45.163.134.2 - IPInfo

Basic Info

City: Mozarlandia

Region: Goias

Country: Brazil

Internet Service Provider: Henrique Cangussu Alves

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	web Attack on Website	2019-11-30 05:05:45

Comments on same subnet:

IP	Type	Details	Datetime
45.163.134.214	attack	Portscan detected	2020-08-01 01:49:43
45.163.134.197	attack	TCP (SYN) 45.163.134.197:24093 -> port 8080, len 40	2020-05-20 07:08:26
45.163.134.246	attackspam	Unauthorized connection attempt detected from IP address 45.163.134.246 to port 23 [J]	2020-02-05 18:22:29

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.163.134.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56931
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.163.134.2.			IN	A

;; AUTHORITY SECTION:
.			519	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112901 1800 900 604800 86400

;; Query time: 97 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Nov 30 05:05:41 CST 2019
;; MSG SIZE  rcvd: 116

Host info

2.134.163.45.in-addr.arpa domain name pointer dynamic-45-163-134-2.simgo.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
2.134.163.45.in-addr.arpa	name = dynamic-45-163-134-2.simgo.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.197.93.133	attackbotsspam	Sep 24 15:27:36 microserver sshd[46470]: Invalid user sacre from 138.197.93.133 port 57202 Sep 24 15:27:36 microserver sshd[46470]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.93.133 Sep 24 15:27:38 microserver sshd[46470]: Failed password for invalid user sacre from 138.197.93.133 port 57202 ssh2 Sep 24 15:30:58 microserver sshd[47067]: Invalid user pvp from 138.197.93.133 port 41920 Sep 24 15:30:58 microserver sshd[47067]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.93.133 Sep 24 15:41:27 microserver sshd[48459]: Invalid user rszhu from 138.197.93.133 port 52534 Sep 24 15:41:27 microserver sshd[48459]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.93.133 Sep 24 15:41:29 microserver sshd[48459]: Failed password for invalid user rszhu from 138.197.93.133 port 52534 ssh2 Sep 24 15:44:59 microserver sshd[48647]: Invalid user temp from 138.197.93.133 port 37250	2019-09-24 21:56:50
145.239.91.88	attack	Sep 24 14:58:11 eventyay sshd[22179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.91.88 Sep 24 14:58:12 eventyay sshd[22179]: Failed password for invalid user usertest from 145.239.91.88 port 52304 ssh2 Sep 24 15:02:26 eventyay sshd[22307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.91.88 ...	2019-09-24 22:13:01
92.222.15.70	attackspam	Sep 24 15:44:06 SilenceServices sshd[22174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.15.70 Sep 24 15:44:09 SilenceServices sshd[22174]: Failed password for invalid user keya from 92.222.15.70 port 56734 ssh2 Sep 24 15:48:33 SilenceServices sshd[23438]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.222.15.70	2019-09-24 22:25:02
121.94.98.112	attackspam	Unauthorised access (Sep 24) SRC=121.94.98.112 LEN=40 TTL=55 ID=18597 TCP DPT=8080 WINDOW=21783 SYN	2019-09-24 21:52:19
62.234.106.199	attackbots	$f2bV_matches	2019-09-24 21:57:27
195.154.182.205	attackspambots	Sep 24 14:45:21 lnxded63 sshd[10311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.154.182.205	2019-09-24 22:06:31
67.184.64.224	attackbots	Sep 24 03:46:03 aiointranet sshd\[15078\]: Invalid user jordi from 67.184.64.224 Sep 24 03:46:03 aiointranet sshd\[15078\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-67-184-64-224.hsd1.il.comcast.net Sep 24 03:46:05 aiointranet sshd\[15078\]: Failed password for invalid user jordi from 67.184.64.224 port 14158 ssh2 Sep 24 03:50:11 aiointranet sshd\[15406\]: Invalid user lex from 67.184.64.224 Sep 24 03:50:11 aiointranet sshd\[15406\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=c-67-184-64-224.hsd1.il.comcast.net	2019-09-24 21:55:17
114.141.104.45	attackbots	Sep 24 13:36:12 hcbbdb sshd\[30005\]: Invalid user itadmin from 114.141.104.45 Sep 24 13:36:12 hcbbdb sshd\[30005\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45-104-141-114.static-dsl.realworld.net.au Sep 24 13:36:15 hcbbdb sshd\[30005\]: Failed password for invalid user itadmin from 114.141.104.45 port 48993 ssh2 Sep 24 13:42:26 hcbbdb sshd\[30731\]: Invalid user design from 114.141.104.45 Sep 24 13:42:26 hcbbdb sshd\[30731\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45-104-141-114.static-dsl.realworld.net.au	2019-09-24 21:52:51
46.38.144.57	attack	Sep 24 16:07:04 relay postfix/smtpd\[24156\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 24 16:07:21 relay postfix/smtpd\[30495\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 24 16:08:20 relay postfix/smtpd\[25487\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 24 16:08:38 relay postfix/smtpd\[15183\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Sep 24 16:09:37 relay postfix/smtpd\[25487\]: warning: unknown\[46.38.144.57\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-09-24 22:18:55
125.212.247.15	attackbotsspam	Sep 24 04:14:34 eddieflores sshd\[7845\]: Invalid user tony from 125.212.247.15 Sep 24 04:14:34 eddieflores sshd\[7845\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.247.15 Sep 24 04:14:37 eddieflores sshd\[7845\]: Failed password for invalid user tony from 125.212.247.15 port 34948 ssh2 Sep 24 04:21:16 eddieflores sshd\[8371\]: Invalid user temp from 125.212.247.15 Sep 24 04:21:16 eddieflores sshd\[8371\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.212.247.15	2019-09-24 22:27:10
106.13.6.113	attackspam	Sep 24 15:16:56 microserver sshd[45110]: Invalid user fred from 106.13.6.113 port 59662 Sep 24 15:16:56 microserver sshd[45110]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.6.113 Sep 24 15:16:59 microserver sshd[45110]: Failed password for invalid user fred from 106.13.6.113 port 59662 ssh2 Sep 24 15:21:36 microserver sshd[45770]: Invalid user dan from 106.13.6.113 port 60834 Sep 24 15:21:36 microserver sshd[45770]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.6.113 Sep 24 15:34:00 microserver sshd[47237]: Invalid user ts3server from 106.13.6.113 port 36110 Sep 24 15:34:00 microserver sshd[47237]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.6.113 Sep 24 15:34:02 microserver sshd[47237]: Failed password for invalid user ts3server from 106.13.6.113 port 36110 ssh2 Sep 24 15:38:11 microserver sshd[47829]: Invalid user k from 106.13.6.113 port 37264 Sep 24 15:38:1	2019-09-24 22:00:30
183.131.82.99	attackspam	Sep 24 16:12:15 dcd-gentoo sshd[26383]: User root from 183.131.82.99 not allowed because none of user's groups are listed in AllowGroups Sep 24 16:12:17 dcd-gentoo sshd[26383]: error: PAM: Authentication failure for illegal user root from 183.131.82.99 Sep 24 16:12:15 dcd-gentoo sshd[26383]: User root from 183.131.82.99 not allowed because none of user's groups are listed in AllowGroups Sep 24 16:12:17 dcd-gentoo sshd[26383]: error: PAM: Authentication failure for illegal user root from 183.131.82.99 Sep 24 16:12:15 dcd-gentoo sshd[26383]: User root from 183.131.82.99 not allowed because none of user's groups are listed in AllowGroups Sep 24 16:12:17 dcd-gentoo sshd[26383]: error: PAM: Authentication failure for illegal user root from 183.131.82.99 Sep 24 16:12:17 dcd-gentoo sshd[26383]: Failed keyboard-interactive/pam for invalid user root from 183.131.82.99 port 26380 ssh2 ...	2019-09-24 22:14:55
27.46.171.7	attackbotsspam	Sep 24 15:47:34 MK-Soft-VM6 sshd[21718]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.46.171.7 Sep 24 15:47:36 MK-Soft-VM6 sshd[21718]: Failed password for invalid user teamspeak from 27.46.171.7 port 49116 ssh2 ...	2019-09-24 21:58:52
128.134.30.40	attackbotsspam	$f2bV_matches	2019-09-24 21:44:28
188.214.35.205	attack	Telnet Server BruteForce Attack	2019-09-24 21:45:22

Recently Reported IPs

123.221.215.140	37.187.122.1	84.5.12.198	176.13.134.39
37.59.107.1	82.160.56.144	37.41.196.2	80.133.247.8
37.187.114.1	36.154.39.1	194.74.248.126	121.81.244.242
35.187.234.1	3.65.160.77	113.101.199.123	102.163.134.124
118.92.205.142	150.109.182.163	109.135.79.103	99.132.174.37