45.71.244.2 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: OpenNet Telecom e Informatica Eireli - ME

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Jun 30 15:20:08 ubuntu-2gb-nbg1-dc3-1 sshd[5677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.71.244.2 Jun 30 15:20:10 ubuntu-2gb-nbg1-dc3-1 sshd[5677]: Failed password for invalid user mysql1 from 45.71.244.2 port 39754 ssh2 ...	2019-07-01 02:11:34
attackspam	20 attempts against mh-ssh on flow.magehost.pro	2019-06-24 05:34:58

Type

Details

Datetime

attackspam

Jun 30 15:20:08 ubuntu-2gb-nbg1-dc3-1 sshd[5677]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.71.244.2
Jun 30 15:20:10 ubuntu-2gb-nbg1-dc3-1 sshd[5677]: Failed password for invalid user mysql1 from 45.71.244.2 port 39754 ssh2
...

2019-07-01 02:11:34

attackspam

20 attempts against mh-ssh on flow.magehost.pro

2019-06-24 05:34:58

Comments on same subnet:

IP	Type	Details	Datetime
45.71.244.26	attackbotsspam	Mar 30 07:50:06 www1 sshd\[56705\]: Invalid user nmf from 45.71.244.26Mar 30 07:50:08 www1 sshd\[56705\]: Failed password for invalid user nmf from 45.71.244.26 port 47834 ssh2Mar 30 07:54:14 www1 sshd\[57093\]: Invalid user syp from 45.71.244.26Mar 30 07:54:16 www1 sshd\[57093\]: Failed password for invalid user syp from 45.71.244.26 port 50454 ssh2Mar 30 07:58:26 www1 sshd\[57550\]: Invalid user ulx from 45.71.244.26Mar 30 07:58:28 www1 sshd\[57550\]: Failed password for invalid user ulx from 45.71.244.26 port 53058 ssh2 ...	2020-03-30 13:13:10

Type

Details

Datetime

45.71.244.26

attackbotsspam

Mar 30 07:50:06 www1 sshd\[56705\]: Invalid user nmf from 45.71.244.26Mar 30 07:50:08 www1 sshd\[56705\]: Failed password for invalid user nmf from 45.71.244.26 port 47834 ssh2Mar 30 07:54:14 www1 sshd\[57093\]: Invalid user syp from 45.71.244.26Mar 30 07:54:16 www1 sshd\[57093\]: Failed password for invalid user syp from 45.71.244.26 port 50454 ssh2Mar 30 07:58:26 www1 sshd\[57550\]: Invalid user ulx from 45.71.244.26Mar 30 07:58:28 www1 sshd\[57550\]: Failed password for invalid user ulx from 45.71.244.26 port 53058 ssh2
...

2020-03-30 13:13:10

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.71.244.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25486
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.71.244.2.			IN	A

;; AUTHORITY SECTION:
.			1192	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019062301 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jun 24 05:34:53 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 2.244.71.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 2.244.71.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
82.213.241.9	attackbotsspam	Unauthorized connection attempt detected from IP address 82.213.241.9 to port 2220 [J]	2020-01-08 02:24:47
123.201.165.85	attackspam	1578401914 - 01/07/2020 13:58:34 Host: 123.201.165.85/123.201.165.85 Port: 445 TCP Blocked	2020-01-08 02:20:04
45.248.93.134	attackbotsspam	Unauthorized connection attempt detected from IP address 45.248.93.134 to port 2220 [J]	2020-01-08 02:19:09
41.42.189.19	attackspambots	Jan 7 15:28:59 master sshd[18275]: Failed password for invalid user admin from 41.42.189.19 port 40887 ssh2	2020-01-08 02:31:00
181.64.233.187	attack	Jan 7 13:59:11 grey postfix/smtpd\[32475\]: NOQUEUE: reject: RCPT from unknown\[181.64.233.187\]: 554 5.7.1 Service unavailable\; Client host \[181.64.233.187\] blocked using bl.spamcop.net\; Blocked - see https://www.spamcop.net/bl.shtml\?181.64.233.187\; from=\ to=\ proto=ESMTP helo=\<\[181.64.233.187\]\> ...	2020-01-08 02:01:35
50.62.134.196	attack	Jan 7 14:50:16 vps46666688 sshd[32006]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=50.62.134.196 Jan 7 14:50:18 vps46666688 sshd[32006]: Failed password for invalid user router from 50.62.134.196 port 60936 ssh2 ...	2020-01-08 02:06:44
213.167.46.166	attackspam	Unauthorized connection attempt detected from IP address 213.167.46.166 to port 2220 [J]	2020-01-08 02:26:24
49.234.179.127	attackspambots	Unauthorized connection attempt detected from IP address 49.234.179.127 to port 2220 [J]	2020-01-08 02:07:33
49.88.112.113	attackspambots	Jan 7 08:24:53 eddieflores sshd\[2269\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Jan 7 08:24:55 eddieflores sshd\[2269\]: Failed password for root from 49.88.112.113 port 58223 ssh2 Jan 7 08:25:53 eddieflores sshd\[2354\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Jan 7 08:25:55 eddieflores sshd\[2354\]: Failed password for root from 49.88.112.113 port 50532 ssh2 Jan 7 08:29:03 eddieflores sshd\[2619\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root	2020-01-08 02:32:49
60.187.93.244	attack	Brute force SMTP login attempts.	2020-01-08 02:27:47
122.228.19.80	attack	Honeypot hit.	2020-01-08 02:05:21
222.186.175.182	attackbots	Jan 7 18:55:35 mail sshd\[10504\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Jan 7 18:55:37 mail sshd\[10504\]: Failed password for root from 222.186.175.182 port 62036 ssh2 Jan 7 18:55:50 mail sshd\[10504\]: Failed password for root from 222.186.175.182 port 62036 ssh2 ...	2020-01-08 01:58:41
175.126.176.21	attackbotsspam	Unauthorized connection attempt detected from IP address 175.126.176.21 to port 2220 [J]	2020-01-08 02:22:05
117.7.236.58	attack	Unauthorized connection attempt detected from IP address 117.7.236.58 to port 2220 [J]	2020-01-08 02:16:47
93.120.218.126	attackspambots	Jan 7 18:05:42 nextcloud sshd\[25120\]: Invalid user gmx from 93.120.218.126 Jan 7 18:05:42 nextcloud sshd\[25120\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93.120.218.126 Jan 7 18:05:44 nextcloud sshd\[25120\]: Failed password for invalid user gmx from 93.120.218.126 port 42790 ssh2 ...	2020-01-08 02:06:10

Recently Reported IPs

136.56.83.96	192.227.179.30	182.61.185.113	170.245.58.195
201.64.93.214	91.177.117.66	37.144.109.215	95.47.167.31
59.62.17.199	42.175.247.60	119.15.93.42	87.103.206.94
151.185.32.79	177.220.160.130	53.158.111.41	35.226.16.96
102.74.192.29	77.75.77.95	186.94.197.179	206.197.31.243