45.79.91.80 - IPInfo

Basic Info

City: Fremont

Region: California

Country: United States

Internet Service Provider: Linode LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	[Fri Apr 24 18:36:18 2020] - DDoS Attack From IP: 45.79.91.80 Port: 6667	2020-04-28 07:21:27

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.79.91.80
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39376
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.79.91.80.			IN	A

;; AUTHORITY SECTION:
.			583	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042702 1800 900 604800 86400

;; Query time: 130 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 28 07:21:24 CST 2020
;; MSG SIZE  rcvd: 115

Host info

80.91.79.45.in-addr.arpa domain name pointer bouncycastle.snoonet.org.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
80.91.79.45.in-addr.arpa	name = bouncycastle.snoonet.org.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
75.44.16.251	attackbotsspam	Jun 1 15:51:38 Ubuntu-1404-trusty-64-minimal sshd\[6381\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.44.16.251 user=root Jun 1 15:51:40 Ubuntu-1404-trusty-64-minimal sshd\[6381\]: Failed password for root from 75.44.16.251 port 35488 ssh2 Jun 1 16:00:22 Ubuntu-1404-trusty-64-minimal sshd\[13215\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.44.16.251 user=root Jun 1 16:00:24 Ubuntu-1404-trusty-64-minimal sshd\[13215\]: Failed password for root from 75.44.16.251 port 35978 ssh2 Jun 1 16:06:39 Ubuntu-1404-trusty-64-minimal sshd\[16937\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.44.16.251 user=root	2020-06-02 03:51:38
223.207.242.183	attackspam	Unauthorized connection attempt from IP address 223.207.242.183 on Port 445(SMB)	2020-06-02 03:25:07
187.191.96.60	attackspam	5x Failed Password	2020-06-02 03:55:01
218.232.135.95	attackspambots	Jun 1 13:13:53 NPSTNNYC01T sshd[1076]: Failed password for root from 218.232.135.95 port 52666 ssh2 Jun 1 13:15:30 NPSTNNYC01T sshd[1246]: Failed password for root from 218.232.135.95 port 46556 ssh2 ...	2020-06-02 03:38:45
171.5.227.133	attack	Unauthorized connection attempt from IP address 171.5.227.133 on Port 445(SMB)	2020-06-02 03:17:38
103.145.12.132	attack	ET SCAN Sipvicious Scan - port: 5060 proto: UDP cat: Attempted Information Leak	2020-06-02 03:34:58
79.113.91.204	attack	php WP PHPmyadamin ABUSE blocked for 12h	2020-06-02 03:30:27
198.71.238.22	attackspam	ENG,WP GET /home/wp-includes/wlwmanifest.xml	2020-06-02 03:41:33
71.189.47.10	attackbots	Jun 1 20:55:52 PorscheCustomer sshd[26480]: Failed password for root from 71.189.47.10 port 36300 ssh2 Jun 1 20:59:36 PorscheCustomer sshd[26616]: Failed password for root from 71.189.47.10 port 47019 ssh2 ...	2020-06-02 03:52:06
163.172.69.13	attack	163.172.69.13 - - [01/Jun/2020:15:35:00 +0200] "GET /wp-login.php HTTP/1.1" 200 6614 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 163.172.69.13 - - [01/Jun/2020:15:35:01 +0200] "POST /wp-login.php HTTP/1.1" 200 6883 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 163.172.69.13 - - [01/Jun/2020:17:03:01 +0200] "GET /wp-login.php HTTP/1.1" 200 6042 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-02 03:26:26
193.112.135.146	attack	fail2ban -- 193.112.135.146 ...	2020-06-02 03:36:57
111.231.54.212	attackspam	2020-06-01T13:30:47.177521shield sshd\[12910\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.212 user=root 2020-06-01T13:30:48.915270shield sshd\[12910\]: Failed password for root from 111.231.54.212 port 54246 ssh2 2020-06-01T13:34:27.806530shield sshd\[13624\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.212 user=root 2020-06-01T13:34:30.081022shield sshd\[13624\]: Failed password for root from 111.231.54.212 port 38120 ssh2 2020-06-01T13:38:15.747456shield sshd\[14315\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.54.212 user=root	2020-06-02 03:39:43
208.100.26.241	attack	firewall-block, port(s): 3389/tcp, 4040/tcp, 5000/tcp	2020-06-02 03:25:56
173.232.62.66	attackspam	Spam	2020-06-02 03:24:23
167.71.229.149	attack	$f2bV_matches	2020-06-02 03:28:06

Recently Reported IPs

101.81.39.92	97.102.183.218	65.73.223.90	122.52.225.114
200.241.126.126	35.177.144.230	70.158.182.132	183.88.5.33
216.148.156.69	221.69.68.178	34.96.149.195	188.242.140.21
66.176.58.148	91.144.89.42	163.247.77.82	1.32.250.67
63.197.232.249	91.219.48.25	98.203.197.18	206.211.226.152