45.143.138.253

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Garant-Park-Internet LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Email rejected due to spam filtering	2020-08-16 00:16:57

Comments on same subnet:

IP	Type	Details	Datetime
45.143.138.159	attackspambots	Email rejected due to spam filtering	2020-08-18 02:54:03
45.143.138.179	attack	2 Attack(s) Detected [DoS Attack: SYN/ACK Scan] from source: 45.143.138.179, port 22, Tuesday, August 11, 2020 03:06:58 [DoS Attack: SYN/ACK Scan] from source: 45.143.138.179, port 22, Tuesday, August 11, 2020 02:26:56	2020-08-13 15:14:36
45.143.138.157	attackbots	Aug 11 21:10:35 our-server-hostname postfix/smtpd[4648]: connect from unknown[45.143.138.157] Aug 11 21:10:55 our-server-hostname postfix/smtpd[4648]: lost connection after CONNECT from unknown[45.143.138.157] Aug 11 21:10:55 our-server-hostname postfix/smtpd[4648]: disconnect from unknown[45.143.138.157] Aug 11 21:14:03 our-server-hostname postfix/smtpd[4644]: connect from unknown[45.143.138.157] Aug x@x Aug 11 21:14:04 our-server-hostname postfix/smtpd[4644]: disconnect from unknown[45.143.138.157] Aug 11 21:18:29 our-server-hostname postfix/smtpd[7726]: connect from unknown[45.143.138.157] Aug x@x Aug 11 21:18:30 our-server-hostname postfix/smtpd[7726]: disconnect from unknown[45.143.138.157] Aug 11 21:18:47 our-server-hostname postfix/smtpd[7509]: connect from unknown[45.143.138.157] Aug x@x Aug 11 21:18:48 our-server-hostname postfix/smtpd[7509]: disconnect from unknown[45.143.138.157] Aug 11 21:23:13 our-server-hostname postfix/smtpd[7509]: connect from unknown[45........ -------------------------------	2020-08-12 20:58:10
45.143.138.128	attackspam	Email rejected due to spam filtering	2020-07-29 23:45:57
45.143.138.118	attackbots	Spamassassin_45.143.138.118	2020-07-04 15:22:29
45.143.138.50	attack	Tried sshing with brute force.	2020-06-08 05:11:27
45.143.138.50	attackspam	TCP (SYN) 45.143.138.50:43016 -> port 22, len 44	2020-06-07 17:43:19
45.143.138.185	attackbots	Email rejected due to spam filtering	2020-06-07 17:29:35
45.143.138.16	attackspambots	SSH Invalid Login	2020-03-23 06:46:13
45.143.138.16	attackbots	Invalid user mc from 45.143.138.16 port 51936	2020-03-21 14:18:20

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.143.138.253
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16616
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.143.138.253.			IN	A

;; AUTHORITY SECTION:
.			147	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081500 1800 900 604800 86400

;; Query time: 465 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Aug 16 00:16:47 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 253.138.143.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 253.138.143.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
61.177.142.200	attackbotsspam	firewall-block, port(s): 1433/tcp	2019-12-16 20:09:36
45.141.86.128	attackspambots	SSH bruteforce (Triggered fail2ban) Dec 16 13:05:16 dev1 sshd[62856]: Disconnecting invalid user admin 45.141.86.128 port 46093: Change of username or service not allowed: (admin,ssh-connection) -> (support,ssh-connection) [preauth]	2019-12-16 20:15:06
201.20.36.4	attackspam	Dec 16 12:31:41 server sshd\[11696\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.20.36.4 user=root Dec 16 12:31:43 server sshd\[11696\]: Failed password for root from 201.20.36.4 port 12140 ssh2 Dec 16 12:39:36 server sshd\[13832\]: Invalid user pilararo from 201.20.36.4 Dec 16 12:39:36 server sshd\[13832\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.20.36.4 Dec 16 12:39:38 server sshd\[13832\]: Failed password for invalid user pilararo from 201.20.36.4 port 17137 ssh2 ...	2019-12-16 20:16:50
213.157.48.133	attackspam	Dec 16 10:29:42 web8 sshd\[29238\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 user=root Dec 16 10:29:45 web8 sshd\[29238\]: Failed password for root from 213.157.48.133 port 46170 ssh2 Dec 16 10:35:11 web8 sshd\[31742\]: Invalid user jeraci from 213.157.48.133 Dec 16 10:35:11 web8 sshd\[31742\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.157.48.133 Dec 16 10:35:13 web8 sshd\[31742\]: Failed password for invalid user jeraci from 213.157.48.133 port 49554 ssh2	2019-12-16 20:01:31
222.255.129.45	attackspambots	Unauthorized connection attempt detected from IP address 222.255.129.45 to port 445	2019-12-16 20:31:33
49.235.42.243	attackspambots	Dec 16 10:42:18 nextcloud sshd\[7731\]: Invalid user 123456g from 49.235.42.243 Dec 16 10:42:18 nextcloud sshd\[7731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.42.243 Dec 16 10:42:20 nextcloud sshd\[7731\]: Failed password for invalid user 123456g from 49.235.42.243 port 57446 ssh2 ...	2019-12-16 20:30:43
112.85.42.174	attackbotsspam	Dec 16 13:09:13 legacy sshd[26226]: Failed password for root from 112.85.42.174 port 29540 ssh2 Dec 16 13:09:17 legacy sshd[26226]: Failed password for root from 112.85.42.174 port 29540 ssh2 Dec 16 13:09:21 legacy sshd[26226]: Failed password for root from 112.85.42.174 port 29540 ssh2 Dec 16 13:09:24 legacy sshd[26226]: Failed password for root from 112.85.42.174 port 29540 ssh2 ...	2019-12-16 20:19:24
178.128.213.91	attackbots	Dec 16 02:16:23 auw2 sshd\[27270\]: Invalid user admin from 178.128.213.91 Dec 16 02:16:23 auw2 sshd\[27270\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.91 Dec 16 02:16:24 auw2 sshd\[27270\]: Failed password for invalid user admin from 178.128.213.91 port 50506 ssh2 Dec 16 02:22:56 auw2 sshd\[27819\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.213.91 user=root Dec 16 02:22:57 auw2 sshd\[27819\]: Failed password for root from 178.128.213.91 port 57910 ssh2	2019-12-16 20:23:39
49.233.183.7	attackbots	Dec 16 10:06:44 localhost sshd\[4220\]: Invalid user salesky from 49.233.183.7 port 40018 Dec 16 10:06:44 localhost sshd\[4220\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.183.7 Dec 16 10:06:46 localhost sshd\[4220\]: Failed password for invalid user salesky from 49.233.183.7 port 40018 ssh2 ...	2019-12-16 20:11:46
171.112.213.131	attackbots	Scanning	2019-12-16 20:39:51
66.65.138.92	attackbotsspam	Dec 16 06:23:19 xxxxxxx0 sshd[1209]: Invalid user penfield from 66.65.138.92 port 33704 Dec 16 06:23:22 xxxxxxx0 sshd[1209]: Failed password for invalid user penfield from 66.65.138.92 port 33704 ssh2 Dec 16 06:52:17 xxxxxxx0 sshd[7092]: Failed password for r.r from 66.65.138.92 port 53960 ssh2 Dec 16 07:09:49 xxxxxxx0 sshd[10787]: Invalid user hutchison from 66.65.138.92 port 51582 Dec 16 07:09:51 xxxxxxx0 sshd[10787]: Failed password for invalid user hutchison from 66.65.138.92 port 51582 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=66.65.138.92	2019-12-16 20:14:40
128.199.84.201	attackbots	Dec 16 14:13:26 sauna sshd[180867]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.84.201 Dec 16 14:13:27 sauna sshd[180867]: Failed password for invalid user webmaster from 128.199.84.201 port 59048 ssh2 ...	2019-12-16 20:21:44
163.172.36.72	attackspam	Dec 15 14:27:30 server sshd\[25501\]: Failed password for invalid user bessette from 163.172.36.72 port 60174 ssh2 Dec 16 12:26:29 server sshd\[10119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.36.72 user=root Dec 16 12:26:30 server sshd\[10119\]: Failed password for root from 163.172.36.72 port 53180 ssh2 Dec 16 12:36:12 server sshd\[13088\]: Invalid user collecutt from 163.172.36.72 Dec 16 12:36:12 server sshd\[13088\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.36.72 ...	2019-12-16 20:13:08
106.54.226.205	attackspam	Dec 16 17:39:03 webhost01 sshd[7659]: Failed password for root from 106.54.226.205 port 57988 ssh2 ...	2019-12-16 20:13:28
113.160.154.14	attackspam	1576477491 - 12/16/2019 07:24:51 Host: 113.160.154.14/113.160.154.14 Port: 445 TCP Blocked	2019-12-16 20:19:01

Recently Reported IPs

208.217.47.2	10.161.21.171	69.58.87.114	157.20.130.67
75.185.47.22	245.204.95.5	237.233.191.191	186.99.90.177
180.179.181.10	41.199.69.147	156.96.117.172	52.28.85.232
151.80.220.184	189.212.123.104	121.180.213.32	114.119.165.147
157.33.157.216	118.71.106.9	93.229.209.156	223.72.63.85