Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Alpha Strike Labs GmbH

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:
Type Details Datetime
attackbotsspam
Unauthorized connection attempt detected from IP address 45.83.64.145 to port 22 [J]
2020-03-01 05:25:08
Comments on same subnet:
IP Type Details Datetime
45.83.64.255 proxy
45.83.64.255
2023-06-08 13:14:10
45.83.64.235 attackbotsspam
port scan and connect, tcp 80 (http)
2020-09-29 02:48:45
45.83.64.235 attackspambots
port scan and connect, tcp 80 (http)
2020-09-28 18:55:56
45.83.64.178 attackspambots
Port Scan detected!
...
2020-08-30 04:30:20
45.83.64.26 attack
port scan and connect, tcp 143 (imap)
2020-08-23 07:44:39
45.83.64.148 attack
Honeypot hit.
2020-08-17 06:37:32
45.83.64.18 attackbots
Unauthorised access (Aug 11) SRC=45.83.64.18 LEN=40 TOS=0x10 PREC=0x40 TTL=57 ID=1337 DF TCP DPT=21 WINDOW=0 SYN
2020-08-12 03:56:16
45.83.64.174 attack
Unauthorized connection attempt detected from IP address 45.83.64.174 to port 110
2020-07-25 21:58:00
45.83.64.190 attack
Unauthorized connection attempt detected from IP address 45.83.64.190 to port 110
2020-07-25 21:11:17
45.83.64.22 attackbots
Hit honeypot r.
2020-07-18 03:28:54
45.83.64.138 attackbots
Port scan denied
2020-07-13 23:06:08
45.83.64.229 attack
Unauthorized connection attempt detected from IP address 45.83.64.229 to port 102
2020-07-09 07:37:55
45.83.64.177 attack
Unauthorized connection attempt detected from IP address 45.83.64.177 to port 102
2020-07-09 06:09:37
45.83.64.232 attack
Unauthorized connection attempt detected from IP address 45.83.64.232 to port 102
2020-07-09 05:48:12
45.83.64.101 attackspambots
Unauthorized connection attempt detected from IP address 45.83.64.101 to port 102
2020-07-09 05:28:19
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.83.64.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43744
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.83.64.145.			IN	A

;; AUTHORITY SECTION:
.			597	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020022901 1800 900 604800 86400

;; Query time: 114 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Mar 01 05:25:05 CST 2020
;; MSG SIZE  rcvd: 116
Host info
Host 145.64.83.45.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.64.83.45.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
125.105.201.223 attackspambots
IP Ban Report :  
 https://help-dysk.pl/wordpress-firewall-plugins/ip/125.105.201.223/ 
 
 EU - 1H : (3)  
 Protection Against DDoS WordPress plugin :  
 "odzyskiwanie danych help-dysk" 
 IP Address Ranges by Country : EU 
 NAME ASN : ASN4134 
 
 IP : 125.105.201.223 
 
 CIDR : 125.104.0.0/13 
 
 PREFIX COUNT : 5430 
 
 UNIQUE IP COUNT : 106919680 
 
 
 ATTACKS DETECTED ASN4134 :  
  1H - 40 
  3H - 81 
  6H - 81 
 12H - 84 
 24H - 84 
 
 DateTime : 2019-10-27 04:43:55 
 
 INFO : Port Scan TELNET Detected and Blocked by ADMIN  - data recovery
2019-10-27 20:09:53
165.227.81.124 attackbotsspam
Oct 26 12:07:41 kmh-mb-001 sshd[16900]: Did not receive identification string from 165.227.81.124 port 39408
Oct 26 12:07:55 kmh-mb-001 sshd[16905]: Did not receive identification string from 165.227.81.124 port 49150
Oct 26 12:08:13 kmh-mb-001 sshd[16927]: Did not receive identification string from 165.227.81.124 port 38338
Oct 26 12:10:19 kmh-mb-001 sshd[17069]: Invalid user tina from 165.227.81.124 port 38932
Oct 26 12:10:19 kmh-mb-001 sshd[17069]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.81.124
Oct 26 12:10:21 kmh-mb-001 sshd[17069]: Failed password for invalid user tina from 165.227.81.124 port 38932 ssh2
Oct 26 12:10:21 kmh-mb-001 sshd[17069]: Received disconnect from 165.227.81.124 port 38932:11: Normal Shutdown, Thank you for playing [preauth]
Oct 26 12:10:21 kmh-mb-001 sshd[17069]: Disconnected from 165.227.81.124 port 38932 [preauth]
Oct 26 12:10:59 kmh-mb-001 sshd[17072]: Invalid user tina from 165.227.81........
-------------------------------
2019-10-27 20:14:38
119.84.8.43 attackspambots
Oct 27 13:04:27 meumeu sshd[19713]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.84.8.43 
Oct 27 13:04:29 meumeu sshd[19713]: Failed password for invalid user alderete from 119.84.8.43 port 34590 ssh2
Oct 27 13:09:32 meumeu sshd[20401]: Failed password for root from 119.84.8.43 port 52768 ssh2
...
2019-10-27 20:18:18
198.57.203.54 attackbotsspam
Automatic report - Banned IP Access
2019-10-27 20:13:24
54.37.204.154 attack
Oct 27 13:10:55 SilenceServices sshd[17943]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.204.154
Oct 27 13:10:56 SilenceServices sshd[17943]: Failed password for invalid user osborne from 54.37.204.154 port 51116 ssh2
Oct 27 13:15:40 SilenceServices sshd[19241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.204.154
2019-10-27 20:20:15
111.254.62.141 attackbotsspam
Oct 27 13:03:37 mxgate1 postfix/postscreen[10186]: CONNECT from [111.254.62.141]:44044 to [176.31.12.44]:25
Oct 27 13:03:37 mxgate1 postfix/dnsblog[10282]: addr 111.254.62.141 listed by domain cbl.abuseat.org as 127.0.0.2
Oct 27 13:03:37 mxgate1 postfix/dnsblog[10227]: addr 111.254.62.141 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2
Oct 27 13:03:37 mxgate1 postfix/dnsblog[10230]: addr 111.254.62.141 listed by domain b.barracudacentral.org as 127.0.0.2
Oct 27 13:03:38 mxgate1 postfix/dnsblog[10228]: addr 111.254.62.141 listed by domain zen.spamhaus.org as 127.0.0.4
Oct 27 13:03:38 mxgate1 postfix/dnsblog[10228]: addr 111.254.62.141 listed by domain zen.spamhaus.org as 127.0.0.10
Oct 27 13:03:43 mxgate1 postfix/postscreen[10186]: DNSBL rank 5 for [111.254.62.141]:44044
Oct x@x
Oct 27 13:03:44 mxgate1 postfix/postscreen[10186]: HANGUP after 1.2 from [111.254.62.141]:44044 in tests after SMTP handshake
Oct 27 13:03:44 mxgate1 postfix/postscreen[10186]: DISCONNECT [111.........
-------------------------------
2019-10-27 20:28:24
195.123.212.200 attackbotsspam
Honeypot attack, port: 445, PTR: vds-371379.hosted-by-itldc.com.
2019-10-27 20:22:14
153.35.93.117 attackspam
Unauthorized SSH login attempts
2019-10-27 20:37:08
198.108.67.102 attack
Honeypot attack, port: 5555, PTR: scratch-02.sfj.corp.censys.io.
2019-10-27 20:25:39
148.66.133.195 attack
Oct 27 07:59:59 ny01 sshd[31563]: Failed password for root from 148.66.133.195 port 39188 ssh2
Oct 27 08:04:58 ny01 sshd[32027]: Failed password for root from 148.66.133.195 port 49942 ssh2
2019-10-27 20:11:26
49.88.112.115 attackbots
2019-10-27T13:07:45.304348lon01.zurich-datacenter.net sshd\[25941\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115  user=root
2019-10-27T13:07:47.854029lon01.zurich-datacenter.net sshd\[25941\]: Failed password for root from 49.88.112.115 port 42622 ssh2
2019-10-27T13:07:50.512434lon01.zurich-datacenter.net sshd\[25941\]: Failed password for root from 49.88.112.115 port 42622 ssh2
2019-10-27T13:07:53.106486lon01.zurich-datacenter.net sshd\[25941\]: Failed password for root from 49.88.112.115 port 42622 ssh2
2019-10-27T13:09:37.960083lon01.zurich-datacenter.net sshd\[25977\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.115  user=root
...
2019-10-27 20:15:20
91.209.65.98 attackbotsspam
2019-10-27T12:09:39.396545abusebot-6.cloudsearch.cf sshd\[20157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.209.65.98  user=root
2019-10-27 20:13:06
106.13.98.217 attackbots
Oct 27 05:34:01 home sshd[2189]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.98.217  user=root
Oct 27 05:34:03 home sshd[2189]: Failed password for root from 106.13.98.217 port 58276 ssh2
Oct 27 05:40:31 home sshd[2261]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.98.217  user=root
Oct 27 05:40:34 home sshd[2261]: Failed password for root from 106.13.98.217 port 42234 ssh2
Oct 27 05:45:51 home sshd[2354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.98.217  user=root
Oct 27 05:45:53 home sshd[2354]: Failed password for root from 106.13.98.217 port 48942 ssh2
Oct 27 05:53:32 home sshd[2424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.98.217  user=root
Oct 27 05:53:34 home sshd[2424]: Failed password for root from 106.13.98.217 port 55682 ssh2
Oct 27 05:58:35 home sshd[2453]: pam_unix(sshd:auth): authentication
2019-10-27 20:39:57
217.68.213.117 attackbots
SSH Server BruteForce Attack
2019-10-27 20:12:11
222.186.180.223 attack
2019-10-27T19:09:37.762622enmeeting.mahidol.ac.th sshd\[1293\]: User root from 222.186.180.223 not allowed because not listed in AllowUsers
2019-10-27T19:09:39.019230enmeeting.mahidol.ac.th sshd\[1293\]: Failed none for invalid user root from 222.186.180.223 port 34480 ssh2
2019-10-27T19:09:40.373645enmeeting.mahidol.ac.th sshd\[1293\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.223  user=root
...
2019-10-27 20:10:56

Recently Reported IPs

72.197.161.227 1.54.54.174 176.132.141.157 222.113.96.165
169.55.107.20 220.133.157.219 219.92.220.236 68.141.242.22
218.32.156.214 104.190.142.115 113.42.196.71 156.198.29.164
210.222.205.77 210.123.158.78 77.166.153.15 93.48.227.64
111.36.138.22 205.204.30.254 2.234.12.247 202.166.138.182