:02:47 mail.srvfarm.net postfix/smtpd[2371691]: warning: unknown[45.164.202.19]: SASL PLAIN authentication failed: Aug 11 14:02:47 mail.srvfarm.net postfix/smtpd[2371691]: lost connection after AUTH from unknown[45.164.202.19] Aug 11 14:05:25 mail.srvfarm.net postfix/smtpd[2371611]: warning: unknown[45.164.202.19]: SASL PLAIN authentication failed:	2020-08-12 03:37:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.164.20.120
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19724
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.164.20.120.			IN	A

;; AUTHORITY SECTION:
.			266	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022101002 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 11 20:06:03 CST 2022
;; MSG SIZE  rcvd: 106

Host info

120.20.164.45.in-addr.arpa domain name pointer task2.taskopad.in.
120.20.164.45.in-addr.arpa domain name pointer crt2.creativestudios.xyz.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
120.20.164.45.in-addr.arpa	name = task2.taskopad.in.
120.20.164.45.in-addr.arpa	name = crt2.creativestudios.xyz.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.30.57	attackbotsspam	Sep 28 06:57:23 vps647732 sshd[32177]: Failed password for root from 222.186.30.57 port 44337 ssh2 ...	2020-09-28 13:00:47
112.196.26.202	attackbots	Sep 28 02:05:26 dhoomketu sshd[3414347]: Invalid user abcd from 112.196.26.202 port 51640 Sep 28 02:05:26 dhoomketu sshd[3414347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.196.26.202 Sep 28 02:05:26 dhoomketu sshd[3414347]: Invalid user abcd from 112.196.26.202 port 51640 Sep 28 02:05:28 dhoomketu sshd[3414347]: Failed password for invalid user abcd from 112.196.26.202 port 51640 ssh2 Sep 28 02:09:36 dhoomketu sshd[3414495]: Invalid user ftpusr from 112.196.26.202 port 39734 ...	2020-09-28 13:27:15
178.62.52.150	attackbotsspam	Sep 28 06:23:51 rocket sshd[28276]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.52.150 Sep 28 06:23:53 rocket sshd[28276]: Failed password for invalid user dp from 178.62.52.150 port 38170 ssh2 ...	2020-09-28 13:30:43
191.43.12.85	attackbotsspam	Sep 27 22:42:52 askasleikir sshd[21226]: Failed password for root from 191.43.12.85 port 60199 ssh2 Sep 27 22:32:03 askasleikir sshd[21163]: Failed password for invalid user andy from 191.43.12.85 port 14222 ssh2 Sep 27 22:38:26 askasleikir sshd[21197]: Failed password for invalid user centos from 191.43.12.85 port 55097 ssh2	2020-09-28 13:02:00
112.85.42.186	attack	Sep 28 10:28:58 dhoomketu sshd[3423491]: Failed password for root from 112.85.42.186 port 51812 ssh2 Sep 28 10:28:53 dhoomketu sshd[3423491]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.186 user=root Sep 28 10:28:55 dhoomketu sshd[3423491]: Failed password for root from 112.85.42.186 port 51812 ssh2 Sep 28 10:28:58 dhoomketu sshd[3423491]: Failed password for root from 112.85.42.186 port 51812 ssh2 Sep 28 10:29:01 dhoomketu sshd[3423491]: Failed password for root from 112.85.42.186 port 51812 ssh2 ...	2020-09-28 13:02:50
62.210.103.204	attack	Port scan on 1 port(s) from 62.210.103.204 detected: 5060 (22:52:45)	2020-09-28 12:54:07
43.229.153.12	attackspambots	Sep 28 06:17:41 haigwepa sshd[15792]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.229.153.12 Sep 28 06:17:43 haigwepa sshd[15792]: Failed password for invalid user csgoserver from 43.229.153.12 port 50047 ssh2 ...	2020-09-28 13:14:33
112.85.42.13	attackspam	Sep 28 01:43:24 vps46666688 sshd[5393]: Failed password for root from 112.85.42.13 port 54532 ssh2 Sep 28 01:43:27 vps46666688 sshd[5393]: Failed password for root from 112.85.42.13 port 54532 ssh2 ...	2020-09-28 13:29:10
118.25.144.133	attackbotsspam	2020-09-28T03:44:03.411322dmca.cloudsearch.cf sshd[15679]: Invalid user julian from 118.25.144.133 port 34208 2020-09-28T03:44:03.417143dmca.cloudsearch.cf sshd[15679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.144.133 2020-09-28T03:44:03.411322dmca.cloudsearch.cf sshd[15679]: Invalid user julian from 118.25.144.133 port 34208 2020-09-28T03:44:05.870752dmca.cloudsearch.cf sshd[15679]: Failed password for invalid user julian from 118.25.144.133 port 34208 ssh2 2020-09-28T03:47:18.691438dmca.cloudsearch.cf sshd[15837]: Invalid user xerox from 118.25.144.133 port 45672 2020-09-28T03:47:18.697480dmca.cloudsearch.cf sshd[15837]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.144.133 2020-09-28T03:47:18.691438dmca.cloudsearch.cf sshd[15837]: Invalid user xerox from 118.25.144.133 port 45672 2020-09-28T03:47:20.920318dmca.cloudsearch.cf sshd[15837]: Failed password for invalid user xerox from ...	2020-09-28 13:09:47
139.199.94.51	attackspambots	Sep 28 04:21:29 inter-technics sshd[11309]: Invalid user oracle from 139.199.94.51 port 59024 Sep 28 04:21:29 inter-technics sshd[11309]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.94.51 Sep 28 04:21:29 inter-technics sshd[11309]: Invalid user oracle from 139.199.94.51 port 59024 Sep 28 04:21:30 inter-technics sshd[11309]: Failed password for invalid user oracle from 139.199.94.51 port 59024 ssh2 Sep 28 04:25:09 inter-technics sshd[11600]: Invalid user deploy from 139.199.94.51 port 44354 ...	2020-09-28 13:17:21
182.61.44.2	attack	Sep 28 07:09:05 ns381471 sshd[25260]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.44.2 Sep 28 07:09:07 ns381471 sshd[25260]: Failed password for invalid user ubuntu from 182.61.44.2 port 52510 ssh2	2020-09-28 13:14:53
68.183.28.35	attackspambots	Sep 28 07:20:49 node002 sshd[11572]: Did not receive identification string from 68.183.28.35 port 38232 Sep 28 07:20:52 node002 sshd[11574]: Received disconnect from 68.183.28.35 port 47778:11: Normal Shutdown, Thank you for playing [preauth] Sep 28 07:20:52 node002 sshd[11574]: Disconnected from 68.183.28.35 port 47778 [preauth] Sep 28 07:20:56 node002 sshd[11578]: Received disconnect from 68.183.28.35 port 56450:11: Normal Shutdown, Thank you for playing [preauth] Sep 28 07:20:56 node002 sshd[11578]: Disconnected from 68.183.28.35 port 56450 [preauth] Sep 28 07:21:00 node002 sshd[11637]: Received disconnect from 68.183.28.35 port 37124:11: Normal Shutdown, Thank you for playing [preauth] Sep 28 07:21:00 node002 sshd[11637]: Disconnected from 68.183.28.35 port 37124 [preauth] Sep 28 07:21:04 node002 sshd[11678]: Invalid user admin from 68.183.28.35 port 45668 Sep 28 07:21:04 node002 sshd[11678]: Received disconnect from 68.183.28.35 port 45668:11: Normal Shutdown, Thank you for playin	2020-09-28 13:22:47
61.132.227.16	attackbotsspam	[H1] Blocked by UFW	2020-09-28 13:20:14
188.254.0.160	attackbotsspam	Sep 28 04:02:32 plex-server sshd[3604189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.160 Sep 28 04:02:32 plex-server sshd[3604189]: Invalid user guest from 188.254.0.160 port 43366 Sep 28 04:02:34 plex-server sshd[3604189]: Failed password for invalid user guest from 188.254.0.160 port 43366 ssh2 Sep 28 04:06:23 plex-server sshd[3605714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.254.0.160 user=root Sep 28 04:06:25 plex-server sshd[3605714]: Failed password for root from 188.254.0.160 port 52578 ssh2 ...	2020-09-28 13:25:56
95.16.148.102	attack	Invalid user test3 from 95.16.148.102 port 55192	2020-09-28 13:03:37

Recently Reported IPs

67.160.121.62	116.255.232.162	114.226.65.237	218.155.82.39
180.116.244.105	119.185.74.102	146.185.205.248	84.54.56.111
194.5.195.10	111.90.149.194	93.177.73.122	27.147.180.126
180.169.139.73	27.147.180.242	102.23.241.228	213.232.123.133
5.32.22.218	212.60.21.49	122.191.27.236	211.97.132.154