45.148.10.218 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.148.10.241	attack	DDoS Inbound	2023-11-15 18:54:04
45.148.10.28	attackspam	Oct 13 20:18:40 sshgateway sshd\[2360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root Oct 13 20:18:43 sshgateway sshd\[2360\]: Failed password for root from 45.148.10.28 port 40178 ssh2 Oct 13 20:19:07 sshgateway sshd\[2364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root	2020-10-14 02:28:44
45.148.10.15	attackspambots	Bruteforce detected by fail2ban	2020-10-13 21:25:53
45.148.10.186	attackspam	Unable to negotiate with 45.148.10.186 port 47964: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]	2020-10-13 21:24:21
45.148.10.28	attackbotsspam	SSH Server Abuse (45.148.10.28 as ): ...	2020-10-13 17:43:00
45.148.10.15	attackbotsspam	Oct 13 05:18:03 server2 sshd\[31409\]: Invalid user user from 45.148.10.15 Oct 13 05:18:48 server2 sshd\[31424\]: Invalid user server from 45.148.10.15 Oct 13 05:19:33 server2 sshd\[31465\]: Invalid user steam from 45.148.10.15 Oct 13 05:20:17 server2 sshd\[31678\]: Invalid user vmware from 45.148.10.15 Oct 13 05:21:00 server2 sshd\[31685\]: Invalid user microsoft from 45.148.10.15 Oct 13 05:21:44 server2 sshd\[31730\]: Invalid user cloud from 45.148.10.15	2020-10-13 12:52:46
45.148.10.186	attackspam	Oct 13 05:33:03 ns308116 sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:05 ns308116 sshd[11001]: Failed password for root from 45.148.10.186 port 41866 ssh2 Oct 13 05:33:38 ns308116 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:40 ns308116 sshd[11016]: Failed password for root from 45.148.10.186 port 39380 ssh2 Oct 13 05:34:15 ns308116 sshd[11027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root ...	2020-10-13 12:50:57
45.148.10.15	attack	Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: Invalid user user from 45.148.10.15 Oct 12 23:36:08 srv-ubuntu-dev3 sshd[31523]: Failed password for invalid user user from 45.148.10.15 port 40704 ssh2 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:40 srv-ubuntu-dev3 sshd[31590]: Failed password for invalid user 123Diego from 45.148.10.15 port 59760 ssh2 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: Invalid user Alphanetworks from 45.148.10.15 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-10-13 05:40:39
45.148.10.186	attack	Fail2Ban	2020-10-13 05:39:02
45.148.10.15	attackbotsspam	Fail2Ban	2020-10-12 05:52:51
45.148.10.65	attackbots	Invalid user ubuntu from 45.148.10.65 port 43138	2020-10-12 05:36:52
45.148.10.15	attack	Brute force attempt	2020-10-11 21:59:38
45.148.10.65	attackspam	Oct 01 10:49:15 host sshd[12378]: Invalid user ubuntu from 45.148.10.65 port 41060	2020-10-11 21:43:21
45.148.10.28	attack	Fail2Ban automatic report: SSH brute-force:	2020-10-11 21:05:28
45.148.10.15	attackspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-10-11T05:41:40Z and 2020-10-11T05:47:54Z	2020-10-11 13:57:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.10.218
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2190
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.148.10.218.			IN	A

;; AUTHORITY SECTION:
.			356	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091502 1800 900 604800 86400

;; Query time: 65 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 05:59:16 CST 2022
;; MSG SIZE  rcvd: 106

Host info

218.10.148.45.in-addr.arpa domain name pointer edc30.app-autht.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
218.10.148.45.in-addr.arpa	name = edc30.app-autht.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.210.177.15	attackbots	2019-12-08T18:32:39.493583abusebot-5.cloudsearch.cf sshd\[24332\]: Invalid user home from 58.210.177.15 port 26614	2019-12-09 03:24:07
165.227.104.253	attackbots	Dec 8 09:27:47 sachi sshd\[4993\]: Invalid user vikasa from 165.227.104.253 Dec 8 09:27:47 sachi sshd\[4993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.104.253 Dec 8 09:27:49 sachi sshd\[4993\]: Failed password for invalid user vikasa from 165.227.104.253 port 53184 ssh2 Dec 8 09:32:48 sachi sshd\[5468\]: Invalid user deasia from 165.227.104.253 Dec 8 09:32:48 sachi sshd\[5468\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.104.253	2019-12-09 03:34:24
144.121.119.222	attackbots	Honeypot attack, port: 445, PTR: 144.121.119.222.lightower.net.	2019-12-09 03:23:08
62.164.176.194	attack	62.164.176.194 - - \[08/Dec/2019:14:53:13 +0000\] "POST /wp-login.php HTTP/1.1" 200 6393 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" 62.164.176.194 - - \[08/Dec/2019:14:53:14 +0000\] "POST /xmlrpc.php HTTP/1.1" 200 403 "-" "Mozilla/5.0 \(X11\; Ubuntu\; Linux x86_64\; rv:62.0\) Gecko/20100101 Firefox/62.0" ...	2019-12-09 03:17:25
8.14.149.127	attack	[ssh] SSH attack	2019-12-09 03:29:11
46.101.206.205	attack	fail2ban	2019-12-09 03:30:10
185.36.81.23	attackbots	Dec 8 15:56:09 imap dovecot[78916]: auth: ldap(mail@scream.dnet.hu,185.36.81.23): unknown user Dec 8 16:46:50 imap dovecot[78916]: auth: ldap(mail@scream.dnet.hu,185.36.81.23): unknown user Dec 8 17:38:23 imap dovecot[78916]: auth: ldap(mail@scream.dnet.hu,185.36.81.23): unknown user Dec 8 18:31:02 imap dovecot[78916]: auth: ldap(mail@scream.dnet.hu,185.36.81.23): unknown user Dec 8 19:24:23 imap dovecot[78916]: auth: ldap(mail@scream.dnet.hu,185.36.81.23): unknown user ...	2019-12-09 03:28:01
185.156.73.3	attackbotsspam	12/08/2019-13:16:25.595776 185.156.73.3 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-12-09 03:05:09
103.92.24.250	attackspam	Dec 9 00:25:20 gw1 sshd[19715]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.92.24.250 Dec 9 00:25:22 gw1 sshd[19715]: Failed password for invalid user stegeman from 103.92.24.250 port 57770 ssh2 ...	2019-12-09 03:32:34
202.88.234.107	attackspambots	Dec 8 20:08:39 Ubuntu-1404-trusty-64-minimal sshd\[15572\]: Invalid user lucette from 202.88.234.107 Dec 8 20:08:39 Ubuntu-1404-trusty-64-minimal sshd\[15572\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.88.234.107 Dec 8 20:08:41 Ubuntu-1404-trusty-64-minimal sshd\[15572\]: Failed password for invalid user lucette from 202.88.234.107 port 10293 ssh2 Dec 8 20:18:34 Ubuntu-1404-trusty-64-minimal sshd\[22867\]: Invalid user prints from 202.88.234.107 Dec 8 20:18:34 Ubuntu-1404-trusty-64-minimal sshd\[22867\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.88.234.107	2019-12-09 03:22:25
213.238.239.68	attackbots	Honeypot attack, port: 5555, PTR: 213-238-239-68.customers.ownit.se.	2019-12-09 03:21:48
45.93.20.176	attackspam	firewall-block, port(s): 35832/tcp	2019-12-09 03:18:52
185.128.37.10	attackbotsspam	IP was detected trying to Brute-Force SSH, FTP, Web Apps or Hacking.	2019-12-09 03:15:46
52.231.205.120	attackspambots	Dec 8 19:48:13 sd-53420 sshd\[27307\]: Invalid user stet from 52.231.205.120 Dec 8 19:48:13 sd-53420 sshd\[27307\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.231.205.120 Dec 8 19:48:14 sd-53420 sshd\[27307\]: Failed password for invalid user stet from 52.231.205.120 port 56874 ssh2 Dec 8 19:55:33 sd-53420 sshd\[28595\]: Invalid user blaine from 52.231.205.120 Dec 8 19:55:33 sd-53420 sshd\[28595\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.231.205.120 ...	2019-12-09 03:13:15
194.78.211.102	attackbots	SMB 445 Hit @ plonkatronixBL	2019-12-09 03:18:16

Recently Reported IPs

89.248.172.236	45.148.10.147	176.121.14.11	181.174.164.11
5.182.39.1	5.182.39.49	5.182.39.76	45.148.10.202
5.182.39.35	89.248.172.165	89.248.172.150	89.248.172.148
89.248.172.193	89.248.172.176	89.248.172.157	92.118.37.1
185.62.189.232	181.174.164.245	181.174.164.106	181.174.165.95