45.40.57.102 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.40.57.177	attackbots	Sep 30 11:45:37 ntop sshd[32113]: Invalid user rack from 45.40.57.177 port 49372 Sep 30 11:45:39 ntop sshd[32113]: Failed password for invalid user rack from 45.40.57.177 port 49372 ssh2 Sep 30 11:45:40 ntop sshd[32113]: Received disconnect from 45.40.57.177 port 49372:11: Bye Bye [preauth] Sep 30 11:45:40 ntop sshd[32113]: Disconnected from 45.40.57.177 port 49372 [preauth] Sep 30 12:05:55 ntop sshd[1027]: Invalid user oy from 45.40.57.177 port 34426 Sep 30 12:05:57 ntop sshd[1027]: Failed password for invalid user oy from 45.40.57.177 port 34426 ssh2 Sep 30 12:05:57 ntop sshd[1027]: Received disconnect from 45.40.57.177 port 34426:11: Bye Bye [preauth] Sep 30 12:05:57 ntop sshd[1027]: Disconnected from 45.40.57.177 port 34426 [preauth] Sep 30 12:10:19 ntop sshd[1466]: Invalid user tmp from 45.40.57.177 port 47900 Sep 30 12:10:20 ntop sshd[1466]: Failed password for invalid user tmp from 45.40.57.177 port 47900 ssh2 Sep 30 12:10:21 ntop sshd[1466]: Received disconnect ........ -------------------------------	2019-10-01 17:43:02
45.40.57.126	attack	[Aegis] @ 2019-09-06 16:51:11 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-09-07 05:11:04

Type

Details

Datetime

45.40.57.177

attackbots

Sep 30 11:45:37 ntop sshd[32113]: Invalid user rack from 45.40.57.177 port 49372
Sep 30 11:45:39 ntop sshd[32113]: Failed password for invalid user rack from 45.40.57.177 port 49372 ssh2
Sep 30 11:45:40 ntop sshd[32113]: Received disconnect from 45.40.57.177 port 49372:11: Bye Bye [preauth]
Sep 30 11:45:40 ntop sshd[32113]: Disconnected from 45.40.57.177 port 49372 [preauth]
Sep 30 12:05:55 ntop sshd[1027]: Invalid user oy from 45.40.57.177 port 34426
Sep 30 12:05:57 ntop sshd[1027]: Failed password for invalid user oy from 45.40.57.177 port 34426 ssh2
Sep 30 12:05:57 ntop sshd[1027]: Received disconnect from 45.40.57.177 port 34426:11: Bye Bye [preauth]
Sep 30 12:05:57 ntop sshd[1027]: Disconnected from 45.40.57.177 port 34426 [preauth]
Sep 30 12:10:19 ntop sshd[1466]: Invalid user tmp from 45.40.57.177 port 47900
Sep 30 12:10:20 ntop sshd[1466]: Failed password for invalid user tmp from 45.40.57.177 port 47900 ssh2
Sep 30 12:10:21 ntop sshd[1466]: Received disconnect ........
-------------------------------

2019-10-01 17:43:02

45.40.57.126

attack

[Aegis] @ 2019-09-06 16:51:11  0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack

2019-09-07 05:11:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.40.57.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58352
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.40.57.102.			IN	A

;; AUTHORITY SECTION:
.			167	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022101101 1800 900 604800 86400

;; Query time: 139 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 12 02:39:51 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 102.57.40.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 102.57.40.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
210.211.101.58	attackbotsspam	Jan 21 12:18:08 php1 sshd\[17045\]: Invalid user madhu from 210.211.101.58 Jan 21 12:18:08 php1 sshd\[17045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.211.101.58 Jan 21 12:18:10 php1 sshd\[17045\]: Failed password for invalid user madhu from 210.211.101.58 port 61136 ssh2 Jan 21 12:20:35 php1 sshd\[17350\]: Invalid user jira from 210.211.101.58 Jan 21 12:20:35 php1 sshd\[17350\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.211.101.58	2020-01-22 06:44:13
139.198.5.79	attackspam	Jan 21 23:20:47 srv206 sshd[19588]: Invalid user sei from 139.198.5.79 ...	2020-01-22 06:36:42
177.191.158.20	attack	Port 1433 Scan	2020-01-22 06:47:41
180.211.162.198	attackbotsspam	Port 1433 Scan	2020-01-22 06:41:20
106.12.48.44	attack	Invalid user diaco from 106.12.48.44 port 33150 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.44 Failed password for invalid user diaco from 106.12.48.44 port 33150 ssh2 Invalid user edgar from 106.12.48.44 port 58756 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.48.44	2020-01-22 06:43:27
178.122.215.249	attackspambots	2020-01-2123:20:061iu1sU-0005Rp-OE\<=info@whatsup2013.chH=mm-249-215-122-178.mgts.dynamic.pppoe.byfly.by$localhost$[178.122.215.249]:34545P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3684id=858036656EBA9427FBFEB70FFB55C5E4@whatsup2013.chT="LonelyPolina"fordiabgonzales@yahoo.comwilliamhelmes@yahoo.com2020-01-2123:17:571iu1qO-0005L9-Dg\<=info@whatsup2013.chH=$localhost$[197.48.48.152]:44076P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3426id=D0D563303BEFC172AEABE25AAE9DEBDF@whatsup2013.chT="LonelyPolina"forjerryscaggs27@gmail.combtn@jvhj.com2020-01-2123:19:451iu1s9-0005QF-BD\<=info@whatsup2013.chH=$localhost$[101.53.249.16]:48189P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3459id=AFAA1C4F4490BE0DD1D49D25D1981166@whatsup2013.chT="LonelyPolina"foraafifarhn@gmail.comchepitopr68@gmail.com2020-01-2123:18:271iu1qs-0005M6-Tr\<=info@whatsup2013.chH=$localhost$[14.207.	2020-01-22 07:00:17
185.176.27.46	attackbots	Port 3331 access denied	2020-01-22 07:00:53
113.173.114.33	attackbots	2020-01-2123:20:061iu1sU-0005Rp-OE\<=info@whatsup2013.chH=mm-249-215-122-178.mgts.dynamic.pppoe.byfly.by$localhost$[178.122.215.249]:34545P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3684id=858036656EBA9427FBFEB70FFB55C5E4@whatsup2013.chT="LonelyPolina"fordiabgonzales@yahoo.comwilliamhelmes@yahoo.com2020-01-2123:17:571iu1qO-0005L9-Dg\<=info@whatsup2013.chH=$localhost$[197.48.48.152]:44076P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3426id=D0D563303BEFC172AEABE25AAE9DEBDF@whatsup2013.chT="LonelyPolina"forjerryscaggs27@gmail.combtn@jvhj.com2020-01-2123:19:451iu1s9-0005QF-BD\<=info@whatsup2013.chH=$localhost$[101.53.249.16]:48189P=esmtpsaX=TLSv1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3459id=AFAA1C4F4490BE0DD1D49D25D1981166@whatsup2013.chT="LonelyPolina"foraafifarhn@gmail.comchepitopr68@gmail.com2020-01-2123:18:271iu1qs-0005M6-Tr\<=info@whatsup2013.chH=$localhost$[14.207.	2020-01-22 06:58:14
182.23.104.231	attackspambots	$f2bV_matches	2020-01-22 06:43:01
137.25.101.102	attack	Jan 21 23:17:58 MainVPS sshd[9970]: Invalid user dick from 137.25.101.102 port 35124 Jan 21 23:17:58 MainVPS sshd[9970]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=137.25.101.102 Jan 21 23:17:58 MainVPS sshd[9970]: Invalid user dick from 137.25.101.102 port 35124 Jan 21 23:18:00 MainVPS sshd[9970]: Failed password for invalid user dick from 137.25.101.102 port 35124 ssh2 Jan 21 23:21:01 MainVPS sshd[15816]: Invalid user nut from 137.25.101.102 port 37044 ...	2020-01-22 06:24:49
54.255.224.84	attack	2020-01-21T22:35:49.206930shield sshd\[11057\]: Invalid user testtest from 54.255.224.84 port 51774 2020-01-21T22:35:49.212637shield sshd\[11057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-54-255-224-84.ap-southeast-1.compute.amazonaws.com 2020-01-21T22:35:51.634460shield sshd\[11057\]: Failed password for invalid user testtest from 54.255.224.84 port 51774 ssh2 2020-01-21T22:43:57.310330shield sshd\[14357\]: Invalid user as from 54.255.224.84 port 45988 2020-01-21T22:43:57.313778shield sshd\[14357\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ec2-54-255-224-84.ap-southeast-1.compute.amazonaws.com	2020-01-22 06:44:40
77.88.47.96	attack	port scan and connect, tcp 80 (http)	2020-01-22 07:01:43
124.156.115.227	attackspambots	Invalid user net from 124.156.115.227 port 51436	2020-01-22 06:51:31
222.186.175.169	attackbotsspam	Jan 21 23:46:58 ArkNodeAT sshd\[8704\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Jan 21 23:47:00 ArkNodeAT sshd\[8704\]: Failed password for root from 222.186.175.169 port 37528 ssh2 Jan 21 23:47:03 ArkNodeAT sshd\[8704\]: Failed password for root from 222.186.175.169 port 37528 ssh2	2020-01-22 06:48:24
202.152.4.75	attackspam	Jan 21 23:20:10 nextcloud sshd\[27728\]: Invalid user recover from 202.152.4.75 Jan 21 23:20:10 nextcloud sshd\[27728\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.152.4.75 Jan 21 23:20:12 nextcloud sshd\[27728\]: Failed password for invalid user recover from 202.152.4.75 port 47162 ssh2 ...	2020-01-22 06:57:13

Recently Reported IPs

94.154.127.73	137.36.204.179	187.188.183.67	159.65.61.66
168.100.188.91	175.200.19.144	106.12.115.29	114.216.70.81
118.170.28.19	177.196.152.153	149.18.58.162	156.227.14.29
1.0.171.2	119.113.246.241	80.87.208.139	103.179.139.77
103.142.140.50	180.183.70.4	52.201.238.33	152.251.185.150