City: unknown
Region: unknown
Country: Lithuania
Internet Service Provider: UAB Baltnetos komunikacijos
Hostname: unknown
Organization: unknown
Usage Type: Data Center/Web Hosting/Transit
| Type | Details | Datetime |
|---|---|---|
| attackbots | Autoban 45.82.34.229 AUTH/CONNECT |
2019-09-14 15:16:15 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.82.34.224 | attackspam | Mar 8 05:44:14 mail.srvfarm.net postfix/smtpd[3234583]: NOQUEUE: reject: RCPT from unknown[45.82.34.224]: 450 4.1.8 |
2020-03-08 18:24:48 |
| 45.82.34.144 | attackspam | Mar 7 05:24:21 mail.srvfarm.net postfix/smtpd[2589509]: NOQUEUE: reject: RCPT from unknown[45.82.34.144]: 450 4.1.8 |
2020-03-07 18:58:40 |
| 45.82.34.191 | attackspambots | Mar 6 05:29:23 mail.srvfarm.net postfix/smtpd[1923012]: NOQUEUE: reject: RCPT from unknown[45.82.34.191]: 450 4.1.8 |
2020-03-06 18:50:39 |
| 45.82.34.238 | attackspambots | Mar 5 05:28:44 web01 postfix/smtpd[25364]: connect from dance.geomaticvista.com[45.82.34.238] Mar 5 05:28:44 web01 policyd-spf[25367]: None; identhostnamey=helo; client-ip=45.82.34.238; helo=dance.premchandsharma.co; envelope-from=x@x Mar 5 05:28:44 web01 policyd-spf[25367]: Pass; identhostnamey=mailfrom; client-ip=45.82.34.238; helo=dance.premchandsharma.co; envelope-from=x@x Mar x@x Mar 5 05:28:44 web01 postfix/smtpd[25364]: disconnect from dance.geomaticvista.com[45.82.34.238] Mar 5 05:32:36 web01 postfix/smtpd[25361]: connect from dance.geomaticvista.com[45.82.34.238] Mar 5 05:32:36 web01 policyd-spf[25366]: None; identhostnamey=helo; client-ip=45.82.34.238; helo=dance.premchandsharma.co; envelope-from=x@x Mar 5 05:32:36 web01 policyd-spf[25366]: Pass; identhostnamey=mailfrom; client-ip=45.82.34.238; helo=dance.premchandsharma.co; envelope-from=x@x Mar x@x Mar 5 05:32:36 web01 postfix/smtpd[25361]: disconnect from dance.geomaticvista.com[45.82.34.238] Mar 5........ ------------------------------- |
2020-03-05 15:59:02 |
| 45.82.34.245 | attackbotsspam | [ER hit] Tried to deliver spam. Already well known. |
2020-01-26 13:53:14 |
| 45.82.34.212 | attack | Autoban 45.82.34.212 AUTH/CONNECT |
2020-01-24 19:16:41 |
| 45.82.34.178 | attackspam | Autoban 45.82.34.178 AUTH/CONNECT |
2020-01-08 20:07:18 |
| 45.82.34.90 | attack | Brute force attempt |
2020-01-08 19:29:55 |
| 45.82.34.85 | attackspambots | Autoban 45.82.34.85 AUTH/CONNECT |
2019-12-29 15:54:00 |
| 45.82.34.74 | attackbotsspam | Email Spam |
2019-12-23 18:28:30 |
| 45.82.34.239 | attackbotsspam | Autoban 45.82.34.239 AUTH/CONNECT |
2019-12-23 02:11:57 |
| 45.82.34.25 | attackbots | Autoban 45.82.34.25 AUTH/CONNECT |
2019-12-13 06:49:31 |
| 45.82.34.251 | attackbots | Autoban 45.82.34.251 AUTH/CONNECT |
2019-12-13 06:49:16 |
| 45.82.34.252 | attack | Autoban 45.82.34.252 AUTH/CONNECT |
2019-12-13 06:48:19 |
| 45.82.34.253 | attack | Autoban 45.82.34.253 AUTH/CONNECT |
2019-12-13 06:47:50 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.82.34.229
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16785
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.82.34.229. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019091400 1800 900 604800 86400
;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Sep 14 15:16:04 CST 2019
;; MSG SIZE rcvd: 116
229.34.82.45.in-addr.arpa domain name pointer plenteous.geomaticvista.com.
Server: 67.207.67.2
Address: 67.207.67.2#53
Non-authoritative answer:
229.34.82.45.in-addr.arpa name = plenteous.geomaticvista.com.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 144.217.161.78 | attackspam | Mar 2 22:52:44 server sshd[581058]: Failed password for invalid user server from 144.217.161.78 port 48422 ssh2 Mar 2 22:58:21 server sshd[583059]: Failed password for invalid user jenkins from 144.217.161.78 port 41484 ssh2 Mar 2 23:02:20 server sshd[584575]: Failed password for invalid user solr from 144.217.161.78 port 42150 ssh2 |
2020-03-03 06:25:09 |
| 41.67.12.191 | attackbotsspam | SMB Server BruteForce Attack |
2020-03-03 06:04:04 |
| 222.186.15.10 | attack | $f2bV_matches |
2020-03-03 05:56:05 |
| 196.194.221.6 | attackspam | Mar 2 23:00:01 iago sshd[16536]: Invalid user admin from 196.194.221.6 Mar 2 23:00:01 iago sshd[16536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.194.221.6 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=196.194.221.6 |
2020-03-03 06:24:20 |
| 189.195.154.210 | attackspam | Honeypot attack, port: 445, PTR: customer-LPAZ-MCA-154-210.megared.net.mx. |
2020-03-03 06:13:33 |
| 117.239.70.229 | attackbots | Unauthorized connection attempt from IP address 117.239.70.229 on Port 445(SMB) |
2020-03-03 05:51:17 |
| 222.186.180.6 | attack | Mar 2 18:55:48 firewall sshd[13087]: Failed password for root from 222.186.180.6 port 24290 ssh2 Mar 2 18:56:03 firewall sshd[13087]: error: maximum authentication attempts exceeded for root from 222.186.180.6 port 24290 ssh2 [preauth] Mar 2 18:56:03 firewall sshd[13087]: Disconnecting: Too many authentication failures [preauth] ... |
2020-03-03 05:57:20 |
| 211.75.65.95 | attackbotsspam | Honeypot attack, port: 81, PTR: 211-75-65-95.HINET-IP.hinet.net. |
2020-03-03 06:04:52 |
| 179.111.217.87 | attackspam | Unauthorized connection attempt from IP address 179.111.217.87 on Port 445(SMB) |
2020-03-03 06:23:06 |
| 222.186.173.215 | attackbotsspam | Mar 2 23:17:01 meumeu sshd[4303]: Failed password for root from 222.186.173.215 port 29478 ssh2 Mar 2 23:17:04 meumeu sshd[4303]: Failed password for root from 222.186.173.215 port 29478 ssh2 Mar 2 23:17:16 meumeu sshd[4303]: error: maximum authentication attempts exceeded for root from 222.186.173.215 port 29478 ssh2 [preauth] ... |
2020-03-03 06:23:58 |
| 220.173.201.6 | attack | SSH authentication failure x 6 reported by Fail2Ban ... |
2020-03-03 05:53:00 |
| 202.96.207.170 | attackspambots | Honeypot attack, port: 445, PTR: PTR record not found |
2020-03-03 06:18:47 |
| 104.131.97.47 | attack | $f2bV_matches |
2020-03-03 05:52:10 |
| 220.246.222.144 | attack | Honeypot attack, port: 5555, PTR: n220246222144.netvigator.com. |
2020-03-03 06:20:43 |
| 149.202.3.113 | attack | 2020-03-02T22:55:38.037132vfs-server-01 sshd\[27891\]: Invalid user user from 149.202.3.113 port 53806 2020-03-02T22:59:02.956746vfs-server-01 sshd\[28026\]: Invalid user ubuntu from 149.202.3.113 port 51578 2020-03-02T23:02:27.232697vfs-server-01 sshd\[28175\]: Invalid user admin from 149.202.3.113 port 49348 |
2020-03-03 06:17:20 |