45.149.107.152

Basic Info

City: unknown

Region: unknown

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.149.107.152
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13393
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;45.149.107.152.			IN	A

;; AUTHORITY SECTION:
.			295	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2021122601 1800 900 604800 86400

;; Query time: 20 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Dec 27 03:23:29 CST 2021
;; MSG SIZE  rcvd: 107

Host info

Host 152.107.149.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 152.107.149.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
91.121.54.71	attack	[WedJul1021:04:40.4747022019][:error][pid16824:tid47246341089024][client91.121.54.71:38408][client91.121.54.71]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"\(\?:\<\\|script\\|\>\)"atARGS:domain.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"318"][id"347147"][rev"1"][msg"Atomicorp.comWAFRules:Wordpressadmin-ajaxXSSattack"][data"admin-ajax.php"][severity"CRITICAL"][hostname"prova.gmpsud.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"XSY2yABEVoZmiAfPnkfM6QAAAQw"][WedJul1021:04:50.4269652019][:error][pid24662:tid47246349494016][client91.121.54.71:41178][client91.121.54.71]ModSecurity:Accessdeniedwithcode403\(phase2\).Patternmatch"miglaa\?_"atARGS:action.[file"/etc/apache2/conf.d/modsec_rules/99_asl_jitp.conf"][line"60"][id"334072"][rev"5"][msg"Atomicorp.comWAFRules:CVE-2019-6703Attackblocked"][severity"ALERT"][hostname"prova.gmpsud.ch"][uri"/wp-admin/admin-ajax.php"][unique_id"XSY20j7z1RmYuMZU3IJ-pgAAANA"]	2019-07-11 06:40:51
149.129.137.196	attack	ssh failed login	2019-07-11 06:39:12
106.12.78.161	attackbots	Jul 10 23:03:24 Proxmox sshd\[11189\]: Invalid user andreia from 106.12.78.161 port 58180 Jul 10 23:03:24 Proxmox sshd\[11189\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.78.161 Jul 10 23:03:26 Proxmox sshd\[11189\]: Failed password for invalid user andreia from 106.12.78.161 port 58180 ssh2 Jul 10 23:06:50 Proxmox sshd\[14863\]: Invalid user tom1 from 106.12.78.161 port 35528 Jul 10 23:06:50 Proxmox sshd\[14863\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.78.161 Jul 10 23:06:52 Proxmox sshd\[14863\]: Failed password for invalid user tom1 from 106.12.78.161 port 35528 ssh2	2019-07-11 06:07:12
222.111.192.52	attack	3389BruteforceFW21	2019-07-11 06:20:34
174.138.48.36	attack	Triggered by Fail2Ban at Ares web server	2019-07-11 06:45:49
198.199.84.217	attackspambots	Jul 10 20:42:56 xb3 sshd[30897]: Failed password for invalid user odoo from 198.199.84.217 port 56908 ssh2 Jul 10 20:42:56 xb3 sshd[30897]: Received disconnect from 198.199.84.217: 11: Bye Bye [preauth] Jul 10 20:46:06 xb3 sshd[24654]: Failed password for invalid user admin from 198.199.84.217 port 39516 ssh2 Jul 10 20:46:06 xb3 sshd[24654]: Received disconnect from 198.199.84.217: 11: Bye Bye [preauth] Jul 10 20:54:12 xb3 sshd[29294]: Failed password for invalid user debian from 198.199.84.217 port 38714 ssh2 Jul 10 20:54:12 xb3 sshd[29294]: Received disconnect from 198.199.84.217: 11: Bye Bye [preauth] Jul 10 20:57:23 xb3 sshd[21998]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=198.199.84.217 user=r.r Jul 10 20:57:25 xb3 sshd[21998]: Failed password for r.r from 198.199.84.217 port 49952 ssh2 Jul 10 20:57:25 xb3 sshd[21998]: Received disconnect from 198.199.84.217: 11: Bye Bye [preauth] Jul 10 20:58:49 xb3 sshd[25271]: Fail........ -------------------------------	2019-07-11 06:31:55
104.244.73.126	attack	/posting.php?mode=post&f=3&sid=32f37e4a4431f833be5cab67ed9e5e6f	2019-07-11 06:20:09
202.120.45.202	attackspam	Jul 10 20:58:52 mailserver sshd[9284]: Invalid user lauren from 202.120.45.202 Jul 10 20:58:52 mailserver sshd[9284]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.120.45.202 Jul 10 20:58:54 mailserver sshd[9284]: Failed password for invalid user lauren from 202.120.45.202 port 40692 ssh2 Jul 10 20:58:54 mailserver sshd[9284]: Received disconnect from 202.120.45.202 port 40692:11: Bye Bye [preauth] Jul 10 20:58:54 mailserver sshd[9284]: Disconnected from 202.120.45.202 port 40692 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=202.120.45.202	2019-07-11 06:10:42
189.204.192.113	attackbots	Unauthorized connection attempt from IP address 189.204.192.113 on Port 445(SMB)	2019-07-11 06:34:00
67.205.167.142	attackspambots	Jul 11 02:43:18 vibhu-HP-Z238-Microtower-Workstation sshd\[24499\]: Invalid user tatiana from 67.205.167.142 Jul 11 02:43:18 vibhu-HP-Z238-Microtower-Workstation sshd\[24499\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.167.142 Jul 11 02:43:21 vibhu-HP-Z238-Microtower-Workstation sshd\[24499\]: Failed password for invalid user tatiana from 67.205.167.142 port 52268 ssh2 Jul 11 02:45:56 vibhu-HP-Z238-Microtower-Workstation sshd\[24980\]: Invalid user angel from 67.205.167.142 Jul 11 02:45:56 vibhu-HP-Z238-Microtower-Workstation sshd\[24980\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.205.167.142 ...	2019-07-11 06:24:52
91.211.228.14	attack	[portscan] Port scan	2019-07-11 06:10:00
3.219.9.144	attack	xmlrpc attack	2019-07-11 06:04:31
95.58.73.167	attackbotsspam	Unauthorized connection attempt from IP address 95.58.73.167 on Port 445(SMB)	2019-07-11 06:38:29
178.128.252.241	attackbots	Jul 10 23:02:01 mail sshd\[19430\]: Failed password for vmail from 178.128.252.241 port 48260 ssh2\ Jul 10 23:04:00 mail sshd\[19440\]: Invalid user www from 178.128.252.241\ Jul 10 23:04:02 mail sshd\[19440\]: Failed password for invalid user www from 178.128.252.241 port 44442 ssh2\ Jul 10 23:05:37 mail sshd\[19448\]: Invalid user culture from 178.128.252.241\ Jul 10 23:05:39 mail sshd\[19448\]: Failed password for invalid user culture from 178.128.252.241 port 33302 ssh2\ Jul 10 23:06:56 mail sshd\[19456\]: Invalid user gaurav from 178.128.252.241\	2019-07-11 06:29:02
206.189.136.160	attackspam	Jul 10 22:09:25 MK-Soft-VM5 sshd\[13199\]: Invalid user rofl from 206.189.136.160 port 40464 Jul 10 22:09:25 MK-Soft-VM5 sshd\[13199\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.136.160 Jul 10 22:09:26 MK-Soft-VM5 sshd\[13199\]: Failed password for invalid user rofl from 206.189.136.160 port 40464 ssh2 ...	2019-07-11 06:09:40

Recently Reported IPs

250.9.118.51	156.179.119.207	223.131.16.201	160.138.14.145
213.75.206.90	24.93.107.142	24.72.79.193	27.255.75.14
128.39.215.54	45.159.198.62	30.147.91.93	213.112.0.229
137.23.81.23	218.48.230.97	37.129.234.188	101.160.56.209
153.249.70.249	15.242.93.187	120.29.217.23	240.160.0.237