132.145.168.70

Basic Info

City: Ashburn

Region: Virginia

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
132.145.168.119	attackspambots	132.145.168.119 - - [03/May/2020:20:49:40 -0700] "GET /horde/imp/test.php HTTP/1.1" 404 132.145.168.119 - - [03/May/2020:20:49:40 -0700] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 404 132.145.168.119 - - [03/May/2020:20:49:41 -0700] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 404	2020-05-04 19:37:00

Type

Details

Datetime

132.145.168.119

attackspambots

132.145.168.119 - - [03/May/2020:20:49:40 -0700] "GET /horde/imp/test.php HTTP/1.1" 404
132.145.168.119 - - [03/May/2020:20:49:40 -0700] "GET /phpMyAdmin/scripts/setup.php HTTP/1.1" 404
132.145.168.119 - - [03/May/2020:20:49:41 -0700] "GET /phpmyadmin/scripts/setup.php HTTP/1.1" 404

2020-05-04 19:37:00

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 132.145.168.70
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3823
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;132.145.168.70.			IN	A

;; AUTHORITY SECTION:
.			177	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023011200 1800 900 604800 86400

;; Query time: 66 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 12 17:15:53 CST 2023
;; MSG SIZE  rcvd: 107

Host info

Host 70.168.145.132.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 70.168.145.132.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.63.174.149	attack	2019-09-19T12:58:40.641813tmaserv sshd\[25727\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.174.149 2019-09-19T12:58:42.762840tmaserv sshd\[25727\]: Failed password for invalid user trendimsa1.0 from 14.63.174.149 port 42045 ssh2 2019-09-19T13:12:31.767895tmaserv sshd\[26472\]: Invalid user five from 14.63.174.149 port 50312 2019-09-19T13:12:31.772632tmaserv sshd\[26472\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.63.174.149 2019-09-19T13:12:33.973635tmaserv sshd\[26472\]: Failed password for invalid user five from 14.63.174.149 port 50312 ssh2 2019-09-19T13:16:58.709531tmaserv sshd\[26865\]: Invalid user terance from 14.63.174.149 port 43606 ...	2019-09-19 18:23:03
123.136.116.11	attack	ENG,WP GET /wp-login.php	2019-09-19 19:08:07
121.204.143.153	attackspambots	leo_www	2019-09-19 18:05:06
104.197.185.83	attackspambots	Sep 19 13:50:11 intra sshd\[13298\]: Failed password for root from 104.197.185.83 port 38786 ssh2Sep 19 13:50:12 intra sshd\[13303\]: Invalid user admin from 104.197.185.83Sep 19 13:50:14 intra sshd\[13303\]: Failed password for invalid user admin from 104.197.185.83 port 55244 ssh2Sep 19 13:50:16 intra sshd\[13305\]: Invalid user admin from 104.197.185.83Sep 19 13:50:17 intra sshd\[13305\]: Failed password for invalid user admin from 104.197.185.83 port 43774 ssh2Sep 19 13:50:21 intra sshd\[13307\]: Invalid user user from 104.197.185.83 ...	2019-09-19 18:54:59
162.247.74.206	attack	Sep 19 09:47:58 thevastnessof sshd[4764]: error: maximum authentication attempts exceeded for root from 162.247.74.206 port 58174 ssh2 [preauth] ...	2019-09-19 18:27:45
173.45.164.2	attackbotsspam	Sep 17 04:28:31 web9 sshd\[15968\]: Invalid user toragemgmt from 173.45.164.2 Sep 17 04:28:31 web9 sshd\[15968\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.45.164.2 Sep 17 04:28:33 web9 sshd\[15968\]: Failed password for invalid user toragemgmt from 173.45.164.2 port 60312 ssh2 Sep 17 04:32:22 web9 sshd\[16690\]: Invalid user sysadmin from 173.45.164.2 Sep 17 04:32:22 web9 sshd\[16690\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.45.164.2	2019-09-18 03:29:02
193.255.46.13	attack	Unauthorized connection attempt from IP address 193.255.46.13 on Port 445(SMB)	2019-09-19 18:25:42
222.186.15.204	attackbots	2019-09-19T17:18:21.045250enmeeting.mahidol.ac.th sshd\[31388\]: User root from 222.186.15.204 not allowed because not listed in AllowUsers 2019-09-19T17:18:22.148567enmeeting.mahidol.ac.th sshd\[31388\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.204 user=root 2019-09-19T17:18:24.536424enmeeting.mahidol.ac.th sshd\[31388\]: Failed password for invalid user root from 222.186.15.204 port 35909 ssh2 ...	2019-09-19 18:24:11
58.57.4.238	attack	Sep 19 11:58:27 vmanager6029 postfix/smtpd\[28123\]: warning: unknown\[58.57.4.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 19 11:58:35 vmanager6029 postfix/smtpd\[28123\]: warning: unknown\[58.57.4.238\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-19 18:21:38
106.12.206.253	attackbots	Sep 18 23:55:53 tdfoods sshd\[15070\]: Invalid user admin1 from 106.12.206.253 Sep 18 23:55:53 tdfoods sshd\[15070\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.206.253 Sep 18 23:55:55 tdfoods sshd\[15070\]: Failed password for invalid user admin1 from 106.12.206.253 port 51702 ssh2 Sep 18 23:58:51 tdfoods sshd\[15306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.206.253 user=proxy Sep 18 23:58:52 tdfoods sshd\[15306\]: Failed password for proxy from 106.12.206.253 port 47132 ssh2	2019-09-19 18:11:11
49.88.112.85	attackspambots	Sep 19 06:44:58 TORMINT sshd\[6869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.85 user=root Sep 19 06:44:59 TORMINT sshd\[6869\]: Failed password for root from 49.88.112.85 port 28878 ssh2 Sep 19 06:45:02 TORMINT sshd\[6869\]: Failed password for root from 49.88.112.85 port 28878 ssh2 ...	2019-09-19 18:46:16
104.244.79.242	attackspam	2019-09-19T10:26:42.245716abusebot-5.cloudsearch.cf sshd\[10399\]: Invalid user ubnt from 104.244.79.242 port 48230	2019-09-19 18:43:43
104.210.222.38	attackbots	Automatic report - Banned IP Access	2019-09-19 19:09:16
45.136.109.95	attack	09/19/2019-06:08:33.620186 45.136.109.95 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-09-19 18:57:41
138.68.87.0	attackspam	Sep 17 16:32:04 ArkNodeAT sshd\[10982\]: Invalid user myftp from 138.68.87.0 Sep 17 16:32:04 ArkNodeAT sshd\[10982\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.87.0 Sep 17 16:32:06 ArkNodeAT sshd\[10982\]: Failed password for invalid user myftp from 138.68.87.0 port 43969 ssh2	2019-09-18 03:24:54

Recently Reported IPs

209.141.35.182	40.77.66.104	27.206.208.231	104.248.197.238
198.142.152.132	150.117.197.6	188.165.197.33	1.33.123.220
23.236.236.184	139.64.135.45	191.9.118.69	152.32.202.108
212.80.213.94	94.23.165.51	5.75.166.190	80.122.170.182
77.68.26.238	154.72.73.226	3.36.130.175	191.45.38.91