172.245.148.131

Basic Info

City: Buffalo

Region: New York

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 172.245.148.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2916
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;172.245.148.131.		IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025072300 1800 900 604800 86400

;; Query time: 12 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jul 23 20:00:36 CST 2025
;; MSG SIZE  rcvd: 108

Host info

131.148.245.172.in-addr.arpa domain name pointer 172-245-148-131-host.colocrossing.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
131.148.245.172.in-addr.arpa	name = 172-245-148-131-host.colocrossing.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.248.2.85	attack	2020-02-22 14:13:57 H=(iyytktoi.com) [41.248.2.85] sender verify fail for : Unrouteable address 2020-02-22 14:13:57 H=(iyytktoi.com) [41.248.2.85] F= rejected RCPT : Sender verify failed ...	2020-02-22 21:30:20
222.186.180.6	attack	suspicious action Sat, 22 Feb 2020 10:14:08 -0300	2020-02-22 21:20:57
45.133.99.130	attack	Feb 22 14:21:26 mailserver postfix/smtps/smtpd[15509]: lost connection after AUTH from unknown[45.133.99.130] Feb 22 14:21:26 mailserver postfix/smtps/smtpd[15509]: disconnect from unknown[45.133.99.130] Feb 22 14:21:26 mailserver postfix/smtps/smtpd[15509]: connect from unknown[45.133.99.130] Feb 22 14:21:34 mailserver postfix/smtps/smtpd[15516]: connect from unknown[45.133.99.130] Feb 22 14:21:34 mailserver postfix/smtps/smtpd[15509]: lost connection after AUTH from unknown[45.133.99.130] Feb 22 14:21:34 mailserver postfix/smtps/smtpd[15509]: disconnect from unknown[45.133.99.130] Feb 22 14:21:41 mailserver postfix/smtps/smtpd[15516]: lost connection after AUTH from unknown[45.133.99.130] Feb 22 14:21:41 mailserver postfix/smtps/smtpd[15516]: disconnect from unknown[45.133.99.130] Feb 22 14:21:41 mailserver postfix/smtps/smtpd[15509]: connect from unknown[45.133.99.130] Feb 22 14:21:47 mailserver dovecot: auth-worker(15503): sql([hidden],45.133.99.130): unknown user	2020-02-22 21:26:05
217.5.227.203	attackspam	20 attempts against mh-ssh on cloud	2020-02-22 20:52:32
92.63.194.105	attack	Invalid user user from 92.63.194.105 port 44391	2020-02-22 21:09:17
145.239.82.11	attackbots	Feb 22 14:13:58 tuxlinux sshd[17063]: Invalid user q3 from 145.239.82.11 port 40266 Feb 22 14:13:58 tuxlinux sshd[17063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.82.11 Feb 22 14:13:58 tuxlinux sshd[17063]: Invalid user q3 from 145.239.82.11 port 40266 Feb 22 14:13:58 tuxlinux sshd[17063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.82.11 Feb 22 14:13:58 tuxlinux sshd[17063]: Invalid user q3 from 145.239.82.11 port 40266 Feb 22 14:13:58 tuxlinux sshd[17063]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.82.11 Feb 22 14:13:59 tuxlinux sshd[17063]: Failed password for invalid user q3 from 145.239.82.11 port 40266 ssh2 ...	2020-02-22 21:27:52
106.13.190.148	attackbots	(sshd) Failed SSH login from 106.13.190.148 (CN/China/-): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Feb 22 07:12:16 host sshd[96582]: Invalid user user12 from 106.13.190.148 port 47084	2020-02-22 21:07:05
222.186.15.10	attackspam	$f2bV_matches	2020-02-22 20:51:57
182.61.184.155	attackbotsspam	Feb 22 14:10:58 sd-53420 sshd\[14463\]: Invalid user opton from 182.61.184.155 Feb 22 14:10:58 sd-53420 sshd\[14463\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.184.155 Feb 22 14:11:00 sd-53420 sshd\[14463\]: Failed password for invalid user opton from 182.61.184.155 port 52512 ssh2 Feb 22 14:13:56 sd-53420 sshd\[14672\]: Invalid user spice from 182.61.184.155 Feb 22 14:13:56 sd-53420 sshd\[14672\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.184.155 ...	2020-02-22 21:29:27
54.240.3.10	spam	ENCORE et TOUJOURS les mêmes SOUS MERDE POLLUEURS de la Planète par leurs services au NOM DU FRIC comme namecheap.com, amazon.com, whoisguard.com etc. auprès d'ESCROCS IRRESPONSABLES, comptes de "Registrar" et autres à SUPPRIMER pour assainir une fois pour toute Internet, preuves juridiquement administrables depuis PLUS de DIX ANS ! dechezsoi.club => namecheap.com https://www.mywot.com/scorecard/dechezsoi.club https://www.mywot.com/scorecard/namecheap.com nousrecrutons.online => 162.255.119.98 nousrecrutons.online => FALSE Web Domain ! nousrecrutons.online resend to http://digitalride.website https://en.asytech.cn/check-ip/162.255.119.98 digitalride.website => namecheap.com => whoisguard.com https://www.mywot.com/scorecard/whoisguard.com digitalride.website => 34.245.183.148 https://www.mywot.com/scorecard/digitalride.website 54.240.3.10 => amazon.com https://en.asytech.cn/check-ip/54.240.3.10 Message-ID: <010201706c8e0955-e7ddc215-6dc8-40fd-8f2f-7e075b09d0ed-000000@eu-west-1.amazonses.com> amazonses.com => 13.225.25.66 => amazon.com => 176.32.103.205 => aws.amazon.com => 143.204.219.71 https://www.mywot.com/scorecard/amazonses.com https://en.asytech.cn/check-ip/13.225.25.66 https://www.mywot.com/scorecard/amazon.com https://en.asytech.cn/check-ip/176.32.103.205 https://www.mywot.com/scorecard/aws.amazon.com https://en.asytech.cn/check-ip/143.204.219.71 laurent1612@dechezsoi.club qui renvoie sur http://nousrecrutons.online/	2020-02-22 20:56:37
175.24.130.50	attackspam	20 attempts against mh-misbehave-ban on sun	2020-02-22 21:26:30
37.114.158.193	attackbots	SSH Brute Force	2020-02-22 21:02:58
198.108.67.60	attackbotsspam	Port 8002 scan denied	2020-02-22 21:15:32
92.63.194.7	attackspam	Feb 22 14:24:04 piServer sshd[12418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.7 Feb 22 14:24:06 piServer sshd[12418]: Failed password for invalid user operator from 92.63.194.7 port 42088 ssh2 Feb 22 14:24:25 piServer sshd[12497]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.63.194.7 ...	2020-02-22 21:31:10
92.63.194.7	attack	Invalid user admin from 92.63.194.7 port 47662	2020-02-22 21:10:00

Recently Reported IPs

36.168.24.133	116.32.156.177	222.137.73.22	167.94.138.192
95.139.113.94	108.150.168.234	52.253.131.10	43.140.249.124
43.26.71.18	171.210.99.96	219.29.216.204	138.68.188.215
73.93.121.107	55.199.236.170	240e:3ba:30e6:b050:1103:ab5e:7a22:b64d	40.247.120.191
8.212.115.117	38.69.241.198	39.154.196.178	14.175.93.182