45.80.64.216 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: Data Centre Solutions Limited Liability Company

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	SSH Brute-Force reported by Fail2Ban	2019-10-05 15:43:50
attack	Sep 28 13:50:59 lcdev sshd\[20716\]: Invalid user pr from 45.80.64.216 Sep 28 13:50:59 lcdev sshd\[20716\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.216 Sep 28 13:51:00 lcdev sshd\[20716\]: Failed password for invalid user pr from 45.80.64.216 port 43908 ssh2 Sep 28 13:55:14 lcdev sshd\[21108\]: Invalid user randall from 45.80.64.216 Sep 28 13:55:14 lcdev sshd\[21108\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.216	2019-09-29 08:02:50
attackspambots	Sep 27 07:06:31 server sshd\[18288\]: Invalid user dbtest from 45.80.64.216 port 50436 Sep 27 07:06:31 server sshd\[18288\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.216 Sep 27 07:06:33 server sshd\[18288\]: Failed password for invalid user dbtest from 45.80.64.216 port 50436 ssh2 Sep 27 07:10:47 server sshd\[1090\]: Invalid user patrol from 45.80.64.216 port 33242 Sep 27 07:10:47 server sshd\[1090\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.216	2019-09-27 15:25:38
attackspam	Sep 23 21:33:38 vtv3 sshd\[22285\]: Invalid user test from 45.80.64.216 port 39910 Sep 23 21:33:38 vtv3 sshd\[22285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.216 Sep 23 21:33:41 vtv3 sshd\[22285\]: Failed password for invalid user test from 45.80.64.216 port 39910 ssh2 Sep 23 21:37:50 vtv3 sshd\[24645\]: Invalid user rust from 45.80.64.216 port 52130 Sep 23 21:37:50 vtv3 sshd\[24645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.216 Sep 23 21:50:17 vtv3 sshd\[31419\]: Invalid user gaya from 45.80.64.216 port 60562 Sep 23 21:50:17 vtv3 sshd\[31419\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.216 Sep 23 21:50:18 vtv3 sshd\[31419\]: Failed password for invalid user gaya from 45.80.64.216 port 60562 ssh2 Sep 23 21:54:36 vtv3 sshd\[749\]: Invalid user joe from 45.80.64.216 port 44556 Sep 23 21:54:36 vtv3 sshd\[749\]: pam_unix$sshd:auth$: au	2019-09-24 08:27:11
attackspambots	SSH Bruteforce attempt	2019-09-23 03:21:40
attack	Invalid user user from 45.80.64.216 port 48774	2019-09-13 13:03:36
attackbots	Invalid user awsjava from 45.80.64.216 port 37854	2019-08-30 20:21:29
attackbotsspam	Aug 25 23:53:34 lnxweb61 sshd[5661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.216	2019-08-26 08:52:07

Comments on same subnet:

IP	Type	Details	Datetime
45.80.64.230	attackspambots	2020-10-13T10:20:01.200032abusebot.cloudsearch.cf sshd[14448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.230 user=root 2020-10-13T10:20:03.104678abusebot.cloudsearch.cf sshd[14448]: Failed password for root from 45.80.64.230 port 42440 ssh2 2020-10-13T10:23:40.882648abusebot.cloudsearch.cf sshd[14494]: Invalid user lr from 45.80.64.230 port 45290 2020-10-13T10:23:40.888202abusebot.cloudsearch.cf sshd[14494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.230 2020-10-13T10:23:40.882648abusebot.cloudsearch.cf sshd[14494]: Invalid user lr from 45.80.64.230 port 45290 2020-10-13T10:23:42.859128abusebot.cloudsearch.cf sshd[14494]: Failed password for invalid user lr from 45.80.64.230 port 45290 ssh2 2020-10-13T10:27:03.341034abusebot.cloudsearch.cf sshd[14728]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.230 user=root 2020-10-13T10:2 ...	2020-10-14 00:13:21
45.80.64.230	attackbots	Oct 13 07:08:53 pornomens sshd\[28884\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.230 user=root Oct 13 07:08:54 pornomens sshd\[28884\]: Failed password for root from 45.80.64.230 port 43550 ssh2 Oct 13 07:12:49 pornomens sshd\[29018\]: Invalid user dle from 45.80.64.230 port 48430 Oct 13 07:12:49 pornomens sshd\[29018\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.230 ...	2020-10-13 15:25:49
45.80.64.230	attack	SSH brute force	2020-10-13 08:01:43
45.80.64.230	attackspam	Oct 12 11:47:11 ns3164893 sshd[6838]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.230 Oct 12 11:47:13 ns3164893 sshd[6838]: Failed password for invalid user demo from 45.80.64.230 port 45686 ssh2 ...	2020-10-12 21:57:58
45.80.64.230	attackspam	2020-10-12T03:52:46.550454abusebot-7.cloudsearch.cf sshd[19772]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.230 user=root 2020-10-12T03:52:48.815574abusebot-7.cloudsearch.cf sshd[19772]: Failed password for root from 45.80.64.230 port 57886 ssh2 2020-10-12T03:58:15.521108abusebot-7.cloudsearch.cf sshd[19785]: Invalid user barbara from 45.80.64.230 port 51206 2020-10-12T03:58:15.527133abusebot-7.cloudsearch.cf sshd[19785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.230 2020-10-12T03:58:15.521108abusebot-7.cloudsearch.cf sshd[19785]: Invalid user barbara from 45.80.64.230 port 51206 2020-10-12T03:58:17.622102abusebot-7.cloudsearch.cf sshd[19785]: Failed password for invalid user barbara from 45.80.64.230 port 51206 ssh2 2020-10-12T04:01:44.833555abusebot-7.cloudsearch.cf sshd[19855]: Invalid user roberta from 45.80.64.230 port 54380 ...	2020-10-12 13:26:03
45.80.64.230	attackbotsspam	Sep 28 13:23:49 ws24vmsma01 sshd[101451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.230 Sep 28 13:23:50 ws24vmsma01 sshd[101451]: Failed password for invalid user production from 45.80.64.230 port 43450 ssh2 ...	2020-09-29 00:45:08
45.80.64.230	attackbots	2020-09-28 01:41:20.041947-0500 localhost sshd[41809]: Failed password for invalid user matheus from 45.80.64.230 port 40754 ssh2	2020-09-28 16:48:25
45.80.64.230	attackspam	Invalid user lfs from 45.80.64.230 port 46094	2020-09-24 22:14:47
45.80.64.230	attackbots	Time: Thu Sep 24 05:25:04 2020 +0000 IP: 45.80.64.230 (RU/Russia/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 24 05:13:49 3 sshd[15181]: Invalid user train1 from 45.80.64.230 port 38700 Sep 24 05:13:51 3 sshd[15181]: Failed password for invalid user train1 from 45.80.64.230 port 38700 ssh2 Sep 24 05:23:24 3 sshd[7811]: Invalid user admin from 45.80.64.230 port 45374 Sep 24 05:23:27 3 sshd[7811]: Failed password for invalid user admin from 45.80.64.230 port 45374 ssh2 Sep 24 05:25:00 3 sshd[12750]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.230 user=root	2020-09-24 14:07:06
45.80.64.230	attackbots	Sep 23 17:04:23 IngegnereFirenze sshd[27731]: Failed password for invalid user tmp from 45.80.64.230 port 55926 ssh2 ...	2020-09-24 05:35:31
45.80.64.246	attack	Sep 18 08:54:35 *** sshd[5294]: User root from 45.80.64.246 not allowed because not listed in AllowUsers	2020-09-18 23:44:39
45.80.64.246	attackspambots	Sep 17 07:16:23 XXX sshd[27956]: Invalid user superman from 45.80.64.246 port 42314	2020-09-18 15:52:41
45.80.64.246	attackbotsspam	Sep 17 18:59:37 vm0 sshd[29024]: Failed password for root from 45.80.64.246 port 33224 ssh2 Sep 17 23:02:46 vm0 sshd[32614]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.246 ...	2020-09-18 06:08:59
45.80.64.230	attackspam	Sep 16 18:54:28 ip106 sshd[19223]: Failed password for root from 45.80.64.230 port 43774 ssh2 ...	2020-09-17 18:10:24
45.80.64.230	attackspam	Sep 16 18:54:28 ip106 sshd[19223]: Failed password for root from 45.80.64.230 port 43774 ssh2 ...	2020-09-17 09:22:54

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.80.64.216
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9207
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.80.64.216.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082501 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 26 08:52:02 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 216.64.80.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 216.64.80.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
221.186.156.120	attack	Icarus honeypot on github	2020-09-02 06:41:14
49.234.28.148	attackbotsspam	Invalid user ftp1 from 49.234.28.148 port 46666	2020-09-02 06:49:54
106.75.25.114	attackspambots	$f2bV_matches	2020-09-02 06:42:43
159.89.145.59	attackspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-02 06:39:13
81.247.73.143	attackspam	Port probing on unauthorized port 23	2020-09-02 06:29:53
51.161.107.124	attack	[ssh] SSH attack	2020-09-02 06:44:25
222.186.42.137	attackbotsspam	Sep 2 00:47:28 minden010 sshd[6712]: Failed password for root from 222.186.42.137 port 10697 ssh2 Sep 2 00:47:29 minden010 sshd[6712]: Failed password for root from 222.186.42.137 port 10697 ssh2 Sep 2 00:47:32 minden010 sshd[6712]: Failed password for root from 222.186.42.137 port 10697 ssh2 ...	2020-09-02 06:51:43
92.195.107.89	attackbots	SSH/22 MH Probe, BF, Hack -	2020-09-02 06:36:36
51.178.182.35	attack	Sep 2 00:43:20 ns382633 sshd\[9737\]: Invalid user watanabe from 51.178.182.35 port 43956 Sep 2 00:43:20 ns382633 sshd\[9737\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.182.35 Sep 2 00:43:22 ns382633 sshd\[9737\]: Failed password for invalid user watanabe from 51.178.182.35 port 43956 ssh2 Sep 2 00:46:59 ns382633 sshd\[10469\]: Invalid user beginner from 51.178.182.35 port 52464 Sep 2 00:46:59 ns382633 sshd\[10469\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.182.35	2020-09-02 06:47:50
46.101.189.37	attack	Invalid user git from 46.101.189.37 port 55470	2020-09-02 06:29:22
54.37.86.192	attackbots	Sep 1 18:58:13 funkybot sshd[27435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.86.192 Sep 1 18:58:15 funkybot sshd[27435]: Failed password for invalid user magno from 54.37.86.192 port 38608 ssh2 ...	2020-09-02 06:50:09
182.122.72.68	attackspambots	Sep 2 00:35:08 ns382633 sshd\[8103\]: Invalid user atul from 182.122.72.68 port 5170 Sep 2 00:35:08 ns382633 sshd\[8103\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.122.72.68 Sep 2 00:35:11 ns382633 sshd\[8103\]: Failed password for invalid user atul from 182.122.72.68 port 5170 ssh2 Sep 2 00:42:52 ns382633 sshd\[9643\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.122.72.68 user=root Sep 2 00:42:54 ns382633 sshd\[9643\]: Failed password for root from 182.122.72.68 port 46430 ssh2	2020-09-02 06:50:52
45.142.120.192	attackspam	Brute force attack stopped by firewall	2020-09-02 07:02:19
103.130.215.146	attackspam	20/9/1@12:46:56: FAIL: Alarm-Intrusion address from=103.130.215.146 ...	2020-09-02 06:53:09
159.89.130.178	attack	Sep 2 00:20:05 ns382633 sshd\[5453\]: Invalid user oracle from 159.89.130.178 port 45312 Sep 2 00:20:05 ns382633 sshd\[5453\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.130.178 Sep 2 00:20:07 ns382633 sshd\[5453\]: Failed password for invalid user oracle from 159.89.130.178 port 45312 ssh2 Sep 2 00:30:32 ns382633 sshd\[7595\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.130.178 user=root Sep 2 00:30:35 ns382633 sshd\[7595\]: Failed password for root from 159.89.130.178 port 59218 ssh2	2020-09-02 06:47:18

Recently Reported IPs

250.86.58.212	35.141.179.193	143.68.0.148	131.20.197.113
141.39.179.8	35.238.85.12	104.244.74.11	189.102.215.90
79.158.104.65	104.40.6.167	0.99.97.57	207.163.112.140
103.72.84.77	88.250.39.35	251.191.188.79	11.3.96.249
148.77.136.123	237.144.67.245	95.56.40.246	171.59.252.1