45.95.97.4 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.95.97.247	attack	(From jessika.bean@yahoo.com) This Google doc exposes how this scamdemic is part of a bigger plan to crush your business and keep it closed or semi-operational (with heavy rescritions) while big corporations remain open without consequences. This Covid lie has ruined many peoples lives and businesses and is all done on purpose to bring about the One World Order. It goes much deeper than this but the purpose of this doc is to expose the evil and wickedness that works in the background to ruin peoples lives. So feel free to share this message with friends and family. No need to reply to the email i provided above as its not registered. But this information will tell you everything you need to know. https://docs.google.com/document/d/14MuVe_anmrcDQl4sZhDqzhQy0Pbhrx9A/edit. In case the document is taken down, here is a backup source https://fakecovidscam.com	2020-07-23 23:26:58

Type

Details

Datetime

45.95.97.247

attack

(From jessika.bean@yahoo.com) This Google doc exposes how this scamdemic is part of a bigger plan to crush your business and keep it closed or semi-operational (with heavy rescritions) while big corporations remain open without consequences. This Covid lie has ruined many peoples lives and businesses and is all done on purpose to bring about the One World Order. It goes much deeper than this but the purpose of this doc is to expose the evil and wickedness that works in the background to ruin peoples lives. So feel free to share this message with friends and family. No need to reply to the email i provided above as its not registered. But this information will tell you everything you need to know. https://docs.google.com/document/d/14MuVe_anmrcDQl4sZhDqzhQy0Pbhrx9A/edit. In case the document is taken down, here is a backup source https://fakecovidscam.com

2020-07-23 23:26:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.95.97.4
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 15231
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.95.97.4.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091600 1800 900 604800 86400

;; Query time: 67 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 17:25:32 CST 2022
;; MSG SIZE  rcvd: 103

Host info

Host 4.97.95.45.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

server can't find 45.95.97.4.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
163.172.100.71	attack	Brute force VPN server	2020-01-28 05:13:06
109.150.19.71	attack	Unauthorized connection attempt detected from IP address 109.150.19.71 to port 2220 [J]	2020-01-28 05:37:32
222.186.175.23	attackspam	2020-01-27T16:51:24.499196vostok sshd\[23615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.23 user=root \| Triggered by Fail2Ban at Vostok web server	2020-01-28 05:54:00
200.27.131.51	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-28 05:12:33
92.207.253.2	attackspam	2019-07-09 14:34:11 1hkpJv-00020r-OJ SMTP connection from \(\[92.207.253.2\]\) \[92.207.253.2\]:45180 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-09 14:34:28 1hkpKF-00021E-TV SMTP connection from \(\[92.207.253.2\]\) \[92.207.253.2\]:45298 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-09 14:34:48 1hkpKY-00021O-J9 SMTP connection from \(\[92.207.253.2\]\) \[92.207.253.2\]:45386 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 05:47:58
92.211.225.76	attackbots	2019-07-08 16:36:12 1hkUkW-0002yr-2b SMTP connection from ipservice-092-211-225-076.092.211.pools.vodafone-ip.de \[92.211.225.76\]:32066 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 16:36:24 1hkUkh-0002z4-HZ SMTP connection from ipservice-092-211-225-076.092.211.pools.vodafone-ip.de \[92.211.225.76\]:32167 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-08 16:36:31 1hkUkp-0002zQ-4e SMTP connection from ipservice-092-211-225-076.092.211.pools.vodafone-ip.de \[92.211.225.76\]:32223 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 05:46:01
134.175.32.95	attack	Jan 27 22:18:01 meumeu sshd[1206]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.32.95 Jan 27 22:18:03 meumeu sshd[1206]: Failed password for invalid user ftptest from 134.175.32.95 port 40230 ssh2 Jan 27 22:21:18 meumeu sshd[1761]: Failed password for root from 134.175.32.95 port 41560 ssh2 ...	2020-01-28 05:37:12
187.234.125.157	attackspam	Unauthorized connection attempt detected from IP address 187.234.125.157 to port 5555 [J]	2020-01-28 05:50:39
92.216.208.203	attackspam	2020-01-20 19:27:57 SMTP protocol synchronization error \(input sent without waiting for greeting\): rejected connection from H=ipservice-092-216-208-203.092.216.pools.vodafone-ip.de \[92.216.208.203\]:61400 I=\[193.107.90.29\]:25 input="CONNECT 2.18.48.37:443 HTTP/1.0\r" 2020-01-20 19:27:57 SMTP protocol synchronization error \(input sent without waiting for greeting\): rejected connection from H=ipservice-092-216-208-203.092.216.pools.vodafone-ip.de \[92.216.208.203\]:61435 I=\[193.107.90.29\]:25 input="\004\001\001�\002\0220%" 2020-01-20 19:27:57 SMTP protocol synchronization error \(input sent without waiting for greeting\): rejected connection from H=ipservice-092-216-208-203.092.216.pools.vodafone-ip.de \[92.216.208.203\]:61451 I=\[193.107.90.29\]:25 input="\005\001" 2020-01-20 19:27:57 SMTP protocol synchronization error \(input sent without waiting for greeting\): rejected connection from H=ipservice-092-216-208-203.092.216.pools.vodafone-ip.de \[92.216.208.203\]:61468 I=\[19 ...	2020-01-28 05:43:42
92.53.38.75	attack	2019-03-08 14:14:51 1h2FKs-0002yK-PJ SMTP connection from \(ctel-92-53-38-75.cabletel.com.mk\) \[92.53.38.75\]:24620 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-08 14:15:24 1h2FLP-00030R-F7 SMTP connection from \(ctel-92-53-38-75.cabletel.com.mk\) \[92.53.38.75\]:24995 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-03-08 14:15:53 1h2FLr-00030r-3A SMTP connection from \(ctel-92-53-38-75.cabletel.com.mk\) \[92.53.38.75\]:25262 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 05:17:39
42.112.192.15	attack	Honeypot attack, port: 445, PTR: PTR record not found	2020-01-28 05:16:05
119.192.248.160	attackspambots	Unauthorized connection attempt detected from IP address 119.192.248.160 to port 5555 [J]	2020-01-28 05:45:45
5.101.64.77	attack	RDPBruteCAu24	2020-01-28 05:31:12
222.186.180.147	attackspambots	Jan 27 22:07:01 sd-53420 sshd\[13286\]: User root from 222.186.180.147 not allowed because none of user's groups are listed in AllowGroups Jan 27 22:07:01 sd-53420 sshd\[13286\]: Failed none for invalid user root from 222.186.180.147 port 26502 ssh2 Jan 27 22:07:01 sd-53420 sshd\[13286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Jan 27 22:07:04 sd-53420 sshd\[13286\]: Failed password for invalid user root from 222.186.180.147 port 26502 ssh2 Jan 27 22:07:07 sd-53420 sshd\[13286\]: Failed password for invalid user root from 222.186.180.147 port 26502 ssh2 ...	2020-01-28 05:18:17
190.203.17.66	attackbotsspam	445/tcp [2020-01-27]1pkt	2020-01-28 05:44:59

Recently Reported IPs

23.229.119.118	61.7.191.106	220.70.15.164	87.8.180.49
192.46.231.119	175.197.192.192	20.90.250.253	125.143.79.125
82.81.111.133	101.230.83.226	106.201.239.90	154.12.102.171
193.23.245.136	151.36.182.26	154.179.37.169	134.209.159.168
5.252.140.91	45.131.212.179	45.137.43.251	109.151.27.226