45.148.234.123

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.148.234.125	attackspambots	(mod_security) mod_security (id:210730) triggered by 45.148.234.125 (RU/Russia/-): 5 in the last 300 secs	2020-10-04 02:31:09
45.148.234.125	attack	(mod_security) mod_security (id:210730) triggered by 45.148.234.125 (RU/Russia/-): 5 in the last 300 secs	2020-10-03 18:18:43
45.148.234.161	attack	Chat Spam	2020-08-19 13:51:18
45.148.234.164	attack	Forbidden access	2020-07-16 20:12:01
45.148.234.173	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.148.234.173/ EU - 1H : (4) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EU NAME ASN : ASN0 IP : 45.148.234.173 CIDR : 45.148.0.0/14 PREFIX COUNT : 50242 UNIQUE IP COUNT : 856039856 ATTACKS DETECTED ASN0 : 1H - 3 3H - 6 6H - 7 12H - 8 24H - 16 DateTime : 2019-11-24 07:19:23 INFO : Server 301 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-11-24 20:59:17
45.148.234.88	attack	45.148.234.88 - - [20/Oct/2019:08:03:26 -0400] "GET /?page=products&action=../../etc/passwd%00&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17150 "https://newportbrassfaucets.com/?page=products&action=../../etc/passwd%00&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" ...	2019-10-20 21:59:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.234.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37647
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.148.234.123.			IN	A

;; AUTHORITY SECTION:
.			431	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 09:18:49 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 123.234.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 123.234.148.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.91.20.174	attackbotsspam	Nov 1 19:32:41 itv-usvr-01 sshd[31013]: Invalid user art from 51.91.20.174 Nov 1 19:32:41 itv-usvr-01 sshd[31013]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.91.20.174 Nov 1 19:32:41 itv-usvr-01 sshd[31013]: Invalid user art from 51.91.20.174 Nov 1 19:32:43 itv-usvr-01 sshd[31013]: Failed password for invalid user art from 51.91.20.174 port 59544 ssh2 Nov 1 19:36:14 itv-usvr-01 sshd[31178]: Invalid user dspace from 51.91.20.174	2019-11-01 21:48:55
188.16.149.14	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-01 22:19:16
188.27.106.235	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-11-01 22:05:15
196.158.204.40	attackspambots	Oct 30 21:37:34 host2 sshd[3114]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.158.204.40 user=r.r Oct 30 21:37:36 host2 sshd[3114]: Failed password for r.r from 196.158.204.40 port 8590 ssh2 Oct 30 21:37:36 host2 sshd[3114]: Received disconnect from 196.158.204.40: 11: Bye Bye [preauth] Oct 30 21:55:32 host2 sshd[4794]: Invalid user photon from 196.158.204.40 Oct 30 21:55:32 host2 sshd[4794]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.158.204.40 Oct 30 21:55:35 host2 sshd[4794]: Failed password for invalid user photon from 196.158.204.40 port 27211 ssh2 Oct 30 21:55:35 host2 sshd[4794]: Received disconnect from 196.158.204.40: 11: Bye Bye [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=196.158.204.40	2019-11-01 21:37:34
123.207.7.130	attack	Nov 1 14:39:47 vps647732 sshd[14836]: Failed password for root from 123.207.7.130 port 33868 ssh2 Nov 1 14:45:57 vps647732 sshd[14946]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.207.7.130 ...	2019-11-01 21:57:52
61.19.22.217	attackbots	detected by Fail2Ban	2019-11-01 21:56:15
168.181.104.30	attackbots	Nov 1 13:55:21 vps647732 sshd[13966]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.181.104.30 Nov 1 13:55:23 vps647732 sshd[13966]: Failed password for invalid user es from 168.181.104.30 port 49738 ssh2 ...	2019-11-01 21:39:20
115.213.140.244	attack	Port Scan: TCP/22	2019-11-01 22:03:38
139.59.41.154	attackspambots	Nov 1 08:47:49 firewall sshd[29318]: Failed password for invalid user lo from 139.59.41.154 port 58338 ssh2 Nov 1 08:52:11 firewall sshd[29412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.41.154 user=nobody Nov 1 08:52:14 firewall sshd[29412]: Failed password for nobody from 139.59.41.154 port 39424 ssh2 ...	2019-11-01 22:05:41
62.90.162.254	attackspambots	Automatic report - Banned IP Access	2019-11-01 21:36:48
88.214.26.40	attack	Connection by 88.214.26.40 on port: 3306 got caught by honeypot at 11/1/2019 12:44:46 PM	2019-11-01 22:10:25
113.195.253.87	attackbots	port scan and connect, tcp 23 (telnet)	2019-11-01 21:50:58
198.211.110.133	attack	Oct 2 19:33:14 vtv3 sshd\[30259\]: Invalid user nagios from 198.211.110.133 port 45628 Oct 2 19:33:14 vtv3 sshd\[30259\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.110.133 Oct 2 19:33:16 vtv3 sshd\[30259\]: Failed password for invalid user nagios from 198.211.110.133 port 45628 ssh2 Oct 2 19:36:46 vtv3 sshd\[32046\]: Invalid user team from 198.211.110.133 port 57558 Oct 2 19:36:46 vtv3 sshd\[32046\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.110.133 Oct 2 19:47:42 vtv3 sshd\[5082\]: Invalid user vision from 198.211.110.133 port 36524 Oct 2 19:47:42 vtv3 sshd\[5082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.211.110.133 Oct 2 19:47:44 vtv3 sshd\[5082\]: Failed password for invalid user vision from 198.211.110.133 port 36524 ssh2 Oct 2 19:51:28 vtv3 sshd\[7009\]: Invalid user ionut from 198.211.110.133 port 48288 Oct 2 19:51:28 vtv3 ssh	2019-11-01 22:00:55
180.168.141.246	attackspam	Nov 1 14:34:19 icinga sshd[396]: Failed password for root from 180.168.141.246 port 35796 ssh2 ...	2019-11-01 21:56:44
51.91.101.222	attack	$f2bV_matches	2019-11-01 22:04:38

Recently Reported IPs

37.252.88.236	118.31.169.141	121.5.75.213	79.204.161.69
36.45.192.141	41.43.212.138	43.132.199.9	41.139.147.86
78.110.69.117	192.177.166.122	178.159.107.191	3.142.248.87
97.88.201.141	178.135.16.160	179.109.169.59	201.203.240.77
162.62.218.204	27.205.58.63	103.141.50.71	92.204.174.134