45.148.121.7 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Netherlands (the)

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.148.121.85	attackbotsspam	TCP (SYN) 45.148.121.85:53422 -> port 8080, len 44	2020-10-14 05:44:48
45.148.121.92	attackspambots	ET SCAN Sipvicious Scan - port: 5060 proto: sip cat: Attempted Information Leakbytes: 451	2020-10-14 05:24:35
45.148.121.28	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 29 - port: 80 proto: tcp cat: Misc Attackbytes: 60	2020-10-14 05:10:58
45.148.121.85	attack	HEAD /robots.txt HTTP/1.0 403 0 "-" "-"	2020-10-08 01:22:08
45.148.121.85	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-10-07 17:29:50
45.148.121.32	attackspam	[2020-10-06 13:09:11] NOTICE[1182] chan_sip.c: Registration from '"150" ' failed for '45.148.121.32:5773' - Wrong password [2020-10-06 13:09:11] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-06T13:09:11.390-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="150",SessionID="0x7f22f840cf98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.148.121.32/5773",Challenge="73d516ec",ReceivedChallenge="73d516ec",ReceivedHash="e073c545cfec2de1896911ae43c17a3d" [2020-10-06 13:09:11] NOTICE[1182] chan_sip.c: Registration from '"150" ' failed for '45.148.121.32:5773' - Wrong password [2020-10-06 13:09:11] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-06T13:09:11.491-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="150",SessionID="0x7f22f854d238",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.148.1 ...	2020-10-07 01:53:24
45.148.121.32	attackbotsspam	[2020-10-06 05:25:19] NOTICE[1182] chan_sip.c: Registration from '"1234" ' failed for '45.148.121.32:5341' - Wrong password [2020-10-06 05:25:19] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-06T05:25:19.856-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1234",SessionID="0x7f22f840cf98",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45.148.121.32/5341",Challenge="18387bf6",ReceivedChallenge="18387bf6",ReceivedHash="4eb1bd0c35882490ad495acc9d170b4e" [2020-10-06 05:25:19] NOTICE[1182] chan_sip.c: Registration from '"1234" ' failed for '45.148.121.32:5341' - Wrong password [2020-10-06 05:25:19] SECURITY[1204] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-10-06T05:25:19.985-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="1234",SessionID="0x7f22f83b6678",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/45 ...	2020-10-06 17:49:17
45.148.121.92	attackbotsspam	UDP 45.148.121.92:5067 -> port 5060, len 440	2020-10-04 04:40:11
45.148.121.92	attackspam	UDP port : 5060	2020-10-03 20:46:55
45.148.121.92	attackspam	45.148.121.92 was recorded 5 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 11, 60	2020-10-03 12:12:41
45.148.121.92	attack	45.148.121.92 was recorded 5 times by 4 hosts attempting to connect to the following ports: 5060. Incident counter (4h, 24h, all-time): 5, 11, 60	2020-10-03 06:54:22
45.148.121.31	attackspambots	\[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \< ...	2020-10-02 02:17:00
45.148.121.31	attackspam	\[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \' failed for '45.148.121.31:5561' - Wrong password \[Oct 1 20:24:13\] NOTICE\[31025\] chan_sip.c: Registration from '"301" \< ...	2020-10-01 18:24:47
45.148.121.138	attack	firewall-block, port(s): 5060/udp	2020-10-01 07:50:49
45.148.121.138	attack	UDP 45.148.121.138:5122 -> port 5060, len 443	2020-10-01 00:21:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.121.7
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 34026
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.148.121.7.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025022701 1800 900 604800 86400

;; Query time: 198 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 28 02:10:43 CST 2025
;; MSG SIZE  rcvd: 105

Host info

Host 7.121.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 7.121.148.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.227.169.7	attack	Oct 5 06:33:45 serwer sshd\[12525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.169.7 user=root Oct 5 06:33:47 serwer sshd\[12525\]: Failed password for root from 165.227.169.7 port 52662 ssh2 Oct 5 06:37:31 serwer sshd\[12955\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.169.7 user=root ...	2020-10-05 13:47:58
112.85.42.172	attackbots	Oct 5 06:02:58 mavik sshd[28069]: Failed password for root from 112.85.42.172 port 58067 ssh2 Oct 5 06:03:02 mavik sshd[28069]: Failed password for root from 112.85.42.172 port 58067 ssh2 Oct 5 06:03:05 mavik sshd[28069]: Failed password for root from 112.85.42.172 port 58067 ssh2 Oct 5 06:03:08 mavik sshd[28069]: Failed password for root from 112.85.42.172 port 58067 ssh2 Oct 5 06:03:11 mavik sshd[28069]: Failed password for root from 112.85.42.172 port 58067 ssh2 ...	2020-10-05 13:16:03
96.127.179.156	attack	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-10-05T04:04:50Z	2020-10-05 13:43:19
121.179.151.188	attack	23/tcp [2020-10-04]1pkt	2020-10-05 13:38:46
211.193.58.225	attack	2020-10-05T03:19:58.135852shield sshd\[32025\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.193.58.225 user=root 2020-10-05T03:20:00.721760shield sshd\[32025\]: Failed password for root from 211.193.58.225 port 2014 ssh2 2020-10-05T03:23:18.241757shield sshd\[32530\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.193.58.225 user=root 2020-10-05T03:23:20.952746shield sshd\[32530\]: Failed password for root from 211.193.58.225 port 12675 ssh2 2020-10-05T03:26:39.473493shield sshd\[655\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.193.58.225 user=root	2020-10-05 13:43:50
181.65.252.10	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-10-05 13:10:58
183.232.228.66	attackspambots	Cowrie Honeypot: Unauthorised SSH/Telnet login attempt with user "root" at 2020-10-04T20:58:56Z	2020-10-05 13:22:37
51.83.131.123	attack	Bruteforce detected by fail2ban	2020-10-05 13:30:10
167.114.98.229	attackspambots	167.114.98.229 (CA/Canada/-), 5 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 5 00:05:23 jbs1 sshd[17396]: Failed password for root from 85.60.193.225 port 34710 ssh2 Oct 5 00:05:55 jbs1 sshd[17568]: Failed password for root from 167.114.98.229 port 40082 ssh2 Oct 5 00:12:11 jbs1 sshd[19311]: Failed password for root from 167.114.98.229 port 36288 ssh2 Oct 5 00:08:56 jbs1 sshd[18324]: Failed password for root from 104.224.171.39 port 37460 ssh2 Oct 5 00:12:36 jbs1 sshd[19378]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.148.1.75 user=root IP Addresses Blocked: 85.60.193.225 (ES/Spain/-)	2020-10-05 13:19:02
192.3.139.56	attackspam	Oct 5 07:30:33 vpn01 sshd[22354]: Failed password for root from 192.3.139.56 port 39408 ssh2 ...	2020-10-05 13:38:25
107.204.217.126	attackbots	Lines containing failures of 107.204.217.126 (max 1000) Oct 4 22:38:48 server sshd[24860]: Connection from 107.204.217.126 port 57354 on 62.116.165.82 port 22 Oct 4 22:38:48 server sshd[24860]: Did not receive identification string from 107.204.217.126 port 57354 Oct 4 22:38:51 server sshd[24863]: Connection from 107.204.217.126 port 57811 on 62.116.165.82 port 22 Oct 4 22:38:54 server sshd[24863]: Invalid user service from 107.204.217.126 port 57811 Oct 4 22:38:54 server sshd[24863]: Connection closed by 107.204.217.126 port 57811 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=107.204.217.126	2020-10-05 13:18:07
139.155.225.13	attackbotsspam	SSH auth scanning - multiple failed logins	2020-10-05 13:42:05
114.33.129.211	attackbots	23/tcp [2020-10-04]1pkt	2020-10-05 13:31:02
212.70.149.36	attack	Oct 5 07:09:06 s1 postfix/submission/smtpd\[6653\]: warning: unknown\[212.70.149.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 07:09:26 s1 postfix/submission/smtpd\[6653\]: warning: unknown\[212.70.149.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 07:09:46 s1 postfix/submission/smtpd\[7536\]: warning: unknown\[212.70.149.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 07:10:11 s1 postfix/submission/smtpd\[6653\]: warning: unknown\[212.70.149.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 07:10:28 s1 postfix/submission/smtpd\[7685\]: warning: unknown\[212.70.149.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 07:10:45 s1 postfix/submission/smtpd\[9527\]: warning: unknown\[212.70.149.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 07:11:05 s1 postfix/submission/smtpd\[7542\]: warning: unknown\[212.70.149.36\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 5 07:11:24 s1 postfix/submission/smtpd\[7822\]: warning: unknown\[212.70.1	2020-10-05 13:22:19
103.45.70.58	attackbotsspam	2020-10-04T22:06:47.101410yoshi.linuxbox.ninja sshd[451760]: Failed password for root from 103.45.70.58 port 55522 ssh2 2020-10-04T22:08:46.567372yoshi.linuxbox.ninja sshd[452954]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.45.70.58 user=root 2020-10-04T22:08:48.566074yoshi.linuxbox.ninja sshd[452954]: Failed password for root from 103.45.70.58 port 57088 ssh2 ...	2020-10-05 13:49:15

Recently Reported IPs

173.8.31.118	16.173.219.83	9.163.75.3	128.123.251.191
217.126.220.213	129.248.36.71	90.182.120.203	81.219.95.14
221.113.32.23	58.63.106.151	164.254.65.163	205.48.139.101
92.72.251.131	86.115.3.59	142.122.244.80	181.75.77.205
62.26.226.62	94.104.45.99	160.50.139.51	17.42.26.5