34.89.45.45 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United Kingdom of Great Britain and Northern Ireland (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
34.89.45.74	attack	invalid user	2020-04-07 04:10:43
34.89.45.74	attackspam	Apr 3 21:47:02 h2034429 sshd[23381]: Invalid user student from 34.89.45.74 Apr 3 21:47:02 h2034429 sshd[23381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.89.45.74 Apr 3 21:47:04 h2034429 sshd[23381]: Failed password for invalid user student from 34.89.45.74 port 45280 ssh2 Apr 3 21:47:04 h2034429 sshd[23381]: Received disconnect from 34.89.45.74 port 45280:11: Bye Bye [preauth] Apr 3 21:47:04 h2034429 sshd[23381]: Disconnected from 34.89.45.74 port 45280 [preauth] Apr 3 21:52:28 h2034429 sshd[23475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.89.45.74 user=r.r Apr 3 21:52:31 h2034429 sshd[23475]: Failed password for r.r from 34.89.45.74 port 52084 ssh2 Apr 3 21:52:31 h2034429 sshd[23475]: Received disconnect from 34.89.45.74 port 52084:11: Bye Bye [preauth] Apr 3 21:52:31 h2034429 sshd[23475]: Disconnected from 34.89.45.74 port 52084 [preauth] ........ ----------------------------------------------- ht	2020-04-05 00:47:19

Type

Details

Datetime

34.89.45.74

attack

invalid user

2020-04-07 04:10:43

34.89.45.74

attackspam

Apr  3 21:47:02 h2034429 sshd[23381]: Invalid user student from 34.89.45.74
Apr  3 21:47:02 h2034429 sshd[23381]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.89.45.74
Apr  3 21:47:04 h2034429 sshd[23381]: Failed password for invalid user student from 34.89.45.74 port 45280 ssh2
Apr  3 21:47:04 h2034429 sshd[23381]: Received disconnect from 34.89.45.74 port 45280:11: Bye Bye [preauth]
Apr  3 21:47:04 h2034429 sshd[23381]: Disconnected from 34.89.45.74 port 45280 [preauth]
Apr  3 21:52:28 h2034429 sshd[23475]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.89.45.74  user=r.r
Apr  3 21:52:31 h2034429 sshd[23475]: Failed password for r.r from 34.89.45.74 port 52084 ssh2
Apr  3 21:52:31 h2034429 sshd[23475]: Received disconnect from 34.89.45.74 port 52084:11: Bye Bye [preauth]
Apr  3 21:52:31 h2034429 sshd[23475]: Disconnected from 34.89.45.74 port 52084 [preauth]


........
-----------------------------------------------
ht

2020-04-05 00:47:19

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 34.89.45.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 35842
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;34.89.45.45.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025020901 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 10 05:19:48 CST 2025
;; MSG SIZE  rcvd: 104

Host info

45.45.89.34.in-addr.arpa domain name pointer 45.45.89.34.bc.googleusercontent.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
45.45.89.34.in-addr.arpa	name = 45.45.89.34.bc.googleusercontent.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.217.196.74	attackbotsspam	2020-01-04T16:14:03.671244scmdmz1 sshd[23104]: Invalid user analytics from 112.217.196.74 port 44964 2020-01-04T16:14:03.675001scmdmz1 sshd[23104]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.196.74 2020-01-04T16:14:03.671244scmdmz1 sshd[23104]: Invalid user analytics from 112.217.196.74 port 44964 2020-01-04T16:14:05.619463scmdmz1 sshd[23104]: Failed password for invalid user analytics from 112.217.196.74 port 44964 ssh2 2020-01-04T16:17:46.111630scmdmz1 sshd[23404]: Invalid user timemachine from 112.217.196.74 port 45372 ...	2020-01-04 23:42:08
167.99.113.1	attack	DigitalOcean BotNet attack - 10s of requests to non-existent pages - :443/app-ads.txt - typically bursts of 8 requests per second - undefined, XSS attacks node-superagent/4.1.0	2020-01-04 23:47:38
178.128.68.121	attack	178.128.68.121 - - [04/Jan/2020:14:12:37 +0100] "POST /wp-login.php HTTP/1.1" 200 3121 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.128.68.121 - - [04/Jan/2020:14:12:38 +0100] "POST /wp-login.php HTTP/1.1" 200 3100 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-01-05 00:07:19
51.255.168.152	attack	Unauthorized connection attempt detected from IP address 51.255.168.152 to port 2220 [J]	2020-01-04 23:45:07
142.93.235.47	attackbots	Unauthorized connection attempt detected from IP address 142.93.235.47 to port 2220 [J]	2020-01-05 00:03:33
218.92.0.212	attackbotsspam	Jan 4 05:51:13 php1 sshd\[31098\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Jan 4 05:51:15 php1 sshd\[31098\]: Failed password for root from 218.92.0.212 port 31565 ssh2 Jan 4 05:51:32 php1 sshd\[31146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root Jan 4 05:51:34 php1 sshd\[31146\]: Failed password for root from 218.92.0.212 port 62508 ssh2 Jan 4 05:51:53 php1 sshd\[31154\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.212 user=root	2020-01-04 23:53:24
111.206.87.230	attackspam	auto-add	2020-01-04 23:28:56
51.75.29.61	attackspambots	Unauthorized connection attempt detected from IP address 51.75.29.61 to port 2220 [J]	2020-01-04 23:25:44
54.38.23.156	attackbots	Unauthorized connection attempt detected from IP address 54.38.23.156 to port 23 [J]	2020-01-05 00:04:04
103.231.91.189	attackbots	(From new.people@monemail.com) Hi, I thought you may be interested in our services. We can send thousands of interested people to your website daily. Your visitors will come from online publications in YOUR NICHE making for super targeted advertising. Most of our first time customers start with a 5,000 test order for $54.99 or 10,000 visitors at $74.99. Thank you for your time and hope to see you on our site. Best, Alison D. https://traffic-stampede.com	2020-01-04 23:22:50
179.100.93.106	attackbotsspam	Unauthorized connection attempt detected from IP address 179.100.93.106 to port 1433 [J]	2020-01-04 23:35:12
93.42.117.137	attackbotsspam	Jan 4 16:45:49 server sshd\[13943\]: Invalid user ricard from 93.42.117.137 Jan 4 16:45:49 server sshd\[13943\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-117-137.ip86.fastwebnet.it Jan 4 16:45:51 server sshd\[13943\]: Failed password for invalid user ricard from 93.42.117.137 port 57080 ssh2 Jan 4 17:02:02 server sshd\[17612\]: Invalid user thomas from 93.42.117.137 Jan 4 17:02:02 server sshd\[17612\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=93-42-117-137.ip86.fastwebnet.it ...	2020-01-04 23:44:07
123.20.190.153	attackspam	Bruteforce on SSH Honeypot	2020-01-04 23:40:01
113.245.104.1	attack	Honeypot attack, port: 23, PTR: PTR record not found	2020-01-04 23:47:04
35.206.156.221	attackspambots	Unauthorized connection attempt detected from IP address 35.206.156.221 to port 2220 [J]	2020-01-04 23:58:47

Recently Reported IPs

16.130.187.222	230.171.127.216	152.216.222.210	234.17.124.120
175.249.49.220	224.251.137.191	149.119.89.135	189.143.239.203
108.127.138.243	149.87.85.238	91.34.140.10	26.214.115.136
172.55.44.171	12.102.127.118	170.201.203.201	74.12.51.106
82.208.9.209	13.240.56.246	127.221.253.255	236.193.206.61