45.149.78.134 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Iran

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.149.78.103	attack	45.149.78.103 - - [05/Oct/2020:08:12:23 -0700] "GET /wp-login.php HTTP/1.1" 301 565 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-06 04:38:38
45.149.78.103	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-10-05 20:41:36
45.149.78.103	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-10-05 12:30:49

Type

Details

Datetime

45.149.78.103

attack

45.149.78.103 - - [05/Oct/2020:08:12:23 -0700] "GET /wp-login.php HTTP/1.1" 301 565 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
...

2020-10-06 04:38:38

45.149.78.103

attackbots

"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:

2020-10-05 20:41:36

45.149.78.103

attackbots

"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:

2020-10-05 12:30:49

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.149.78.134
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 36909
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.149.78.134.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025041601 1800 900 604800 86400

;; Query time: 11 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 17 12:46:33 CST 2025
;; MSG SIZE  rcvd: 106

Host info

Host 134.78.149.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 134.78.149.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.83.76.36	attackspambots	Sep 8 14:08:18 core sshd[19063]: Failed password for root from 51.83.76.36 port 53458 ssh2 Sep 8 14:12:22 core sshd[23926]: Invalid user ftptest from 51.83.76.36 port 40768 ...	2019-09-08 20:17:10
92.53.53.119	attackbots	TCP Port: 25 _ invalid blocked abuseat-org barracudacentral _ _ _ _ (765)	2019-09-08 20:33:10
182.68.24.21	attackbotsspam	TCP Port: 25 _ invalid blocked dnsbl-sorbs abuseat-org _ _ _ _ (759)	2019-09-08 20:49:46
138.68.208.31	attackspambots	8140/tcp 70/tcp [2019-09-06/07]3pkt	2019-09-08 20:20:57
103.248.25.171	attackspam	Sep 8 12:00:10 hcbbdb sshd\[26260\]: Invalid user ts3srv from 103.248.25.171 Sep 8 12:00:10 hcbbdb sshd\[26260\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.248.25.171 Sep 8 12:00:12 hcbbdb sshd\[26260\]: Failed password for invalid user ts3srv from 103.248.25.171 port 34210 ssh2 Sep 8 12:05:31 hcbbdb sshd\[26789\]: Invalid user student from 103.248.25.171 Sep 8 12:05:31 hcbbdb sshd\[26789\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.248.25.171	2019-09-08 20:09:17
181.115.140.79	attackbots	TCP Port: 25 _ invalid blocked dnsbl-sorbs abuseat-org _ _ _ _ (757)	2019-09-08 20:53:36
31.185.49.170	attack	TCP Port: 25 _ invalid blocked dnsbl-sorbs abuseat-org _ _ _ _ (764)	2019-09-08 20:35:29
138.68.208.143	attackbotsspam	8080/tcp 161/udp [2019-09-06/07]2pkt	2019-09-08 20:15:23
170.84.147.108	attack	Automatic report - Port Scan Attack	2019-09-08 20:29:57
89.248.172.16	attack	Multiport scan : 4 ports scanned 880 1990 3690 9251	2019-09-08 21:00:48
159.203.199.212	attackspam	8084/tcp 7000/tcp 264/tcp [2019-09-06]3pkt	2019-09-08 20:23:05
161.132.217.167	attackspambots	scan z	2019-09-08 20:20:32
94.191.78.128	attackbotsspam	Sep 8 10:26:23 OPSO sshd\[28393\]: Invalid user test from 94.191.78.128 port 57800 Sep 8 10:26:23 OPSO sshd\[28393\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.78.128 Sep 8 10:26:25 OPSO sshd\[28393\]: Failed password for invalid user test from 94.191.78.128 port 57800 ssh2 Sep 8 10:29:00 OPSO sshd\[28860\]: Invalid user user from 94.191.78.128 port 48034 Sep 8 10:29:00 OPSO sshd\[28860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.78.128	2019-09-08 20:45:02
176.122.114.143	attackspam	TCP Port: 25 _ invalid blocked abuseat-org barracudacentral _ _ _ _ (763)	2019-09-08 20:36:09
185.211.245.198	attack	Sep 8 11:20:54 mail postfix/smtpd\[17639\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 11:21:04 mail postfix/smtpd\[17639\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 8 11:22:56 mail postfix/smtpd\[17639\]: warning: unknown\[185.211.245.198\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-09-08 20:54:59

Recently Reported IPs

183.197.61.7	195.211.197.1	47.236.167.71	205.210.31.6
103.41.165.132	47.6.7.83	79.166.219.205	36.27.31.102
26.218.53.75	223.96.206.103	43.135.144.126	74.173.33.129
103.85.84.246	43.248.131.132	49.51.253.83	175.9.168.97
148.117.102.125	43.251.246.2	116.76.38.81	73.32.172.204