148.72.214.245

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
148.72.214.18	attackspam	Sep 2 05:59:51 mail sshd\[28407\]: Invalid user vpn from 148.72.214.18 port 50321 Sep 2 05:59:51 mail sshd\[28407\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 Sep 2 05:59:53 mail sshd\[28407\]: Failed password for invalid user vpn from 148.72.214.18 port 50321 ssh2 Sep 2 06:08:25 mail sshd\[29875\]: Invalid user biuro from 148.72.214.18 port 58953 Sep 2 06:08:25 mail sshd\[29875\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18	2019-09-02 16:02:02
148.72.214.18	attackspam	Sep 1 21:40:58 lnxded64 sshd[1194]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18	2019-09-02 05:02:09
148.72.214.18	attackspambots	Aug 29 08:50:55 MK-Soft-Root1 sshd\[15631\]: Invalid user odol from 148.72.214.18 port 40599 Aug 29 08:50:55 MK-Soft-Root1 sshd\[15631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 Aug 29 08:50:57 MK-Soft-Root1 sshd\[15631\]: Failed password for invalid user odol from 148.72.214.18 port 40599 ssh2 ...	2019-08-29 14:55:27
148.72.214.18	attack	ssh failed login	2019-08-26 07:23:57
148.72.214.18	attackbots	Aug 22 00:48:49 hanapaa sshd\[25148\]: Invalid user admin from 148.72.214.18 Aug 22 00:48:49 hanapaa sshd\[25148\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-148-72-214-18.ip.secureserver.net Aug 22 00:48:51 hanapaa sshd\[25148\]: Failed password for invalid user admin from 148.72.214.18 port 48893 ssh2 Aug 22 00:56:57 hanapaa sshd\[25919\]: Invalid user tester from 148.72.214.18 Aug 22 00:56:57 hanapaa sshd\[25919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-148-72-214-18.ip.secureserver.net	2019-08-22 19:06:09
148.72.214.18	attack	Aug 16 07:32:40 friendsofhawaii sshd\[30222\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-148-72-214-18.ip.secureserver.net user=root Aug 16 07:32:42 friendsofhawaii sshd\[30222\]: Failed password for root from 148.72.214.18 port 44754 ssh2 Aug 16 07:42:31 friendsofhawaii sshd\[31224\]: Invalid user imre from 148.72.214.18 Aug 16 07:42:31 friendsofhawaii sshd\[31224\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip-148-72-214-18.ip.secureserver.net Aug 16 07:42:33 friendsofhawaii sshd\[31224\]: Failed password for invalid user imre from 148.72.214.18 port 40963 ssh2	2019-08-17 01:55:28
148.72.214.18	attackbots	Aug 11 21:17:42 vps691689 sshd[19097]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 Aug 11 21:17:43 vps691689 sshd[19097]: Failed password for invalid user anna from 148.72.214.18 port 49110 ssh2 ...	2019-08-12 08:20:04
148.72.214.18	attackspambots	Aug 10 18:22:44 MK-Soft-Root1 sshd\[16828\]: Invalid user temp from 148.72.214.18 port 59334 Aug 10 18:22:44 MK-Soft-Root1 sshd\[16828\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 Aug 10 18:22:46 MK-Soft-Root1 sshd\[16828\]: Failed password for invalid user temp from 148.72.214.18 port 59334 ssh2 ...	2019-08-11 03:36:15
148.72.214.18	attack	Aug 10 11:01:03 MK-Soft-Root1 sshd\[16522\]: Invalid user admin from 148.72.214.18 port 42447 Aug 10 11:01:03 MK-Soft-Root1 sshd\[16522\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 Aug 10 11:01:05 MK-Soft-Root1 sshd\[16522\]: Failed password for invalid user admin from 148.72.214.18 port 42447 ssh2 ...	2019-08-10 17:26:19
148.72.214.18	attackspambots	SSH Brute Force	2019-08-07 12:55:47
148.72.214.18	attackspambots	Jul 29 20:31:39 tux-35-217 sshd\[25721\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 user=root Jul 29 20:31:41 tux-35-217 sshd\[25721\]: Failed password for root from 148.72.214.18 port 52011 ssh2 Jul 29 20:36:50 tux-35-217 sshd\[25731\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 user=root Jul 29 20:36:52 tux-35-217 sshd\[25731\]: Failed password for root from 148.72.214.18 port 49851 ssh2 ...	2019-07-30 09:39:56
148.72.214.18	attack	Jul 26 09:07:53 vps200512 sshd\[26197\]: Invalid user doom from 148.72.214.18 Jul 26 09:07:53 vps200512 sshd\[26197\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 Jul 26 09:07:55 vps200512 sshd\[26197\]: Failed password for invalid user doom from 148.72.214.18 port 57094 ssh2 Jul 26 09:13:07 vps200512 sshd\[26410\]: Invalid user yeti from 148.72.214.18 Jul 26 09:13:07 vps200512 sshd\[26410\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18	2019-07-26 21:15:16
148.72.214.18	attack	Jul 25 23:06:19 vps200512 sshd\[26055\]: Invalid user thomas from 148.72.214.18 Jul 25 23:06:19 vps200512 sshd\[26055\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 Jul 25 23:06:20 vps200512 sshd\[26055\]: Failed password for invalid user thomas from 148.72.214.18 port 52675 ssh2 Jul 25 23:11:23 vps200512 sshd\[26273\]: Invalid user monit from 148.72.214.18 Jul 25 23:11:23 vps200512 sshd\[26273\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18	2019-07-26 11:19:33
148.72.214.18	attackspam	Jul 20 13:04:30 vps sshd[9112]: Failed password for root from 148.72.214.18 port 46272 ssh2 Jul 20 13:31:16 vps sshd[10085]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 Jul 20 13:31:18 vps sshd[10085]: Failed password for invalid user designer from 148.72.214.18 port 60168 ssh2 ...	2019-07-21 05:44:12
148.72.214.18	attack	Jul 16 05:11:57 localhost sshd\[21802\]: Invalid user install from 148.72.214.18 port 59164 Jul 16 05:11:57 localhost sshd\[21802\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.72.214.18 Jul 16 05:11:59 localhost sshd\[21802\]: Failed password for invalid user install from 148.72.214.18 port 59164 ssh2	2019-07-16 11:24:03

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 148.72.214.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 12674
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;148.72.214.245.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 07:20:08 CST 2022
;; MSG SIZE  rcvd: 107

Host info

245.214.72.148.in-addr.arpa domain name pointer ip-148-72-214-245.ip.secureserver.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
245.214.72.148.in-addr.arpa	name = ip-148-72-214-245.ip.secureserver.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
14.160.123.74	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 08-10-2019 04:55:20.	2019-10-08 15:35:08
1.54.149.73	attackspambots	Attempt to attack host OS, exploiting network vulnerabilities, on 08-10-2019 04:55:15.	2019-10-08 15:44:54
201.159.115.77	attack	port scan and connect, tcp 80 (http)	2019-10-08 15:58:51
51.89.169.100	attackspam	mail auth brute force	2019-10-08 15:59:20
182.253.188.11	attackspam	Oct 8 08:08:54 microserver sshd[40734]: Failed password for root from 182.253.188.11 port 59202 ssh2 Oct 8 08:13:28 microserver sshd[41336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.188.11 user=root Oct 8 08:13:30 microserver sshd[41336]: Failed password for root from 182.253.188.11 port 43532 ssh2 Oct 8 08:18:11 microserver sshd[41991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.188.11 user=root Oct 8 08:32:04 microserver sshd[43927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.188.11 user=root Oct 8 08:32:06 microserver sshd[43927]: Failed password for root from 182.253.188.11 port 37388 ssh2 Oct 8 08:36:45 microserver sshd[44566]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.188.11 user=root Oct 8 08:36:47 microserver sshd[44566]: Failed password for root from 182.253.188.11 port 49952 s	2019-10-08 15:52:19
183.185.40.196	attackspam	Telnetd brute force attack detected by fail2ban	2019-10-08 16:05:35
89.248.168.112	attackbotsspam	firewall-block, port(s): 1723/tcp	2019-10-08 15:28:23
188.166.247.82	attackspambots	Fail2Ban - SSH Bruteforce Attempt	2019-10-08 15:56:34
192.210.144.186	attack	\[2019-10-08 03:41:52\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-08T03:41:52.540-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="011442922550445",SessionID="0x7fc3acded178",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.210.144.186/54748",ACLName="no_extension_match" \[2019-10-08 03:42:47\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-08T03:42:47.405-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="9011442922550445",SessionID="0x7fc3ad312698",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.210.144.186/64021",ACLName="no_extension_match" \[2019-10-08 03:44:02\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-08T03:44:02.282-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="8011442922550445",SessionID="0x7fc3ac90cdf8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.210.144.186/63499",ACLName	2019-10-08 15:56:20
85.227.85.44	attackspambots	Port Scan detected from 85.227.85.44 (SE/Sweden/ua-85-227-85-44.bbcust.telenor.se). 4 hits in the last 230 seconds	2019-10-08 15:49:29
187.162.39.48	attack	Automatic report - Port Scan Attack	2019-10-08 16:00:23
178.62.181.74	attack	Oct 7 21:13:42 hanapaa sshd\[1279\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.181.74 user=root Oct 7 21:13:44 hanapaa sshd\[1279\]: Failed password for root from 178.62.181.74 port 39905 ssh2 Oct 7 21:17:59 hanapaa sshd\[1675\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.181.74 user=root Oct 7 21:18:02 hanapaa sshd\[1675\]: Failed password for root from 178.62.181.74 port 60508 ssh2 Oct 7 21:22:15 hanapaa sshd\[2000\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.181.74 user=root	2019-10-08 15:30:12
179.180.232.82	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 08-10-2019 04:55:33.	2019-10-08 15:26:06
165.22.112.87	attack	Oct 8 10:39:53 sauna sshd[14367]: Failed password for root from 165.22.112.87 port 48868 ssh2 ...	2019-10-08 15:47:44
61.134.36.13	attackbots	(mod_security) mod_security (id:230011) triggered by 61.134.36.13 (CN/China/-): 5 in the last 3600 secs	2019-10-08 16:01:22

Recently Reported IPs

221.120.216.186	176.119.229.109	101.91.127.78	187.163.117.56
119.45.29.103	118.71.190.230	200.13.154.33	112.78.131.91
157.46.221.71	183.225.77.19	122.160.68.91	45.156.29.130
200.5.105.34	182.188.42.187	180.94.68.101	190.12.56.58
109.186.38.9	105.212.62.50	185.97.132.89	39.191.12.188