45.252.249.148

Basic Info

City: unknown

Region: unknown

Country: Viet Nam

Internet Service Provider: AZDIGI Corporation

Hostname: unknown

Organization: unknown

Usage Type: Data Center/Web Hosting/Transit

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Invalid user smtpuser from 45.252.249.148 port 58628	2019-10-26 15:50:03
attack	Invalid user smtpuser from 45.252.249.148 port 58628	2019-10-25 04:11:52
attackspambots	SSH Bruteforce attempt	2019-10-03 01:59:27
attackspam	Oct 2 07:18:06 nextcloud sshd\[11532\]: Invalid user test from 45.252.249.148 Oct 2 07:18:06 nextcloud sshd\[11532\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.148 Oct 2 07:18:08 nextcloud sshd\[11532\]: Failed password for invalid user test from 45.252.249.148 port 57376 ssh2 ...	2019-10-02 14:11:26
attackspambots	Triggered by Fail2Ban at Vostok web server	2019-10-02 01:34:25
attackspambots	Sep 30 12:17:49 work-partkepr sshd\[4150\]: Invalid user cam from 45.252.249.148 port 36318 Sep 30 12:17:49 work-partkepr sshd\[4150\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.148 ...	2019-09-30 20:32:24
attack	Unauthorized SSH connection attempt	2019-08-13 10:57:20
attackspam	SSH login attempts brute force.	2019-08-13 03:21:18
attack	Jul 23 04:54:08 MK-Soft-VM4 sshd\[22179\]: Invalid user nagios from 45.252.249.148 port 53496 Jul 23 04:54:08 MK-Soft-VM4 sshd\[22179\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.148 Jul 23 04:54:10 MK-Soft-VM4 sshd\[22179\]: Failed password for invalid user nagios from 45.252.249.148 port 53496 ssh2 ...	2019-07-23 13:36:10

Comments on same subnet:

IP	Type	Details	Datetime
45.252.249.73	attack	(sshd) Failed SSH login from 45.252.249.73 (VN/Vietnam/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 9 16:28:49 server5 sshd[22221]: Invalid user user3 from 45.252.249.73 Oct 9 16:28:49 server5 sshd[22221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 Oct 9 16:28:52 server5 sshd[22221]: Failed password for invalid user user3 from 45.252.249.73 port 45454 ssh2 Oct 9 16:40:13 server5 sshd[27427]: Invalid user monitoring from 45.252.249.73 Oct 9 16:40:13 server5 sshd[27427]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73	2020-10-10 07:07:39
45.252.249.73	attackbots	Oct 9 12:21:27 124388 sshd[4745]: Failed password for root from 45.252.249.73 port 41160 ssh2 Oct 9 12:25:53 124388 sshd[4930]: Invalid user amavis from 45.252.249.73 port 48808 Oct 9 12:25:53 124388 sshd[4930]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 Oct 9 12:25:53 124388 sshd[4930]: Invalid user amavis from 45.252.249.73 port 48808 Oct 9 12:25:54 124388 sshd[4930]: Failed password for invalid user amavis from 45.252.249.73 port 48808 ssh2	2020-10-09 23:25:09
45.252.249.73	attackbotsspam	Unauthorized SSH login attempts	2020-08-30 00:09:38
45.252.249.73	attackbotsspam	Aug 23 15:08:19 game-panel sshd[20568]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 Aug 23 15:08:20 game-panel sshd[20568]: Failed password for invalid user nss from 45.252.249.73 port 49652 ssh2 Aug 23 15:12:54 game-panel sshd[20859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73	2020-08-23 23:15:43
45.252.249.73	attackspambots	Aug 20 14:03:39 h2646465 sshd[905]: Invalid user user from 45.252.249.73 Aug 20 14:03:39 h2646465 sshd[905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 Aug 20 14:03:39 h2646465 sshd[905]: Invalid user user from 45.252.249.73 Aug 20 14:03:41 h2646465 sshd[905]: Failed password for invalid user user from 45.252.249.73 port 48374 ssh2 Aug 20 14:15:30 h2646465 sshd[2859]: Invalid user wh from 45.252.249.73 Aug 20 14:15:30 h2646465 sshd[2859]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 Aug 20 14:15:30 h2646465 sshd[2859]: Invalid user wh from 45.252.249.73 Aug 20 14:15:32 h2646465 sshd[2859]: Failed password for invalid user wh from 45.252.249.73 port 41464 ssh2 Aug 20 14:19:38 h2646465 sshd[3016]: Invalid user laury from 45.252.249.73 ...	2020-08-21 00:10:47
45.252.249.73	attack	Invalid user mcts from 45.252.249.73 port 50866	2020-07-30 03:46:32
45.252.249.73	attackspam	Jul 24 05:51:23 electroncash sshd[35143]: Invalid user mailman from 45.252.249.73 port 49340 Jul 24 05:51:23 electroncash sshd[35143]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 Jul 24 05:51:23 electroncash sshd[35143]: Invalid user mailman from 45.252.249.73 port 49340 Jul 24 05:51:25 electroncash sshd[35143]: Failed password for invalid user mailman from 45.252.249.73 port 49340 ssh2 Jul 24 05:55:43 electroncash sshd[36228]: Invalid user jrb from 45.252.249.73 port 57662 ...	2020-07-24 12:04:19
45.252.249.73	attackbots	2020-07-14T00:58:54.262669server.mjenks.net sshd[1676725]: Invalid user practice from 45.252.249.73 port 49888 2020-07-14T00:58:54.268162server.mjenks.net sshd[1676725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 2020-07-14T00:58:54.262669server.mjenks.net sshd[1676725]: Invalid user practice from 45.252.249.73 port 49888 2020-07-14T00:58:56.451827server.mjenks.net sshd[1676725]: Failed password for invalid user practice from 45.252.249.73 port 49888 ssh2 2020-07-14T01:01:42.617572server.mjenks.net sshd[1677093]: Invalid user theo from 45.252.249.73 port 33234 ...	2020-07-14 14:08:06
45.252.249.73	attackspam	Jul 12 17:10:08 george sshd[20499]: Failed password for invalid user admin from 45.252.249.73 port 52896 ssh2 Jul 12 17:12:30 george sshd[20521]: Invalid user oks from 45.252.249.73 port 32882 Jul 12 17:12:30 george sshd[20521]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 Jul 12 17:12:32 george sshd[20521]: Failed password for invalid user oks from 45.252.249.73 port 32882 ssh2 Jul 12 17:14:56 george sshd[20539]: Invalid user jv from 45.252.249.73 port 40982 ...	2020-07-13 05:26:19
45.252.249.73	attackbots	Invalid user xieshenru from 45.252.249.73 port 59626	2020-07-13 01:43:07
45.252.249.73	attack	2020-07-09T23:15:40.702356abusebot-4.cloudsearch.cf sshd[17515]: Invalid user git from 45.252.249.73 port 52966 2020-07-09T23:15:40.707555abusebot-4.cloudsearch.cf sshd[17515]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 2020-07-09T23:15:40.702356abusebot-4.cloudsearch.cf sshd[17515]: Invalid user git from 45.252.249.73 port 52966 2020-07-09T23:15:42.615453abusebot-4.cloudsearch.cf sshd[17515]: Failed password for invalid user git from 45.252.249.73 port 52966 ssh2 2020-07-09T23:19:12.488374abusebot-4.cloudsearch.cf sshd[17560]: Invalid user sendil from 45.252.249.73 port 51948 2020-07-09T23:19:12.497152abusebot-4.cloudsearch.cf sshd[17560]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 2020-07-09T23:19:12.488374abusebot-4.cloudsearch.cf sshd[17560]: Invalid user sendil from 45.252.249.73 port 51948 2020-07-09T23:19:14.841965abusebot-4.cloudsearch.cf sshd[17560]: Failed pas ...	2020-07-10 07:55:21
45.252.249.73	attack	2020-07-07T12:21:56.150967+02:00 sshd[17394]: Failed password for invalid user xzq from 45.252.249.73 port 57998 ssh2	2020-07-07 19:05:24
45.252.249.73	attackspambots	Invalid user ttt from 45.252.249.73 port 37714	2020-06-17 15:26:31
45.252.249.73	attack	...	2020-06-15 08:26:00
45.252.249.73	attack	May 27 23:00:08 server1 sshd\[692\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 user=root May 27 23:00:10 server1 sshd\[692\]: Failed password for root from 45.252.249.73 port 50444 ssh2 May 27 23:04:24 server1 sshd\[1882\]: Invalid user wakita from 45.252.249.73 May 27 23:04:24 server1 sshd\[1882\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.252.249.73 May 27 23:04:27 server1 sshd\[1882\]: Failed password for invalid user wakita from 45.252.249.73 port 57198 ssh2 ...	2020-05-28 13:19:30

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.252.249.148
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46931
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.252.249.148.			IN	A

;; AUTHORITY SECTION:
.			3143	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019042101 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon Apr 22 10:36:46 +08 2019
;; MSG SIZE  rcvd: 118

Host info

Host 148.249.252.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

** server can't find 148.249.252.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.208.150.114	attackspambots	Feb 16 00:31:01 legacy sshd[24195]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.208.150.114 Feb 16 00:31:03 legacy sshd[24195]: Failed password for invalid user 1234567890 from 41.208.150.114 port 38275 ssh2 Feb 16 00:34:04 legacy sshd[24450]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.208.150.114 ...	2020-02-16 09:36:30
182.61.44.136	attack	Feb 15 12:16:32 auw2 sshd\[2485\]: Invalid user bsbk from 182.61.44.136 Feb 15 12:16:32 auw2 sshd\[2485\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.44.136 Feb 15 12:16:34 auw2 sshd\[2485\]: Failed password for invalid user bsbk from 182.61.44.136 port 45954 ssh2 Feb 15 12:17:13 auw2 sshd\[2554\]: Invalid user celery from 182.61.44.136 Feb 15 12:17:13 auw2 sshd\[2554\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.61.44.136	2020-02-16 09:27:48
217.19.154.218	attackbots	$f2bV_matches	2020-02-16 09:39:37
42.117.29.5	attackspambots	Port probing on unauthorized port 23	2020-02-16 09:41:39
222.186.180.41	attackbotsspam	2020-02-16T02:20:40.881370 sshd[23912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root 2020-02-16T02:20:42.869083 sshd[23912]: Failed password for root from 222.186.180.41 port 4832 ssh2 2020-02-16T02:20:47.752360 sshd[23912]: Failed password for root from 222.186.180.41 port 4832 ssh2 2020-02-16T02:20:40.881370 sshd[23912]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.41 user=root 2020-02-16T02:20:42.869083 sshd[23912]: Failed password for root from 222.186.180.41 port 4832 ssh2 2020-02-16T02:20:47.752360 sshd[23912]: Failed password for root from 222.186.180.41 port 4832 ssh2 ...	2020-02-16 09:22:47
96.84.177.225	attackbotsspam	Feb 15 22:01:57 firewall sshd[9342]: Invalid user discordbot from 96.84.177.225 Feb 15 22:02:00 firewall sshd[9342]: Failed password for invalid user discordbot from 96.84.177.225 port 58966 ssh2 Feb 15 22:03:44 firewall sshd[9384]: Invalid user rivalee from 96.84.177.225 ...	2020-02-16 09:24:26
222.186.175.216	attackspam	2020-02-15T17:24:31.289536homeassistant sshd[2126]: Failed password for root from 222.186.175.216 port 5860 ssh2 2020-02-16T01:25:15.210980homeassistant sshd[6455]: Failed none for root from 222.186.175.216 port 64434 ssh2 2020-02-16T01:25:15.424852homeassistant sshd[6455]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.216 user=root ...	2020-02-16 09:26:52
118.24.115.206	attackspam	Feb 16 01:23:01 MK-Soft-VM5 sshd[4314]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.115.206 Feb 16 01:23:03 MK-Soft-VM5 sshd[4314]: Failed password for invalid user tomcat from 118.24.115.206 port 43534 ssh2 ...	2020-02-16 09:44:27
143.202.189.167	attackspambots	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-16 09:47:18
91.74.234.154	attackspambots	Feb 16 01:58:51 legacy sshd[30325]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.74.234.154 Feb 16 01:58:53 legacy sshd[30325]: Failed password for invalid user webadm from 91.74.234.154 port 43030 ssh2 Feb 16 02:02:14 legacy sshd[30568]: Failed password for root from 91.74.234.154 port 44156 ssh2 ...	2020-02-16 09:17:07
121.40.162.239	attack	Autoban 121.40.162.239 AUTH/CONNECT	2020-02-16 09:14:30
106.75.106.221	attack	Attempts against SMTP/SSMTP	2020-02-16 09:16:39
68.198.28.111	attack	Telnetd brute force attack detected by fail2ban	2020-02-16 09:35:58
45.95.33.150	attackbots	Autoban 45.95.33.150 AUTH/CONNECT	2020-02-16 09:51:15
188.166.8.178	attack	Feb 9 09:26:08 pi sshd[10834]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.8.178 Feb 9 09:26:10 pi sshd[10834]: Failed password for invalid user lpc from 188.166.8.178 port 38004 ssh2	2020-02-16 09:28:40

Recently Reported IPs

110.49.7.255	99.59.173.149	36.85.102.195	154.153.56.50
31.10.15.182	115.75.139.204	8.158.72.43	82.117.247.58
215.147.90.152	109.197.229.172	39.195.69.227	41.137.14.51
11.34.206.220	38.141.42.3	97.24.141.132	164.194.146.206
144.80.75.155	156.146.59.185	37.49.224.79	172.63.222.165