45.159.74.53 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Armenia

Internet Service Provider: LIR LLC

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	1585744327 - 04/01/2020 14:32:07 Host: 45.159.74.53/45.159.74.53 Port: 445 TCP Blocked	2020-04-02 00:30:17

Comments on same subnet:

IP	Type	Details	Datetime
45.159.74.55	attack	Unauthorized connection attempt from IP address 45.159.74.55 on Port 445(SMB)	2020-10-13 01:54:24
45.159.74.55	attack	Unauthorized connection attempt from IP address 45.159.74.55 on Port 445(SMB)	2020-10-12 17:17:52
45.159.74.81	attack	Apr 22 14:43:49 server5 sshd[15322]: Did not receive identification string from 45.159.74.81 Apr 22 14:43:53 server5 sshd[15323]: Invalid user supervisor from 45.159.74.81 Apr 22 14:43:53 server5 sshd[15323]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.159.74.81 Apr 22 14:43:55 server5 sshd[15323]: Failed password for invalid user supervisor from 45.159.74.81 port 62739 ssh2 Apr 22 14:43:55 server5 sshd[15323]: Connection closed by 45.159.74.81 port 62739 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.159.74.81	2020-04-22 21:19:06
45.159.74.63	attackspambots	Port 1433 Scan	2020-01-24 06:31:33

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.159.74.53
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33099
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.159.74.53.			IN	A

;; AUTHORITY SECTION:
.			373	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040100 1800 900 604800 86400

;; Query time: 85 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 02 00:30:08 CST 2020
;; MSG SIZE  rcvd: 116

Host info

53.74.159.45.in-addr.arpa domain name pointer host-45.159.74.53.vnet.am.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
53.74.159.45.in-addr.arpa	name = host-45.159.74.53.vnet.am.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.162.99.58	attack	Found on Alienvault / proto=6 . srcport=33656 . dstport=808 . (3659)	2020-10-05 06:31:14
121.201.95.58	attackbotsspam	(sshd) Failed SSH login from 121.201.95.58 (CN/China/-): 5 in the last 3600 secs	2020-10-05 06:40:18
61.177.172.168	attackspambots	Oct 5 01:19:31 dignus sshd[14198]: Failed password for root from 61.177.172.168 port 54901 ssh2 Oct 5 01:19:34 dignus sshd[14198]: Failed password for root from 61.177.172.168 port 54901 ssh2 Oct 5 01:19:37 dignus sshd[14198]: Failed password for root from 61.177.172.168 port 54901 ssh2 Oct 5 01:19:40 dignus sshd[14198]: Failed password for root from 61.177.172.168 port 54901 ssh2 Oct 5 01:19:44 dignus sshd[14198]: Failed password for root from 61.177.172.168 port 54901 ssh2 ...	2020-10-05 06:22:49
112.85.42.231	attackbots	Oct 5 00:27:33 abendstille sshd\[30126\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.231 user=root Oct 5 00:27:33 abendstille sshd\[30129\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.231 user=root Oct 5 00:27:34 abendstille sshd\[30126\]: Failed password for root from 112.85.42.231 port 39730 ssh2 Oct 5 00:27:34 abendstille sshd\[30129\]: Failed password for root from 112.85.42.231 port 5732 ssh2 Oct 5 00:27:37 abendstille sshd\[30129\]: Failed password for root from 112.85.42.231 port 5732 ssh2 Oct 5 00:27:37 abendstille sshd\[30126\]: Failed password for root from 112.85.42.231 port 39730 ssh2 ...	2020-10-05 06:37:58
222.186.42.155	attackspam	Oct 4 22:08:33 rush sshd[5237]: Failed password for root from 222.186.42.155 port 40045 ssh2 Oct 4 22:08:42 rush sshd[5239]: Failed password for root from 222.186.42.155 port 14927 ssh2 ...	2020-10-05 06:14:29
38.64.128.3	attackspam	445/tcp 445/tcp [2020-08-27/10-03]2pkt	2020-10-05 06:36:52
176.215.78.143	attack	TCP (SYN) 176.215.78.143:59148 -> port 23, len 44	2020-10-05 06:47:21
209.17.96.98	attackbotsspam	SSH login attempts.	2020-10-05 06:11:20
113.124.92.189	attack	(smtpauth) Failed SMTP AUTH login from 113.124.92.189 (CN/China/-): 10 in the last 300 secs	2020-10-05 06:49:26
116.196.105.232	attackbotsspam	" "	2020-10-05 06:36:05
185.81.157.120	attack	445/tcp 445/tcp 445/tcp... [2020-08-12/10-03]7pkt,1pt.(tcp)	2020-10-05 06:29:27
90.127.136.228	attackbots	SSH Invalid Login	2020-10-05 06:19:17
60.220.185.61	attackbots	$f2bV_matches	2020-10-05 06:44:46
124.128.248.18	attackspam	2020-10-04 16:49:08.735939-0500 localhost screensharingd[8968]: Authentication: FAILED :: User Name: N/A :: Viewer Address: 124.128.248.18 :: Type: VNC DES	2020-10-05 06:46:34
45.55.32.34	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-05 06:13:54

Recently Reported IPs

189.110.32.253	91.143.20.235	112.104.175.149	190.113.161.123
37.146.236.101	61.135.147.120	80.235.206.89	146.71.237.58
46.166.247.109	154.58.188.218	190.136.140.196	131.121.174.71
47.41.111.131	40.240.116.59	42.58.225.204	3.5.129.135
109.61.10.58	69.200.155.211	140.4.12.124	39.15.212.166