79.45.56.55 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: Telecom Italia S.p.A.

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 79.45.56.55 to port 23	2019-12-30 02:23:26

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 79.45.56.55
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 10559
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;79.45.56.55.			IN	A

;; AUTHORITY SECTION:
.			573	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019122900 1800 900 604800 86400

;; Query time: 292 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 30 02:23:23 CST 2019
;; MSG SIZE  rcvd: 115

Host info

55.56.45.79.in-addr.arpa domain name pointer host55-56-dynamic.45-79-r.retail.telecomitalia.it.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
55.56.45.79.in-addr.arpa	name = host55-56-dynamic.45-79-r.retail.telecomitalia.it.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
60.167.182.218	attack	SSH brute force attempt	2020-06-22 19:56:16
14.63.225.142	attackspambots	Jun 22 02:04:21 web1 sshd\[27171\]: Invalid user backups from 14.63.225.142 Jun 22 02:04:21 web1 sshd\[27171\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.225.142 Jun 22 02:04:23 web1 sshd\[27171\]: Failed password for invalid user backups from 14.63.225.142 port 56612 ssh2 Jun 22 02:08:09 web1 sshd\[27733\]: Invalid user ashok from 14.63.225.142 Jun 22 02:08:09 web1 sshd\[27733\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.225.142	2020-06-22 20:22:30
58.56.140.62	attackspambots	bruteforce detected	2020-06-22 20:13:20
98.246.134.147	attackspambots	SSH bruteforce	2020-06-22 20:05:59
153.126.142.232	attackspam	Jun 22 11:03:20 vps687878 sshd\[31810\]: Invalid user wwz from 153.126.142.232 port 58394 Jun 22 11:03:20 vps687878 sshd\[31810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.126.142.232 Jun 22 11:03:22 vps687878 sshd\[31810\]: Failed password for invalid user wwz from 153.126.142.232 port 58394 ssh2 Jun 22 11:05:58 vps687878 sshd\[31992\]: Invalid user seven from 153.126.142.232 port 35134 Jun 22 11:05:58 vps687878 sshd\[31992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.126.142.232 ...	2020-06-22 19:59:09
182.56.89.80	attackbots	Jun 22 15:02:17 lukav-desktop sshd\[17332\]: Invalid user raoul from 182.56.89.80 Jun 22 15:02:17 lukav-desktop sshd\[17332\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.56.89.80 Jun 22 15:02:18 lukav-desktop sshd\[17332\]: Failed password for invalid user raoul from 182.56.89.80 port 43572 ssh2 Jun 22 15:08:19 lukav-desktop sshd\[21338\]: Invalid user db2fenc1 from 182.56.89.80 Jun 22 15:08:19 lukav-desktop sshd\[21338\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.56.89.80	2020-06-22 20:10:12
218.92.0.185	attack	Unauthorised connection attempt detected at AUO FR1 NODE2. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-06-22 20:26:22
206.189.98.225	attack	firewall-block, port(s): 26577/tcp	2020-06-22 20:00:27
182.61.109.24	attackbots	firewall-block, port(s): 5280/tcp	2020-06-22 19:52:50
192.35.168.109	attackspam	TCP (SYN) 192.35.168.109:48512 -> port 11211, len 40	2020-06-22 20:03:14
185.200.118.73	attack	ET DROP Dshield Block Listed Source group 1 - port: 3389 proto: TCP cat: Misc Attack	2020-06-22 20:03:52
43.226.150.113	attackspambots	Jun 22 02:04:04 web1 sshd\[27140\]: Invalid user webmaster from 43.226.150.113 Jun 22 02:04:04 web1 sshd\[27140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.150.113 Jun 22 02:04:06 web1 sshd\[27140\]: Failed password for invalid user webmaster from 43.226.150.113 port 37846 ssh2 Jun 22 02:08:14 web1 sshd\[27751\]: Invalid user sinus from 43.226.150.113 Jun 22 02:08:14 web1 sshd\[27751\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.226.150.113	2020-06-22 20:15:24
203.130.255.2	attack	Jun 22 13:52:25 fhem-rasp sshd[1710]: Disconnected from invalid user matt 203.130.255.2 port 46748 [preauth] Jun 22 14:08:18 fhem-rasp sshd[8993]: Invalid user yxj from 203.130.255.2 port 48324 ...	2020-06-22 20:12:25
178.210.174.186	attackbotsspam	Automatic report - XMLRPC Attack	2020-06-22 19:52:13
139.99.113.17	attackspam	Port Scan detected! ...	2020-06-22 20:15:40

Recently Reported IPs

201.214.96.241	201.143.239.183	200.236.122.95	195.117.107.150
195.82.113.218	194.54.180.254	191.211.102.134	191.23.63.103
189.188.151.59	189.111.16.214	189.0.34.24	187.178.243.119
183.109.146.107	179.110.190.238	178.166.75.137	178.57.171.55
176.59.67.127	175.210.215.36	159.203.4.53	151.234.139.40