45.83.66.242 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: Alpha Strike Labs GmbH

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 45.83.66.242 to port 102	2020-07-09 07:57:57

Comments on same subnet:

IP	Type	Details	Datetime
45.83.66.85	proxy	VPN fraud	2023-05-25 12:40:34
45.83.66.88	attack	" "	2020-08-10 06:53:28
45.83.66.234	attackbots	Unauthorized connection attempt detected from IP address 45.83.66.234 to port 110	2020-07-25 22:19:16
45.83.66.150	attackspambots	Unauthorized connection attempt detected from IP address 45.83.66.150 to port 443	2020-07-23 06:44:11
45.83.66.248	attack	Unauthorized connection attempt detected from IP address 45.83.66.248 to port 102	2020-07-09 07:57:32
45.83.66.71	attackspambots	Unauthorized connection attempt detected from IP address 45.83.66.71 to port 102	2020-07-09 06:53:39
45.83.66.171	attackspam	Unauthorized connection attempt detected from IP address 45.83.66.171 to port 102	2020-07-09 06:53:16
45.83.66.161	attackspam	Unauthorized connection attempt detected from IP address 45.83.66.161 to port 102	2020-07-09 05:07:07
45.83.66.36	attackbots	Unauthorized connection attempt detected from IP address 45.83.66.36 to port 53	2020-07-07 04:59:16
45.83.66.79	attack	Unauthorized connection attempt detected from IP address 45.83.66.79 to port 22	2020-07-07 04:58:54
45.83.66.116	attack	Unauthorized connection attempt detected from IP address 45.83.66.116 to port 110	2020-05-31 04:29:30
45.83.66.185	attackbotsspam	Unauthorized connection attempt detected from IP address 45.83.66.185 to port 110	2020-05-31 02:41:14
45.83.66.17	attackbotsspam	Scanning	2020-05-11 21:31:22
45.83.66.150	attackbots	Hits on port : 2012	2020-04-14 17:06:02
45.83.66.225	attackbots	" "	2020-04-01 15:56:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.83.66.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25360
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.83.66.242.			IN	A

;; AUTHORITY SECTION:
.			470	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020070801 1800 900 604800 86400

;; Query time: 50 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 09 07:57:54 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 242.66.83.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.66.83.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.199.80.67	attackspambots	Oct 14 14:00:08 ns381471 sshd[6426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67 Oct 14 14:00:10 ns381471 sshd[6426]: Failed password for invalid user Liberty2017 from 139.199.80.67 port 41642 ssh2 Oct 14 14:05:03 ns381471 sshd[6635]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.199.80.67	2019-10-15 02:05:54
116.75.228.133	attackbotsspam	[portscan] Port scan	2019-10-15 01:54:12
103.111.226.113	attack	hagk	2019-10-15 01:51:44
112.85.42.237	attackspam	2019-10-14T18:14:30.893350abusebot-2.cloudsearch.cf sshd\[31941\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.237 user=root	2019-10-15 02:18:05
185.90.116.37	attackspam	10/14/2019-13:57:57.337162 185.90.116.37 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-15 02:15:16
221.143.48.143	attack	$f2bV_matches	2019-10-15 02:11:37
188.165.24.200	attack	Automatic report - Banned IP Access	2019-10-15 02:09:15
134.209.11.199	attackspambots	Oct 12 09:12:46 heissa sshd\[29192\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.11.199 user=root Oct 12 09:12:48 heissa sshd\[29192\]: Failed password for root from 134.209.11.199 port 34480 ssh2 Oct 12 09:16:47 heissa sshd\[29788\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.11.199 user=root Oct 12 09:16:49 heissa sshd\[29788\]: Failed password for root from 134.209.11.199 port 46522 ssh2 Oct 12 09:20:54 heissa sshd\[30441\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.11.199 user=root	2019-10-15 02:01:52
49.207.31.18	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 14-10-2019 12:45:19.	2019-10-15 01:58:57
129.146.181.251	attackbotsspam	Oct 14 13:33:07 mxgate1 postfix/postscreen[32436]: CONNECT from [129.146.181.251]:54194 to [176.31.12.44]:25 Oct 14 13:33:07 mxgate1 postfix/dnsblog[32438]: addr 129.146.181.251 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Oct 14 13:33:08 mxgate1 postfix/dnsblog[32440]: addr 129.146.181.251 listed by domain zen.spamhaus.org as 127.0.0.3 Oct 14 13:33:08 mxgate1 postfix/dnsblog[32440]: addr 129.146.181.251 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 14 13:33:08 mxgate1 postfix/dnsblog[32437]: addr 129.146.181.251 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 14 13:33:08 mxgate1 postfix/dnsblog[32439]: addr 129.146.181.251 listed by domain bl.spamcop.net as 127.0.0.2 Oct 14 13:33:13 mxgate1 postfix/postscreen[32436]: DNSBL rank 5 for [129.146.181.251]:54194 Oct x@x Oct 14 13:33:14 mxgate1 postfix/postscreen[32436]: DISCONNECT [129.146.181.251]:54194 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=129.146.181.251	2019-10-15 01:44:49
103.111.226.113	spambotsattackproxynormal	hack my net	2019-10-15 01:52:41
81.22.45.65	attack	Oct 14 19:15:36 mc1 kernel: \[2359713.818677\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=40853 PROTO=TCP SPT=48763 DPT=10187 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 14 19:18:09 mc1 kernel: \[2359866.319350\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=44613 PROTO=TCP SPT=48763 DPT=10315 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 14 19:22:27 mc1 kernel: \[2360124.785453\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.65 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=64623 PROTO=TCP SPT=48763 DPT=9551 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-15 01:42:12
94.177.197.77	attack	2019-10-14T11:45:12.820223abusebot-2.cloudsearch.cf sshd\[31000\]: Invalid user Tutorial@123 from 94.177.197.77 port 59010	2019-10-15 02:04:36
88.132.237.187	attackspambots	Oct 14 07:59:56 plusreed sshd[6892]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=88.132.237.187 user=root Oct 14 07:59:58 plusreed sshd[6892]: Failed password for root from 88.132.237.187 port 52882 ssh2 ...	2019-10-15 02:19:27
49.234.206.45	attackspambots	(sshd) Failed SSH login from 49.234.206.45 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 14 15:36:58 server2 sshd[18120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.206.45 user=root Oct 14 15:37:00 server2 sshd[18120]: Failed password for root from 49.234.206.45 port 45308 ssh2 Oct 14 16:00:04 server2 sshd[18876]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.206.45 user=root Oct 14 16:00:06 server2 sshd[18876]: Failed password for root from 49.234.206.45 port 55748 ssh2 Oct 14 16:05:47 server2 sshd[19123]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.206.45 user=root	2019-10-15 02:17:42

Recently Reported IPs

14.115.88.243	179.172.115.58	5.10.189.173	5.236.130.42
64.175.188.195	176.203.92.3	171.88.173.130	100.247.254.103
134.91.200.120	1.164.203.22	95.50.51.138	216.98.95.58
77.215.128.205	202.109.239.173	83.48.34.40	92.55.39.73
175.55.200.170	82.17.218.141	181.81.76.105	108.105.11.11