45.148.234.127

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.148.234.125	attackspambots	(mod_security) mod_security (id:210730) triggered by 45.148.234.125 (RU/Russia/-): 5 in the last 300 secs	2020-10-04 02:31:09
45.148.234.125	attack	(mod_security) mod_security (id:210730) triggered by 45.148.234.125 (RU/Russia/-): 5 in the last 300 secs	2020-10-03 18:18:43
45.148.234.161	attack	Chat Spam	2020-08-19 13:51:18
45.148.234.164	attack	Forbidden access	2020-07-16 20:12:01
45.148.234.173	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.148.234.173/ EU - 1H : (4) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EU NAME ASN : ASN0 IP : 45.148.234.173 CIDR : 45.148.0.0/14 PREFIX COUNT : 50242 UNIQUE IP COUNT : 856039856 ATTACKS DETECTED ASN0 : 1H - 3 3H - 6 6H - 7 12H - 8 24H - 16 DateTime : 2019-11-24 07:19:23 INFO : Server 301 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-11-24 20:59:17
45.148.234.88	attack	45.148.234.88 - - [20/Oct/2019:08:03:26 -0400] "GET /?page=products&action=../../etc/passwd%00&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17150 "https://newportbrassfaucets.com/?page=products&action=../../etc/passwd%00&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" ...	2019-10-20 21:59:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.234.127
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14575
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.148.234.127.			IN	A

;; AUTHORITY SECTION:
.			160	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020700 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 00:18:32 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 127.234.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 127.234.148.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
79.19.193.247	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/79.19.193.247/ IT - 1H : (68) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : IT NAME ASN : ASN3269 IP : 79.19.193.247 CIDR : 79.18.0.0/15 PREFIX COUNT : 550 UNIQUE IP COUNT : 19507712 WYKRYTE ATAKI Z ASN3269 : 1H - 3 3H - 5 6H - 11 12H - 23 24H - 40 DateTime : 2019-10-08 13:46:55 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-09 03:26:25
103.14.96.241	attack	Oct 8 17:37:49 work-partkepr sshd\[17718\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.14.96.241 user=root Oct 8 17:37:52 work-partkepr sshd\[17718\]: Failed password for root from 103.14.96.241 port 54156 ssh2 ...	2019-10-09 03:30:42
27.136.5.79	attack	Unauthorised access (Oct 8) SRC=27.136.5.79 LEN=40 TTL=47 ID=29353 TCP DPT=8080 WINDOW=27073 SYN Unauthorised access (Oct 7) SRC=27.136.5.79 LEN=40 TTL=47 ID=65119 TCP DPT=8080 WINDOW=20551 SYN Unauthorised access (Oct 7) SRC=27.136.5.79 LEN=40 TTL=47 ID=14553 TCP DPT=8080 WINDOW=27073 SYN Unauthorised access (Oct 6) SRC=27.136.5.79 LEN=40 TTL=47 ID=19698 TCP DPT=8080 WINDOW=15171 SYN Unauthorised access (Oct 6) SRC=27.136.5.79 LEN=40 TTL=47 ID=27231 TCP DPT=8080 WINDOW=27073 SYN	2019-10-09 03:36:06
46.63.140.137	attackbotsspam	Automatic report - Port Scan Attack	2019-10-09 03:10:13
23.129.64.100	attack	2019-10-08T18:07:50.246283abusebot.cloudsearch.cf sshd\[27682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=23.129.64.100 user=root	2019-10-09 03:19:41
178.139.228.253	attackbotsspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/178.139.228.253/ ES - 1H : (41) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : ES NAME ASN : ASN12430 IP : 178.139.228.253 CIDR : 178.139.0.0/16 PREFIX COUNT : 131 UNIQUE IP COUNT : 3717120 WYKRYTE ATAKI Z ASN12430 : 1H - 2 3H - 2 6H - 3 12H - 8 24H - 15 DateTime : 2019-10-08 13:46:55 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-09 03:26:38
62.210.167.202	attackbots	\[2019-10-08 15:23:35\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-08T15:23:35.885-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="90014242671090",SessionID="0x7fc3ac7f93a8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.167.202/55141",ACLName="no_extension_match" \[2019-10-08 15:24:45\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-08T15:24:45.353-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="0014242671090",SessionID="0x7fc3acc3d768",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.167.202/60301",ACLName="no_extension_match" \[2019-10-08 15:25:49\] SECURITY\[1898\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-10-08T15:25:49.455-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="01114242671090",SessionID="0x7fc3ac509ad8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.210.167.202/60252",ACLName="no_exte	2019-10-09 03:29:00
119.62.62.23	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/119.62.62.23/ CN - 1H : (574) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : CN NAME ASN : ASN4837 IP : 119.62.62.23 CIDR : 119.62.0.0/16 PREFIX COUNT : 1262 UNIQUE IP COUNT : 56665856 WYKRYTE ATAKI Z ASN4837 : 1H - 6 3H - 29 6H - 60 12H - 126 24H - 233 DateTime : 2019-10-08 13:46:55 INFO : Port Scan TELNET Detected and Blocked by ADMIN - data recovery	2019-10-09 03:25:32
51.254.210.53	attackbots	Oct 8 19:29:24 hosting sshd[1471]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=53.ip-51-254-210.eu user=root Oct 8 19:29:26 hosting sshd[1471]: Failed password for root from 51.254.210.53 port 46976 ssh2 ...	2019-10-09 03:25:17
139.59.84.55	attackspam	Automatic report - Banned IP Access	2019-10-09 03:24:05
199.195.252.213	attack	Oct 8 19:25:56 vps01 sshd[14989]: Failed password for root from 199.195.252.213 port 51516 ssh2	2019-10-09 03:31:27
191.101.12.135	attack	fail2ban honeypot	2019-10-09 03:01:54
46.251.239.31	attackspam	Repeated brute force against a port	2019-10-09 03:09:12
145.239.169.177	attackspambots	Oct 8 20:47:23 localhost sshd\[22534\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.169.177 user=root Oct 8 20:47:25 localhost sshd\[22534\]: Failed password for root from 145.239.169.177 port 45175 ssh2 Oct 8 20:51:26 localhost sshd\[23312\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=145.239.169.177 user=root	2019-10-09 02:56:55
42.116.88.76	attackspambots	Telnet/23 MH Probe, BF, Hack -	2019-10-09 03:26:54

Recently Reported IPs

39.102.69.141	191.101.252.139	59.99.134.189	175.107.7.96
103.114.98.217	115.96.41.230	118.239.6.247	165.22.10.136
116.105.216.128	103.9.188.138	94.73.249.93	116.68.111.230
64.62.197.59	103.85.149.156	82.64.237.142	176.36.236.170
178.93.14.193	189.208.93.158	27.226.31.198	112.164.91.182