45.135.134.132

Basic Info

City: Skhodnya

Region: Moscow Oblast

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.135.134.39	attackbots	Sep 12 01:07:37 doubuntu sshd[25088]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 59086 ssh2 [preauth] Sep 12 01:07:40 doubuntu sshd[25090]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 60304 ssh2 [preauth] Sep 12 01:07:43 doubuntu sshd[25092]: Disconnected from authenticating user root 45.135.134.39 port 33290 [preauth] ...	2020-09-12 21:17:54
45.135.134.39	attackbotsspam	Sep 12 01:07:37 doubuntu sshd[25088]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 59086 ssh2 [preauth] Sep 12 01:07:40 doubuntu sshd[25090]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 60304 ssh2 [preauth] Sep 12 01:07:43 doubuntu sshd[25092]: Disconnected from authenticating user root 45.135.134.39 port 33290 [preauth] ...	2020-09-12 13:20:12
45.135.134.39	attackbots	Sep 12 01:07:37 doubuntu sshd[25088]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 59086 ssh2 [preauth] Sep 12 01:07:40 doubuntu sshd[25090]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 60304 ssh2 [preauth] Sep 12 01:07:43 doubuntu sshd[25092]: Disconnected from authenticating user root 45.135.134.39 port 33290 [preauth] ...	2020-09-12 05:08:16

Type

Details

Datetime

45.135.134.39

attackbots

Sep 12 01:07:37 doubuntu sshd[25088]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 59086 ssh2 [preauth]
Sep 12 01:07:40 doubuntu sshd[25090]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 60304 ssh2 [preauth]
Sep 12 01:07:43 doubuntu sshd[25092]: Disconnected from authenticating user root 45.135.134.39 port 33290 [preauth]
...

2020-09-12 21:17:54

45.135.134.39

attackbotsspam

Sep 12 01:07:37 doubuntu sshd[25088]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 59086 ssh2 [preauth]
Sep 12 01:07:40 doubuntu sshd[25090]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 60304 ssh2 [preauth]
Sep 12 01:07:43 doubuntu sshd[25092]: Disconnected from authenticating user root 45.135.134.39 port 33290 [preauth]
...

2020-09-12 13:20:12

45.135.134.39

attackbots

Sep 12 01:07:37 doubuntu sshd[25088]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 59086 ssh2 [preauth]
Sep 12 01:07:40 doubuntu sshd[25090]: error: maximum authentication attempts exceeded for root from 45.135.134.39 port 60304 ssh2 [preauth]
Sep 12 01:07:43 doubuntu sshd[25092]: Disconnected from authenticating user root 45.135.134.39 port 33290 [preauth]
...

2020-09-12 05:08:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.135.134.132
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60228
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.135.134.132.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020030200 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Mar 02 15:03:01 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 132.134.135.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 132.134.135.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
89.122.131.36	attack	Automatic report - Banned IP Access	2020-04-29 17:09:09
120.92.2.48	attackspambots	Apr 29 10:55:58 server sshd[31591]: Failed password for invalid user ean from 120.92.2.48 port 50027 ssh2 Apr 29 11:06:56 server sshd[40499]: Failed password for invalid user uuu from 120.92.2.48 port 18111 ssh2 Apr 29 11:09:23 server sshd[42404]: Failed password for invalid user tmm from 120.92.2.48 port 31302 ssh2	2020-04-29 17:12:06
49.232.135.102	attackbots	Apr 29 12:12:22 pkdns2 sshd\[12496\]: Invalid user gerard from 49.232.135.102Apr 29 12:12:24 pkdns2 sshd\[12496\]: Failed password for invalid user gerard from 49.232.135.102 port 49734 ssh2Apr 29 12:14:41 pkdns2 sshd\[12572\]: Invalid user archive from 49.232.135.102Apr 29 12:14:43 pkdns2 sshd\[12572\]: Failed password for invalid user archive from 49.232.135.102 port 47170 ssh2Apr 29 12:17:08 pkdns2 sshd\[12691\]: Invalid user spark from 49.232.135.102Apr 29 12:17:09 pkdns2 sshd\[12691\]: Failed password for invalid user spark from 49.232.135.102 port 44596 ssh2 ...	2020-04-29 17:22:07
103.120.224.10	attackbotsspam	[Aegis] @ 2019-07-01 14:18:51 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2020-04-29 16:50:05
192.34.57.113	attack	Invalid user tim from 192.34.57.113 port 46020	2020-04-29 17:25:00
151.80.42.186	attack	failed root login	2020-04-29 17:12:19
35.227.17.251	attackspam	35.227.17.251 - - [29/Apr/2020:05:55:39 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.227.17.251 - - [29/Apr/2020:05:55:39 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.227.17.251 - - [29/Apr/2020:05:55:39 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.227.17.251 - - [29/Apr/2020:05:55:40 +0200] "POST /wp-login.php HTTP/1.1" 200 1710 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.227.17.251 - - [29/Apr/2020:05:55:40 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 35.227.17.251 - - [29/Apr/2020:05:55:40 +0200] "GET /wp-login.php HTTP/1.1" 200 1301 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firef ...	2020-04-29 16:47:00
51.68.125.63	attack	Automatic report - XMLRPC Attack	2020-04-29 16:50:37
101.127.178.98	attack	Automatic report - Port Scan Attack	2020-04-29 16:52:29
4.7.94.244	attackbots	Apr 29 02:26:15 mail sshd\[36002\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=4.7.94.244 user=root ...	2020-04-29 16:48:23
106.13.87.145	attack	Apr 29 03:55:06 scw-6657dc sshd[26522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.87.145 Apr 29 03:55:06 scw-6657dc sshd[26522]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.87.145 Apr 29 03:55:08 scw-6657dc sshd[26522]: Failed password for invalid user admin from 106.13.87.145 port 49306 ssh2 ...	2020-04-29 17:12:47
185.46.18.99	attackbotsspam	Apr 29 07:45:56 l03 sshd[30729]: Invalid user tomcat from 185.46.18.99 port 36422 ...	2020-04-29 16:47:42
183.237.40.52	attack	Helo	2020-04-29 16:46:01
167.71.209.115	attackspam	CMS (WordPress or Joomla) login attempt.	2020-04-29 16:58:34
80.211.238.5	attackspambots	[Aegis] @ 2019-07-03 08:40:49 0100 -> Attempted Administrator Privilege Gain: ET SCAN LibSSH Based Frequent SSH Connections Likely BruteForce Attack	2020-04-29 17:20:44

Recently Reported IPs

137.202.29.125	101.107.124.214	113.197.50.229	91.113.240.101
179.183.46.168	113.25.189.169	144.85.89.180	112.66.98.112
201.99.88.194	55.69.50.246	186.151.159.161	175.224.69.142
61.221.24.20	111.229.142.118	204.136.37.174	76.180.227.152
213.243.29.28	83.238.174.225	110.80.155.109	182.15.255.216