92.242.45.107 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: CloudLite LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	TCP (SYN) 92.242.45.107:55225 -> port 240, len 44	2020-06-23 02:07:56

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 92.242.45.107
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 4864
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;92.242.45.107.			IN	A

;; AUTHORITY SECTION:
.			247	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062201 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jun 23 02:07:44 CST 2020
;; MSG SIZE  rcvd: 117

Host info

Host 107.45.242.92.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 107.45.242.92.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
217.78.0.125	attack	Apr 11 05:04:44 scivo sshd[1152]: Invalid user sedi from 217.78.0.125 Apr 11 05:04:45 scivo sshd[1152]: Failed password for invalid user sedi from 217.78.0.125 port 40446 ssh2 Apr 11 05:04:45 scivo sshd[1152]: Received disconnect from 217.78.0.125: 11: Bye Bye [preauth] Apr 11 05:18:05 scivo sshd[1869]: Failed password for r.r from 217.78.0.125 port 49228 ssh2 Apr 11 05:18:05 scivo sshd[1869]: Received disconnect from 217.78.0.125: 11: Bye Bye [preauth] Apr 11 05:23:25 scivo sshd[2125]: Failed password for r.r from 217.78.0.125 port 55596 ssh2 Apr 11 05:23:25 scivo sshd[2125]: Received disconnect from 217.78.0.125: 11: Bye Bye [preauth] Apr 11 05:28:23 scivo sshd[2368]: Invalid user guest from 217.78.0.125 Apr 11 05:28:24 scivo sshd[2368]: Failed password for invalid user guest from 217.78.0.125 port 33729 ssh2 Apr 11 05:28:24 scivo sshd[2368]: Received disconnect from 217.78.0.125: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=217.78	2020-04-11 06:28:33
103.57.123.1	attack	Apr 10 16:15:38 server1 sshd\[26835\]: Failed password for invalid user ftpd from 103.57.123.1 port 34292 ssh2 Apr 10 16:19:41 server1 sshd\[27927\]: Invalid user courier from 103.57.123.1 Apr 10 16:19:41 server1 sshd\[27927\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.57.123.1 Apr 10 16:19:43 server1 sshd\[27927\]: Failed password for invalid user courier from 103.57.123.1 port 33618 ssh2 Apr 10 16:23:48 server1 sshd\[29090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.57.123.1 user=root ...	2020-04-11 06:39:22
103.90.188.171	attack	Apr 10 23:03:31 OPSO sshd\[14385\]: Invalid user username from 103.90.188.171 port 27857 Apr 10 23:03:31 OPSO sshd\[14385\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.90.188.171 Apr 10 23:03:34 OPSO sshd\[14385\]: Failed password for invalid user username from 103.90.188.171 port 27857 ssh2 Apr 10 23:04:33 OPSO sshd\[14559\]: Invalid user marnina from 103.90.188.171 port 17022 Apr 10 23:04:33 OPSO sshd\[14559\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.90.188.171	2020-04-11 06:07:44
209.17.97.34	attackspambots	Automatic report - Banned IP Access	2020-04-11 06:14:03
122.51.30.252	attack	Apr 10 22:47:10 h2646465 sshd[11083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.30.252 user=root Apr 10 22:47:12 h2646465 sshd[11083]: Failed password for root from 122.51.30.252 port 60230 ssh2 Apr 10 23:05:04 h2646465 sshd[13505]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.30.252 user=root Apr 10 23:05:05 h2646465 sshd[13505]: Failed password for root from 122.51.30.252 port 51066 ssh2 Apr 10 23:07:33 h2646465 sshd[13957]: Invalid user vcsa from 122.51.30.252 Apr 10 23:07:33 h2646465 sshd[13957]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.30.252 Apr 10 23:07:33 h2646465 sshd[13957]: Invalid user vcsa from 122.51.30.252 Apr 10 23:07:35 h2646465 sshd[13957]: Failed password for invalid user vcsa from 122.51.30.252 port 48060 ssh2 Apr 10 23:12:23 h2646465 sshd[14641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost	2020-04-11 06:12:41
185.234.219.101	attackbotsspam	Repeated brute force against postfix-sasl	2020-04-11 06:11:08
122.51.82.162	attackspambots	SSH Invalid Login	2020-04-11 06:16:33
162.243.129.167	attackspambots	3050/tcp 26/tcp 1723/tcp... [2020-02-10/04-09]29pkt,26pt.(tcp),3pt.(udp)	2020-04-11 06:21:28
104.131.13.199	attack	Apr 11 00:41:01 hosting sshd[8964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.131.13.199 user=root Apr 11 00:41:03 hosting sshd[8964]: Failed password for root from 104.131.13.199 port 52544 ssh2 ...	2020-04-11 06:30:49
165.22.48.227	attackbotsspam	SSH Invalid Login	2020-04-11 06:33:19
111.229.90.2	attackbotsspam	SSH Brute-Forcing (server1)	2020-04-11 06:31:26
51.255.109.162	attack	10001/udp 11211/udp 17185/udp... [2020-02-12/04-10]22pkt,11pt.(udp)	2020-04-11 06:27:36
123.232.160.96	attack	Automatic report - Port Scan Attack	2020-04-11 06:22:39
45.133.99.7	attack	Apr 10 23:55:18 relay postfix/smtpd\[12414\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 10 23:55:49 relay postfix/smtpd\[16527\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 10 23:56:06 relay postfix/smtpd\[16529\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 10 23:57:22 relay postfix/smtpd\[18073\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 10 23:57:39 relay postfix/smtpd\[20023\]: warning: unknown\[45.133.99.7\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-04-11 06:11:54
71.6.167.142	attackspam	Port scan: Attack repeated for 24 hours	2020-04-11 06:31:03

Recently Reported IPs

183.166.170.232	183.83.36.206	60.246.77.150	106.12.13.234
193.217.15.234	14.239.142.93	195.54.161.46	124.236.79.135
253.205.1.202	88.64.230.63	216.104.200.22	213.145.136.20
13.232.61.181	125.212.148.51	16.134.237.78	91.124.80.9
82.114.124.210	178.90.218.29	114.232.110.193	109.166.89.3