106.45.0.64 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: China

Internet Service Provider: ChinaNet Ningxia Province Network

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 106.45.0.64 to port 8089 [T]	2020-01-29 17:45:51

Comments on same subnet:

IP	Type	Details	Datetime
106.45.0.198	attack	Detected by ModSecurity. Host header is an IP address, Request URI: /	2020-08-07 18:17:55
106.45.0.182	attackspam	Unauthorized connection attempt detected from IP address 106.45.0.182 to port 443	2020-07-25 20:37:03
106.45.0.43	attackspam	Unauthorized connection attempt detected from IP address 106.45.0.43 to port 8081 [J]	2020-03-02 20:37:01
106.45.0.168	attackbots	Unauthorized connection attempt detected from IP address 106.45.0.168 to port 8899 [J]	2020-03-02 17:15:57
106.45.0.111	attackbotsspam	Unauthorized connection attempt detected from IP address 106.45.0.111 to port 22 [J]	2020-03-02 15:06:55
106.45.0.255	attack	Unauthorized connection attempt detected from IP address 106.45.0.255 to port 22 [J]	2020-03-02 15:06:35
106.45.0.52	attack	Unauthorized connection attempt detected from IP address 106.45.0.52 to port 443 [J]	2020-02-05 09:42:09
106.45.0.208	attack	Unauthorized connection attempt detected from IP address 106.45.0.208 to port 8081 [T]	2020-01-29 17:45:22
106.45.0.171	attack	Unauthorized connection attempt detected from IP address 106.45.0.171 to port 8888 [J]	2020-01-29 10:31:04
106.45.0.45	attackspam	Unauthorized connection attempt detected from IP address 106.45.0.45 to port 8000 [J]	2020-01-27 17:38:30
106.45.0.112	attackspam	Unauthorized connection attempt detected from IP address 106.45.0.112 to port 8000 [J]	2020-01-27 14:48:50
106.45.0.56	attackspam	Unauthorized connection attempt detected from IP address 106.45.0.56 to port 8081 [J]	2020-01-27 00:51:09
106.45.0.77	attackbots	Unauthorized connection attempt detected from IP address 106.45.0.77 to port 8081 [J]	2020-01-27 00:19:12
106.45.0.97	attackbots	Unauthorized connection attempt detected from IP address 106.45.0.97 to port 80 [J]	2020-01-20 20:37:58
106.45.0.202	attack	Unauthorized connection attempt detected from IP address 106.45.0.202 to port 80 [J]	2020-01-19 14:48:25

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 106.45.0.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19612
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;106.45.0.64.			IN	A

;; AUTHORITY SECTION:
.			319	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020012900 1800 900 604800 86400

;; Query time: 101 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 29 17:45:43 CST 2020
;; MSG SIZE  rcvd: 115

Host info

Host 64.0.45.106.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 64.0.45.106.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
183.105.217.170	attackspambots	Port Scan detected from 183.105.217.170 (KR/South Korea/-). 4 hits in the last 276 seconds	2019-10-27 14:13:19
222.186.180.8	attack	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Failed password for root from 222.186.180.8 port 13494 ssh2 Failed password for root from 222.186.180.8 port 13494 ssh2 Failed password for root from 222.186.180.8 port 13494 ssh2 Failed password for root from 222.186.180.8 port 13494 ssh2	2019-10-27 13:55:57
157.245.75.86	attack	Oct 27 10:59:23 areeb-Workstation sshd[5901]: Failed password for root from 157.245.75.86 port 60340 ssh2 ...	2019-10-27 13:46:56
203.186.57.191	attack	Oct 26 09:27:35 server sshd\[7024\]: Failed password for invalid user ftpuser from 203.186.57.191 port 55292 ssh2 Oct 27 06:37:32 server sshd\[9433\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203186057191.static.ctinets.com user=root Oct 27 06:37:34 server sshd\[9433\]: Failed password for root from 203.186.57.191 port 33794 ssh2 Oct 27 06:54:50 server sshd\[13200\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203186057191.static.ctinets.com user=root Oct 27 06:54:51 server sshd\[13200\]: Failed password for root from 203.186.57.191 port 58140 ssh2 ...	2019-10-27 14:24:24
222.186.190.92	attackbotsspam	2019-10-27T07:06:42.643282scmdmz1 sshd\[24043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.190.92 user=root 2019-10-27T07:06:44.574646scmdmz1 sshd\[24043\]: Failed password for root from 222.186.190.92 port 44168 ssh2 2019-10-27T07:06:48.964939scmdmz1 sshd\[24043\]: Failed password for root from 222.186.190.92 port 44168 ssh2 ...	2019-10-27 14:25:41
189.78.100.35	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/189.78.100.35/ AU - 1H : (26) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : AU NAME ASN : ASN27699 IP : 189.78.100.35 CIDR : 189.78.0.0/16 PREFIX COUNT : 267 UNIQUE IP COUNT : 6569728 ATTACKS DETECTED ASN27699 : 1H - 9 3H - 13 6H - 13 12H - 17 24H - 18 DateTime : 2019-10-27 04:55:44 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-27 13:48:38
45.136.110.47	attackbotsspam	Oct 27 07:03:11 mc1 kernel: \[3442526.023879\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.47 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=17551 PROTO=TCP SPT=43525 DPT=7570 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 27 07:04:55 mc1 kernel: \[3442629.185655\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.47 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=51458 PROTO=TCP SPT=43525 DPT=7688 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 27 07:05:24 mc1 kernel: \[3442658.113358\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.47 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=34673 PROTO=TCP SPT=43525 DPT=6718 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-27 14:21:26
209.235.67.49	attackspam	SSHScan	2019-10-27 14:00:08
193.201.224.12	attack	Fail2Ban	2019-10-27 14:12:18
141.135.239.180	attack	Oct 26 20:21:27 hpm sshd\[8253\]: Invalid user 123456 from 141.135.239.180 Oct 26 20:21:27 hpm sshd\[8253\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=d8d87efb4.access.telenet.be Oct 26 20:21:29 hpm sshd\[8253\]: Failed password for invalid user 123456 from 141.135.239.180 port 38806 ssh2 Oct 26 20:25:44 hpm sshd\[8601\]: Invalid user user from 141.135.239.180 Oct 26 20:25:44 hpm sshd\[8601\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=d8d87efb4.access.telenet.be	2019-10-27 14:28:21
81.22.45.107	attackspam	Oct 27 06:20:44 mc1 kernel: \[3439978.475644\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=63851 PROTO=TCP SPT=46683 DPT=31158 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 27 06:22:40 mc1 kernel: \[3440094.497536\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=52720 PROTO=TCP SPT=46683 DPT=30977 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 27 06:23:37 mc1 kernel: \[3440152.080174\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.107 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=24778 PROTO=TCP SPT=46683 DPT=31488 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-27 13:51:24
54.36.150.15	attack	Automatic report - Banned IP Access	2019-10-27 14:27:41
41.65.64.36	attack	2019-10-27T04:59:13.557222abusebot-3.cloudsearch.cf sshd\[15976\]: Invalid user strand from 41.65.64.36 port 59346	2019-10-27 13:59:19
82.165.29.19	attackbots	Oct 26 18:23:31 php1 sshd\[13556\]: Invalid user welcome from 82.165.29.19 Oct 26 18:23:31 php1 sshd\[13556\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.165.29.19 Oct 26 18:23:32 php1 sshd\[13556\]: Failed password for invalid user welcome from 82.165.29.19 port 54280 ssh2 Oct 26 18:27:36 php1 sshd\[13885\]: Invalid user cisco123321 from 82.165.29.19 Oct 26 18:27:36 php1 sshd\[13885\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.165.29.19	2019-10-27 14:03:13
218.78.44.63	attackspam	2019-10-26T23:40:12.2250971495-001 sshd\[12346\]: Invalid user 123 from 218.78.44.63 port 52465 2019-10-26T23:40:12.2284501495-001 sshd\[12346\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.44.63 2019-10-26T23:40:14.4469301495-001 sshd\[12346\]: Failed password for invalid user 123 from 218.78.44.63 port 52465 ssh2 2019-10-26T23:44:53.9854061495-001 sshd\[12494\]: Invalid user yyyy from 218.78.44.63 port 42691 2019-10-26T23:44:53.9889081495-001 sshd\[12494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.78.44.63 2019-10-26T23:44:56.4483341495-001 sshd\[12494\]: Failed password for invalid user yyyy from 218.78.44.63 port 42691 ssh2 ...	2019-10-27 14:20:08

Recently Reported IPs

219.155.179.235	183.166.135.218	183.166.118.116	183.165.41.207
183.161.228.122	182.38.14.192	182.34.20.210	180.118.76.227
175.154.202.36	125.109.194.110	123.190.191.53	123.179.129.180
123.179.129.153	123.179.129.120	123.168.92.216	123.156.187.72
122.7.208.140	119.185.237.250	119.185.237.55	119.7.183.102