IP Address

45.91.64.7

IPv4 Public
RU RU
AS214664
JSC Buduschee
548 Reports
This IP is on the Blacklist High confidence threat - blocking recommended
8/10 Threat
87% Confidence
548 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Above Average Risk
RU
RU Location
JSC Buduschee ASN 214664
548 Reports
Honeypot Data Source

Significant Threat

IP 45.91.64.7 is a high-risk address associated with aggressive hacking activity, generating 548 abuse reports over five months with a threat level of 8/10 and a confidence score of 87%.

The IP originates from Russia and is routed through AS214664, operated by JSC Buduschee. Automated honeypot sensors logged 548 reports across 20 distinct detection sources, with activity confirmed from January 2026 through May 2026, yielding an activity frequency rating of 8/10. The dominant threat category is general hacking activity, accounting for the vast majority of recent reports, supplemented by web application attacks, IoT-targeted probes, and exploited host detections. Observed attack patterns include SSH session establishment attempts on non-standard ports, malformed TCP stream packets triggering Suricata alerts, and reconnaissance activity targeting web applications and IoT/ICS infrastructure. This concentrated, multi-vector activity over an extended timeframe signals a persistent threat actor rather than opportunistic scanning.

The hacking activity linked to IP 45.91.64.7 represents unauthorized access attempts, vulnerability exploitation, and intrusion behaviors that directly threaten system integrity. SSH session probes indicate credential brute-forcing activity, while malformed packet signatures suggest automated exploitation toolkits probing for misconfigurations or vulnerabilities in exposed services. Web application attack vectors exploit weaknesses such as injection flaws and authentication bypass, and IoT targeting reflects systematic scanning for poorly secured connected devices. The combination of techniques increases the IP reputation risk for any exposed network segment, as successful compromise could provide entry for data exfiltration, lateral movement, or recruitment into botnet operations.

Site operators should block IP 45.91.64.7 at the network perimeter or firewall level immediately. Implement fail2ban or equivalent rate-limiting tools to detect and throttle repeated SSH connection attempts. Enforce key-based SSH authentication and disable password-based login entirely on exposed services. Maintain updated intrusion detection signatures and review honeypot telemetry logs regularly to identify emerging attack patterns before they reach production systems.

More threatening than 81% of monitored IPs

Threat Categories

Hacking 30
Web App Attack 3
Exploited Host 2
IoT Targeted 1

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

Behavioral Analysis

Activity Pattern: Sporadic

Irregular burst activity pattern indicates intermittent use of a compromised system.

First Observed 11. May 2026
Last Activity 31. May 2026
Recent (7 days) 0 incidents

Moderate Network Risk

The network hosting this IP (ASN 214664, operated by JSC Buduschee) shows moderate threat indicators. Some concerning activity has been detected from neighboring addresses.

Consider the network context when assessing this individual IP.

Security Recommendations

Implement adaptive blocking rules.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 8/10 High
Critical
Activity Frequency 8/10 High
Confidence Score 84% Verified

Confidence History

12. May 2026 - 31. May 2026
87% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
IoT Targeted Hacking Honeypot x2 75%
Web App Attack Hacking Honeypot x2 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Web App Attack Hacking Honeypot x2 75%
Exploited Host Hacking Honeypot x2 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Exploited Host Honeypot x2 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Web App Attack Honeypot x2 75%
10 of 548 shown

Technical Details

Basic Information

IP Address
45.91.64.7
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class A

Geolocation

Country
RU RU
ASN
AS214664
ISP
JSC Buduschee

DNS Information

Reverse DNS
scan.f6.security
PTR Record
Yes
Connection Type
Static

Statistics

Total Reports
548
First Reported
20 Jan 2026
Last Reported
31 May 2026, 20:03

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS214664
JSC Buduschee
RU RU

Network Threat Assessment

5/10
This network has low threat indicators with minimal suspicious activity.

Network Statistics

2
Total IPs Monitored
508
Total Reports
254
Reports per IP

Network Context

This IP address belongs to JSC Buduschee (AS214664), which manages 2 IP addresses in our monitoring system. Out of these, 508 have been reported for suspicious activities, resulting in a network-wide threat level of 5/10.

Network notice: This network shows some suspicious activity patterns. Monitor interactions with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

81 %

Global Threat Ranking

This IP is more threatening than 81% of all IPs in our database.

High Threat Percentile

Global Comparison

Compared against 199,461 reported IPs worldwide

Threat Level 8/10 avg: 5.3 ++
Total Reports 548 avg: 23 ++

Network Comparison

Compared against 3 IPs in ASN 214664

Threat Level 8/10 network avg: 8.0 =
Total Reports 548 network avg: 382 +
Network JSC Buduschee has overall threat level 5/10

Geographic Comparison

Compared against 4,703 IPs in RU

Threat Level 8/10 country avg: 5.3 ++
Total Reports 548 country avg: 17 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,137 threat incidents tracked globally • Last 24h: 19,005 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,445 20.5%
  2. 02
    IN
    India IN
    29,023 15.5%
  3. 03
    CN
    China CN
    26,021 13.9%
  4. 04
    BR
    Brazil BR
    10,256 5.5%
  5. 05
    DE
    Germany DE
    7,141 3.8%
  6. 06
    SG
    Singapore SG
    6,476 3.5%
  7. 07
    ID
    Indonesia ID
    5,538 3%
  8. 08
    RU
    Russia RU THIS IP
    4,703 2.5%
  9. 09
    PK
    Pakistan PK
    4,654 2.5%
  10. 10
    NL
    Netherlands NL
    4,356 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

2 Related IPs
8/10 Avg Threat
88% Avg Confidence
2 High Threat
High-risk network: Majority of related IPs are flagged
45.91.64.6 8/10
Confidence 89%
Reports 554
Location RU RU
9 Jun 2026
45.91.64.8 8/10
Confidence 87%
Reports 45
Location RU RU
30 May 2026

IPs from the same subnet range, likely same network segment.

2 Related IPs
8/10 Avg Threat
88% Avg Confidence
2 High Threat
High-risk network: Majority of related IPs are flagged
45.91.64.6 8/10
Confidence 89%
Reports 554
Location RU RU
9 Jun 2026
45.91.64.8 8/10
Confidence 87%
Reports 45
Location RU RU
30 May 2026

IPs from the same country with similar threat profiles.

15 Related IPs
8.7/10 Avg Threat
98% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
5.35.7.175 8/10
Confidence 99%
Reports 82
ISP JSC Selectel
16 May 2026
46.165.56.242 8/10
Confidence 99%
Reports 53
ISP Nizhnetagilskie...
8 Jun 2026
85.95.166.40 10/10
Confidence 99%
Reports 36
ISP Rostelecom
8 Jun 2026
176.211.42.202 10/10
Confidence 99%
Reports 31
ISP Rostelecom
8 Jun 2026
188.92.241.150 10/10
Confidence 99%
Reports 24
ISP JSC Avantel
8 Jun 2026
213.167.43.130 10/10
Confidence 99%
Reports 23
ISP Digit One LLC
20 May 2026
81.28.167.30 10/10
Confidence 98%
Reports 12
ISP Rostelecom
25 May 2026
91.205.128.170 8/10
Confidence 97%
Reports 98
ISP LTD Erline
22 Apr 2026
91.237.163.110 8/10
Confidence 97%
Reports 65
ISP Systematica LLC
3 Mar 2026
212.33.247.195 8/10
Confidence 97%
Reports 45
ISP JSC ER-Telecom ...
27 Feb 2026
37.139.53.129 8/10
Confidence 97%
Reports 40
ISP Petersburg Inte...
1 Jun 2026
94.180.238.116 8/10
Confidence 97%
Reports 39
ISP JSC ER-Telecom ...
14 May 2026
37.230.245.194 8/10
Confidence 97%
Reports 34
ISP PJSC MegaFon
27 Feb 2026
91.151.178.74 8/10
Confidence 97%
Reports 29
ISP Petersburg Inte...
2 Mar 2026
103.136.43.74 8/10
Confidence 97%
Reports 28
ISP Ip Server LLC
5 Mar 2026

IPs with similar threat level and confidence scores.

15 Related IPs
8.1/10 Avg Threat
87% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
207.90.244.27 8/10
Confidence 87%
Reports 9,892
Location US US
9 Jun 2026
137.184.32.56 8/10
Confidence 87%
Reports 6,895
Location US US
9 Jun 2026
146.190.153.30 8/10
Confidence 87%
Reports 6,802
Location US US
9 Jun 2026
24.199.126.56 8/10
Confidence 87%
Reports 6,732
Location US US
9 Jun 2026
209.38.70.156 8/10
Confidence 87%
Reports 6,691
Location US US
9 Jun 2026
143.198.225.197 8/10
Confidence 87%
Reports 6,441
Location US US
9 Jun 2026
64.89.160.82 8/10
Confidence 87%
Reports 1,099
Location GB GB
16 May 2026
81.29.142.100 8/10
Confidence 87%
Reports 978
Location RU RU
7 May 2026
130.12.180.65 10/10
Confidence 87%
Reports 823
Location NL NL
9 Jun 2026
81.168.83.103 8/10
Confidence 87%
Reports 723
Location GB GB
7 May 2026
62.60.130.169 7/10
Confidence 87%
Reports 699
Location IR IR
9 Jun 2026
92.63.197.78 7/10
Confidence 87%
Reports 660
Location UA UA
22 May 2026
167.94.146.51 10/10
Confidence 87%
Reports 646
Location US US
9 Jun 2026
178.16.54.141 7/10
Confidence 87%
Reports 578
Location NL NL
4 May 2026
34.77.191.38 8/10
Confidence 87%
Reports 565
Location BE BE
8 Jun 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "45.91.64.7",
    "threat_level": 8,
    "confidence_score": 87,
    "total_reports": 548,
    "country_code": "RU",
    "isp_name": "JSC Buduschee",
    "asn": "214664",
    "first_reported": "2026-01-20 20:27:02",
    "last_reported": "2026-05-31 20:03:16",
    "exported_at": "2026-06-09T08:47:04+02:00",
    "source": "https://reportedip.de/ip/45.91.64.7/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses