45.93.20.152 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: Scanifi LLC

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	firewall-block, port(s): 16646/tcp	2019-11-28 20:55:53

Comments on same subnet:

IP	Type	Details	Datetime
45.93.20.165	attackspam	" "	2019-12-28 00:33:47
45.93.20.156	attack	firewall-block, port(s): 27973/tcp	2019-12-27 15:09:30
45.93.20.171	attackspam	Dec 27 05:57:33 debian-2gb-nbg1-2 kernel: \[1075378.769969\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.93.20.171 DST=195.201.40.59 LEN=40 TOS=0x08 PREC=0x00 TTL=241 ID=29493 PROTO=TCP SPT=61000 DPT=4031 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-27 13:10:40
45.93.20.186	attack	firewall-block, port(s): 8943/tcp	2019-12-26 14:49:12
45.93.20.156	attackbots	firewall-block, port(s): 45954/tcp	2019-12-26 08:11:09
45.93.20.161	attackbotsspam	56104/tcp 38252/tcp 33404/tcp... [2019-11-28/12-25]22pkt,22pt.(tcp)	2019-12-25 21:15:52
45.93.20.181	attack	Fail2Ban Ban Triggered	2019-12-25 15:36:33
45.93.20.180	attack	Unauthorized connection attempt detected from IP address 45.93.20.180 to port 11754	2019-12-25 13:24:34
45.93.20.154	attack	12/24/2019-05:30:20.456820 45.93.20.154 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 43	2019-12-24 19:23:01
45.93.20.143	attackbotsspam	" "	2019-12-24 08:44:52
45.93.20.138	attackbots	56208/tcp 24179/tcp 18281/tcp... [2019-11-27/12-23]19pkt,19pt.(tcp)	2019-12-24 06:23:02
45.93.20.184	attackbots	" "	2019-12-24 06:19:05
45.93.20.187	attackbotsspam	firewall-block, port(s): 31502/tcp	2019-12-23 19:15:30
45.93.20.133	attackbots	" "	2019-12-23 08:51:29
45.93.20.190	attack	Unauthorized connection attempt detected from IP address 45.93.20.190 to port 6724	2019-12-23 08:47:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.93.20.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37542
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.93.20.152.			IN	A

;; AUTHORITY SECTION:
.			358	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112800 1800 900 604800 86400

;; Query time: 229 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Nov 28 20:55:46 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 152.20.93.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 152.20.93.45.in-addr.arpa.: No answer

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.247.108.220	attackbotsspam	\[2019-09-16 19:03:27\] NOTICE\[20685\] chan_sip.c: Registration from '"8888" \' failed for '77.247.108.220:5132' - Wrong password \[2019-09-16 19:03:27\] SECURITY\[20693\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-16T19:03:27.015-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="8888",SessionID="0x7f8a6c3a3df8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.108.220/5132",Challenge="0e8200cc",ReceivedChallenge="0e8200cc",ReceivedHash="f77465a3550eae0fd1e7973d8083ab64" \[2019-09-16 19:03:27\] NOTICE\[20685\] chan_sip.c: Registration from '"8888" \' failed for '77.247.108.220:5132' - Wrong password \[2019-09-16 19:03:27\] SECURITY\[20693\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-16T19:03:27.215-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="8888",SessionID="0x7f8a6c3857d8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="	2019-09-17 07:15:55
216.144.251.86	attack	Reported by AbuseIPDB proxy server.	2019-09-17 07:25:58
77.35.191.75	attackspam	Sep 16 21:14:02 web2 sshd[25737]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=77.35.191.75 Sep 16 21:14:04 web2 sshd[25737]: Failed password for invalid user user from 77.35.191.75 port 4789 ssh2	2019-09-17 07:18:06
49.149.96.14	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 18:29:58,362 INFO [amun_request_handler] PortScan Detected on Port: 445 (49.149.96.14)	2019-09-17 06:46:08
177.74.126.188	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 18:22:18,767 INFO [amun_request_handler] PortScan Detected on Port: 445 (177.74.126.188)	2019-09-17 07:09:20
178.32.105.63	attackspambots	Sep 16 22:55:37 pornomens sshd\[30511\]: Invalid user archuser from 178.32.105.63 port 48532 Sep 16 22:55:37 pornomens sshd\[30511\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.32.105.63 Sep 16 22:55:38 pornomens sshd\[30511\]: Failed password for invalid user archuser from 178.32.105.63 port 48532 ssh2 ...	2019-09-17 07:11:33
200.105.183.118	attackspambots	Sep 17 01:11:45 localhost sshd\[17500\]: Invalid user wpyan from 200.105.183.118 port 48321 Sep 17 01:11:45 localhost sshd\[17500\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.105.183.118 Sep 17 01:11:47 localhost sshd\[17500\]: Failed password for invalid user wpyan from 200.105.183.118 port 48321 ssh2	2019-09-17 07:17:47
106.12.134.23	attack	Sep 16 21:23:44 ns3110291 sshd\[26340\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.23 user=libuuid Sep 16 21:23:47 ns3110291 sshd\[26340\]: Failed password for libuuid from 106.12.134.23 port 20777 ssh2 Sep 16 21:27:58 ns3110291 sshd\[26461\]: Invalid user m1 from 106.12.134.23 Sep 16 21:27:58 ns3110291 sshd\[26461\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.134.23 Sep 16 21:28:01 ns3110291 sshd\[26461\]: Failed password for invalid user m1 from 106.12.134.23 port 59923 ssh2 ...	2019-09-17 06:59:43
159.65.158.63	attackbots	Sep 17 00:59:00 vps647732 sshd[3477]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.65.158.63 Sep 17 00:59:02 vps647732 sshd[3477]: Failed password for invalid user server from 159.65.158.63 port 55030 ssh2 ...	2019-09-17 07:14:50
113.161.72.117	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-16 18:29:01,266 INFO [amun_request_handler] PortScan Detected on Port: 445 (113.161.72.117)	2019-09-17 06:48:33
14.186.62.83	attackbots	Chat Spam	2019-09-17 07:05:32
112.186.77.86	attackbots	Sep 16 20:53:56 host sshd\[56930\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.186.77.86 user=root Sep 16 20:53:58 host sshd\[56930\]: Failed password for root from 112.186.77.86 port 48168 ssh2 ...	2019-09-17 07:21:12
176.111.101.235	attack	[portscan] Port scan	2019-09-17 07:27:33
104.206.128.74	attack	Portscan or hack attempt detected by psad/fwsnort	2019-09-17 06:44:58
132.232.4.33	attackspam	2019-09-16T22:37:36.934324lon01.zurich-datacenter.net sshd\[16344\]: Invalid user changeme from 132.232.4.33 port 36748 2019-09-16T22:37:36.938196lon01.zurich-datacenter.net sshd\[16344\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.4.33 2019-09-16T22:37:38.941490lon01.zurich-datacenter.net sshd\[16344\]: Failed password for invalid user changeme from 132.232.4.33 port 36748 ssh2 2019-09-16T22:42:31.373436lon01.zurich-datacenter.net sshd\[16435\]: Invalid user Mirva from 132.232.4.33 port 52440 2019-09-16T22:42:31.379522lon01.zurich-datacenter.net sshd\[16435\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.4.33 ...	2019-09-17 07:12:03

Recently Reported IPs

125.6.129.206	140.7.20.130	62.99.141.42	54.190.87.11
2.135.222.114	190.128.135.130	114.99.18.153	41.34.239.91
1.177.63.25	187.162.42.65	185.71.82.51	87.236.22.71
48.225.84.84	106.13.102.73	146.25.127.104	194.44.50.104
45.159.230.129	249.89.209.169	42.249.35.102	72.203.66.222