45.146.200.29 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Lithuania

Internet Service Provider: UAB Baltnetos komunikacijos

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	email spam	2019-12-17 17:05:35

Comments on same subnet:

IP	Type	Details	Datetime
45.146.200.96	attackbotsspam	Lines containing failures of 45.146.200.96 Mar 10 10:06:50 omfg postfix/smtpd[13551]: connect from argue.ioflearning.com[45.146.200.96] Mar x@x Mar 10 10:07:00 omfg postfix/smtpd[13551]: disconnect from argue.ioflearning.com[45.146.200.96] ehlo=1 mail=1 rcpt=0/1 data=0/1 quhostname=1 commands=3/5 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.146.200.96	2020-03-10 22:02:36
45.146.200.94	attack	Mar 7 23:02:43 mail.srvfarm.net postfix/smtpd[2938533]: NOQUEUE: reject: RCPT from unknown[45.146.200.94]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 23:02:44 mail.srvfarm.net postfix/smtpd[2952584]: NOQUEUE: reject: RCPT from unknown[45.146.200.94]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 23:02:50 mail.srvfarm.net postfix/smtpd[2952584]: NOQUEUE: reject: RCPT from unknown[45.146.200.94]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 7 23:02:54 mail.srvfarm.net postfix/smtpd[2952584]: NOQUEUE: reject: RCPT from unknown[45.146.200.94]: 450 4.1.8 : Sender address rejected:	2020-03-08 09:07:53
45.146.200.53	attackbotsspam	Mar 6 06:53:05 mail.srvfarm.net postfix/smtpd[1944759]: NOQUEUE: reject: RCPT from unknown[45.146.200.53]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 06:53:19 mail.srvfarm.net postfix/smtpd[1946460]: NOQUEUE: reject: RCPT from unknown[45.146.200.53]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 06:53:24 mail.srvfarm.net postfix/smtpd[1945077]: NOQUEUE: reject: RCPT from unknown[45.146.200.53]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 6 07:02:13 mail.srvfarm.net postfix/smtpd[1943893]: NOQUEUE: reject: RCPT from unknown[45.146.200.53]: 450 4.1.8	2020-03-06 19:19:03
45.146.200.36	attackspambots	Mar 4 22:21:05 mail.srvfarm.net postfix/smtpd[160378]: NOQUEUE: reject: RCPT from unknown[45.146.200.36]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:21:12 mail.srvfarm.net postfix/smtpd[158317]: NOQUEUE: reject: RCPT from unknown[45.146.200.36]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:21:14 mail.srvfarm.net postfix/smtpd[160406]: NOQUEUE: reject: RCPT from unknown[45.146.200.36]: 450 4.1.8 : Sender address rejected: Domain not found; from= to= proto=ESMTP helo= Mar 4 22:21:23 mail.srvfarm.net postfix/smtpd[160378]: NOQUEUE: reject: RCPT from unknown[45.146.200.36]: 450 4.1.8 <	2020-03-05 09:17:36
45.146.200.91	attackspambots	RBL listed IP. Trying to send Spam. IP autobanned	2020-03-04 13:09:45
45.146.200.162	attack	Autoban 45.146.200.162 AUTH/CONNECT	2020-02-17 01:54:41
45.146.200.225	attackbots	2020-02-05 14:47:36,214 fail2ban.actions: WARNING [postfix] Ban 45.146.200.225	2020-02-06 00:23:01
45.146.200.199	attackspambots	Autoban 45.146.200.199 AUTH/CONNECT	2020-01-23 22:45:01
45.146.200.38	attack	Autoban 45.146.200.38 AUTH/CONNECT	2019-12-29 20:01:17
45.146.200.36	attack	Autoban 45.146.200.36 AUTH/CONNECT	2019-12-26 18:50:17
45.146.200.22	attackbots	email spam	2019-12-19 22:06:25
45.146.200.46	attackbotsspam	email spam	2019-12-19 20:27:00
45.146.200.54	attackspam	email spam	2019-12-19 20:03:06
45.146.200.108	attack	email spam	2019-12-17 19:05:21
45.146.200.124	attackbots	email spam	2019-12-17 18:36:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.146.200.29
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21953
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.146.200.29.			IN	A

;; AUTHORITY SECTION:
.			372	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121700 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Dec 17 17:05:29 CST 2019
;; MSG SIZE  rcvd: 117

Host info

29.200.146.45.in-addr.arpa domain name pointer brevity.ioflearning.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
29.200.146.45.in-addr.arpa	name = brevity.ioflearning.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.77.92.86	attackbotsspam	1599756826 - 09/10/2020 18:53:46 Host: 36.77.92.86/36.77.92.86 Port: 445 TCP Blocked	2020-09-11 08:56:59
68.168.213.251	attackspambots	Scanned 2 times in the last 24 hours on port 22	2020-09-11 08:28:52
115.146.121.79	attackbotsspam	Sep 11 02:06:53 vps639187 sshd\[29644\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.146.121.79 user=root Sep 11 02:06:55 vps639187 sshd\[29644\]: Failed password for root from 115.146.121.79 port 38508 ssh2 Sep 11 02:09:05 vps639187 sshd\[29692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.146.121.79 user=root ...	2020-09-11 08:25:26
88.86.4.124	attackspambots	Automatic report - XMLRPC Attack	2020-09-11 08:37:40
194.147.115.146	attackbotsspam	Brute force attack stopped by firewall	2020-09-11 08:45:28
181.191.129.77	attackspam	SSH Bruteforce Attempt on Honeypot	2020-09-11 09:00:42
134.209.164.184	attack	Port Scan ...	2020-09-11 08:44:57
39.112.60.3	attackbotsspam	Sep 10 18:53:39 * sshd[14522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=39.112.60.3 Sep 10 18:53:41 * sshd[14522]: Failed password for invalid user admin from 39.112.60.3 port 8188 ssh2	2020-09-11 09:01:57
195.12.137.210	attack	Sep 11 02:12:28 mout sshd[23528]: Invalid user admin from 195.12.137.210 port 53338	2020-09-11 08:30:56
2.60.47.165	attackspam	20/9/10@12:53:41: FAIL: Alarm-Network address from=2.60.47.165 20/9/10@12:53:41: FAIL: Alarm-Network address from=2.60.47.165 ...	2020-09-11 09:00:12
192.35.168.108	attackspam	6443/tcp 11211/tcp 1311/tcp... [2020-07-12/09-10]15pkt,13pt.(tcp)	2020-09-11 08:44:44
114.141.168.123	attackspam	Sep 10 21:33:17 ws12vmsma01 sshd[46655]: Failed password for root from 114.141.168.123 port 39696 ssh2 Sep 10 21:37:23 ws12vmsma01 sshd[47215]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.141.168.123 user=root Sep 10 21:37:25 ws12vmsma01 sshd[47215]: Failed password for root from 114.141.168.123 port 45152 ssh2 ...	2020-09-11 08:49:44
121.201.107.32	attackbots	(smtpauth) Failed SMTP AUTH login from 121.201.107.32 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SMTPAUTH; Logs: 2020-09-10 19:12:41 dovecot_login authenticator failed for (oceanaderosaritohoa.com) [121.201.107.32]:43120: 535 Incorrect authentication data (set_id=nologin) 2020-09-10 19:13:10 dovecot_login authenticator failed for (oceanaderosaritohoa.com) [121.201.107.32]:45514: 535 Incorrect authentication data (set_id=mailer@oceanaderosaritohoa.com) 2020-09-10 19:13:39 dovecot_login authenticator failed for (oceanaderosaritohoa.com) [121.201.107.32]:47746: 535 Incorrect authentication data (set_id=mailer) 2020-09-10 20:08:50 dovecot_login authenticator failed for (butthook.com) [121.201.107.32]:54086: 535 Incorrect authentication data (set_id=nologin) 2020-09-10 20:09:18 dovecot_login authenticator failed for (butthook.com) [121.201.107.32]:56220: 535 Incorrect authentication data (set_id=mailer@butthook.com)	2020-09-11 08:24:58
177.22.81.87	attack	SSH brute force	2020-09-11 08:26:43
95.190.206.194	attackspambots	Sep 11 00:35:51 home sshd[1624196]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.190.206.194 Sep 11 00:35:51 home sshd[1624196]: Invalid user grayleekim1 from 95.190.206.194 port 52104 Sep 11 00:35:53 home sshd[1624196]: Failed password for invalid user grayleekim1 from 95.190.206.194 port 52104 ssh2 Sep 11 00:40:03 home sshd[1624657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.190.206.194 user=root Sep 11 00:40:05 home sshd[1624657]: Failed password for root from 95.190.206.194 port 33424 ssh2 ...	2020-09-11 08:22:26

Recently Reported IPs

87.103.131.124	80.169.143.166	252.51.171.143	78.38.64.127
77.32.197.24	69.171.208.189	63.83.78.141	51.79.111.170
46.189.19.104	174.13.130.75	45.143.98.150	45.40.112.12
217.112.128.173	212.118.113.146	201.251.91.118	195.62.46.137
187.19.190.174	185.61.92.228	164.163.21.58	154.119.224.133