Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Russia

Internet Service Provider: Infolink LLC

Hostname: unknown

Organization: OOO Network of data-centers Selectel

Usage Type: Fixed Line ISP

Comments:
Type Details Datetime
attackspam
09/24/2019-23:55:19.127594 81.22.45.252 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 84
2019-09-25 12:17:39
attack
09/24/2019-06:11:02.861711 81.22.45.252 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2019-09-24 12:23:34
attackspambots
Sep 23 20:56:46 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=52926 PROTO=TCP SPT=57189 DPT=8412 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-09-24 03:04:42
attackspam
09/20/2019-23:54:30.547732 81.22.45.252 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 85
2019-09-21 13:46:39
attackspam
09/11/2019-16:39:01.392270 81.22.45.252 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 85
2019-09-12 04:40:32
attackbotsspam
Sep 11 09:58:51 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=64535 PROTO=TCP SPT=56366 DPT=555 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-09-11 16:27:50
attack
09/09/2019-22:50:08.900130 81.22.45.252 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-09-10 10:57:21
attackbots
Portscan or hack attempt detected by psad/fwsnort
2019-09-06 09:41:05
attackspambots
09/02/2019-21:55:36.711016 81.22.45.252 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 85
2019-09-03 10:47:39
attackspam
Aug 29 22:27:38 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=19486 PROTO=TCP SPT=42798 DPT=8896 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-08-30 06:08:21
attackbotsspam
Aug 25 16:54:52 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=55931 PROTO=TCP SPT=44112 DPT=9513 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-08-26 00:16:11
attackbotsspam
Aug 24 13:48:18 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=31493 PROTO=TCP SPT=44112 DPT=9816 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-08-24 20:40:35
attackbots
08/22/2019-23:14:29.720865 81.22.45.252 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-08-23 12:17:02
attackspam
MultiHost/MultiPort Probe, Scan, Hack -
2019-08-22 09:29:28
attackbotsspam
08/21/2019-15:29:26.343421 81.22.45.252 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 85
2019-08-22 04:29:41
attackbots
08/20/2019-00:26:00.148329 81.22.45.252 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-08-20 12:55:05
attackbotsspam
Port Scan: TCP/9242
2019-08-17 09:16:51
attackspam
08/15/2019-07:36:36.318969 81.22.45.252 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 85
2019-08-15 20:44:45
attack
Aug 15 02:06:01 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=27811 PROTO=TCP SPT=44112 DPT=50122 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-08-15 09:26:27
attackbots
Aug 13 21:52:01 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=8514 PROTO=TCP SPT=44112 DPT=9456 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-08-14 05:05:30
attack
Aug 13 09:34:50 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=63503 PROTO=TCP SPT=44112 DPT=49372 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-08-13 16:27:44
attack
Port scan: Attack repeated for 24 hours
2019-08-10 03:36:48
attack
08/08/2019-11:11:27.144901 81.22.45.252 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-08-08 23:16:34
attack
Aug  7 22:17:05 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=5820 PROTO=TCP SPT=46654 DPT=9964 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-08-08 04:26:35
attackbotsspam
08/03/2019-23:46:50.120395 81.22.45.252 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 79
2019-08-04 11:57:35
attackbotsspam
08/03/2019-07:43:52.987075 81.22.45.252 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-08-03 20:03:06
attackspambots
08/02/2019-21:52:03.775377 81.22.45.252 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 79
2019-08-03 10:17:00
attackspam
Port scan on 5 port(s): 44090 44091 44112 44154 44210
2019-08-02 04:19:51
attackbots
30.07.2019 14:00:06 Connection to port 44111 blocked by firewall
2019-07-30 22:13:54
attackspambots
Jul 29 08:53:16 lumpi kernel: INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.252 DST=172.31.1.100 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=2845 PROTO=TCP SPT=41668 DPT=44215 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2019-07-29 15:24:07
Comments on same subnet:
IP Type Details Datetime
81.22.45.71 attackspam
suspicious action Sat, 29 Feb 2020 11:28:01 -0300
2020-02-29 22:46:31
81.22.45.133 attack
2020-02-19T00:19:18.463055+01:00 lumpi kernel: [7357790.238387] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.133 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=60679 PROTO=TCP SPT=50449 DPT=7000 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2020-02-19 07:37:59
81.22.45.133 attack
2020-02-18T20:40:14.685548+01:00 lumpi kernel: [7344646.660249] INPUT:DROP:SPAMHAUS_EDROP:IN=eth0 OUT= MAC=52:54:a2:01:a5:04:d2:74:7f:6e:37:e3:08:00 SRC=81.22.45.133 DST=78.46.199.189 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=12495 PROTO=TCP SPT=50449 DPT=7777 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2020-02-19 03:45:04
81.22.45.106 attackspam
02/17/2020-20:00:28.393431 81.22.45.106 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 83
2020-02-18 09:54:53
81.22.45.100 attackbotsspam
ET CINS Active Threat Intelligence Poor Reputation IP group 69 - port: 5322 proto: TCP cat: Misc Attack
2020-02-18 01:32:12
81.22.45.106 attackspam
Fail2Ban Ban Triggered
2020-02-17 05:29:15
81.22.45.100 attackbots
MultiHost/MultiPort Probe, Scan, Hack -
2020-02-11 01:03:51
81.22.45.182 attack
Feb  8 10:02:23 mail kernel: [562000.917378] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=81.22.45.182 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=56258 PROTO=TCP SPT=42357 DPT=16115 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2020-02-08 17:07:08
81.22.45.71 attack
ET CINS Active Threat Intelligence Poor Reputation IP group 77 - port: 3389 proto: TCP cat: Misc Attack
2020-02-08 08:03:25
81.22.45.80 attack
3388/tcp 3377/tcp 3385/tcp...
[2019-12-09/2020-02-07]121pkt,33pt.(tcp)
2020-02-08 08:02:22
81.22.45.83 attack
Unauthorized connection attempt from IP address 81.22.45.83 on Port 3389(RDP)
2020-02-07 22:43:48
81.22.45.182 attackspam
Feb  6 17:32:05 mail kernel: [416183.709828] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=81.22.45.182 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=30608 PROTO=TCP SPT=50336 DPT=10904 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2020-02-07 00:32:25
81.22.45.182 attackspambots
Feb  6 08:44:36 mail kernel: [384534.949997] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=81.22.45.182 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=250 ID=55760 PROTO=TCP SPT=50336 DPT=10994 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2020-02-06 15:48:06
81.22.45.104 attackbotsspam
Unauthorised access (Feb  6) SRC=81.22.45.104 LEN=40 TTL=249 ID=41689 TCP DPT=3389 WINDOW=1024 SYN 
Unauthorised access (Feb  4) SRC=81.22.45.104 LEN=40 TTL=249 ID=63055 TCP DPT=3389 WINDOW=1024 SYN 
Unauthorised access (Feb  2) SRC=81.22.45.104 LEN=40 TTL=248 ID=40974 TCP DPT=3389 WINDOW=1024 SYN
2020-02-06 08:35:53
81.22.45.182 attackspambots
Feb  6 01:19:32 mail kernel: [357831.266667] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=81.22.45.182 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=249 ID=40878 PROTO=TCP SPT=50336 DPT=10137 WINDOW=1024 RES=0x00 SYN URGP=0 
...
2020-02-06 08:29:58
Whois info:
b
Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 81.22.45.252
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16267
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;81.22.45.252.			IN	A

;; AUTHORITY SECTION:
.			2330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019032800 1800 900 604800 86400

;; Query time: 166 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Mar 28 22:48:24 CST 2019
;; MSG SIZE  rcvd: 116

Host info
Host 252.45.22.81.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 252.45.22.81.in-addr.arpa: NXDOMAIN

Related IP info:
Related comments:
IP Type Details Datetime
112.220.24.131 attackbotsspam
Jan  7 14:31:37 sip sshd[9936]: Failed password for www-data from 112.220.24.131 port 51862 ssh2
Jan  7 14:33:36 sip sshd[10453]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.220.24.131
Jan  7 14:33:38 sip sshd[10453]: Failed password for invalid user ftp_test from 112.220.24.131 port 43678 ssh2
2020-01-07 21:40:31
46.149.94.37 attackspam
Unauthorized connection attempt from IP address 46.149.94.37 on Port 445(SMB)
2020-01-07 21:54:47
210.212.189.82 attackspam
1578402182 - 01/07/2020 14:03:02 Host: 210.212.189.82/210.212.189.82 Port: 445 TCP Blocked
2020-01-07 22:10:33
213.74.44.214 attackspambots
Jan  7 14:03:36 grey postfix/smtpd\[31590\]: NOQUEUE: reject: RCPT from unknown\[213.74.44.214\]: 554 5.7.1 Service unavailable\; Client host \[213.74.44.214\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[213.74.44.214\]\; from=\ to=\ proto=ESMTP helo=\
...
2020-01-07 21:45:00
198.199.84.154 attackbots
Invalid user plesk from 198.199.84.154 port 44105
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.84.154
Failed password for invalid user plesk from 198.199.84.154 port 44105 ssh2
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.84.154  user=root
Failed password for root from 198.199.84.154 port 56979 ssh2
2020-01-07 22:01:18
129.205.112.253 attackspambots
Invalid user fzl from 129.205.112.253 port 46664
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.112.253
Failed password for invalid user fzl from 129.205.112.253 port 46664 ssh2
Invalid user systemd-journal from 129.205.112.253 port 41664
pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.205.112.253
2020-01-07 21:47:06
78.137.117.203 attack
Jan  7 21:03:25 bacztwo courieresmtpd[25908]: error,relay=::ffff:78.137.117.203,msg="535 Authentication failed.",cmd: AUTH PLAIN andcycle-bitcointalk.org
Jan  7 21:03:27 bacztwo courieresmtpd[26044]: error,relay=::ffff:78.137.117.203,msg="535 Authentication failed.",cmd: AUTH PLAIN andcycle-bitcointalk.org@andcycle.idv.tw
Jan  7 21:03:29 bacztwo courieresmtpd[26171]: error,relay=::ffff:78.137.117.203,msg="535 Authentication failed.",cmd: AUTH PLAIN andcycle-bitcointalk.org
Jan  7 21:03:30 bacztwo courieresmtpd[26264]: error,relay=::ffff:78.137.117.203,msg="535 Authentication failed.",cmd: AUTH PLAIN andcycle-bitcointalk.org@andcycle.idv.tw
Jan  7 21:03:31 bacztwo courieresmtpd[26383]: error,relay=::ffff:78.137.117.203,msg="535 Authentication failed.",cmd: AUTH PLAIN andcycle-bitcointalk.org
...
2020-01-07 21:50:33
185.38.3.138 attack
Jan  7 03:27:26 sachi sshd\[15881\]: Invalid user bot from 185.38.3.138
Jan  7 03:27:26 sachi sshd\[15881\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pan0138.panoulu.net
Jan  7 03:27:28 sachi sshd\[15881\]: Failed password for invalid user bot from 185.38.3.138 port 44398 ssh2
Jan  7 03:29:10 sachi sshd\[16028\]: Invalid user fedora from 185.38.3.138
Jan  7 03:29:10 sachi sshd\[16028\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=pan0138.panoulu.net
2020-01-07 21:33:44
195.70.59.121 attackspambots
Unauthorized connection attempt detected from IP address 195.70.59.121 to port 2220 [J]
2020-01-07 22:04:35
185.69.185.24 attackbots
Unauthorized connection attempt from IP address 185.69.185.24 on Port 445(SMB)
2020-01-07 21:38:51
142.93.140.242 attackbotsspam
Jan  7 03:01:04 sachi sshd\[13689\]: Invalid user wrd from 142.93.140.242
Jan  7 03:01:04 sachi sshd\[13689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.242
Jan  7 03:01:06 sachi sshd\[13689\]: Failed password for invalid user wrd from 142.93.140.242 port 52518 ssh2
Jan  7 03:03:29 sachi sshd\[13865\]: Invalid user lna from 142.93.140.242
Jan  7 03:03:29 sachi sshd\[13865\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.140.242
2020-01-07 21:52:37
104.248.187.179 attackspambots
Jan  7 14:45:01 server sshd\[3080\]: Invalid user michi from 104.248.187.179
Jan  7 14:45:01 server sshd\[3080\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.187.179 
Jan  7 14:45:03 server sshd\[3080\]: Failed password for invalid user michi from 104.248.187.179 port 36028 ssh2
Jan  7 16:03:34 server sshd\[22965\]: Invalid user ouf from 104.248.187.179
Jan  7 16:03:34 server sshd\[22965\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.248.187.179 
...
2020-01-07 21:47:24
122.180.244.119 attackbotsspam
Unauthorized connection attempt from IP address 122.180.244.119 on Port 445(SMB)
2020-01-07 22:09:57
222.173.241.10 attackbots
Unauthorized connection attempt from IP address 222.173.241.10 on Port 445(SMB)
2020-01-07 21:48:57
164.132.54.215 attack
Unauthorized connection attempt detected from IP address 164.132.54.215 to port 2220 [J]
2020-01-07 21:58:23

Recently Reported IPs

141.98.80.31 45.55.67.128 121.215.253.87 190.73.138.105
185.120.77.172 185.20.197.116 2408:8214:8000:37b:dc75:ca8d:7d20:7378 35.196.7.6
1.71.136.240 71.227.69.119 45.58.124.45 86.57.147.212
223.111.139.211 142.93.122.185 218.92.0.203 2.67.50.11
94.159.18.194 123.252.248.218 36.156.24.94 31.145.96.94