145.255.168.148

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
145.255.168.88	attackspam	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-05-29 04:22:05
145.255.168.209	attack	Oct 15 05:30:38 mxgate1 postfix/postscreen[30848]: CONNECT from [145.255.168.209]:46129 to [176.31.12.44]:25 Oct 15 05:30:38 mxgate1 postfix/dnsblog[31092]: addr 145.255.168.209 listed by domain zen.spamhaus.org as 127.0.0.3 Oct 15 05:30:38 mxgate1 postfix/dnsblog[31092]: addr 145.255.168.209 listed by domain zen.spamhaus.org as 127.0.0.11 Oct 15 05:30:38 mxgate1 postfix/dnsblog[31092]: addr 145.255.168.209 listed by domain zen.spamhaus.org as 127.0.0.4 Oct 15 05:30:38 mxgate1 postfix/dnsblog[31090]: addr 145.255.168.209 listed by domain cbl.abuseat.org as 127.0.0.2 Oct 15 05:30:39 mxgate1 postfix/dnsblog[31089]: addr 145.255.168.209 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Oct 15 05:30:39 mxgate1 postfix/dnsblog[31088]: addr 145.255.168.209 listed by domain b.barracudacentral.org as 127.0.0.2 Oct 15 05:30:39 mxgate1 postfix/postscreen[30848]: PREGREET 24 after 0.12 from [145.255.168.209]:46129: EHLO [145.255.168.209] Oct 15 05:30:39 mxgate1 postfix/postscreen........ -------------------------------	2019-10-15 18:56:32

Type

Details

Datetime

145.255.168.88

attackspam

"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:

2020-05-29 04:22:05

145.255.168.209

attack

Oct 15 05:30:38 mxgate1 postfix/postscreen[30848]: CONNECT from [145.255.168.209]:46129 to [176.31.12.44]:25
Oct 15 05:30:38 mxgate1 postfix/dnsblog[31092]: addr 145.255.168.209 listed by domain zen.spamhaus.org as 127.0.0.3
Oct 15 05:30:38 mxgate1 postfix/dnsblog[31092]: addr 145.255.168.209 listed by domain zen.spamhaus.org as 127.0.0.11
Oct 15 05:30:38 mxgate1 postfix/dnsblog[31092]: addr 145.255.168.209 listed by domain zen.spamhaus.org as 127.0.0.4
Oct 15 05:30:38 mxgate1 postfix/dnsblog[31090]: addr 145.255.168.209 listed by domain cbl.abuseat.org as 127.0.0.2
Oct 15 05:30:39 mxgate1 postfix/dnsblog[31089]: addr 145.255.168.209 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2
Oct 15 05:30:39 mxgate1 postfix/dnsblog[31088]: addr 145.255.168.209 listed by domain b.barracudacentral.org as 127.0.0.2
Oct 15 05:30:39 mxgate1 postfix/postscreen[30848]: PREGREET 24 after 0.12 from [145.255.168.209]:46129: EHLO [145.255.168.209]

Oct 15 05:30:39 mxgate1 postfix/postscreen........
-------------------------------

2019-10-15 18:56:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 145.255.168.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9664
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;145.255.168.148.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022700 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 14:18:26 CST 2022
;; MSG SIZE  rcvd: 108

Host info

Host 148.168.255.145.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 148.168.255.145.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.50.63.227	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-29 13:54:12
222.186.175.212	attackbots	Dec 29 06:07:23 MainVPS sshd[23417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Dec 29 06:07:26 MainVPS sshd[23417]: Failed password for root from 222.186.175.212 port 19426 ssh2 Dec 29 06:07:39 MainVPS sshd[23417]: error: maximum authentication attempts exceeded for root from 222.186.175.212 port 19426 ssh2 [preauth] Dec 29 06:07:23 MainVPS sshd[23417]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Dec 29 06:07:26 MainVPS sshd[23417]: Failed password for root from 222.186.175.212 port 19426 ssh2 Dec 29 06:07:39 MainVPS sshd[23417]: error: maximum authentication attempts exceeded for root from 222.186.175.212 port 19426 ssh2 [preauth] Dec 29 06:07:45 MainVPS sshd[23441]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.212 user=root Dec 29 06:07:47 MainVPS sshd[23441]: Failed password for root from 222.186.175.212 port	2019-12-29 13:21:10
165.22.54.74	attack	Dec 29 06:55:29 taivassalofi sshd[9307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.54.74 Dec 29 06:55:31 taivassalofi sshd[9307]: Failed password for invalid user guest from 165.22.54.74 port 42804 ssh2 ...	2019-12-29 13:31:51
88.214.26.8	attackspambots	$f2bV_matches	2019-12-29 13:30:03
162.241.239.57	attack	Dec 29 06:47:07 lnxweb61 sshd[8674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.239.57 Dec 29 06:47:07 lnxweb61 sshd[8674]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=162.241.239.57	2019-12-29 13:53:37
221.213.75.207	attackspambots	Fail2Ban Ban Triggered	2019-12-29 13:58:46
45.80.65.1	attackspambots	"SSH brute force auth login attempt."	2019-12-29 13:54:37
167.114.113.173	attack	Dec 29 05:55:16 debian-2gb-nbg1-2 kernel: \[1248030.525333\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=167.114.113.173 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=237 ID=21355 PROTO=TCP SPT=60000 DPT=6022 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-29 13:39:50
14.171.171.180	attackspambots	19/12/28@23:55:14: FAIL: Alarm-Network address from=14.171.171.180 19/12/28@23:55:14: FAIL: Alarm-Network address from=14.171.171.180 ...	2019-12-29 13:42:15
27.128.226.176	attackspambots	Dec 29 05:51:50 ns382633 sshd\[13939\]: Invalid user yopless from 27.128.226.176 port 38980 Dec 29 05:51:50 ns382633 sshd\[13939\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.226.176 Dec 29 05:51:52 ns382633 sshd\[13939\]: Failed password for invalid user yopless from 27.128.226.176 port 38980 ssh2 Dec 29 06:13:57 ns382633 sshd\[17397\]: Invalid user admin from 27.128.226.176 port 58822 Dec 29 06:13:57 ns382633 sshd\[17397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.226.176	2019-12-29 13:16:59
222.186.175.161	attackbots	Dec 29 06:42:58 dev0-dcde-rnet sshd[27363]: Failed password for root from 222.186.175.161 port 15978 ssh2 Dec 29 06:43:11 dev0-dcde-rnet sshd[27363]: error: maximum authentication attempts exceeded for root from 222.186.175.161 port 15978 ssh2 [preauth] Dec 29 06:43:22 dev0-dcde-rnet sshd[27367]: Failed password for root from 222.186.175.161 port 52418 ssh2	2019-12-29 13:49:11
36.251.112.121	attackspam	Fail2Ban Ban Triggered	2019-12-29 14:00:48
218.92.0.145	attack	--- report --- Dec 29 01:58:43 -0300 sshd: Connection from 218.92.0.145 port 16712	2019-12-29 13:20:22
123.127.45.139	attackspam	Automatic report - SSH Brute-Force Attack	2019-12-29 13:40:10
68.183.86.76	attackbotsspam	Dec 29 05:55:36 debian-2gb-nbg1-2 kernel: \[1248050.459628\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=68.183.86.76 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=48684 PROTO=TCP SPT=44962 DPT=1941 WINDOW=1024 RES=0x00 SYN URGP=0	2019-12-29 13:27:04

Recently Reported IPs

145.255.10.205	145.255.2.117	145.255.2.237	145.255.22.204
145.255.2.198	145.255.170.186	145.255.238.238	145.255.31.189
145.255.252.75	145.255.5.19	146.148.125.129	146.148.17.143
146.148.16.197	146.148.115.134	146.148.111.188	146.148.13.131
146.148.121.109	146.148.135.163	146.148.126.88	146.148.166.60