45.138.172.185

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.138.172.125	attackbotsspam	(pop3d) Failed POP3 login from 45.138.172.125 (DE/Germany/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug 2 16:38:29 ir1 dovecot[3110802]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=45.138.172.125, lip=5.63.12.44, session=	2020-08-03 00:47:50
45.138.172.57	attack	Portscan or hack attempt detected by psad/fwsnort	2020-03-20 23:18:33
45.138.172.252	attackspam	Lines containing failures of 45.138.172.252 /var/log/apache/pucorp.org.log:45.138.172.252 - - [11/Dec/2019:06:02:06 +0100] "GET / HTTP/1.1" 301 691 "-" "Mozilla/4.0 (compatible; MSIE 5.0; Windows NT; DigExt; DTS Agent" ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=45.138.172.252	2019-12-14 17:03:24

Type

Details

Datetime

45.138.172.125

attackbotsspam

(pop3d) Failed POP3 login from 45.138.172.125 (DE/Germany/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Aug  2 16:38:29 ir1 dovecot[3110802]: pop3-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=45.138.172.125, lip=5.63.12.44, session=

2020-08-03 00:47:50

45.138.172.57

attack

Portscan or hack attempt detected by psad/fwsnort

2020-03-20 23:18:33

45.138.172.252

attackspam

Lines containing failures of 45.138.172.252
/var/log/apache/pucorp.org.log:45.138.172.252 - - [11/Dec/2019:06:02:06 +0100] "GET / HTTP/1.1" 301 691 "-" "Mozilla/4.0 (compatible; MSIE 5.0; Windows NT; DigExt; DTS Agent"


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=45.138.172.252

2019-12-14 17:03:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.138.172.185
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55680
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.138.172.185.			IN	A

;; AUTHORITY SECTION:
.			130	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021400 1800 900 604800 86400

;; Query time: 21 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 14 22:34:24 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 185.172.138.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 185.172.138.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
201.148.139.50	attack	Jan 28 22:39:09 odroid64 sshd\[14933\]: Invalid user wwwrun from 201.148.139.50 Jan 28 22:39:09 odroid64 sshd\[14933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.148.139.50 Jan 28 22:39:11 odroid64 sshd\[14933\]: Failed password for invalid user wwwrun from 201.148.139.50 port 58768 ssh2 ...	2019-10-18 07:42:20
201.147.253.119	attack	Dec 2 14:15:14 odroid64 sshd\[11867\]: Invalid user choicepeers from 201.147.253.119 Dec 2 14:15:14 odroid64 sshd\[11867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.147.253.119 Dec 2 14:15:16 odroid64 sshd\[11867\]: Failed password for invalid user choicepeers from 201.147.253.119 port 52288 ssh2 Dec 5 11:49:32 odroid64 sshd\[31158\]: Invalid user test from 201.147.253.119 Dec 5 11:49:32 odroid64 sshd\[31158\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.147.253.119 Dec 5 11:49:34 odroid64 sshd\[31158\]: Failed password for invalid user test from 201.147.253.119 port 45696 ssh2 Dec 24 10:52:54 odroid64 sshd\[1211\]: Invalid user ubuntu from 201.147.253.119 Dec 24 10:52:54 odroid64 sshd\[1211\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.147.253.119 Dec 24 10:52:56 odroid64 sshd\[1211\]: Failed password for invalid user ubuntu ...	2019-10-18 07:49:04
92.222.47.41	attackbotsspam	2019-10-17T23:15:38.522319shield sshd\[10924\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.ip-92-222-47.eu user=root 2019-10-17T23:15:40.579452shield sshd\[10924\]: Failed password for root from 92.222.47.41 port 43812 ssh2 2019-10-17T23:19:29.270182shield sshd\[11501\]: Invalid user titan from 92.222.47.41 port 54878 2019-10-17T23:19:29.274391shield sshd\[11501\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.ip-92-222-47.eu 2019-10-17T23:19:31.051688shield sshd\[11501\]: Failed password for invalid user titan from 92.222.47.41 port 54878 ssh2	2019-10-18 07:34:47
201.155.194.157	attackspam	Feb 28 18:00:48 odroid64 sshd\[5733\]: Invalid user admin from 201.155.194.157 Feb 28 18:00:48 odroid64 sshd\[5733\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.155.194.157 Feb 28 18:00:50 odroid64 sshd\[5733\]: Failed password for invalid user admin from 201.155.194.157 port 44185 ssh2 Feb 28 18:00:48 odroid64 sshd\[5733\]: Invalid user admin from 201.155.194.157 Feb 28 18:00:48 odroid64 sshd\[5733\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.155.194.157 Feb 28 18:00:50 odroid64 sshd\[5733\]: Failed password for invalid user admin from 201.155.194.157 port 44185 ssh2 Mar 4 03:48:31 odroid64 sshd\[10183\]: Invalid user user from 201.155.194.157 Mar 4 03:48:31 odroid64 sshd\[10183\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.155.194.157 Mar 4 03:48:34 odroid64 sshd\[10183\]: Failed password for invalid user user from 201.155.194 ...	2019-10-18 07:25:55
222.186.180.17	attack	10/17/2019-19:49:19.662509 222.186.180.17 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-18 07:51:21
201.156.45.114	attack	Apr 22 02:19:36 odroid64 sshd\[3168\]: Invalid user teresa from 201.156.45.114 Apr 22 02:19:36 odroid64 sshd\[3168\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.156.45.114 Apr 22 02:19:38 odroid64 sshd\[3168\]: Failed password for invalid user teresa from 201.156.45.114 port 36800 ssh2 ...	2019-10-18 07:24:16
51.255.86.223	attackbots	Oct 17 21:19:23 ncomp postfix/smtpd[5316]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 17 21:34:24 ncomp postfix/smtpd[5483]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 17 21:49:25 ncomp postfix/smtpd[5686]: warning: unknown[51.255.86.223]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-18 07:37:04
45.80.64.222	attack	Oct 18 07:21:59 microserver sshd[8521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.222 user=root Oct 18 07:22:01 microserver sshd[8521]: Failed password for root from 45.80.64.222 port 41822 ssh2 Oct 18 07:27:24 microserver sshd[9225]: Invalid user zxidc from 45.80.64.222 port 33018 Oct 18 07:27:24 microserver sshd[9225]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.222 Oct 18 07:27:26 microserver sshd[9225]: Failed password for invalid user zxidc from 45.80.64.222 port 33018 ssh2 Oct 18 07:38:32 microserver sshd[10642]: Invalid user louis from 45.80.64.222 port 35736 Oct 18 07:38:32 microserver sshd[10642]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.80.64.222 Oct 18 07:38:34 microserver sshd[10642]: Failed password for invalid user louis from 45.80.64.222 port 35736 ssh2 Oct 18 07:42:24 microserver sshd[11265]: Invalid user asteriskasterisk from 45.80.64.2	2019-10-18 12:02:19
207.107.67.67	attackbotsspam	Oct 18 01:02:57 MK-Soft-VM3 sshd[27484]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=207.107.67.67 Oct 18 01:02:59 MK-Soft-VM3 sshd[27484]: Failed password for invalid user punisher from 207.107.67.67 port 41806 ssh2 ...	2019-10-18 07:38:34
96.9.74.139	attack	DATE:2019-10-18 05:57:44, IP:96.9.74.139, PORT:telnet - Telnet brute force auth on a honeypot server (epe-dc)	2019-10-18 12:03:12
178.20.55.16	attackbots	2019-10-17T19:49:40.662080abusebot.cloudsearch.cf sshd\[30541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=marcuse-1.nos-oignons.net user=root	2019-10-18 07:23:27
216.57.226.2	attackbotsspam	WordPress XMLRPC scan :: 216.57.226.2 0.048 BYPASS [18/Oct/2019:06:49:05 1100] [censored_4] "POST /xmlrpc.php HTTP/1.1" 200 413 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-18 07:52:08
201.147.183.55	attack	Jan 4 10:13:54 odroid64 sshd\[6978\]: User root from 201.147.183.55 not allowed because not listed in AllowUsers Jan 4 10:13:54 odroid64 sshd\[6978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.147.183.55 user=root Jan 4 10:13:56 odroid64 sshd\[6978\]: Failed password for invalid user root from 201.147.183.55 port 44372 ssh2 Mar 5 17:59:51 odroid64 sshd\[28734\]: Invalid user t7inst from 201.147.183.55 Mar 5 17:59:51 odroid64 sshd\[28734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.147.183.55 Mar 5 17:59:53 odroid64 sshd\[28734\]: Failed password for invalid user t7inst from 201.147.183.55 port 47904 ssh2 Mar 7 10:20:18 odroid64 sshd\[20367\]: Invalid user usuario from 201.147.183.55 Mar 7 10:20:18 odroid64 sshd\[20367\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.147.183.55 Mar 7 10:20:21 odroid64 sshd\[20367\]: Failed p ...	2019-10-18 07:49:49
49.235.107.14	attackbots	Oct 18 00:53:08 icinga sshd[27917]: Failed password for root from 49.235.107.14 port 37563 ssh2 Oct 18 00:57:58 icinga sshd[28378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.107.14 ...	2019-10-18 07:46:01
201.149.20.160	attackspambots	Apr 23 17:04:27 odroid64 sshd\[27962\]: Invalid user jh from 201.149.20.160 Apr 23 17:04:27 odroid64 sshd\[27962\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.149.20.160 Apr 23 17:04:30 odroid64 sshd\[27962\]: Failed password for invalid user jh from 201.149.20.160 port 30658 ssh2 ...	2019-10-18 07:37:35

Recently Reported IPs

8.34.204.26	200.49.85.195	200.42.38.189	238.147.178.140
136.29.129.67	191.22.74.127	31.49.199.28	223.218.212.221
86.180.214.30	74.125.208.124	43.49.73.75	43.189.240.104
189.97.132.196	179.220.65.147	74.9.8.133	233.147.82.117
164.149.130.225	23.12.125.220	127.215.122.162	90.118.88.158