City: unknown
Region: unknown
Country: Portugal
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.156.129.32 | attack | Malicious IP |
2024-06-11 21:03:25 |
| 45.156.129.23 | attack | hacking |
2024-02-21 16:21:38 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 45.154.220.0 - 45.157.167.255
CIDR: 45.154.224.0/19, 45.155.0.0/16, 45.156.0.0/16, 45.154.220.0/22, 45.157.160.0/21, 45.157.0.0/17, 45.157.128.0/19
NetName: RIPE
NetHandle: NET-45-154-220-0-1
Parent: NET45 (NET-45-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2014-05-22
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/45.154.220.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.156.129.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 53739
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;45.156.129.154. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026033103 1800 900 604800 86400
;; Query time: 5 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Apr 01 09:00:10 CST 2026
;; MSG SIZE rcvd: 107154.129.156.45.in-addr.arpa domain name pointer sh-chi-us-gp6-wk124c.internet-census.org.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
154.129.156.45.in-addr.arpa name = sh-chi-us-gp6-wk124c.internet-census.org.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 189.33.225.27 | attackbots | Aug 28 14:15:50 ny01 sshd[18113]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.33.225.27 Aug 28 14:15:52 ny01 sshd[18113]: Failed password for invalid user banana from 189.33.225.27 port 52609 ssh2 Aug 28 14:21:30 ny01 sshd[19083]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.33.225.27 |
2019-08-29 02:32:45 |
| 212.3.214.45 | attack | Aug 28 18:01:16 hcbbdb sshd\[24181\]: Invalid user cw from 212.3.214.45 Aug 28 18:01:16 hcbbdb sshd\[24181\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.3.214.45 Aug 28 18:01:18 hcbbdb sshd\[24181\]: Failed password for invalid user cw from 212.3.214.45 port 46834 ssh2 Aug 28 18:06:42 hcbbdb sshd\[24794\]: Invalid user password from 212.3.214.45 Aug 28 18:06:42 hcbbdb sshd\[24794\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.3.214.45 |
2019-08-29 02:28:35 |
| 167.71.55.1 | attackspam | Automatic report - SSH Brute-Force Attack |
2019-08-29 02:33:55 |
| 118.89.35.168 | attackbotsspam | ssh failed login |
2019-08-29 03:08:15 |
| 150.95.105.63 | attack | 150.95.105.63 - - [28/Aug/2019:16:47:24 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 150.95.105.63 - - [28/Aug/2019:16:47:26 +0200] "POST /wp-login.php HTTP/1.1" 200 1503 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 150.95.105.63 - - [28/Aug/2019:16:47:27 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 150.95.105.63 - - [28/Aug/2019:16:47:28 +0200] "POST /wp-login.php HTTP/1.1" 200 1489 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 150.95.105.63 - - [28/Aug/2019:16:47:29 +0200] "GET /wp-login.php HTTP/1.1" 200 1122 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 150.95.105.63 - - [28/Aug/2019:16:47:30 +0200] "POST /wp-login.php HTTP/1.1" 200 1491 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ... |
2019-08-29 02:38:19 |
| 118.24.5.163 | attack | Aug 28 19:23:38 srv-4 sshd\[19161\]: Invalid user camille from 118.24.5.163 Aug 28 19:23:38 srv-4 sshd\[19161\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.5.163 Aug 28 19:23:40 srv-4 sshd\[19161\]: Failed password for invalid user camille from 118.24.5.163 port 54536 ssh2 ... |
2019-08-29 03:03:56 |
| 195.84.49.20 | attackbotsspam | Aug 28 16:17:00 [munged] sshd[4435]: Invalid user postgres from 195.84.49.20 port 49494 Aug 28 16:17:00 [munged] sshd[4435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.84.49.20 |
2019-08-29 03:01:58 |
| 34.80.37.61 | attackspambots | Aug 28 08:43:51 web9 sshd\[2978\]: Invalid user owen from 34.80.37.61 Aug 28 08:43:51 web9 sshd\[2978\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.37.61 Aug 28 08:43:53 web9 sshd\[2978\]: Failed password for invalid user owen from 34.80.37.61 port 57616 ssh2 Aug 28 08:48:35 web9 sshd\[3894\]: Invalid user newsletter from 34.80.37.61 Aug 28 08:48:35 web9 sshd\[3894\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=34.80.37.61 |
2019-08-29 02:52:10 |
| 111.101.138.126 | attackbots | Automatic report - Banned IP Access |
2019-08-29 02:50:31 |
| 31.154.16.105 | attackspam | Automatic report - Banned IP Access |
2019-08-29 02:42:10 |
| 186.72.74.70 | attack | proto=tcp . spt=46758 . dpt=25 . (listed on Github Combined on 3 lists ) (774) |
2019-08-29 02:36:54 |
| 106.13.33.181 | attackspam | Aug 29 01:31:06 itv-usvr-02 sshd[613]: Invalid user access from 106.13.33.181 port 54966 Aug 29 01:31:06 itv-usvr-02 sshd[613]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.33.181 Aug 29 01:31:06 itv-usvr-02 sshd[613]: Invalid user access from 106.13.33.181 port 54966 Aug 29 01:31:08 itv-usvr-02 sshd[613]: Failed password for invalid user access from 106.13.33.181 port 54966 ssh2 Aug 29 01:40:36 itv-usvr-02 sshd[722]: Invalid user eucalyptus from 106.13.33.181 port 42058 |
2019-08-29 02:49:27 |
| 218.92.0.202 | attack | Aug 28 21:26:06 pkdns2 sshd\[13358\]: Failed password for root from 218.92.0.202 port 30962 ssh2Aug 28 21:28:24 pkdns2 sshd\[13451\]: Failed password for root from 218.92.0.202 port 19548 ssh2Aug 28 21:29:09 pkdns2 sshd\[13479\]: Failed password for root from 218.92.0.202 port 57939 ssh2Aug 28 21:29:11 pkdns2 sshd\[13479\]: Failed password for root from 218.92.0.202 port 57939 ssh2Aug 28 21:29:14 pkdns2 sshd\[13479\]: Failed password for root from 218.92.0.202 port 57939 ssh2Aug 28 21:29:54 pkdns2 sshd\[13510\]: Failed password for root from 218.92.0.202 port 53447 ssh2 ... |
2019-08-29 02:41:00 |
| 18.18.248.17 | attackbots | Aug 28 16:16:53 cvbmail sshd\[30436\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=18.18.248.17 user=root Aug 28 16:16:55 cvbmail sshd\[30436\]: Failed password for root from 18.18.248.17 port 25640 ssh2 Aug 28 16:16:58 cvbmail sshd\[30436\]: Failed password for root from 18.18.248.17 port 25640 ssh2 |
2019-08-29 02:57:16 |
| 128.14.209.154 | attackbots | Microsoft Windows HTTP.sys Remote Code Execution Vulnerability, PTR: survey.internet-census.org. |
2019-08-29 02:34:50 |