45.40.57.56 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.40.57.177	attackbots	Sep 30 11:45:37 ntop sshd[32113]: Invalid user rack from 45.40.57.177 port 49372 Sep 30 11:45:39 ntop sshd[32113]: Failed password for invalid user rack from 45.40.57.177 port 49372 ssh2 Sep 30 11:45:40 ntop sshd[32113]: Received disconnect from 45.40.57.177 port 49372:11: Bye Bye [preauth] Sep 30 11:45:40 ntop sshd[32113]: Disconnected from 45.40.57.177 port 49372 [preauth] Sep 30 12:05:55 ntop sshd[1027]: Invalid user oy from 45.40.57.177 port 34426 Sep 30 12:05:57 ntop sshd[1027]: Failed password for invalid user oy from 45.40.57.177 port 34426 ssh2 Sep 30 12:05:57 ntop sshd[1027]: Received disconnect from 45.40.57.177 port 34426:11: Bye Bye [preauth] Sep 30 12:05:57 ntop sshd[1027]: Disconnected from 45.40.57.177 port 34426 [preauth] Sep 30 12:10:19 ntop sshd[1466]: Invalid user tmp from 45.40.57.177 port 47900 Sep 30 12:10:20 ntop sshd[1466]: Failed password for invalid user tmp from 45.40.57.177 port 47900 ssh2 Sep 30 12:10:21 ntop sshd[1466]: Received disconnect ........ -------------------------------	2019-10-01 17:43:02
45.40.57.126	attack	[Aegis] @ 2019-09-06 16:51:11 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2019-09-07 05:11:04

Type

Details

Datetime

45.40.57.177

attackbots

Sep 30 11:45:37 ntop sshd[32113]: Invalid user rack from 45.40.57.177 port 49372
Sep 30 11:45:39 ntop sshd[32113]: Failed password for invalid user rack from 45.40.57.177 port 49372 ssh2
Sep 30 11:45:40 ntop sshd[32113]: Received disconnect from 45.40.57.177 port 49372:11: Bye Bye [preauth]
Sep 30 11:45:40 ntop sshd[32113]: Disconnected from 45.40.57.177 port 49372 [preauth]
Sep 30 12:05:55 ntop sshd[1027]: Invalid user oy from 45.40.57.177 port 34426
Sep 30 12:05:57 ntop sshd[1027]: Failed password for invalid user oy from 45.40.57.177 port 34426 ssh2
Sep 30 12:05:57 ntop sshd[1027]: Received disconnect from 45.40.57.177 port 34426:11: Bye Bye [preauth]
Sep 30 12:05:57 ntop sshd[1027]: Disconnected from 45.40.57.177 port 34426 [preauth]
Sep 30 12:10:19 ntop sshd[1466]: Invalid user tmp from 45.40.57.177 port 47900
Sep 30 12:10:20 ntop sshd[1466]: Failed password for invalid user tmp from 45.40.57.177 port 47900 ssh2
Sep 30 12:10:21 ntop sshd[1466]: Received disconnect ........
-------------------------------

2019-10-01 17:43:02

45.40.57.126

attack

[Aegis] @ 2019-09-06 16:51:11  0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack

2019-09-07 05:11:04

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.40.57.56
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29954
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.40.57.56.			IN	A

;; AUTHORITY SECTION:
.			326	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091500 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 00:44:10 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 56.57.40.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 56.57.40.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.150.78.21	attack	3389BruteforceFW22	2019-08-05 07:34:49
220.134.138.111	attackbots	$f2bV_matches	2019-08-05 07:36:52
171.84.2.31	attackspam	Automatic report - Banned IP Access	2019-08-05 07:11:04
149.56.141.193	attack	ssh failed login	2019-08-05 07:28:20
93.40.197.164	attackbotsspam	Autoban 93.40.197.164 AUTH/CONNECT	2019-08-05 07:17:43
190.9.130.159	attackbots	Aug 5 00:53:48 OPSO sshd\[18825\]: Invalid user fa from 190.9.130.159 port 46174 Aug 5 00:53:48 OPSO sshd\[18825\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.9.130.159 Aug 5 00:53:50 OPSO sshd\[18825\]: Failed password for invalid user fa from 190.9.130.159 port 46174 ssh2 Aug 5 00:58:59 OPSO sshd\[19337\]: Invalid user billing from 190.9.130.159 port 43304 Aug 5 00:58:59 OPSO sshd\[19337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.9.130.159	2019-08-05 07:27:59
92.85.219.205	attack	Autoban 92.85.219.205 AUTH/CONNECT	2019-08-05 07:39:30
40.118.46.159	attackbots	Invalid user jabber from 40.118.46.159 port 60734 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.118.46.159 Failed password for invalid user jabber from 40.118.46.159 port 60734 ssh2 Invalid user noc from 40.118.46.159 port 58356 pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.118.46.159	2019-08-05 06:58:45
46.101.244.155	attack	Aug 4 22:17:25 MK-Soft-VM6 sshd[1497]: Invalid user test from 46.101.244.155 port 56960 Aug 4 22:17:25 MK-Soft-VM6 sshd[1497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.244.155 Aug 4 22:17:27 MK-Soft-VM6 sshd[1497]: Failed password for invalid user test from 46.101.244.155 port 56960 ssh2 ...	2019-08-05 07:14:55
194.37.92.42	attackspambots	Aug 5 01:55:28 server sshd\[4339\]: Invalid user user3 from 194.37.92.42 port 37327 Aug 5 01:55:28 server sshd\[4339\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.37.92.42 Aug 5 01:55:30 server sshd\[4339\]: Failed password for invalid user user3 from 194.37.92.42 port 37327 ssh2 Aug 5 02:00:17 server sshd\[27057\]: User root from 194.37.92.42 not allowed because listed in DenyUsers Aug 5 02:00:17 server sshd\[27057\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.37.92.42 user=root	2019-08-05 07:20:01
23.254.215.14	attackbotsspam	2019-08-05T02:45:42.770761ns1.unifynetsol.net postfix/smtpd\[9853\]: warning: hwsrv-549004.hostwindsdns.com\[23.254.215.14\]: SASL LOGIN authentication failed: authentication failure 2019-08-05T02:45:46.228354ns1.unifynetsol.net postfix/smtpd\[9853\]: warning: hwsrv-549004.hostwindsdns.com\[23.254.215.14\]: SASL LOGIN authentication failed: authentication failure 2019-08-05T02:45:48.908712ns1.unifynetsol.net postfix/smtpd\[9853\]: warning: hwsrv-549004.hostwindsdns.com\[23.254.215.14\]: SASL LOGIN authentication failed: authentication failure 2019-08-05T02:45:51.525504ns1.unifynetsol.net postfix/smtpd\[9853\]: warning: hwsrv-549004.hostwindsdns.com\[23.254.215.14\]: SASL LOGIN authentication failed: authentication failure 2019-08-05T02:45:54.557632ns1.unifynetsol.net postfix/smtpd\[9853\]: warning: hwsrv-549004.hostwindsdns.com\[23.254.215.14\]: SASL LOGIN authentication failed: authentication failure	2019-08-05 07:24:47
93.34.222.103	attack	Autoban 93.34.222.103 AUTH/CONNECT	2019-08-05 07:22:58
198.50.16.33	attackbotsspam	Excessive failed login attempts on port 587	2019-08-05 07:11:58
92.60.235.240	attackspambots	2019-08-04 16:47:36 H=(ppp-240.myzmaj.net) [92.60.235.240]:46767 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) 2019-08-04 16:47:37 H=(ppp-240.myzmaj.net) [92.60.235.240]:46767 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/92.60.235.240) 2019-08-04 16:47:38 H=(ppp-240.myzmaj.net) [92.60.235.240]:46767 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/sbl/query/SBLCSS) ...	2019-08-05 07:43:33
94.11.156.228	attack	Autoban 94.11.156.228 AUTH/CONNECT	2019-08-05 06:53:40

Recently Reported IPs

103.27.222.21	89.151.139.54	45.199.134.139	182.52.231.130
20.68.163.72	179.1.133.33	116.110.1.24	116.23.110.85
112.91.140.156	103.251.65.96	112.91.140.133	23.254.101.140
103.100.235.175	43.142.176.195	101.43.171.231	2a00:5da0:1000:1::49
174.102.17.238	211.223.46.193	50.62.177.106	210.3.113.66