45.146.164.169

Basic Info

City: unknown

Region: unknown

Country: United Kingdom of Great Britain and Northern Ireland

Internet Service Provider: Mastercom LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	firewall-block, port(s): 339/tcp, 996/tcp, 2090/tcp, 2299/tcp, 3330/tcp, 5089/tcp, 9133/tcp, 12001/tcp, 49259/tcp	2020-10-12 14:14:30
attackbots	TCP (SYN) 45.146.164.169:40127 -> port 4444, len 44	2020-10-09 01:40:48
attackspambots	[MK-VM3] Blocked by UFW	2020-10-08 17:37:16
attackspam	[MK-VM4] Blocked by UFW	2020-10-05 03:17:22
attackbots	TCP (SYN) 45.146.164.169:51541 -> port 58389, len 44	2020-10-04 19:03:13
attackspam	TCP (SYN) 45.146.164.169:55912 -> port 883, len 44	2020-10-02 03:17:38
attack	firewall-block, port(s): 1013/tcp, 1025/tcp, 1133/tcp, 2085/tcp, 3302/tcp, 4256/tcp, 4490/tcp, 4545/tcp, 4911/tcp, 8891/tcp, 11389/tcp, 12549/tcp	2020-10-01 19:30:38
attackspambots	Sep 28 18:03:28 [host] kernel: [1640998.000575] [U Sep 28 18:37:30 [host] kernel: [1643039.759955] [U Sep 28 18:43:10 [host] kernel: [1643379.784726] [U Sep 28 18:46:07 [host] kernel: [1643556.888410] [U Sep 28 18:49:47 [host] kernel: [1643777.010648] [U Sep 28 18:57:06 [host] kernel: [1644215.266425] [U	2020-09-29 01:02:37
attackbots	TCP (SYN) 45.146.164.169:44697 -> port 5015, len 44	2020-09-28 17:05:52

Comments on same subnet:

IP	Type	Details	Datetime
45.146.164.229	attack	ET CINS Active Threat Intelligence Poor Reputation IP group 29 - port: 3022 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:24:57
45.146.164.179	attackbots	Repeated RDP login failures. Last user: Test	2020-10-07 04:50:13
45.146.164.179	attack	Repeated RDP login failures. Last user: Test	2020-10-06 20:56:15
45.146.164.179	attackbots	Repeated RDP login failures. Last user: Test	2020-10-06 12:37:23
45.146.164.227	attack	RDP Brute-Force	2020-09-25 00:10:50
45.146.164.227	attack	RDP Brute-Force	2020-09-24 15:53:13
45.146.164.227	attackbotsspam	RDP Brute-Force	2020-09-24 07:19:11
45.146.164.193	attackspambots	TCP (SYN) 45.146.164.193:56759 -> port 4433, len 44	2020-09-17 01:31:19
45.146.164.186	attack	GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP HTTP/1.1 POST /api/jsonws/invoke HTTP/1.1 GET /?XDEBUG_SESSION_START=phpstorm HTTP/1.1 GET /solr/admin/info/system?wt=json HTTP/1.1 GET /?a=fetch&content=die(@md5(HelloThinkCMF)) HTTP/1.1	2020-09-15 22:58:36
45.146.164.186	attackbots	GET /index.php?s=/Index/\\think\\app/invokefunction&function=call_user_func_array&vars[0]=md5&vars[1][]=HelloThinkPHP HTTP/1.1 etc.	2020-09-15 14:52:22
45.146.164.186	attack	Scanning unused Default website or suspicious access to valid sites from IP marked as abusive	2020-09-15 06:59:36

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.146.164.169
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22831
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.146.164.169.			IN	A

;; AUTHORITY SECTION:
.			411	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092800 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Sep 28 17:05:49 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 169.164.146.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 169.164.146.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
102.176.195.36	attack	2020-09-27T18:57:16.835536abusebot-7.cloudsearch.cf sshd[27293]: Invalid user teste from 102.176.195.36 port 43510 2020-09-27T18:57:16.840169abusebot-7.cloudsearch.cf sshd[27293]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.176.195.36 2020-09-27T18:57:16.835536abusebot-7.cloudsearch.cf sshd[27293]: Invalid user teste from 102.176.195.36 port 43510 2020-09-27T18:57:18.199223abusebot-7.cloudsearch.cf sshd[27293]: Failed password for invalid user teste from 102.176.195.36 port 43510 ssh2 2020-09-27T19:01:58.052042abusebot-7.cloudsearch.cf sshd[27412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=102.176.195.36 user=root 2020-09-27T19:02:00.128231abusebot-7.cloudsearch.cf sshd[27412]: Failed password for root from 102.176.195.36 port 52838 ssh2 2020-09-27T19:06:34.226444abusebot-7.cloudsearch.cf sshd[27511]: Invalid user hduser from 102.176.195.36 port 33976 ...	2020-09-28 03:35:56
175.5.23.74	attackspam	IP 175.5.23.74 attacked honeypot on port: 23 at 9/26/2020 1:33:29 PM	2020-09-28 03:16:15
167.114.152.170	attackbots	167.114.152.170 - - [27/Sep/2020:19:52:07 +0100] "POST /wp-login.php HTTP/1.1" 200 2223 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.114.152.170 - - [27/Sep/2020:19:52:08 +0100] "POST /wp-login.php HTTP/1.1" 200 2207 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 167.114.152.170 - - [27/Sep/2020:19:52:10 +0100] "POST /wp-login.php HTTP/1.1" 200 2204 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-09-28 03:09:11
52.163.209.253	attack	Invalid user 208 from 52.163.209.253 port 8337	2020-09-28 03:26:55
181.49.118.185	attack	"Unauthorized connection attempt on SSHD detected"	2020-09-28 03:01:10
104.41.33.169	attackbotsspam	Invalid user 125 from 104.41.33.169 port 14835	2020-09-28 03:32:44
23.101.135.220	attackbots	Invalid user 148 from 23.101.135.220 port 60518	2020-09-28 03:32:06
52.183.115.25	attack	Invalid user 253 from 52.183.115.25 port 46675	2020-09-28 03:16:01
106.12.201.95	attackspambots	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-09-28 03:27:39
13.92.134.70	attackbotsspam	Invalid user ubuntu from 13.92.134.70 port 4614	2020-09-28 03:03:16
40.88.123.179	attackspam	Invalid user admin from 40.88.123.179 port 42265	2020-09-28 03:30:15
111.93.235.74	attackbots	Sep 27 17:45:47 XXXXXX sshd[24504]: Invalid user guest from 111.93.235.74 port 4899	2020-09-28 03:20:25
49.247.135.55	attackbotsspam	Sep 27 20:51:41 h2865660 sshd[17509]: Invalid user admin from 49.247.135.55 port 53116 Sep 27 20:51:41 h2865660 sshd[17509]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.135.55 Sep 27 20:51:41 h2865660 sshd[17509]: Invalid user admin from 49.247.135.55 port 53116 Sep 27 20:51:43 h2865660 sshd[17509]: Failed password for invalid user admin from 49.247.135.55 port 53116 ssh2 Sep 27 20:53:24 h2865660 sshd[17570]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.247.135.55 user=root Sep 27 20:53:26 h2865660 sshd[17570]: Failed password for root from 49.247.135.55 port 51122 ssh2 ...	2020-09-28 03:06:00
93.157.158.17	attackbots	Autoban 93.157.158.17 AUTH/CONNECT	2020-09-28 03:30:50
178.62.5.48	attackbots	Found on Blocklist de / proto=6 . srcport=45307 . dstport=22 . (1710)	2020-09-28 03:10:03

Recently Reported IPs

121.121.134.33	178.128.85.92	161.35.132.178	51.91.111.10
215.186.163.132	183.48.88.239	188.166.212.34	188.166.177.99
125.67.188.165	119.117.28.7	88.199.41.31	70.89.96.85
37.187.4.68	254.96.37.249	148.207.237.75	106.75.146.18
171.254.205.201	150.238.249.217	136.8.35.220	218.44.11.197