102.45.149.12 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Egypt

Internet Service Provider: TE Data

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	SSH bruteforce more then 50 syn to 22 port per 10 seconds.	2020-05-15 22:22:31

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 102.45.149.12
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26387
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;102.45.149.12.			IN	A

;; AUTHORITY SECTION:
.			271	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020051500 1800 900 604800 86400

;; Query time: 145 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri May 15 22:22:24 CST 2020
;; MSG SIZE  rcvd: 117

Host info

12.149.45.102.in-addr.arpa domain name pointer host-102.45.149.12.tedata.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
12.149.45.102.in-addr.arpa	name = host-102.45.149.12.tedata.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.126.204.169	attackspam	Jul 25 19:16:38 h2427292 sshd\[19427\]: Invalid user osboxes from 91.126.204.169 Jul 25 19:16:40 h2427292 sshd\[19427\]: Failed password for invalid user osboxes from 91.126.204.169 port 37992 ssh2 Jul 25 19:16:41 h2427292 sshd\[19467\]: Invalid user support from 91.126.204.169 ...	2020-07-26 04:47:46
106.12.204.81	attackbots	sshd jail - ssh hack attempt	2020-07-26 04:55:58
125.36.185.34	attack	Exploited Host.	2020-07-26 04:41:07
46.146.240.185	attackspambots	Jul 25 19:49:13 xeon sshd[9416]: Failed password for invalid user temp123 from 46.146.240.185 port 53165 ssh2	2020-07-26 05:13:36
196.17.238.91	attackbotsspam	Automatic report - Banned IP Access	2020-07-26 05:00:10
77.121.100.14	attack	Icarus honeypot on github	2020-07-26 04:46:57
124.239.216.233	attackspam	2020-07-25T14:36:29.178975linuxbox-skyline sshd[25541]: Invalid user testuser from 124.239.216.233 port 32980 ...	2020-07-26 05:13:19
201.171.11.42	attackspam	Port probing on unauthorized port 9673	2020-07-26 05:14:17
147.135.133.88	attackspam	Invalid user dublin from 147.135.133.88 port 38132	2020-07-26 05:12:51
184.168.46.135	attackspam	Many requests like this.. 184.168.46.135 - - [25/Jul/2020:17:50:05 +0300] "GET /wordpress//wp-login.php HTTP/1.1" 301 256 "-" "Mozilla/5.0 (X11; U; Linux i686; pt-BR; rv:1.9.0.15) Gecko/2009102815 Ubuntu/9.04 (jaunty) Firefox/3.0.15"...	2020-07-26 05:17:17
194.26.29.83	attack	Jul 25 22:37:54 debian-2gb-nbg1-2 kernel: \[17967987.751772\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=194.26.29.83 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=38309 PROTO=TCP SPT=47974 DPT=3353 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-26 04:51:30
150.107.176.130	attackspam	(sshd) Failed SSH login from 150.107.176.130 (IN/India/node-150-107-176-130.alliancebroadband.in): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jul 25 19:54:33 amsweb01 sshd[20903]: Invalid user sherry from 150.107.176.130 port 39858 Jul 25 19:54:35 amsweb01 sshd[20903]: Failed password for invalid user sherry from 150.107.176.130 port 39858 ssh2 Jul 25 20:01:47 amsweb01 sshd[21871]: Invalid user ubuntu from 150.107.176.130 port 45540 Jul 25 20:01:49 amsweb01 sshd[21871]: Failed password for invalid user ubuntu from 150.107.176.130 port 45540 ssh2 Jul 25 20:04:55 amsweb01 sshd[22251]: Invalid user user from 150.107.176.130 port 34206	2020-07-26 04:49:51
103.200.22.126	attackbots	2020-07-25T17:10:11.023636mail.broermann.family sshd[25266]: Invalid user tommy from 103.200.22.126 port 50212 2020-07-25T17:10:11.029846mail.broermann.family sshd[25266]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.200.22.126 2020-07-25T17:10:11.023636mail.broermann.family sshd[25266]: Invalid user tommy from 103.200.22.126 port 50212 2020-07-25T17:10:13.143260mail.broermann.family sshd[25266]: Failed password for invalid user tommy from 103.200.22.126 port 50212 ssh2 2020-07-25T17:12:33.373867mail.broermann.family sshd[25330]: Invalid user user2 from 103.200.22.126 port 52394 ...	2020-07-26 04:58:58
49.87.30.158	attackspambots	Netgear DGN Device Remote Command Execution Vulnerability , PTR: PTR record not found	2020-07-26 05:07:18
147.50.135.171	attackbotsspam	Jul 25 22:28:35 vpn01 sshd[13589]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.50.135.171 Jul 25 22:28:37 vpn01 sshd[13589]: Failed password for invalid user tests from 147.50.135.171 port 45416 ssh2 ...	2020-07-26 04:56:22

Recently Reported IPs

168.70.125.217	200.195.170.210	186.185.1.200	129.28.175.65
34.69.43.245	156.215.138.247	82.60.41.17	103.77.45.93
189.114.67.19	95.141.193.7	144.91.118.145	166.28.119.183
247.185.79.151	177.220.177.209	183.213.23.118	14.252.203.143
211.28.164.96	105.212.94.49	159.195.33.145	139.162.148.195