5.45.85.119 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: 3NT Solutions LLP

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Fail2Ban Ban Triggered	2019-08-08 09:39:12

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 5.45.85.119
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 54875
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;5.45.85.119.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080702 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Aug 08 09:39:06 CST 2019
;; MSG SIZE  rcvd: 115

Host info

Host 119.85.45.5.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 119.85.45.5.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
52.224.182.215	attackbotsspam	2020-03-10T03:19:43.360228linuxbox-skyline sshd[78559]: Invalid user maxwell from 52.224.182.215 port 48572 ...	2020-03-11 00:18:51
197.45.175.129	attackbots	port scan and connect, tcp 23 (telnet)	2020-03-11 00:30:44
176.113.115.54	attackspambots	Mar 10 15:42:42 debian-2gb-nbg1-2 kernel: \[6110509.846753\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=176.113.115.54 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=1569 PROTO=TCP SPT=58555 DPT=57406 WINDOW=1024 RES=0x00 SYN URGP=0	2020-03-11 00:03:21
198.108.67.81	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-03-11 00:37:21
31.27.216.108	attackbots	Mar 10 11:36:21 srv-ubuntu-dev3 sshd[88117]: Invalid user wwwadm from 31.27.216.108 Mar 10 11:36:21 srv-ubuntu-dev3 sshd[88117]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.27.216.108 Mar 10 11:36:21 srv-ubuntu-dev3 sshd[88117]: Invalid user wwwadm from 31.27.216.108 Mar 10 11:36:23 srv-ubuntu-dev3 sshd[88117]: Failed password for invalid user wwwadm from 31.27.216.108 port 44714 ssh2 Mar 10 11:40:34 srv-ubuntu-dev3 sshd[88705]: Invalid user tmp from 31.27.216.108 Mar 10 11:40:34 srv-ubuntu-dev3 sshd[88705]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.27.216.108 Mar 10 11:40:34 srv-ubuntu-dev3 sshd[88705]: Invalid user tmp from 31.27.216.108 Mar 10 11:40:36 srv-ubuntu-dev3 sshd[88705]: Failed password for invalid user tmp from 31.27.216.108 port 60210 ssh2 Mar 10 11:44:47 srv-ubuntu-dev3 sshd[89297]: Invalid user tss from 31.27.216.108 ...	2020-03-11 00:19:07
117.121.38.246	attackspam	Invalid user tsuji from 117.121.38.246 port 39242	2020-03-11 00:01:38
5.189.167.205	attackbotsspam	Mar 10 09:34:07 askasleikir sshd[151289]: Failed password for root from 5.189.167.205 port 35980 ssh2 Mar 10 09:36:14 askasleikir sshd[151401]: Failed password for invalid user 01 from 5.189.167.205 port 39100 ssh2 Mar 10 09:38:22 askasleikir sshd[151523]: Failed password for root from 5.189.167.205 port 42442 ssh2	2020-03-11 00:11:12
119.122.214.66	attackbots	2020-03-10T09:19:59.888830 X postfix/smtpd[560915]: NOQUEUE: reject: RCPT from unknown[119.122.214.66]: 554 5.7.1 Service unavailable; Client host [119.122.214.66] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/119.122.214.66; from= to= proto=ESMTP helo=	2020-03-11 00:06:49
14.161.4.254	attack	Port probing on unauthorized port 445	2020-03-11 00:16:49
223.71.167.165	attackspambots	223.71.167.165 was recorded 23 times by 5 hosts attempting to connect to the following ports: 113,4000,2638,11001,2123,5060,1177,5601,3050,3749,9010,53,50100,8545,8087,4443,41794,1911,7443,995,4899,5357,9051. Incident counter (4h, 24h, all-time): 23, 124, 8871	2020-03-11 00:33:09
51.161.93.115	attackbots	SMTP brute force ...	2020-03-11 00:07:35
159.65.166.236	attackspam	Fail2Ban Ban Triggered	2020-03-11 00:37:47
182.52.28.179	attackspam	Automatic report - SSH Brute-Force Attack	2020-03-11 00:35:03
27.50.20.243	attackspam	Unauthorised access (Mar 10) SRC=27.50.20.243 LEN=52 PREC=0x20 TTL=117 ID=4041 DF TCP DPT=1433 WINDOW=8192 SYN	2020-03-11 00:28:06
142.44.160.173	attack	Mar 10 17:14:32 vmd26974 sshd[32643]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.44.160.173 Mar 10 17:14:34 vmd26974 sshd[32643]: Failed password for invalid user informix from 142.44.160.173 port 39500 ssh2 ...	2020-03-11 00:39:22

Recently Reported IPs

78.11.53.58	46.34.221.70	120.198.76.23	119.132.66.94
134.73.161.130	46.158.31.128	93.159.215.2	90.196.44.39
192.81.218.114	49.69.126.65	131.100.78.205	188.162.195.200
131.100.76.233	93.113.111.197	52.208.42.190	106.15.58.250
24.177.50.57	138.122.38.164	191.53.251.74	103.9.246.34