City: Stockholm
Region: Stockholms
Country: Sweden
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 45.82.137.35 | attackbotsspam | $f2bV_matches |
2020-09-16 03:22:54 |
| 45.82.137.35 | attackspam | Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF) |
2020-09-15 19:26:31 |
| 45.82.137.35 | attack | Sep 10 01:56:27 * sshd[13755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.82.137.35 Sep 10 01:56:29 * sshd[13755]: Failed password for invalid user isaac from 45.82.137.35 port 50306 ssh2 |
2020-09-10 14:32:11 |
| 45.82.137.35 | attack | Sep 9 20:57:06 MainVPS sshd[7695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.82.137.35 user=root Sep 9 20:57:08 MainVPS sshd[7695]: Failed password for root from 45.82.137.35 port 35584 ssh2 Sep 9 21:01:11 MainVPS sshd[472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.82.137.35 user=root Sep 9 21:01:13 MainVPS sshd[472]: Failed password for root from 45.82.137.35 port 41320 ssh2 Sep 9 21:05:22 MainVPS sshd[30448]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.82.137.35 user=root Sep 9 21:05:24 MainVPS sshd[30448]: Failed password for root from 45.82.137.35 port 47056 ssh2 ... |
2020-09-10 05:12:44 |
| 45.82.137.35 | attack | <6 unauthorized SSH connections |
2020-09-07 23:16:34 |
| 45.82.137.35 | attackspam | Brute%20Force%20SSH |
2020-09-07 14:52:13 |
| 45.82.137.35 | attackspam | $f2bV_matches |
2020-09-07 07:21:41 |
| 45.82.136.246 | attackspambots | Sep 1 15:53:57 uapps sshd[14104]: Connection closed by 45.82.136.246 port 40382 Sep 1 15:54:05 uapps sshd[14105]: Invalid user ansible from 45.82.136.246 port 57724 Sep 1 15:54:07 uapps sshd[14105]: Failed password for invalid user ansible from 45.82.136.246 port 57724 ssh2 Sep 1 15:54:08 uapps sshd[14105]: Received disconnect from 45.82.136.246 port 57724:11: Normal Shutdown, Thank you for playing [preauth] Sep 1 15:54:08 uapps sshd[14105]: Disconnected from invalid user ansible 45.82.136.246 port 57724 [preauth] Sep 1 15:54:19 uapps sshd[14109]: User r.r from 45.82.136.246 not allowed because not listed in AllowUsers Sep 1 15:54:19 uapps sshd[14109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.82.136.246 user=r.r Sep 1 15:54:21 uapps sshd[14109]: Failed password for invalid user r.r from 45.82.136.246 port 39156 ssh2 Sep 1 15:54:22 uapps sshd[14109]: Received disconnect from 45.82.136.246 port 39156:11: Normal S........ ------------------------------- |
2020-09-06 22:33:15 |
| 45.82.136.246 | attackbots | Fail2Ban |
2020-09-06 14:05:53 |
| 45.82.136.246 | attackspambots | Sep 5 23:58:41 sd-69548 sshd[851729]: Unable to negotiate with 45.82.136.246 port 47826: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] Sep 5 23:58:53 sd-69548 sshd[851746]: Unable to negotiate with 45.82.136.246 port 57016: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth] ... |
2020-09-06 06:17:24 |
| 45.82.136.236 | attackspam | Sep 1 14:56:06 euve59663 sshd[15993]: Did not receive identification s= tring from 45.82.136.236 Sep 1 14:56:09 euve59663 sshd[15994]: Invalid user ansible from 45.82.= 136.236 Sep 1 14:56:09 euve59663 sshd[15994]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D45.= 82.136.236=20 Sep 1 14:56:11 euve59663 sshd[15994]: Failed password for invalid user= ansible from 45.82.136.236 port 48408 ssh2 Sep 1 14:56:11 euve59663 sshd[15994]: Received disconnect from 45.82.1= 36.236: 11: Normal Shutdown, Thank you for playing [preauth] Sep 1 14:56:17 euve59663 sshd[15996]: pam_unix(sshd:auth): authenticat= ion failure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D45.= 82.136.236 user=3Dr.r Sep 1 14:56:19 euve59663 sshd[15996]: Failed password for r.r from 45= .82.136.236 port 53924 ssh2 Sep 1 14:56:19 euve59663 sshd[15996]: Received disconnect from 45.82.1= 36.236: 11: Normal Shutdown, Thank you for playing [........ ------------------------------- |
2020-09-06 00:36:49 |
| 45.82.136.246 | attackbots | Sep 5 17:35:35 deb10 sshd[22117]: Invalid user ansible from 45.82.136.246 port 51024 Sep 5 17:35:48 deb10 sshd[22124]: User root from 45.82.136.246 not allowed because not listed in AllowUsers |
2020-09-06 00:23:03 |
| 45.82.136.236 | attack | >10 unauthorized SSH connections |
2020-09-05 16:06:29 |
| 45.82.136.246 | attackbots | Sep 1 15:53:57 uapps sshd[14104]: Connection closed by 45.82.136.246 port 40382 Sep 1 15:54:05 uapps sshd[14105]: Invalid user ansible from 45.82.136.246 port 57724 Sep 1 15:54:07 uapps sshd[14105]: Failed password for invalid user ansible from 45.82.136.246 port 57724 ssh2 Sep 1 15:54:08 uapps sshd[14105]: Received disconnect from 45.82.136.246 port 57724:11: Normal Shutdown, Thank you for playing [preauth] Sep 1 15:54:08 uapps sshd[14105]: Disconnected from invalid user ansible 45.82.136.246 port 57724 [preauth] Sep 1 15:54:19 uapps sshd[14109]: User r.r from 45.82.136.246 not allowed because not listed in AllowUsers Sep 1 15:54:19 uapps sshd[14109]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.82.136.246 user=r.r Sep 1 15:54:21 uapps sshd[14109]: Failed password for invalid user r.r from 45.82.136.246 port 39156 ssh2 Sep 1 15:54:22 uapps sshd[14109]: Received disconnect from 45.82.136.246 port 39156:11: Normal S........ ------------------------------- |
2020-09-05 15:53:49 |
| 45.82.136.236 | attackspambots | Time: Fri Sep 4 23:53:35 2020 +0000 IP: 45.82.136.236 (IR/Iran/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 4 23:53:15 ca-47-ede1 sshd[28948]: Did not receive identification string from 45.82.136.236 port 54942 Sep 4 23:53:21 ca-47-ede1 sshd[28950]: Invalid user ansible from 45.82.136.236 port 33888 Sep 4 23:53:24 ca-47-ede1 sshd[28950]: Failed password for invalid user ansible from 45.82.136.236 port 33888 ssh2 Sep 4 23:53:30 ca-47-ede1 sshd[28955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.82.136.236 user=root Sep 4 23:53:32 ca-47-ede1 sshd[28955]: Failed password for root from 45.82.136.236 port 43312 ssh2 |
2020-09-05 08:41:46 |
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#
NetRange: 45.80.0.0 - 45.88.215.255
CIDR: 45.88.128.0/18, 45.88.208.0/21, 45.80.0.0/13, 45.88.192.0/20, 45.88.0.0/17
NetName: RIPE
NetHandle: NET-45-80-0-0-1
Parent: NET45 (NET-45-0-0-0-0)
NetType: Early Registrations, Transferred to RIPE NCC
OriginAS:
Organization: RIPE Network Coordination Centre (RIPE)
RegDate: 2014-09-05
Updated: 2025-02-10
Comment: These addresses have been further assigned to users in the RIPE NCC region. Please note that the organization and point of contact details listed below are those of the RIPE NCC not the current address holder. ** You can find user contact information for the current address holder in the RIPE database at http://www.ripe.net/whois.
Ref: https://rdap.arin.net/registry/ip/45.80.0.0
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
ResourceLink: whois.ripe.net
OrgName: RIPE Network Coordination Centre
OrgId: RIPE
Address: P.O. Box 10096
City: Amsterdam
StateProv:
PostalCode: 1001EB
Country: NL
RegDate:
Updated: 2013-07-29
Ref: https://rdap.arin.net/registry/entity/RIPE
ReferralServer: whois.ripe.net
ResourceLink: https://apps.db.ripe.net/db-web-ui/query
OrgAbuseHandle: ABUSE3850-ARIN
OrgAbuseName: Abuse Contact
OrgAbusePhone: +31205354444
OrgAbuseEmail: abuse@ripe.net
OrgAbuseRef: https://rdap.arin.net/registry/entity/ABUSE3850-ARIN
OrgTechHandle: RNO29-ARIN
OrgTechName: RIPE NCC Operations
OrgTechPhone: +31 20 535 4444
OrgTechEmail: hostmaster@ripe.net
OrgTechRef: https://rdap.arin.net/registry/entity/RNO29-ARIN
#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2026, American Registry for Internet Numbers, Ltd.
#; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.82.13.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6057
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;45.82.13.200. IN A
;; AUTHORITY SECTION:
. 30 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2026012700 1800 900 604800 86400
;; Query time: 8 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Jan 27 20:31:03 CST 2026
;; MSG SIZE rcvd: 105200.13.82.45.in-addr.arpa domain name pointer 152164.ip-ptr.tech.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
200.13.82.45.in-addr.arpa name = 152164.ip-ptr.tech.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 122.51.191.69 | attack | 3x Failed Password |
2020-04-22 02:26:31 |
| 94.177.188.152 | attackbots | 2020-04-21T16:56:05.511339vps773228.ovh.net sshd[19807]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.188.152 2020-04-21T16:56:05.493620vps773228.ovh.net sshd[19807]: Invalid user oracle from 94.177.188.152 port 44120 2020-04-21T16:56:08.037897vps773228.ovh.net sshd[19807]: Failed password for invalid user oracle from 94.177.188.152 port 44120 ssh2 2020-04-21T17:00:44.835658vps773228.ovh.net sshd[19858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.188.152 user=root 2020-04-21T17:00:46.665730vps773228.ovh.net sshd[19858]: Failed password for root from 94.177.188.152 port 58400 ssh2 ... |
2020-04-22 02:46:00 |
| 54.37.136.87 | attackspam | Apr 21 17:31:21 vlre-nyc-1 sshd\[28969\]: Invalid user admin from 54.37.136.87 Apr 21 17:31:21 vlre-nyc-1 sshd\[28969\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.136.87 Apr 21 17:31:24 vlre-nyc-1 sshd\[28969\]: Failed password for invalid user admin from 54.37.136.87 port 46988 ssh2 Apr 21 17:35:46 vlre-nyc-1 sshd\[29048\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.136.87 user=root Apr 21 17:35:48 vlre-nyc-1 sshd\[29048\]: Failed password for root from 54.37.136.87 port 57656 ssh2 ... |
2020-04-22 02:55:40 |
| 74.97.19.201 | attackspam | Unauthorized connection attempt detected from IP address 74.97.19.201 to port 22 |
2020-04-22 02:49:52 |
| 111.229.116.240 | attackspambots | Brute-force attempt banned |
2020-04-22 02:34:54 |
| 58.218.66.102 | attackbotsspam | Invalid user heron from 58.218.66.102 port 12808 |
2020-04-22 02:54:57 |
| 106.13.106.27 | attackbotsspam | Invalid user hadoop |
2020-04-22 02:38:19 |
| 101.227.82.219 | attackbots | Apr 21 21:39:22 hosting sshd[17715]: Invalid user xv from 101.227.82.219 port 11669 ... |
2020-04-22 02:44:35 |
| 60.174.248.244 | attackbots | Invalid user ansible from 60.174.248.244 port 54589 |
2020-04-22 02:54:42 |
| 94.191.94.179 | attackbotsspam | SSH login attempts. |
2020-04-22 02:45:32 |
| 46.101.183.105 | attack | Apr 21 18:27:56 pornomens sshd\[6780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.183.105 user=proxy Apr 21 18:27:57 pornomens sshd\[6780\]: Failed password for proxy from 46.101.183.105 port 59056 ssh2 Apr 21 18:32:44 pornomens sshd\[6823\]: Invalid user ubuntu from 46.101.183.105 port 44420 Apr 21 18:32:44 pornomens sshd\[6823\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.101.183.105 ... |
2020-04-22 03:00:40 |
| 90.176.150.123 | attack | 2020-04-21T13:44:42.0661371495-001 sshd[42680]: Invalid user bj from 90.176.150.123 port 45721 2020-04-21T13:44:44.4923391495-001 sshd[42680]: Failed password for invalid user bj from 90.176.150.123 port 45721 ssh2 2020-04-21T13:48:08.6172341495-001 sshd[42857]: Invalid user admin from 90.176.150.123 port 47300 2020-04-21T13:48:08.6203921495-001 sshd[42857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.150.broadband9.iol.cz 2020-04-21T13:48:08.6172341495-001 sshd[42857]: Invalid user admin from 90.176.150.123 port 47300 2020-04-21T13:48:09.9828951495-001 sshd[42857]: Failed password for invalid user admin from 90.176.150.123 port 47300 ssh2 ... |
2020-04-22 02:47:56 |
| 64.202.185.161 | attack | IP blocked |
2020-04-22 02:53:41 |
| 41.218.205.253 | attackspambots | Invalid user admin from 41.218.205.253 port 33931 |
2020-04-22 03:02:47 |
| 41.36.174.135 | attackbotsspam | Invalid user admin from 41.36.174.135 port 42543 |
2020-04-22 03:04:32 |