45.149.135.168

Basic Info

City: unknown

Region: unknown

Country: Russian Federation (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.149.135.168
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2837
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.149.135.168.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021400 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 22:17:03 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 168.135.149.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 168.135.149.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.31.109.6	attackspambots	07/29/2020-23:51:56.477642 103.31.109.6 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-07-30 16:02:01
206.189.124.254	attackspambots	SSH Brute Force	2020-07-30 16:22:11
190.145.81.37	attackbotsspam	Jul 30 08:37:43 rancher-0 sshd[659508]: Invalid user kmycloud from 190.145.81.37 port 58720 Jul 30 08:37:44 rancher-0 sshd[659508]: Failed password for invalid user kmycloud from 190.145.81.37 port 58720 ssh2 ...	2020-07-30 15:52:42
78.138.188.187	attack	Jul 30 00:33:41 dignus sshd[17871]: Failed password for invalid user guangyao from 78.138.188.187 port 45306 ssh2 Jul 30 00:38:10 dignus sshd[18391]: Invalid user zbh from 78.138.188.187 port 58930 Jul 30 00:38:10 dignus sshd[18391]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.138.188.187 Jul 30 00:38:13 dignus sshd[18391]: Failed password for invalid user zbh from 78.138.188.187 port 58930 ssh2 Jul 30 00:42:37 dignus sshd[18912]: Invalid user user02 from 78.138.188.187 port 44334 ...	2020-07-30 16:05:04
149.202.160.188	attackbots	2020-07-30T02:13:33.654165linuxbox-skyline sshd[99170]: Invalid user swathi from 149.202.160.188 port 43767 ...	2020-07-30 16:28:16
196.171.39.7	spamattack	They took over somehow my domain. I believe they have some buggy DNS servers that allow it do such thing. While they do have my domain for a little while - they are using my company's real email address to send tons of emails to nonexistent email recipients (hotmail, yahoo, google, etc. (public mail providers)). After a little while I get back tons of NDRs in my SMTP gateways and in corresponding user mailbox. Now the tricky part - I have to be on time when NDRs come in my SMTP gateway - because I have to remove them as soon as possible or there will be another loop and I my SMTP gateway will banned to global spam lists (p.s. It is banned now)	2020-07-30 16:00:45
79.235.226.247	attackspam	Automatic report - Port Scan Attack	2020-07-30 16:07:48
80.211.177.143	attackbots	Jul 30 09:54:16 santamaria sshd\[21981\]: Invalid user xinxin from 80.211.177.143 Jul 30 09:54:16 santamaria sshd\[21981\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.177.143 Jul 30 09:54:18 santamaria sshd\[21981\]: Failed password for invalid user xinxin from 80.211.177.143 port 40146 ssh2 ...	2020-07-30 16:26:10
119.45.147.142	attackspambots	prod8 ...	2020-07-30 16:27:34
1.34.144.128	attackspambots	Brute-force attempt banned	2020-07-30 16:31:06
113.125.159.5	attack	Brute-force attempt banned	2020-07-30 16:05:55
187.58.132.251	attackspambots	Brute forcing email accounts	2020-07-30 16:25:45
64.227.97.195	attack	Jul 30 07:56:53 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=64.227.97.195 DST=79.143.186.54 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=58941 DF PROTO=TCP SPT=36682 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Jul 30 07:56:54 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=64.227.97.195 DST=79.143.186.54 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=58942 DF PROTO=TCP SPT=36682 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0 Jul 30 07:56:56 hidden kernel: [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3f:fd:58:00:08:e3:ff:fd:90:08:00 SRC=64.227.97.195 DST=79.143.186.54 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=58943 DF PROTO=TCP SPT=36682 DPT=80 WINDOW=29200 RES=0x00 SYN URGP=0	2020-07-30 16:17:12
40.77.167.36	attack	Automatic report - Banned IP Access	2020-07-30 16:04:28
119.198.85.191	attack	Jul 30 10:54:19 journals sshd\[30957\]: Invalid user biguiqi from 119.198.85.191 Jul 30 10:54:19 journals sshd\[30957\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.198.85.191 Jul 30 10:54:21 journals sshd\[30957\]: Failed password for invalid user biguiqi from 119.198.85.191 port 57212 ssh2 Jul 30 11:01:08 journals sshd\[31635\]: Invalid user cbah from 119.198.85.191 Jul 30 11:01:08 journals sshd\[31635\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.198.85.191 ...	2020-07-30 16:13:12

Recently Reported IPs

4.155.203.58	208.239.250.49	85.214.214.212	163.74.57.232
172.80.95.105	46.92.108.127	237.1.71.25	203.180.160.109
150.6.152.129	40.151.81.154	149.66.135.72	223.248.84.135
159.216.30.55	18.88.127.163	150.2.165.255	169.34.139.246
114.54.183.159	5.143.92.55	8.74.172.20	3.82.242.68