45.148.121.112

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: Sijmen Klaas Bakker

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	UDP 45.148.121.112:55841 -> port 53413, len 45	2020-08-07 19:46:06

Comments on same subnet:

IP	Type	Details	Datetime
45.148.121.85	attackbotsspam	TCP (SYN) 45.148.121.85:53422 -> port 8080, len 44	2020-10-14 05:44:48
45.148.121.92	attackspambots	ET SCAN Sipvicious Scan - port: 5060 proto: sip cat: Attempted Information Leakbytes: 451	2020-10-14 05:24:35
45.148.121.28	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 29 - port: 80 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:10:58
45.148.121.85	attack	HEAD /robots.txt HTTP/1.0 403 0 "-" "-"	2020-10-08 01:22:08
45.148.121.85	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-07 17:29:50
45.148.121.32	attackspam	[2020-10-06 13:09:11] NOTICE[1182] chan_sip.c: Registration from '"150" ' failed for '45.148.121.32:5773' - Wrong password [2020-10-06 13:09:11] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-06T13:09:11.390-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="150",SessionID="0x7f22f840cf98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.148.121.32/5773",Challenge="73d516ec",ReceivedChallenge="73d516ec",ReceivedHash="e073c545cfec2de1896911ae43c17a3d" [2020-10-06 13:09:11] NOTICE[1182] chan_sip.c: Registration from '"150" ' failed for '45.148.121.32:5773' - Wrong password [2020-10-06 13:09:11] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-06T13:09:11.491-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="150",SessionID="0x7f22f854d238",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.148.1 ...	2020-10-07 01:53:24
45.148.121.32	attackbotsspam	[2020-10-06 05:25:19] NOTICE[1182] chan_sip.c: Registration from '"1234" ' failed for '45.148.121.32:5341' - Wrong password [2020-10-06 05:25:19] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-06T05:25:19.856-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1234",SessionID="0x7f22f840cf98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.148.121.32/5341",Challenge="18387bf6",ReceivedChallenge="18387bf6",ReceivedHash="4eb1bd0c35882490ad495acc9d170b4e" [2020-10-06 05:25:19] NOTICE[1182] chan_sip.c: Registration from '"1234" ' failed for '45.148.121.32:5341' - Wrong password [2020-10-06 05:25:19] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-06T05:25:19.985-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1234",SessionID="0x7f22f83b6678",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45 ...	2020-10-06 17:49:17
45.148.121.92	attackbotsspam	UDP 45.148.121.92:5067 -> port 5060, len 440	2020-10-04 04:40:11
45.148.121.92	attackspam	UDP port : 5060	2020-10-03 20:46:55
45.148.121.92	attackspam	45.148.121.92 was recorded 5 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 11, 60	2020-10-03 12:12:41
45.148.121.92	attack	45.148.121.92 was recorded 5 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 11, 60	2020-10-03 06:54:22
45.148.121.31	attackspambots	\[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \< ...	2020-10-02 02:17:00
45.148.121.31	attackspam	\[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \< ...	2020-10-01 18:24:47
45.148.121.138	attack	firewall-block, port(s): 5060/udp	2020-10-01 07:50:49
45.148.121.138	attack	UDP 45.148.121.138:5122 -> port 5060, len 443	2020-10-01 00:21:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.121.112
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28636
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.148.121.112.			IN	A

;; AUTHORITY SECTION:
.			498	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020080700 1800 900 604800 86400

;; Query time: 73 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Aug 07 19:46:01 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 112.121.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 112.121.148.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.220.101.58	attackbotsspam	Aug 5 15:59:31 * sshd[27378]: Failed password for invalid user pyimagesearch from 185.220.101.58 port 45461 ssh2 Aug 5 19:45:25 * sshd[30940]: Failed password for invalid user admin from 185.220.101.58 port 45877 ssh2 Aug 5 23:28:21 * sshd[1915]: Failed password for invalid user admin from 185.220.101.58 port 35049 ssh2 Aug 5 23:28:33 * sshd[1922]: Failed password for invalid user sconsole from 185.220.101.58 port 44761 ssh2 Aug 9 22:43:19 *** sshd[3026]: Failed password for invalid user c-comatic from 185.220.101.58 port 38093 ssh2	2019-08-10 05:12:12
173.164.173.36	attack	Invalid user ssh-user from 173.164.173.36 port 40374 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.164.173.36 Failed password for invalid user ssh-user from 173.164.173.36 port 40374 ssh2 pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=173.164.173.36 user=root Failed password for root from 173.164.173.36 port 34082 ssh2	2019-08-10 05:08:10
147.135.255.107	attackbotsspam	Aug 9 22:53:43 MK-Soft-Root1 sshd\[4847\]: Invalid user hitler123 from 147.135.255.107 port 37956 Aug 9 22:53:43 MK-Soft-Root1 sshd\[4847\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=147.135.255.107 Aug 9 22:53:45 MK-Soft-Root1 sshd\[4847\]: Failed password for invalid user hitler123 from 147.135.255.107 port 37956 ssh2 ...	2019-08-10 05:02:29
134.209.252.65	attackbots	Brute force SMTP login attempted. ...	2019-08-10 05:25:35
134.209.44.13	attackbots	Brute force SMTP login attempted. ...	2019-08-10 05:22:33
134.209.188.177	attackbots	Brute force SMTP login attempted. ...	2019-08-10 05:37:37
5.135.198.62	attackbotsspam	Aug 9 14:44:49 vps200512 sshd\[31107\]: Invalid user pb from 5.135.198.62 Aug 9 14:44:49 vps200512 sshd\[31107\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.198.62 Aug 9 14:44:51 vps200512 sshd\[31107\]: Failed password for invalid user pb from 5.135.198.62 port 37132 ssh2 Aug 9 14:49:06 vps200512 sshd\[31146\]: Invalid user hk from 5.135.198.62 Aug 9 14:49:06 vps200512 sshd\[31146\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.135.198.62	2019-08-10 05:10:37
134.209.20.68	attackspam	Brute force SMTP login attempted. ...	2019-08-10 05:32:39
152.32.191.57	attackspambots	Automatic report - Banned IP Access	2019-08-10 05:12:35
89.163.148.74	attack	Automatic report - Banned IP Access	2019-08-10 05:35:30
134.209.48.248	attackspambots	Brute force SMTP login attempted. ...	2019-08-10 05:19:38
60.184.124.161	attackspambots	frenzy	2019-08-10 05:17:53
177.153.28.64	attackbots	namecheap spam	2019-08-10 05:19:10
134.209.231.117	attackspambots	Brute force SMTP login attempted. ...	2019-08-10 05:28:12
134.209.199.82	attackspam	Brute force SMTP login attempted. ...	2019-08-10 05:36:13

Recently Reported IPs

183.134.62.138	192.162.51.99	190.123.91.151	111.72.193.189
106.55.149.60	74.106.188.145	95.65.28.244	51.77.91.126
15.206.226.128	85.193.105.212	45.127.122.19	188.217.99.83
185.136.151.102	185.222.57.188	121.122.68.144	2607:f298:5:102f::aa4:1ec0
116.109.1.151	41.92.18.42	103.87.205.124	176.31.233.228