45.148.10.243 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Romania

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.148.10.241	attack	DDoS Inbound	2023-11-15 18:54:04
45.148.10.28	attackspam	Oct 13 20:18:40 sshgateway sshd\[2360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root Oct 13 20:18:43 sshgateway sshd\[2360\]: Failed password for root from 45.148.10.28 port 40178 ssh2 Oct 13 20:19:07 sshgateway sshd\[2364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root	2020-10-14 02:28:44
45.148.10.15	attackspambots	Bruteforce detected by fail2ban	2020-10-13 21:25:53
45.148.10.186	attackspam	Unable to negotiate with 45.148.10.186 port 47964: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]	2020-10-13 21:24:21
45.148.10.28	attackbotsspam	SSH Server Abuse (45.148.10.28 as ): ...	2020-10-13 17:43:00
45.148.10.15	attackbotsspam	Oct 13 05:18:03 server2 sshd\[31409\]: Invalid user user from 45.148.10.15 Oct 13 05:18:48 server2 sshd\[31424\]: Invalid user server from 45.148.10.15 Oct 13 05:19:33 server2 sshd\[31465\]: Invalid user steam from 45.148.10.15 Oct 13 05:20:17 server2 sshd\[31678\]: Invalid user vmware from 45.148.10.15 Oct 13 05:21:00 server2 sshd\[31685\]: Invalid user microsoft from 45.148.10.15 Oct 13 05:21:44 server2 sshd\[31730\]: Invalid user cloud from 45.148.10.15	2020-10-13 12:52:46
45.148.10.186	attackspam	Oct 13 05:33:03 ns308116 sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:05 ns308116 sshd[11001]: Failed password for root from 45.148.10.186 port 41866 ssh2 Oct 13 05:33:38 ns308116 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:40 ns308116 sshd[11016]: Failed password for root from 45.148.10.186 port 39380 ssh2 Oct 13 05:34:15 ns308116 sshd[11027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root ...	2020-10-13 12:50:57
45.148.10.15	attack	Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: Invalid user user from 45.148.10.15 Oct 12 23:36:08 srv-ubuntu-dev3 sshd[31523]: Failed password for invalid user user from 45.148.10.15 port 40704 ssh2 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:40 srv-ubuntu-dev3 sshd[31590]: Failed password for invalid user 123Diego from 45.148.10.15 port 59760 ssh2 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: Invalid user Alphanetworks from 45.148.10.15 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-10-13 05:40:39
45.148.10.186	attack	Fail2Ban	2020-10-13 05:39:02
45.148.10.15	attackbotsspam	Fail2Ban	2020-10-12 05:52:51
45.148.10.65	attackbots	Invalid user ubuntu from 45.148.10.65 port 43138	2020-10-12 05:36:52
45.148.10.15	attack	Brute force attempt	2020-10-11 21:59:38
45.148.10.65	attackspam	Oct 01 10:49:15 host sshd[12378]: Invalid user ubuntu from 45.148.10.65 port 41060	2020-10-11 21:43:21
45.148.10.28	attack	Fail2Ban automatic report: SSH brute-force:	2020-10-11 21:05:28
45.148.10.15	attackspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-10-11T05:41:40Z and 2020-10-11T05:47:54Z	2020-10-11 13:57:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.10.243
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 63718
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.148.10.243.			IN	A

;; AUTHORITY SECTION:
.			581	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022091502 1800 900 604800 86400

;; Query time: 23 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 16 05:27:20 CST 2022
;; MSG SIZE  rcvd: 106

Host info

243.10.148.45.in-addr.arpa domain name pointer edc45.app-autht.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
243.10.148.45.in-addr.arpa	name = edc45.app-autht.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.31.166	attackbots	Unauthorized connection attempt detected from IP address 222.186.31.166 to port 22 [T]	2020-07-20 22:26:30
89.189.172.201	attackspambots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-07-20 21:41:36
5.132.115.161	attackbotsspam	Jul 20 16:00:26 meumeu sshd[1123978]: Invalid user jflores from 5.132.115.161 port 50184 Jul 20 16:00:26 meumeu sshd[1123978]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.132.115.161 Jul 20 16:00:26 meumeu sshd[1123978]: Invalid user jflores from 5.132.115.161 port 50184 Jul 20 16:00:28 meumeu sshd[1123978]: Failed password for invalid user jflores from 5.132.115.161 port 50184 ssh2 Jul 20 16:04:31 meumeu sshd[1124207]: Invalid user admin from 5.132.115.161 port 33636 Jul 20 16:04:31 meumeu sshd[1124207]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.132.115.161 Jul 20 16:04:31 meumeu sshd[1124207]: Invalid user admin from 5.132.115.161 port 33636 Jul 20 16:04:33 meumeu sshd[1124207]: Failed password for invalid user admin from 5.132.115.161 port 33636 ssh2 Jul 20 16:08:36 meumeu sshd[1124422]: Invalid user sinus from 5.132.115.161 port 45316 ...	2020-07-20 22:17:23
103.133.105.65	attackspam	Jul 20 15:52:44 h2779839 postfix/smtpd[22457]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure Jul 20 15:52:47 h2779839 postfix/smtpd[22457]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure Jul 20 15:52:49 h2779839 postfix/smtpd[22457]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure Jul 20 15:52:50 h2779839 postfix/smtpd[22457]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure Jul 20 15:52:52 h2779839 postfix/smtpd[22457]: warning: unknown[103.133.105.65]: SASL LOGIN authentication failed: authentication failure ...	2020-07-20 22:00:35
132.232.11.218	attackbots	Jul 20 16:05:58 [host] sshd[7842]: Invalid user ad Jul 20 16:05:58 [host] sshd[7842]: pam_unix(sshd:a Jul 20 16:06:01 [host] sshd[7842]: Failed password	2020-07-20 22:19:05
58.221.101.182	attackspam	Jul 20 14:30:17 zooi sshd[18598]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.221.101.182 Jul 20 14:30:19 zooi sshd[18598]: Failed password for invalid user me from 58.221.101.182 port 59020 ssh2 ...	2020-07-20 22:13:19
188.173.97.144	attack	Jul 20 13:53:48 rush sshd[26831]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.173.97.144 Jul 20 13:53:50 rush sshd[26831]: Failed password for invalid user edmond from 188.173.97.144 port 48388 ssh2 Jul 20 13:58:22 rush sshd[27313]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.173.97.144 ...	2020-07-20 22:08:15
220.88.1.208	attack	Jul 20 07:21:16 Host-KLAX-C sshd[27281]: Disconnected from invalid user lif 220.88.1.208 port 40941 [preauth] ...	2020-07-20 21:48:51
192.34.57.113	attackbotsspam	TCP (SYN) 192.34.57.113:47992 -> port 32522, len 44	2020-07-20 22:04:39
101.12.100.124	attackbots	"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:	2020-07-20 21:44:16
218.92.0.148	attackbotsspam	2020-07-20T09:39:04.609297vps2034 sshd[3161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root 2020-07-20T09:39:06.791134vps2034 sshd[3161]: Failed password for root from 218.92.0.148 port 46588 ssh2 2020-07-20T09:39:04.609297vps2034 sshd[3161]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.148 user=root 2020-07-20T09:39:06.791134vps2034 sshd[3161]: Failed password for root from 218.92.0.148 port 46588 ssh2 2020-07-20T09:39:09.502290vps2034 sshd[3161]: Failed password for root from 218.92.0.148 port 46588 ssh2 ...	2020-07-20 21:42:21
175.176.193.234	attackspambots	Port scan: Attack repeated for 24 hours	2020-07-20 21:40:54
113.166.128.107	attackbots	Unauthorized connection attempt from IP address 113.166.128.107 on Port 445(SMB)	2020-07-20 21:39:57
49.35.7.157	attackspambots	1595248224 - 07/20/2020 14:30:24 Host: 49.35.7.157/49.35.7.157 Port: 445 TCP Blocked	2020-07-20 22:07:57
103.81.115.84	attackbotsspam	Unauthorized connection attempt from IP address 103.81.115.84 on Port 445(SMB)	2020-07-20 22:06:57

Recently Reported IPs

89.248.172.119	185.62.190.10	45.148.10.111	185.62.189.231
185.62.189.167	185.62.189.65	81.12.44.197	138.121.161.85
176.121.14.12	176.121.14.53	45.151.253.103	167.94.146.32
185.173.35.186	167.94.145.138	5.182.39.122	92.119.160.233
196.52.43.189	188.209.52.145	167.94.145.201	89.248.171.240