45.148.234.218

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.148.234.125	attackspambots	(mod_security) mod_security (id:210730) triggered by 45.148.234.125 (RU/Russia/-): 5 in the last 300 secs	2020-10-04 02:31:09
45.148.234.125	attack	(mod_security) mod_security (id:210730) triggered by 45.148.234.125 (RU/Russia/-): 5 in the last 300 secs	2020-10-03 18:18:43
45.148.234.161	attack	Chat Spam	2020-08-19 13:51:18
45.148.234.164	attack	Forbidden access	2020-07-16 20:12:01
45.148.234.173	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.148.234.173/ EU - 1H : (4) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EU NAME ASN : ASN0 IP : 45.148.234.173 CIDR : 45.148.0.0/14 PREFIX COUNT : 50242 UNIQUE IP COUNT : 856039856 ATTACKS DETECTED ASN0 : 1H - 3 3H - 6 6H - 7 12H - 8 24H - 16 DateTime : 2019-11-24 07:19:23 INFO : Server 301 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-11-24 20:59:17
45.148.234.88	attack	45.148.234.88 - - [20/Oct/2019:08:03:26 -0400] "GET /?page=products&action=../../etc/passwd%00&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17150 "https://newportbrassfaucets.com/?page=products&action=../../etc/passwd%00&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" ...	2019-10-20 21:59:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.234.218
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49577
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.148.234.218.			IN	A

;; AUTHORITY SECTION:
.			417	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021100 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 11 14:49:33 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 218.234.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 218.234.148.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.33.107.221	attack	Sep 19 10:45:58 vps8769 sshd[32472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.33.107.221 Sep 19 10:46:00 vps8769 sshd[32472]: Failed password for invalid user admin from 58.33.107.221 port 47413 ssh2 ...	2020-09-19 18:12:35
188.0.120.53	attackbotsspam	Icarus honeypot on github	2020-09-19 17:51:21
123.14.193.239	attackbots	TCP (SYN) 123.14.193.239:22488 -> port 23, len 44	2020-09-19 17:48:43
23.225.240.242	attack	TCP (SYN) 23.225.240.242:44412 -> port 1433, len 44	2020-09-19 17:40:01
141.151.20.172	attackbots	TCP Port Scanning	2020-09-19 17:59:07
196.52.43.84	attack	firewall-block, port(s): 11211/tcp	2020-09-19 18:00:17
49.233.148.2	attackspambots	Sep 19 00:17:06 Tower sshd[34379]: Connection from 49.233.148.2 port 51882 on 192.168.10.220 port 22 rdomain "" Sep 19 00:17:09 Tower sshd[34379]: Failed password for root from 49.233.148.2 port 51882 ssh2 Sep 19 00:17:10 Tower sshd[34379]: Received disconnect from 49.233.148.2 port 51882:11: Bye Bye [preauth] Sep 19 00:17:10 Tower sshd[34379]: Disconnected from authenticating user root 49.233.148.2 port 51882 [preauth]	2020-09-19 18:01:42
51.210.44.194	attackbotsspam	Sep 19 11:19:34 h2865660 sshd[20743]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.210.44.194 user=root Sep 19 11:19:36 h2865660 sshd[20743]: Failed password for root from 51.210.44.194 port 60104 ssh2 Sep 19 11:25:10 h2865660 sshd[21008]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.210.44.194 user=root Sep 19 11:25:12 h2865660 sshd[21008]: Failed password for root from 51.210.44.194 port 48248 ssh2 Sep 19 11:29:52 h2865660 sshd[21307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.210.44.194 user=root Sep 19 11:29:54 h2865660 sshd[21307]: Failed password for root from 51.210.44.194 port 59786 ssh2 ...	2020-09-19 17:38:43
112.85.42.72	attackspam	Sep 19 12:13:39 pkdns2 sshd\[3854\]: Failed password for root from 112.85.42.72 port 15674 ssh2Sep 19 12:13:42 pkdns2 sshd\[3854\]: Failed password for root from 112.85.42.72 port 15674 ssh2Sep 19 12:13:44 pkdns2 sshd\[3854\]: Failed password for root from 112.85.42.72 port 15674 ssh2Sep 19 12:20:40 pkdns2 sshd\[4189\]: Failed password for root from 112.85.42.72 port 47543 ssh2Sep 19 12:21:32 pkdns2 sshd\[4218\]: Failed password for root from 112.85.42.72 port 36314 ssh2Sep 19 12:22:24 pkdns2 sshd\[4249\]: Failed password for root from 112.85.42.72 port 24591 ssh2 ...	2020-09-19 17:39:38
37.59.55.14	attackspam	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-09-19T01:26:26Z and 2020-09-19T01:33:18Z	2020-09-19 18:08:34
157.245.98.160	attackbots	Sep 18 19:27:32 hanapaa sshd\[25517\]: Invalid user ts3srv from 157.245.98.160 Sep 18 19:27:32 hanapaa sshd\[25517\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.98.160 Sep 18 19:27:34 hanapaa sshd\[25517\]: Failed password for invalid user ts3srv from 157.245.98.160 port 48886 ssh2 Sep 18 19:31:55 hanapaa sshd\[25901\]: Invalid user test10 from 157.245.98.160 Sep 18 19:31:55 hanapaa sshd\[25901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.98.160	2020-09-19 18:13:50
107.170.18.163	attackspambots	Sep 19 11:18:26 abendstille sshd\[26734\]: Invalid user nagios from 107.170.18.163 Sep 19 11:18:26 abendstille sshd\[26734\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.18.163 Sep 19 11:18:27 abendstille sshd\[26734\]: Failed password for invalid user nagios from 107.170.18.163 port 52365 ssh2 Sep 19 11:28:01 abendstille sshd\[3090\]: Invalid user tomcat from 107.170.18.163 Sep 19 11:28:01 abendstille sshd\[3090\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.170.18.163 ...	2020-09-19 17:36:26
167.71.52.241	attackspam	<6 unauthorized SSH connections	2020-09-19 18:08:18
79.49.249.113	attackspambots	20/9/18@14:05:52: FAIL: Alarm-Network address from=79.49.249.113 ...	2020-09-19 17:34:07
47.115.54.160	attackspam	Automatic report - Banned IP Access	2020-09-19 18:14:12

Recently Reported IPs

45.148.235.227	45.15.16.114	45.154.244.174	45.152.208.148
45.153.22.50	45.152.202.82	45.154.56.90	45.155.173.163
45.151.253.106	45.159.21.176	45.159.21.132	45.155.205.224
45.158.184.177	45.159.20.210	45.159.21.215	45.159.22.192
45.159.23.110	45.159.23.134	45.159.22.205	45.159.23.128