45.143.220.134

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: Zumy Communications

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Fail2Ban Ban Triggered	2020-06-14 05:49:39
attack	Unauthorized connection attempt detected from IP address 45.143.220.134 to port 8081	2020-06-11 05:29:03
attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 28 - port: 8086 proto: TCP cat: Misc Attack	2020-06-07 02:23:38
attack	ET CINS Active Threat Intelligence Poor Reputation IP group 25 - port: 7777 proto: TCP cat: Misc Attack	2020-05-09 19:32:00
attackspam	firewall-block, port(s): 8089/tcp	2020-05-09 08:55:16
attack	05/06/2020-13:30:04.508565 45.143.220.134 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-05-07 02:23:12
attack	ET CINS Active Threat Intelligence Poor Reputation IP group 25 - port: 7777 proto: TCP cat: Misc Attack	2020-05-06 17:35:05
attackbots	scans 4 times in preceeding hours on the ports (in chronological order) 7777 7777 7777 8888	2020-04-17 21:25:38
attackspam	firewall-block, port(s): 7777/tcp	2020-04-15 05:45:58

Comments on same subnet:

IP	Type	Details	Datetime
45.143.220.3	attack	The IP 45.143.220.3 has just been banned by Fail2Ban after 8 attempts	2020-10-16 03:06:49
45.143.220.250	attackspambots	Automatic report - Brute Force attack using this IP address	2020-08-25 16:44:35
45.143.220.87	attack	Tried our host z.	2020-08-22 07:43:17
45.143.220.59	attackspam	45.143.220.59 was recorded 7 times by 2 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 7, 16, 1532	2020-08-20 08:57:56
45.143.220.59	attackbotsspam	45.143.220.59 was recorded 5 times by 2 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 30, 1507	2020-08-19 02:52:58
45.143.220.87	attack	[2020-08-15 11:32:40] NOTICE[1185][C-000027ae] chan_sip.c: Call from '' (45.143.220.87:6336) to extension '0046842002652' rejected because extension not found in context 'public'. [2020-08-15 11:32:40] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-15T11:32:40.124-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0046842002652",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.87/6336",ACLName="no_extension_match" [2020-08-15 11:40:48] NOTICE[1185][C-000027b5] chan_sip.c: Call from '' (45.143.220.87:11278) to extension '+46842002652' rejected because extension not found in context 'public'. [2020-08-15 11:40:48] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-15T11:40:48.085-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="+46842002652",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.143.220.8 ...	2020-08-15 23:57:56
45.143.220.165	attack	Try to login my routers admin-account several times.	2020-08-12 20:14:50
45.143.220.59	attack	45.143.220.59 was recorded 5 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 38, 1279	2020-08-12 03:28:54
45.143.220.116	attack	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-09 21:34:40
45.143.220.59	attackbots	08/07/2020-08:08:43.480573 45.143.220.59 Protocol: 17 ET SCAN Sipvicious Scan	2020-08-07 20:26:49
45.143.220.116	attack	Aug 5 07:28:09 debian-2gb-nbg1-2 kernel: \[18863752.168870\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.143.220.116 DST=195.201.40.59 LEN=444 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF PROTO=UDP SPT=5252 DPT=5060 LEN=424	2020-08-05 15:00:58
45.143.220.59	attack	SmallBizIT.US 6 packets to udp(5060)	2020-08-01 06:26:51
45.143.220.59	attackspambots	45.143.220.59 was recorded 10 times by 5 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 10, 63, 653	2020-07-27 06:35:08
45.143.220.116	attackspambots	firewall-block, port(s): 5060/udp	2020-07-27 03:28:04
45.143.220.116	attackspambots	Jul 25 19:20:47 debian-2gb-nbg1-2 kernel: \[17956161.731244\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=45.143.220.116 DST=195.201.40.59 LEN=444 TOS=0x00 PREC=0x00 TTL=55 ID=0 DF PROTO=UDP SPT=5368 DPT=5060 LEN=424	2020-07-26 04:50:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.143.220.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17264
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.143.220.134.			IN	A

;; AUTHORITY SECTION:
.			519	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011001 1800 900 604800 86400

;; Query time: 90 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jan 11 03:26:18 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 134.220.143.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.220.143.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.75.29.61	attack	Oct 5 18:54:56 dedicated sshd[24756]: Invalid user teamspeak from 51.75.29.61 port 34172	2019-10-06 00:57:46
107.170.199.180	attackbots	Oct 5 04:58:24 hpm sshd\[26290\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fronterawinddata.mx user=root Oct 5 04:58:26 hpm sshd\[26290\]: Failed password for root from 107.170.199.180 port 58349 ssh2 Oct 5 05:02:46 hpm sshd\[26677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fronterawinddata.mx user=root Oct 5 05:02:48 hpm sshd\[26677\]: Failed password for root from 107.170.199.180 port 50316 ssh2 Oct 5 05:07:16 hpm sshd\[27043\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fronterawinddata.mx user=root	2019-10-06 00:53:36
92.242.240.17	attackspam	2019-10-05T16:30:37.563360abusebot-8.cloudsearch.cf sshd\[2706\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92-242-240-17.broadband.mtnet.hr user=root	2019-10-06 01:03:14
207.148.127.239	attackbotsspam	WordPress wp-login brute force :: 207.148.127.239 0.040 BYPASS [05/Oct/2019:21:33:57 1000] [censored_2] "POST /wp-login.php HTTP/1.1" 200 4630 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-06 00:35:08
103.47.82.221	attackbotsspam	2019-10-05T10:19:07.164215ns525875 sshd\[14887\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.47.82.221 user=root 2019-10-05T10:19:08.708213ns525875 sshd\[14887\]: Failed password for root from 103.47.82.221 port 36664 ssh2 2019-10-05T10:23:42.717385ns525875 sshd\[20488\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.47.82.221 user=root 2019-10-05T10:23:45.349579ns525875 sshd\[20488\]: Failed password for root from 103.47.82.221 port 37174 ssh2 ...	2019-10-06 01:17:18
23.94.16.72	attackspambots	Triggered by Fail2Ban at Vostok web server	2019-10-06 00:46:43
117.102.176.226	attackspambots	Oct 5 06:58:36 wbs sshd\[13650\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.102.176.226.static.zoot.jp user=root Oct 5 06:58:37 wbs sshd\[13650\]: Failed password for root from 117.102.176.226 port 56082 ssh2 Oct 5 07:03:15 wbs sshd\[14049\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.102.176.226.static.zoot.jp user=root Oct 5 07:03:17 wbs sshd\[14049\]: Failed password for root from 117.102.176.226 port 57772 ssh2 Oct 5 07:07:51 wbs sshd\[14457\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.102.176.226.static.zoot.jp user=root	2019-10-06 01:16:54
40.112.248.127	attack	Oct 5 04:35:34 wbs sshd\[32438\]: Invalid user Carlos2017 from 40.112.248.127 Oct 5 04:35:34 wbs sshd\[32438\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.248.127 Oct 5 04:35:37 wbs sshd\[32438\]: Failed password for invalid user Carlos2017 from 40.112.248.127 port 29376 ssh2 Oct 5 04:44:09 wbs sshd\[870\]: Invalid user Carlos2017 from 40.112.248.127 Oct 5 04:44:09 wbs sshd\[870\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.112.248.127	2019-10-06 01:14:05
222.186.175.150	attackspam	Oct 5 18:38:44 h2177944 sshd\[21170\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.150 user=root Oct 5 18:38:45 h2177944 sshd\[21170\]: Failed password for root from 222.186.175.150 port 8026 ssh2 Oct 5 18:38:50 h2177944 sshd\[21170\]: Failed password for root from 222.186.175.150 port 8026 ssh2 Oct 5 18:38:54 h2177944 sshd\[21170\]: Failed password for root from 222.186.175.150 port 8026 ssh2 ...	2019-10-06 00:42:06
187.216.127.147	attackspambots	2019-10-05T13:28:58.003919lon01.zurich-datacenter.net sshd\[32286\]: Invalid user Kansas@123 from 187.216.127.147 port 45360 2019-10-05T13:28:58.013623lon01.zurich-datacenter.net sshd\[32286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.216.127.147 2019-10-05T13:29:00.040195lon01.zurich-datacenter.net sshd\[32286\]: Failed password for invalid user Kansas@123 from 187.216.127.147 port 45360 ssh2 2019-10-05T13:33:07.952150lon01.zurich-datacenter.net sshd\[32377\]: Invalid user Heslo_123 from 187.216.127.147 port 57078 2019-10-05T13:33:07.958642lon01.zurich-datacenter.net sshd\[32377\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.216.127.147 ...	2019-10-06 01:00:46
49.88.112.113	attackspambots	Oct 5 07:07:48 web9 sshd\[19126\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Oct 5 07:07:50 web9 sshd\[19126\]: Failed password for root from 49.88.112.113 port 59865 ssh2 Oct 5 07:08:19 web9 sshd\[19197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Oct 5 07:08:21 web9 sshd\[19197\]: Failed password for root from 49.88.112.113 port 17855 ssh2 Oct 5 07:08:23 web9 sshd\[19197\]: Failed password for root from 49.88.112.113 port 17855 ssh2	2019-10-06 01:10:13
91.121.2.33	attack	Oct 5 14:25:25 server sshd[60619]: Failed password for root from 91.121.2.33 port 59671 ssh2 Oct 5 14:39:23 server sshd[62073]: Failed password for root from 91.121.2.33 port 36139 ssh2 Oct 5 14:42:55 server sshd[62415]: Failed password for root from 91.121.2.33 port 56139 ssh2	2019-10-06 00:49:28
61.12.38.162	attack	2019-10-05T10:12:38.0913411495-001 sshd\[23035\]: Failed password for root from 61.12.38.162 port 40060 ssh2 2019-10-05T10:23:04.5365381495-001 sshd\[23677\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.38.162 user=root 2019-10-05T10:23:06.6171411495-001 sshd\[23677\]: Failed password for root from 61.12.38.162 port 34386 ssh2 2019-10-05T10:28:16.4588721495-001 sshd\[24045\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.38.162 user=root 2019-10-05T10:28:18.7052861495-001 sshd\[24045\]: Failed password for root from 61.12.38.162 port 45664 ssh2 2019-10-05T10:33:26.9053431495-001 sshd\[24399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.12.38.162 user=root ...	2019-10-06 01:12:38
52.233.166.76	attackbotsspam	Oct 5 06:10:06 kapalua sshd\[23820\]: Failed password for invalid user P4ssw0rd12 from 52.233.166.76 port 43012 ssh2 Oct 5 06:14:57 kapalua sshd\[24407\]: Invalid user Santos_123 from 52.233.166.76 Oct 5 06:14:57 kapalua sshd\[24407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.233.166.76 Oct 5 06:14:59 kapalua sshd\[24407\]: Failed password for invalid user Santos_123 from 52.233.166.76 port 56552 ssh2 Oct 5 06:19:50 kapalua sshd\[24874\]: Invalid user Joker123 from 52.233.166.76	2019-10-06 00:54:04
107.180.68.110	attackspambots	Oct 5 06:24:46 friendsofhawaii sshd\[3068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-107-180-68-110.ip.secureserver.net user=root Oct 5 06:24:48 friendsofhawaii sshd\[3068\]: Failed password for root from 107.180.68.110 port 37381 ssh2 Oct 5 06:28:26 friendsofhawaii sshd\[4155\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-107-180-68-110.ip.secureserver.net user=root Oct 5 06:28:27 friendsofhawaii sshd\[4155\]: Failed password for root from 107.180.68.110 port 57156 ssh2 Oct 5 06:32:10 friendsofhawaii sshd\[4440\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-107-180-68-110.ip.secureserver.net user=root	2019-10-06 00:42:30

Recently Reported IPs

61.198.131.189	35.3.159.149	197.155.189.56	137.159.36.22
106.4.149.135	114.82.203.111	116.119.32.226	96.28.57.7
145.90.107.237	49.110.140.53	8.39.235.141	113.65.10.223
223.154.26.221	198.199.151.190	35.121.24.11	188.38.102.128
84.146.208.211	94.131.41.45	141.212.132.140	134.4.30.24