45.146.164.101

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.146.164.229	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 29 - port: 3022 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:24:57
45.146.164.169	attack	firewall-block, port(s): 339/tcp, 996/tcp, 2090/tcp, 2299/tcp, 3330/tcp, 5089/tcp, 9133/tcp, 12001/tcp, 49259/tcp	2020-10-12 14:14:30
45.146.164.169	attackbots	TCP (SYN) 45.146.164.169:40127 -> port 4444, len 44	2020-10-09 01:40:48
45.146.164.169	attackspambots	[MK-VM3] Blocked by UFW	2020-10-08 17:37:16
45.146.164.179	attackbots	Repeated RDP login failures. Last user: Test	2020-10-07 04:50:13
45.146.164.179	attack	Repeated RDP login failures. Last user: Test	2020-10-06 20:56:15
45.146.164.179	attackbots	Repeated RDP login failures. Last user: Test	2020-10-06 12:37:23
45.146.164.169	attackspam	[MK-VM4] Blocked by UFW	2020-10-05 03:17:22
45.146.164.169	attackbots	TCP (SYN) 45.146.164.169:51541 -> port 58389, len 44	2020-10-04 19:03:13
45.146.164.169	attackspam	TCP (SYN) 45.146.164.169:55912 -> port 883, len 44	2020-10-02 03:17:38
45.146.164.169	attack	firewall-block, port(s): 1013/tcp, 1025/tcp, 1133/tcp, 2085/tcp, 3302/tcp, 4256/tcp, 4490/tcp, 4545/tcp, 4911/tcp, 8891/tcp, 11389/tcp, 12549/tcp	2020-10-01 19:30:38
45.146.164.169	attackspambots	Sep 28 18:03:28 [host] kernel: [1640998.000575] [U Sep 28 18:37:30 [host] kernel: [1643039.759955] [U Sep 28 18:43:10 [host] kernel: [1643379.784726] [U Sep 28 18:46:07 [host] kernel: [1643556.888410] [U Sep 28 18:49:47 [host] kernel: [1643777.010648] [U Sep 28 18:57:06 [host] kernel: [1644215.266425] [U	2020-09-29 01:02:37
45.146.164.169	attackbots	TCP (SYN) 45.146.164.169:44697 -> port 5015, len 44	2020-09-28 17:05:52
45.146.164.227	attack	RDP Brute-Force	2020-09-25 00:10:50
45.146.164.227	attack	RDP Brute-Force	2020-09-24 15:53:13

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.146.164.101
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56220
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.146.164.101.			IN	A

;; AUTHORITY SECTION:
.			79	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 22 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 07:54:32 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 101.164.146.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 101.164.146.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.131.73.105	attackbotsspam	Apr 6 18:12:29 debian sshd[31686]: Unable to negotiate with 104.131.73.105 port 59019: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] Apr 6 18:14:13 debian sshd[31744]: Unable to negotiate with 104.131.73.105 port 40782: no matching key exchange method found. Their offer: diffie-hellman-group-exchange-sha256,diffie-hellman-group-exchange-sha1,diffie-hellman-group14-sha1,diffie-hellman-group1-sha1 [preauth] ...	2020-04-07 07:48:46
103.80.113.90	attackspambots	Repeated attempts against wp-login	2020-04-07 07:35:05
85.209.3.151	attack	port	2020-04-07 08:01:45
222.186.175.217	attack	2020-04-06T23:14:52.172372abusebot-7.cloudsearch.cf sshd[18968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-04-06T23:14:54.262570abusebot-7.cloudsearch.cf sshd[18968]: Failed password for root from 222.186.175.217 port 34498 ssh2 2020-04-06T23:14:57.348884abusebot-7.cloudsearch.cf sshd[18968]: Failed password for root from 222.186.175.217 port 34498 ssh2 2020-04-06T23:14:52.172372abusebot-7.cloudsearch.cf sshd[18968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.217 user=root 2020-04-06T23:14:54.262570abusebot-7.cloudsearch.cf sshd[18968]: Failed password for root from 222.186.175.217 port 34498 ssh2 2020-04-06T23:14:57.348884abusebot-7.cloudsearch.cf sshd[18968]: Failed password for root from 222.186.175.217 port 34498 ssh2 2020-04-06T23:14:52.172372abusebot-7.cloudsearch.cf sshd[18968]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 ...	2020-04-07 07:28:58
206.189.172.90	attack	Apr 7 01:48:41 vmd26974 sshd[13605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.172.90 Apr 7 01:48:44 vmd26974 sshd[13605]: Failed password for invalid user sales from 206.189.172.90 port 36958 ssh2 ...	2020-04-07 07:52:46
68.183.147.58	attackbots	Apr 7 01:29:03 [host] sshd[6211]: Invalid user ad Apr 7 01:29:03 [host] sshd[6211]: pam_unix(sshd:a Apr 7 01:29:05 [host] sshd[6211]: Failed password	2020-04-07 07:39:46
106.12.178.245	attackbots	Apr 6 19:52:48 Tower sshd[40119]: Connection from 106.12.178.245 port 33216 on 192.168.10.220 port 22 rdomain "" Apr 6 19:52:50 Tower sshd[40119]: Invalid user minecraft from 106.12.178.245 port 33216 Apr 6 19:52:50 Tower sshd[40119]: error: Could not get shadow information for NOUSER Apr 6 19:52:50 Tower sshd[40119]: Failed password for invalid user minecraft from 106.12.178.245 port 33216 ssh2 Apr 6 19:52:50 Tower sshd[40119]: Received disconnect from 106.12.178.245 port 33216:11: Bye Bye [preauth] Apr 6 19:52:50 Tower sshd[40119]: Disconnected from invalid user minecraft 106.12.178.245 port 33216 [preauth]	2020-04-07 07:56:47
51.68.32.21	attackbotsspam	DATE:2020-04-07 00:22:54, IP:51.68.32.21, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-07 07:30:44
117.50.44.123	attack	Apr 6 17:29:47 [host] kernel: [2816317.324998] [U Apr 6 17:29:48 [host] kernel: [2816318.325391] [U Apr 6 17:29:48 [host] kernel: [2816318.352190] [U Apr 6 17:29:49 [host] kernel: [2816319.337294] [U Apr 6 17:29:49 [host] kernel: [2816319.354825] [U Apr 6 17:29:50 [host] kernel: [2816320.338800] [U	2020-04-07 07:25:55
45.173.5.38	attackbotsspam	Draytek Vigor Remote Command Execution Vulnerability	2020-04-07 07:37:55
76.70.135.181	attackspam	SSH brute-force attempt	2020-04-07 07:39:34
178.156.202.142	attack	2020-04-07T01:48:33.233929hz01.yumiweb.com sshd\[16200\]: Invalid user admin from 178.156.202.142 port 49588 2020-04-07T01:48:33.564863hz01.yumiweb.com sshd\[16202\]: Invalid user admin from 178.156.202.142 port 50106 2020-04-07T01:48:33.945808hz01.yumiweb.com sshd\[16204\]: Invalid user user from 178.156.202.142 port 50652 ...	2020-04-07 08:00:19
190.217.97.138	attack	1586186978 - 04/06/2020 17:29:38 Host: 190.217.97.138/190.217.97.138 Port: 445 TCP Blocked	2020-04-07 07:32:34
87.106.194.189	attackbots	(sshd) Failed SSH login from 87.106.194.189 (DE/Germany/-): 5 in the last 3600 secs	2020-04-07 07:58:50
81.246.218.220	attack	SSH-bruteforce attempts	2020-04-07 07:36:09

Recently Reported IPs

211.228.80.243	171.236.2.223	201.103.152.116	191.27.83.167
185.146.57.231	109.95.53.23	14.98.244.193	66.248.171.120
61.153.42.218	103.153.232.254	45.117.157.68	120.82.112.101
176.8.78.155	211.237.233.135	3.93.22.65	194.158.74.173
187.178.83.76	47.254.172.160	203.116.184.243	101.51.141.11