45.148.10.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: Bunea Telecom SRL

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jun 22 13:52:15 localhost sshd[2394229]: Connection closed by 45.148.10.94 port 45804 [preauth] ...	2020-06-22 15:29:07
attackbotsspam	TCP (SYN) 45.148.10.94:33850 -> port 143, len 44	2020-06-18 18:12:47

Comments on same subnet:

IP	Type	Details	Datetime
45.148.10.241	attack	DDoS Inbound	2023-11-15 18:54:04
45.148.10.28	attackspam	Oct 13 20:18:40 sshgateway sshd\[2360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root Oct 13 20:18:43 sshgateway sshd\[2360\]: Failed password for root from 45.148.10.28 port 40178 ssh2 Oct 13 20:19:07 sshgateway sshd\[2364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root	2020-10-14 02:28:44
45.148.10.15	attackspambots	Bruteforce detected by fail2ban	2020-10-13 21:25:53
45.148.10.186	attackspam	Unable to negotiate with 45.148.10.186 port 47964: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]	2020-10-13 21:24:21
45.148.10.28	attackbotsspam	SSH Server Abuse (45.148.10.28 as ): ...	2020-10-13 17:43:00
45.148.10.15	attackbotsspam	Oct 13 05:18:03 server2 sshd\[31409\]: Invalid user user from 45.148.10.15 Oct 13 05:18:48 server2 sshd\[31424\]: Invalid user server from 45.148.10.15 Oct 13 05:19:33 server2 sshd\[31465\]: Invalid user steam from 45.148.10.15 Oct 13 05:20:17 server2 sshd\[31678\]: Invalid user vmware from 45.148.10.15 Oct 13 05:21:00 server2 sshd\[31685\]: Invalid user microsoft from 45.148.10.15 Oct 13 05:21:44 server2 sshd\[31730\]: Invalid user cloud from 45.148.10.15	2020-10-13 12:52:46
45.148.10.186	attackspam	Oct 13 05:33:03 ns308116 sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:05 ns308116 sshd[11001]: Failed password for root from 45.148.10.186 port 41866 ssh2 Oct 13 05:33:38 ns308116 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:40 ns308116 sshd[11016]: Failed password for root from 45.148.10.186 port 39380 ssh2 Oct 13 05:34:15 ns308116 sshd[11027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root ...	2020-10-13 12:50:57
45.148.10.15	attack	Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: Invalid user user from 45.148.10.15 Oct 12 23:36:08 srv-ubuntu-dev3 sshd[31523]: Failed password for invalid user user from 45.148.10.15 port 40704 ssh2 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:40 srv-ubuntu-dev3 sshd[31590]: Failed password for invalid user 123Diego from 45.148.10.15 port 59760 ssh2 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: Invalid user Alphanetworks from 45.148.10.15 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-10-13 05:40:39
45.148.10.186	attack	Fail2Ban	2020-10-13 05:39:02
45.148.10.15	attackbotsspam	Fail2Ban	2020-10-12 05:52:51
45.148.10.65	attackbots	Invalid user ubuntu from 45.148.10.65 port 43138	2020-10-12 05:36:52
45.148.10.15	attack	Brute force attempt	2020-10-11 21:59:38
45.148.10.65	attackspam	Oct 01 10:49:15 host sshd[12378]: Invalid user ubuntu from 45.148.10.65 port 41060	2020-10-11 21:43:21
45.148.10.28	attack	Fail2Ban automatic report: SSH brute-force:	2020-10-11 21:05:28
45.148.10.15	attackspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-10-11T05:41:40Z and 2020-10-11T05:47:54Z	2020-10-11 13:57:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.10.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 62525
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.148.10.94.			IN	A

;; AUTHORITY SECTION:
.			519	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061800 1800 900 604800 86400

;; Query time: 36 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 18 18:12:42 CST 2020
;; MSG SIZE  rcvd: 116

Host info

94.10.148.45.in-addr.arpa domain name pointer thebookclosetonline.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
94.10.148.45.in-addr.arpa	name = thebookclosetonline.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
117.211.160.40	attackbots	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-02-06 18:59:02
45.227.253.148	attack	20 attempts against mh-misbehave-ban on air	2020-02-06 18:59:20
40.114.119.108	attack	Feb 6 11:57:56 MK-Soft-Root2 sshd[8542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.114.119.108 Feb 6 11:57:58 MK-Soft-Root2 sshd[8542]: Failed password for invalid user diq from 40.114.119.108 port 48164 ssh2 ...	2020-02-06 19:03:48
222.186.175.140	attackbots	pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.140 user=root Failed password for root from 222.186.175.140 port 58742 ssh2 Failed password for root from 222.186.175.140 port 58742 ssh2 Failed password for root from 222.186.175.140 port 58742 ssh2 Failed password for root from 222.186.175.140 port 58742 ssh2	2020-02-06 19:28:15
193.56.28.127	attackspambots	2020-02-06 13:34:12 dovecot_login authenticator failed for (User) [193.56.28.127]: 535 Incorrect authentication data (set_id=admin1@usmancity.ru) ...	2020-02-06 19:25:54
23.251.142.181	attackspam	Feb 6 08:20:55 [host] sshd[20843]: Invalid user zws from 23.251.142.181 Feb 6 08:20:55 [host] sshd[20843]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.251.142.181 Feb 6 08:20:57 [host] sshd[20843]: Failed password for invalid user zws from 23.251.142.181 port 39530 ssh2	2020-02-06 19:32:29
196.223.157.2	attackbots	Honeypot attack, port: 445, PTR: PTR record not found	2020-02-06 19:16:50
108.234.70.101	attackspam	Honeypot attack, port: 4567, PTR: 108-234-70-101.lightspeed.miamfl.sbcglobal.net.	2020-02-06 19:06:39
222.186.173.238	attackspambots	Feb 6 18:10:31 itv-usvr-02 sshd[16975]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.173.238 user=root Feb 6 18:10:32 itv-usvr-02 sshd[16975]: Failed password for root from 222.186.173.238 port 32336 ssh2	2020-02-06 19:25:28
187.39.35.85	attackbots	Automatic report - SSH Brute-Force Attack	2020-02-06 19:04:09
51.255.168.152	attack	Feb 5 20:22:23 web1 sshd\[5850\]: Invalid user xdc from 51.255.168.152 Feb 5 20:22:23 web1 sshd\[5850\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.152 Feb 5 20:22:24 web1 sshd\[5850\]: Failed password for invalid user xdc from 51.255.168.152 port 46077 ssh2 Feb 5 20:27:44 web1 sshd\[6278\]: Invalid user hol from 51.255.168.152 Feb 5 20:27:44 web1 sshd\[6278\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.168.152	2020-02-06 19:18:08
36.71.234.203	attackspam	1580964748 - 02/06/2020 05:52:28 Host: 36.71.234.203/36.71.234.203 Port: 445 TCP Blocked	2020-02-06 19:05:51
120.52.120.18	attack	$f2bV_matches	2020-02-06 19:19:48
123.16.157.107	attack	Honeypot attack, port: 445, PTR: static.vnpt.vn.	2020-02-06 19:10:23
136.243.37.219	attack	20 attempts against mh-misbehave-ban on pluto	2020-02-06 18:58:08

Recently Reported IPs

103.79.143.228	199.229.250.166	122.51.58.221	116.203.125.215
52.141.32.160	139.155.20.90	109.214.19.194	58.103.2.202
213.249.3.199	92.246.84.147	11.202.21.71	176.202.91.118
153.214.255.207	7.163.53.141	164.29.215.101	18.70.164.250
125.125.76.211	36.249.156.197	61.193.103.73	56.130.237.84