45.92.135.42 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Spain

Internet Service Provider: Bandawifi SL

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Unauthorised access (Mar 20) SRC=45.92.135.42 LEN=44 TTL=50 ID=28551 TCP DPT=8080 WINDOW=54337 SYN	2020-03-20 20:15:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.92.135.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29400
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.92.135.42.			IN	A

;; AUTHORITY SECTION:
.			392	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020032000 1800 900 604800 86400

;; Query time: 100 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 20 20:15:29 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 42.135.92.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 42.135.92.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
74.122.121.120	attackspam	Unauthorized connection attempt detected from IP address 74.122.121.120 to port 445	2020-04-07 12:36:28
87.246.7.13	attack	Apr 7 05:54:10 relay postfix/smtpd\[23685\]: warning: unknown\[87.246.7.13\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 05:54:16 relay postfix/smtpd\[29668\]: warning: unknown\[87.246.7.13\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 05:54:26 relay postfix/smtpd\[23685\]: warning: unknown\[87.246.7.13\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 05:54:48 relay postfix/smtpd\[23796\]: warning: unknown\[87.246.7.13\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 7 05:54:54 relay postfix/smtpd\[29668\]: warning: unknown\[87.246.7.13\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-07 12:29:51
61.6.244.146	attackspam	(imapd) Failed IMAP login from 61.6.244.146 (BN/Brunei/146-244.adsl.static.espeed.com.bn): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Apr 7 08:24:10 ir1 dovecot[566034]: imap-login: Disconnected (auth failed, 1 attempts in 5 secs): user=, method=PLAIN, rip=61.6.244.146, lip=5.63.12.44, TLS, session=	2020-04-07 13:02:59
211.157.179.38	attackspambots	Apr 7 05:54:32 ourumov-web sshd\[30008\]: Invalid user scaner from 211.157.179.38 port 52875 Apr 7 05:54:32 ourumov-web sshd\[30008\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.157.179.38 Apr 7 05:54:34 ourumov-web sshd\[30008\]: Failed password for invalid user scaner from 211.157.179.38 port 52875 ssh2 ...	2020-04-07 12:48:11
205.147.100.121	attackspambots	$f2bV_matches	2020-04-07 13:09:06
82.196.4.66	attackbots	Dec 6 14:04:36 meumeu sshd[18320]: Failed password for mail from 82.196.4.66 port 44708 ssh2 Dec 6 14:10:40 meumeu sshd[19279]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.196.4.66 Dec 6 14:10:42 meumeu sshd[19279]: Failed password for invalid user nfs from 82.196.4.66 port 59262 ssh2 ...	2020-04-07 12:47:38
45.125.65.35	attackspambots	Rude login attack (24 tries in 1d)	2020-04-07 12:57:48
208.64.33.118	attackspambots	Apr 6 21:45:36 server1 sshd\[5366\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.64.33.118 Apr 6 21:45:38 server1 sshd\[5366\]: Failed password for invalid user admin from 208.64.33.118 port 42496 ssh2 Apr 6 21:50:19 server1 sshd\[6700\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.64.33.118 user=ubuntu Apr 6 21:50:21 server1 sshd\[6700\]: Failed password for ubuntu from 208.64.33.118 port 53106 ssh2 Apr 6 21:54:56 server1 sshd\[7946\]: Invalid user demo from 208.64.33.118 ...	2020-04-07 12:25:47
190.25.232.4	attackbots	Apr 7 05:54:33 santamaria sshd\[16661\]: Invalid user deploy from 190.25.232.4 Apr 7 05:54:33 santamaria sshd\[16661\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.25.232.4 Apr 7 05:54:35 santamaria sshd\[16661\]: Failed password for invalid user deploy from 190.25.232.4 port 44785 ssh2 ...	2020-04-07 12:45:20
186.234.80.18	attack	186.234.80.18 - - [07/Apr/2020:05:54:21 +0200] "GET /wp-login.php HTTP/1.1" 200 5702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 186.234.80.18 - - [07/Apr/2020:05:54:23 +0200] "POST /wp-login.php HTTP/1.1" 200 6601 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 186.234.80.18 - - [07/Apr/2020:05:54:24 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-07 12:56:22
163.172.230.4	attackbotsspam	[2020-04-07 00:08:17] NOTICE[12114][C-0000251e] chan_sip.c: Call from '' (163.172.230.4:60891) to extension '44444011972592277524' rejected because extension not found in context 'public'. [2020-04-07 00:08:17] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-07T00:08:17.955-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="44444011972592277524",SessionID="0x7f020c04b958",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/163.172.230.4/60891",ACLName="no_extension_match" [2020-04-07 00:12:32] NOTICE[12114][C-00002526] chan_sip.c: Call from '' (163.172.230.4:51301) to extension '55011972592277524' rejected because extension not found in context 'public'. [2020-04-07 00:12:32] SECURITY[12128] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-04-07T00:12:32.539-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="55011972592277524",SessionID="0x7f020c04b958",LocalAddress="IPV4/UDP/192.168.244.6/5060",Remote ...	2020-04-07 12:26:10
106.13.7.186	attackbots	Apr 7 05:58:52 ns392434 sshd[3608]: Invalid user deploy from 106.13.7.186 port 43500 Apr 7 05:58:52 ns392434 sshd[3608]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.7.186 Apr 7 05:58:52 ns392434 sshd[3608]: Invalid user deploy from 106.13.7.186 port 43500 Apr 7 05:58:54 ns392434 sshd[3608]: Failed password for invalid user deploy from 106.13.7.186 port 43500 ssh2 Apr 7 06:03:55 ns392434 sshd[3860]: Invalid user postgres from 106.13.7.186 port 58300 Apr 7 06:03:55 ns392434 sshd[3860]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.7.186 Apr 7 06:03:55 ns392434 sshd[3860]: Invalid user postgres from 106.13.7.186 port 58300 Apr 7 06:03:57 ns392434 sshd[3860]: Failed password for invalid user postgres from 106.13.7.186 port 58300 ssh2 Apr 7 06:07:16 ns392434 sshd[4075]: Invalid user ubuntu from 106.13.7.186 port 35038	2020-04-07 12:52:01
124.88.37.161	attack	k+ssh-bruteforce	2020-04-07 13:03:54
189.54.112.76	spambotsattackproxynormal	Open link	2020-04-07 12:50:18
31.168.90.96	attackspambots	Automatic report - Port Scan Attack	2020-04-07 12:37:55

Recently Reported IPs

235.180.183.244	114.30.248.23	78.8.154.170	220.174.73.59
175.6.35.93	91.241.144.21	42.114.30.13	185.45.74.202
41.238.240.43	36.72.190.150	27.73.113.79	180.246.208.198
115.73.214.63	27.65.100.50	114.215.127.140	113.178.252.90
103.20.188.212	201.210.23.123	215.108.110.139	134.255.158.236