45.40.57.102 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.40.57.177	attackbots	Sep 30 11:45:37 ntop sshd[32113]: Invalid user rack from 45.40.57.177 port 49372 Sep 30 11:45:39 ntop sshd[32113]: Failed password for invalid user rack from 45.40.57.177 port 49372 ssh2 Sep 30 11:45:40 ntop sshd[32113]: Received disconnect from 45.40.57.177 port 49372:11: Bye Bye [preauth] Sep 30 11:45:40 ntop sshd[32113]: Disconnected from 45.40.57.177 port 49372 [preauth] Sep 30 12:05:55 ntop sshd[1027]: Invalid user oy from 45.40.57.177 port 34426 Sep 30 12:05:57 ntop sshd[1027]: Failed password for invalid user oy from 45.40.57.177 port 34426 ssh2 Sep 30 12:05:57 ntop sshd[1027]: Received disconnect from 45.40.57.177 port 34426:11: Bye Bye [preauth] Sep 30 12:05:57 ntop sshd[1027]: Disconnected from 45.40.57.177 port 34426 [preauth] Sep 30 12:10:19 ntop sshd[1466]: Invalid user tmp from 45.40.57.177 port 47900 Sep 30 12:10:20 ntop sshd[1466]: Failed password for invalid user tmp from 45.40.57.177 port 47900 ssh2 Sep 30 12:10:21 ntop sshd[1466]: Received disconnect ........ -------------------------------	2019-10-01 17:43:02
45.40.57.126	attack	[Aegis] @ 2019-09-06 16:51:11 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-09-07 05:11:04

Type

Details

Datetime

45.40.57.177

attackbots

Sep 30 11:45:37 ntop sshd[32113]: Invalid user rack from 45.40.57.177 port 49372
Sep 30 11:45:39 ntop sshd[32113]: Failed password for invalid user rack from 45.40.57.177 port 49372 ssh2
Sep 30 11:45:40 ntop sshd[32113]: Received disconnect from 45.40.57.177 port 49372:11: Bye Bye [preauth]
Sep 30 11:45:40 ntop sshd[32113]: Disconnected from 45.40.57.177 port 49372 [preauth]
Sep 30 12:05:55 ntop sshd[1027]: Invalid user oy from 45.40.57.177 port 34426
Sep 30 12:05:57 ntop sshd[1027]: Failed password for invalid user oy from 45.40.57.177 port 34426 ssh2
Sep 30 12:05:57 ntop sshd[1027]: Received disconnect from 45.40.57.177 port 34426:11: Bye Bye [preauth]
Sep 30 12:05:57 ntop sshd[1027]: Disconnected from 45.40.57.177 port 34426 [preauth]
Sep 30 12:10:19 ntop sshd[1466]: Invalid user tmp from 45.40.57.177 port 47900
Sep 30 12:10:20 ntop sshd[1466]: Failed password for invalid user tmp from 45.40.57.177 port 47900 ssh2
Sep 30 12:10:21 ntop sshd[1466]: Received disconnect ........
-------------------------------

2019-10-01 17:43:02

45.40.57.126

attack

[Aegis] @ 2019-09-06 16:51:11  0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack

2019-09-07 05:11:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.40.57.102
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58352
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.40.57.102.			IN	A

;; AUTHORITY SECTION:
.			167	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022101101 1800 900 604800 86400

;; Query time: 139 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Oct 12 02:39:51 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 102.57.40.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 102.57.40.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
151.84.135.188	attackspambots	Unauthorized connection attempt detected from IP address 151.84.135.188 to port 2220 [J]	2020-01-08 08:53:29
157.230.251.115	attackspam	Unauthorized connection attempt detected from IP address 157.230.251.115 to port 2220 [J]	2020-01-08 09:16:03
189.11.248.18	attack	Unauthorized connection attempt from IP address 189.11.248.18 on Port 445(SMB)	2020-01-08 09:23:04
5.39.76.12	attackbots	Jan 7 21:41:00 XXX sshd[24692]: Invalid user teamspeak from 5.39.76.12 port 34700	2020-01-08 09:06:28
196.188.243.246	attackspambots	Unauthorized connection attempt from IP address 196.188.243.246 on Port 445(SMB)	2020-01-08 09:13:55
200.123.0.114	attackbotsspam	Unauthorized connection attempt from IP address 200.123.0.114 on Port 445(SMB)	2020-01-08 09:21:36
63.80.184.111	attackspambots	Jan 7 22:15:24 grey postfix/smtpd\[19498\]: NOQUEUE: reject: RCPT from giraffe.sapuxfiori.com\[63.80.184.111\]: 554 5.7.1 Service unavailable\; Client host \[63.80.184.111\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[63.80.184.111\]\; from=\ to=\ proto=ESMTP helo=\ ...	2020-01-08 09:19:47
80.226.132.184	attack	2020-01-07T22:15:53.5794851240 sshd\[32241\]: Invalid user admin from 80.226.132.184 port 60976 2020-01-07T22:15:53.6580681240 sshd\[32241\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.226.132.184 2020-01-07T22:15:55.6530581240 sshd\[32241\]: Failed password for invalid user admin from 80.226.132.184 port 60976 ssh2 ...	2020-01-08 08:51:29
96.255.241.174	attackbotsspam	Unauthorized connection attempt from IP address 96.255.241.174 on Port 445(SMB)	2020-01-08 08:46:37
81.157.71.63	attackbots	Unauthorized connection attempt from IP address 81.157.71.63 on Port 445(SMB)	2020-01-08 09:09:28
182.61.43.179	attackbotsspam	...	2020-01-08 09:23:30
45.136.108.123	attackspam	Jan 8 01:48:19 debian-2gb-nbg1-2 kernel: \[703815.414705\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.136.108.123 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=30620 PROTO=TCP SPT=59431 DPT=6573 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-08 08:53:05
189.22.75.74	attackspam	Unauthorized connection attempt from IP address 189.22.75.74 on Port 445(SMB)	2020-01-08 09:15:24
190.207.93.223	attackspambots	Unauthorized connection attempt from IP address 190.207.93.223 on Port 445(SMB)	2020-01-08 09:05:31
164.132.47.139	attackbotsspam	Unauthorized connection attempt detected from IP address 164.132.47.139 to port 2220 [J]	2020-01-08 09:16:31

Recently Reported IPs

94.154.127.73	137.36.204.179	187.188.183.67	159.65.61.66
168.100.188.91	175.200.19.144	106.12.115.29	114.216.70.81
118.170.28.19	177.196.152.153	149.18.58.162	156.227.14.29
1.0.171.2	119.113.246.241	80.87.208.139	103.179.139.77
103.142.140.50	180.183.70.4	52.201.238.33	152.251.185.150