45.73.166.21 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States of America

Internet Service Provider: Colocation America Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-08-12 23:07:49

Comments on same subnet:

IP	Type	Details	Datetime
45.73.166.23	attackspambots	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2020-08-12 23:06:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.73.166.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17550
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.73.166.21.			IN	A

;; AUTHORITY SECTION:
.			177	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020081200 1800 900 604800 86400

;; Query time: 26 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Aug 12 23:07:40 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 21.166.73.45.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 21.166.73.45.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
101.99.80.99	attackspambots	Automatic report - Banned IP Access	2019-10-29 19:33:07
79.103.59.60	attackspambots	Unauthorised access (Oct 29) SRC=79.103.59.60 LEN=40 TTL=52 ID=29003 TCP DPT=23 WINDOW=1348 SYN	2019-10-29 20:04:49
187.162.41.252	attackbots	Automatic report - Port Scan Attack	2019-10-29 20:09:09
45.136.110.26	attackspambots	Oct 29 11:57:25 h2177944 kernel: \[5222406.325868\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.26 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=248 ID=37162 PROTO=TCP SPT=45649 DPT=12001 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 29 12:07:47 h2177944 kernel: \[5223028.167165\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.26 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=14418 PROTO=TCP SPT=45649 DPT=28000 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 29 12:11:47 h2177944 kernel: \[5223267.440470\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.26 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=24442 PROTO=TCP SPT=45649 DPT=33000 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 29 12:21:49 h2177944 kernel: \[5223869.860893\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.26 DST=85.214.117.9 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=64015 PROTO=TCP SPT=45649 DPT=11001 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 29 12:41:43 h2177944 kernel: \[5225063.781969\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=45.136.110.26 DST=85.214.1	2019-10-29 20:03:09
118.89.135.215	attackbots	Oct 29 01:37:10 wbs sshd\[4064\]: Invalid user temp from 118.89.135.215 Oct 29 01:37:10 wbs sshd\[4064\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.135.215 Oct 29 01:37:11 wbs sshd\[4064\]: Failed password for invalid user temp from 118.89.135.215 port 48174 ssh2 Oct 29 01:42:10 wbs sshd\[4592\]: Invalid user ubnt from 118.89.135.215 Oct 29 01:42:10 wbs sshd\[4592\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.135.215	2019-10-29 20:00:19
222.186.175.202	attackspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.202 user=root Failed password for root from 222.186.175.202 port 49318 ssh2 Failed password for root from 222.186.175.202 port 49318 ssh2 Failed password for root from 222.186.175.202 port 49318 ssh2 Failed password for root from 222.186.175.202 port 49318 ssh2	2019-10-29 19:51:54
184.168.192.128	attackspam	abcdata-sys.de:80 184.168.192.128 - - \[29/Oct/2019:04:44:40 +0100\] "POST /xmlrpc.php HTTP/1.1" 301 441 "-" "WordPress/4.7.1\; https://wyf.org.my" www.goldgier.de 184.168.192.128 \[29/Oct/2019:04:44:41 +0100\] "POST /xmlrpc.php HTTP/1.1" 200 4469 "-" "WordPress/4.7.1\; https://wyf.org.my"	2019-10-29 19:43:12
141.105.89.78	attackspam	Automatic report - XMLRPC Attack	2019-10-29 19:49:43
104.236.45.171	attackspambots	xmlrpc attack	2019-10-29 19:46:04
80.94.164.118	attackspambots	Oct 29 01:41:11 web1 sshd\[27269\]: Invalid user teamspeak3 from 80.94.164.118 Oct 29 01:41:11 web1 sshd\[27269\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.94.164.118 Oct 29 01:41:12 web1 sshd\[27269\]: Failed password for invalid user teamspeak3 from 80.94.164.118 port 57638 ssh2 Oct 29 01:42:02 web1 sshd\[27348\]: Invalid user wwwrun from 80.94.164.118 Oct 29 01:42:02 web1 sshd\[27348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.94.164.118	2019-10-29 20:05:05
183.129.150.2	attack	Oct 29 12:32:38 vps58358 sshd\[11073\]: Invalid user aqua from 183.129.150.2Oct 29 12:32:40 vps58358 sshd\[11073\]: Failed password for invalid user aqua from 183.129.150.2 port 37599 ssh2Oct 29 12:37:28 vps58358 sshd\[11111\]: Invalid user chandu from 183.129.150.2Oct 29 12:37:31 vps58358 sshd\[11111\]: Failed password for invalid user chandu from 183.129.150.2 port 39536 ssh2Oct 29 12:42:22 vps58358 sshd\[11200\]: Invalid user gok from 183.129.150.2Oct 29 12:42:24 vps58358 sshd\[11200\]: Failed password for invalid user gok from 183.129.150.2 port 41441 ssh2 ...	2019-10-29 19:49:19
222.186.180.9	attack	Oct 29 12:42:15 herz-der-gamer sshd[25300]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.9 user=root Oct 29 12:42:17 herz-der-gamer sshd[25300]: Failed password for root from 222.186.180.9 port 20794 ssh2 ...	2019-10-29 19:54:14
161.10.238.226	attackspambots	Oct 29 12:42:08 vps01 sshd[3685]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.10.238.226 Oct 29 12:42:10 vps01 sshd[3685]: Failed password for invalid user nandu from 161.10.238.226 port 48493 ssh2	2019-10-29 20:00:31
119.27.167.231	attackspam	pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.167.231 user=root Failed password for root from 119.27.167.231 port 41592 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.167.231 user=root Failed password for root from 119.27.167.231 port 48382 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.27.167.231 user=root	2019-10-29 19:33:51
51.255.197.164	attackspam	Oct 29 12:38:21 SilenceServices sshd[6243]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.197.164 Oct 29 12:38:23 SilenceServices sshd[6243]: Failed password for invalid user 1+2+3 from 51.255.197.164 port 40225 ssh2 Oct 29 12:42:17 SilenceServices sshd[7364]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.197.164	2019-10-29 19:54:48

Recently Reported IPs

51.141.102.180	218.86.22.160	184.174.10.74	173.44.201.45
87.9.163.228	179.99.30.192	17.242.47.242	186.251.143.120
201.47.229.157	51.234.167.194	96.121.190.114	250.5.185.224
26.42.100.238	217.72.192.75	45.73.160.127	113.190.11.47
184.174.10.76	118.99.83.25	112.248.39.203	59.127.121.52