City: Saint Petersburg
Region: St. Petersburg
Country: Russia
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.135.232.159 | attack | Login from 45.135.232.159 via SSH failed |
2021-10-19 22:45:44 |
| 45.135.232.39 | attack | Port scan - 6 hits (greater than 5) |
2020-10-13 21:51:58 |
| 45.135.232.39 | attackspam | Multiport scan : 37 ports scanned 88 1093 1200 1389 1502 1503 1989 2289 3002 3158 3217 3232 3290 3300 3305 3306 3309 3314 3315 3316 3322 3325 3332 3333 3335 3360 3365 3380 3382 3399 3401 3408 3409 3411 3456 3650 3839 |
2020-10-13 06:03:25 |
| 45.135.232.39 | attackbotsspam | Port Scan: TCP/3389 |
2020-10-09 03:45:43 |
| 45.135.232.39 | attack | Port Scan: TCP/33389 |
2020-10-08 19:52:30 |
| 45.135.232.39 | attackbots | [H1.VM7] Blocked by UFW |
2020-09-18 20:15:03 |
| 45.135.232.39 | attackbots | Port scan on 12 port(s): 888 1002 1093 1213 1928 1969 2289 3102 3200 3406 3411 3434 |
2020-09-18 12:33:17 |
| 45.135.232.39 | attackspam | firewall-block, port(s): 106/tcp, 1502/tcp, 3309/tcp, 3332/tcp, 3342/tcp, 3375/tcp, 3425/tcp, 3490/tcp |
2020-09-18 02:47:22 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#
NetRange: 45.135.164.0 - 45.138.163.255
CIDR: 45.138.128.0/19, 45.138.160.0/22, 45.135.192.0/18, 45.138.0.0/17, 45.135.176.0/20, 45.136.0.0/15, 45.135.164.0/22, 45.135.168.0/21
NetName: RIPE
NetHandle: NET-45-135-164-0-1
Parent: NET45 (NET-45-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2014-05-22
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/45.135.164.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.135.232.237
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 39738
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;45.135.232.237. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025111002 1800 900 604800 86400
;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 11 12:02:51 CST 2025
;; MSG SIZE rcvd: 107Host 237.232.135.45.in-addr.arpa. not found: 3(NXDOMAIN)Server: 183.60.83.19
Address: 183.60.83.19#53
** server can't find 237.232.135.45.in-addr.arpa: NXDOMAIN| IP | Type | Details | Datetime |
|---|---|---|---|
| 222.184.101.98 | attack | [AUTOMATIC REPORT] - 23 tries in total - SSH BRUTE FORCE - IP banned |
2020-03-17 08:29:31 |
| 61.177.172.128 | attackspam | $f2bV_matches |
2020-03-17 08:34:54 |
| 182.61.46.245 | attack | Mar 17 04:39:08 gw1 sshd[23937]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.46.245 Mar 17 04:39:10 gw1 sshd[23937]: Failed password for invalid user to from 182.61.46.245 port 32840 ssh2 ... |
2020-03-17 08:12:03 |
| 173.214.194.3 | attackbotsspam | (From expiry@harkinschiropracticcenter.com) ATTN: harkinschiropracticcenter.com / Chiropractor in Plymouth, MN 55447 :: Harkins Chiropractic Center, LLC :: Dr Michael Harkins SERVICE This notice EXPIRES ON: Mar 16, 2020. We tried to contact you but were unable to reach you. Please Visit: https://bit.ly/3aZR7iV ASAP. For information and to make a discretionary payment for harkinschiropracticcenter.com services. 03162020193806. |
2020-03-17 08:41:02 |
| 45.151.254.218 | attackbotsspam | 03/16/2020-20:40:34.234430 45.151.254.218 Protocol: 17 ET SCAN Sipvicious Scan |
2020-03-17 08:43:17 |
| 220.76.205.35 | attackspambots | SSH Authentication Attempts Exceeded |
2020-03-17 08:31:42 |
| 83.247.7.110 | attack | Mar 17 00:18:35 srv206 sshd[15535]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.247.7.110 user=root Mar 17 00:18:38 srv206 sshd[15535]: Failed password for root from 83.247.7.110 port 35474 ssh2 Mar 17 00:38:15 srv206 sshd[15678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.247.7.110 user=root Mar 17 00:38:17 srv206 sshd[15678]: Failed password for root from 83.247.7.110 port 45236 ssh2 ... |
2020-03-17 08:38:20 |
| 111.231.1.108 | attack | Mar 16 19:11:10 lanister sshd[26962]: Failed password for root from 111.231.1.108 port 38998 ssh2 Mar 16 19:25:11 lanister sshd[27084]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.231.1.108 user=root Mar 16 19:25:14 lanister sshd[27084]: Failed password for root from 111.231.1.108 port 43866 ssh2 Mar 16 19:38:57 lanister sshd[27640]: Invalid user bot2 from 111.231.1.108 |
2020-03-17 08:18:48 |
| 154.8.141.30 | attackspam | Mar 17 00:32:22 pornomens sshd\[4180\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.141.30 user=root Mar 17 00:32:24 pornomens sshd\[4180\]: Failed password for root from 154.8.141.30 port 41852 ssh2 Mar 17 00:38:41 pornomens sshd\[4182\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.8.141.30 user=root ... |
2020-03-17 08:25:23 |
| 222.186.30.187 | attackspam | Mar 17 01:26:03 vpn01 sshd[18382]: Failed password for root from 222.186.30.187 port 47334 ssh2 ... |
2020-03-17 08:44:53 |
| 118.126.105.120 | attackspam | [MK-VM5] Blocked by UFW |
2020-03-17 08:30:18 |
| 212.47.229.4 | attackbotsspam | xmlrpc attack |
2020-03-17 08:40:40 |
| 80.104.137.169 | attack | Chat Spam |
2020-03-17 08:48:25 |
| 185.220.87.196 | attack | Automatic report - Port Scan Attack |
2020-03-17 08:08:49 |
| 69.94.158.86 | attackspam | Mar 17 00:39:05 web01 postfix/smtpd[19162]: connect from obtain.swingthelamp.com[69.94.158.86] Mar 17 00:39:05 web01 policyd-spf[20223]: None; identhostnamey=helo; client-ip=69.94.158.86; helo=obtain.hamhonar.com; envelope-from=x@x Mar 17 00:39:05 web01 policyd-spf[20223]: Pass; identhostnamey=mailfrom; client-ip=69.94.158.86; helo=obtain.hamhonar.com; envelope-from=x@x Mar x@x Mar 17 00:39:06 web01 postfix/smtpd[19162]: disconnect from obtain.swingthelamp.com[69.94.158.86] Mar 17 00:40:17 web01 postfix/smtpd[20221]: connect from obtain.swingthelamp.com[69.94.158.86] Mar 17 00:40:18 web01 policyd-spf[20225]: None; identhostnamey=helo; client-ip=69.94.158.86; helo=obtain.hamhonar.com; envelope-from=x@x Mar 17 00:40:18 web01 policyd-spf[20225]: Pass; identhostnamey=mailfrom; client-ip=69.94.158.86; helo=obtain.hamhonar.com; envelope-from=x@x Mar x@x Mar 17 00:40:18 web01 postfix/smtpd[20221]: disconnect from obtain.swingthelamp.com[69.94.158.86] Mar 17 00:41:56 web01 post........ ------------------------------- |
2020-03-17 08:44:15 |