45.148.234.41 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.148.234.125	attackspambots	(mod_security) mod_security (id:210730) triggered by 45.148.234.125 (RU/Russia/-): 5 in the last 300 secs	2020-10-04 02:31:09
45.148.234.125	attack	(mod_security) mod_security (id:210730) triggered by 45.148.234.125 (RU/Russia/-): 5 in the last 300 secs	2020-10-03 18:18:43
45.148.234.161	attack	Chat Spam	2020-08-19 13:51:18
45.148.234.164	attack	Forbidden access	2020-07-16 20:12:01
45.148.234.173	attackspam	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/45.148.234.173/ EU - 1H : (4) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : EU NAME ASN : ASN0 IP : 45.148.234.173 CIDR : 45.148.0.0/14 PREFIX COUNT : 50242 UNIQUE IP COUNT : 856039856 ATTACKS DETECTED ASN0 : 1H - 3 3H - 6 6H - 7 12H - 8 24H - 16 DateTime : 2019-11-24 07:19:23 INFO : Server 301 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-11-24 20:59:17
45.148.234.88	attack	45.148.234.88 - - [20/Oct/2019:08:03:26 -0400] "GET /?page=products&action=../../etc/passwd%00&manufacturerID=12&productID=973&linkID=15902 HTTP/1.1" 200 17150 "https://newportbrassfaucets.com/?page=products&action=../../etc/passwd%00&manufacturerID=12&productID=973&linkID=15902" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/76.0.3809.132 Safari/537.36" ...	2019-10-20 21:59:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.234.41
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 31734
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.148.234.41.			IN	A

;; AUTHORITY SECTION:
.			116	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 75 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 10:31:21 CST 2022
;; MSG SIZE  rcvd: 106

Host info

Host 41.234.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 41.234.148.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.200.241.227	attackbots	SSH Brute-Force reported by Fail2Ban	2020-04-05 22:46:03
122.15.82.87	attack	Apr 5 16:09:29 s1 sshd\[9629\]: Invalid user test from 122.15.82.87 port 47343 Apr 5 16:09:29 s1 sshd\[9629\]: Failed password for invalid user test from 122.15.82.87 port 47343 ssh2 Apr 5 16:11:46 s1 sshd\[12547\]: Invalid user oracle from 122.15.82.87 port 57353 Apr 5 16:11:46 s1 sshd\[12547\]: Failed password for invalid user oracle from 122.15.82.87 port 57353 ssh2 Apr 5 16:14:01 s1 sshd\[14505\]: Invalid user sybase from 122.15.82.87 port 39115 Apr 5 16:14:02 s1 sshd\[14505\]: Failed password for invalid user sybase from 122.15.82.87 port 39115 ssh2 ...	2020-04-05 22:25:19
83.17.166.241	attackbots	(sshd) Failed SSH login from 83.17.166.241 (PL/Poland/aqg241.internetdsl.tpnet.pl): 5 in the last 3600 secs	2020-04-05 22:49:45
106.12.16.2	attackbots	Apr 5 14:34:58 OPSO sshd\[29119\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.16.2 user=root Apr 5 14:35:00 OPSO sshd\[29119\]: Failed password for root from 106.12.16.2 port 33996 ssh2 Apr 5 14:39:29 OPSO sshd\[29995\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.16.2 user=root Apr 5 14:39:31 OPSO sshd\[29995\]: Failed password for root from 106.12.16.2 port 46672 ssh2 Apr 5 14:44:00 OPSO sshd\[30764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.16.2 user=root	2020-04-05 22:50:44
106.13.35.87	attackbots	Apr 5 10:32:54 vps46666688 sshd[21306]: Failed password for root from 106.13.35.87 port 45424 ssh2 ...	2020-04-05 21:54:31
185.248.12.244	attack	xmlrpc attack	2020-04-05 22:37:57
185.118.48.206	attackspam	(sshd) Failed SSH login from 185.118.48.206 (AZ/Azerbaijan/-): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Apr 5 15:57:27 ubnt-55d23 sshd[20577]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.118.48.206 user=root Apr 5 15:57:29 ubnt-55d23 sshd[20577]: Failed password for root from 185.118.48.206 port 50732 ssh2	2020-04-05 22:12:24
186.105.190.168	attackbots	Apr 4 22:04:26 host sshd[10192]: User r.r from 186.105.190.168 not allowed because none of user's groups are listed in AllowGroups Apr 4 22:04:26 host sshd[10192]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.105.190.168 user=r.r Apr 4 22:04:28 host sshd[10192]: Failed password for invalid user r.r from 186.105.190.168 port 46282 ssh2 Apr 4 22:04:28 host sshd[10192]: Received disconnect from 186.105.190.168 port 46282:11: Bye Bye [preauth] Apr 4 22:04:28 host sshd[10192]: Disconnected from invalid user r.r 186.105.190.168 port 46282 [preauth] Apr 4 22:13:23 host sshd[12220]: User r.r from 186.105.190.168 not allowed because none of user's groups are listed in AllowGroups Apr 4 22:13:23 host sshd[12220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=186.105.190.168 user=r.r Apr 4 22:13:25 host sshd[12220]: Failed password for invalid user r.r from 186.105.190.168 port 51074........ -------------------------------	2020-04-05 22:24:22
222.186.175.183	attack	" "	2020-04-05 21:59:49
165.22.33.32	attackspambots	Apr 5 12:48:36 vlre-nyc-1 sshd\[21467\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.33.32 user=root Apr 5 12:48:38 vlre-nyc-1 sshd\[21467\]: Failed password for root from 165.22.33.32 port 47884 ssh2 Apr 5 12:52:15 vlre-nyc-1 sshd\[21560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.33.32 user=root Apr 5 12:52:17 vlre-nyc-1 sshd\[21560\]: Failed password for root from 165.22.33.32 port 58830 ssh2 Apr 5 12:55:55 vlre-nyc-1 sshd\[21658\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.33.32 user=root ...	2020-04-05 22:00:48
116.110.159.1	attackspam	Automatic report - Port Scan Attack	2020-04-05 22:05:08
117.71.59.108	attack	SSH/22 MH Probe, BF, Hack -	2020-04-05 22:18:18
45.82.137.35	attackspam	2020-04-05T13:18:38.485578shield sshd\[32692\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.82.137.35 user=root 2020-04-05T13:18:40.545737shield sshd\[32692\]: Failed password for root from 45.82.137.35 port 52956 ssh2 2020-04-05T13:23:03.851124shield sshd\[1215\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.82.137.35 user=root 2020-04-05T13:23:06.624003shield sshd\[1215\]: Failed password for root from 45.82.137.35 port 35692 ssh2 2020-04-05T13:27:16.253228shield sshd\[2054\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.82.137.35 user=root	2020-04-05 22:02:12
171.103.165.138	attackspambots	failed_logins	2020-04-05 22:44:04
109.159.184.181	attackbotsspam	Telnet/23 MH Probe, Scan, BF, Hack -	2020-04-05 22:45:19

Recently Reported IPs

81.4.255.42	60.2.43.155	89.236.225.152	92.242.207.70
186.70.221.227	95.140.116.42	218.51.185.202	110.77.148.225
189.213.42.70	217.217.11.168	27.128.32.45	197.57.17.55
41.37.90.139	77.119.237.96	23.91.70.49	78.188.237.228
1.54.4.23	217.164.170.250	5.114.233.207	36.79.216.221