45.9.148.154 - IPInfo

Basic Info

City: Amsterdam

Region: North Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
45.9.148.29	attackbots	Fail2Ban Ban Triggered	2020-09-09 20:28:52
45.9.148.29	attack	Fail2Ban Ban Triggered	2020-09-09 14:26:03
45.9.148.29	attackbots	Fail2Ban Ban Triggered	2020-09-09 06:37:37
45.9.148.82	attackspam	Probable attack : HTTPS hit by IP; not hostname	2020-08-05 05:13:44
45.9.148.125	attack		2020-07-23 15:43:19
45.9.148.194	attack	/adminer/adminer.php	2020-07-08 02:48:46
45.9.148.91	attack	sca	2020-07-05 19:44:20
45.9.148.194	attackbotsspam	404 NOT FOUND	2020-07-04 16:33:20
45.9.148.91	attackspambots	Unauthorized connection attempt detected from IP address 45.9.148.91 to port 53	2020-06-24 12:48:06
45.9.148.213	attackbots	schuetzenmusikanten.de 45.9.148.213 [20/Jun/2020:14:18:46 +0200] "POST /xmlrpc.php HTTP/1.0" 301 511 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko" schuetzenmusikanten.de 45.9.148.213 [20/Jun/2020:14:18:48 +0200] "POST /xmlrpc.php HTTP/1.0" 200 3595 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko"	2020-06-20 22:24:58
45.9.148.91	attackspambots	IP: 45.9.148.91 Ports affected HTTP protocol over TLS/SSL (443) Abuse Confidence rating 100% Found in DNSBL('s) ASN Details AS49447 Nice IT Services Group Inc. Netherlands (NL) CIDR 45.9.148.0/23 Log Date: 10/06/2020 8:12:49 AM UTC	2020-06-10 16:38:20
45.9.148.215	attackspambots	xmlrpc attack	2020-06-05 21:27:32
45.9.148.220	attackbotsspam	(mod_security) mod_security (id:210492) triggered by 45.9.148.220 (NL/Netherlands/-): 5 in the last 3600 secs	2020-05-31 07:52:05
45.9.148.131	attack	SSH login attempts.	2020-05-28 14:52:20
45.9.148.213	attackbots	Tor exit node	2020-05-28 02:35:30

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.9.148.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.9.148.154.			IN	A

;; AUTHORITY SECTION:
.			217	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020111600 1800 900 604800 86400

;; Query time: 78 msec
;; SERVER: 183.60.82.98#53(183.60.82.98)
;; WHEN: Tue Nov 17 00:15:46 CST 2020
;; MSG SIZE  rcvd: 116

Host info

Host 154.148.9.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 154.148.9.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
47.100.112.214	attackspambots	47.100.112.214 - - [14/May/2020:18:22:36 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.100.112.214 - - [14/May/2020:18:23:03 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.100.112.214 - - [14/May/2020:18:23:05 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.100.112.214 - - [14/May/2020:18:23:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.100.112.214 - - [14/May/2020:18:23:36 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 47.100.112.214 - - [14/May/2020:18:23:43 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001 ...	2020-05-15 02:18:31
35.199.82.233	attackbotsspam	May 14 20:00:55 abendstille sshd\[6127\]: Invalid user kristine from 35.199.82.233 May 14 20:00:55 abendstille sshd\[6127\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.82.233 May 14 20:00:57 abendstille sshd\[6127\]: Failed password for invalid user kristine from 35.199.82.233 port 59240 ssh2 May 14 20:05:10 abendstille sshd\[10860\]: Invalid user user from 35.199.82.233 May 14 20:05:10 abendstille sshd\[10860\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.82.233 ...	2020-05-15 02:14:41
218.92.0.138	attack	May 14 21:13:25 ift sshd\[60654\]: Failed password for root from 218.92.0.138 port 57233 ssh2May 14 21:13:49 ift sshd\[60728\]: Failed password for root from 218.92.0.138 port 27427 ssh2May 14 21:13:52 ift sshd\[60728\]: Failed password for root from 218.92.0.138 port 27427 ssh2May 14 21:13:56 ift sshd\[60728\]: Failed password for root from 218.92.0.138 port 27427 ssh2May 14 21:13:59 ift sshd\[60728\]: Failed password for root from 218.92.0.138 port 27427 ssh2 ...	2020-05-15 02:21:19
68.183.193.46	attack	May 14 17:07:02 plex sshd[9970]: Invalid user mario from 68.183.193.46 port 40944	2020-05-15 02:24:29
140.143.16.158	attackspambots	$f2bV_matches	2020-05-15 02:07:39
49.234.70.67	attack	May 14 14:51:34 server sshd[16023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.70.67 May 14 14:51:35 server sshd[16023]: Failed password for invalid user git from 49.234.70.67 port 49130 ssh2 May 14 14:55:41 server sshd[16392]: Failed password for root from 49.234.70.67 port 37434 ssh2 ...	2020-05-15 02:12:46
129.150.66.38	attackbotsspam	Lines containing failures of 129.150.66.38 May 14 00:25:42 shared05 sshd[10584]: Connection closed by 129.150.66.38 port 3593 [preauth] May 14 01:11:50 shared05 sshd[27519]: Connection closed by 129.150.66.38 port 3593 [preauth] May 14 01:58:05 shared05 sshd[12023]: Connection closed by 129.150.66.38 port 3593 [preauth] May 14 02:44:19 shared05 sshd[28870]: Connection closed by 129.150.66.38 port 3593 [preauth] May 14 03:30:42 shared05 sshd[14381]: Connection closed by 129.150.66.38 port 3593 [preauth] May 14 04:17:01 shared05 sshd[31424]: Connection closed by 129.150.66.38 port 3593 [preauth] May 14 05:03:27 shared05 sshd[16862]: Connection closed by 129.150.66.38 port 3593 [preauth] May 14 05:49:21 shared05 sshd[2448]: Connection closed by 129.150.66.38 port 3593 [preauth] May 14 06:35:18 shared05 sshd[21159]: Connection closed by 129.150.66.38 port 3593 [preauth] May 14 07:21:24 shared05 sshd[4278]: Connection closed by 129.150.66.38 port 3593 [preauth] May 14 08:07:3........ ------------------------------	2020-05-15 02:08:05
124.225.69.95	attackbotsspam	May 14 12:37:38 game-panel sshd[14217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.225.69.95 May 14 12:37:40 game-panel sshd[14217]: Failed password for invalid user mcguitaruser from 124.225.69.95 port 49792 ssh2 May 14 12:41:07 game-panel sshd[14398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.225.69.95	2020-05-15 01:52:59
145.239.156.84	attack	2020-05-14T13:35:54.8605581495-001 sshd[29305]: Invalid user bonaka from 145.239.156.84 port 48878 2020-05-14T13:35:57.4195021495-001 sshd[29305]: Failed password for invalid user bonaka from 145.239.156.84 port 48878 ssh2 2020-05-14T13:39:37.6431011495-001 sshd[29463]: Invalid user developer from 145.239.156.84 port 57100 2020-05-14T13:39:37.6472971495-001 sshd[29463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=b29.bexter-network.net 2020-05-14T13:39:37.6431011495-001 sshd[29463]: Invalid user developer from 145.239.156.84 port 57100 2020-05-14T13:39:39.9239651495-001 sshd[29463]: Failed password for invalid user developer from 145.239.156.84 port 57100 ssh2 ...	2020-05-15 02:19:49
134.119.221.30	attackspam	Dovecot Invalid User Login Attempt.	2020-05-15 02:05:07
182.61.21.155	attackspam	May 14 16:24:41 pkdns2 sshd\[27441\]: Invalid user deploy from 182.61.21.155May 14 16:24:44 pkdns2 sshd\[27441\]: Failed password for invalid user deploy from 182.61.21.155 port 54544 ssh2May 14 16:26:36 pkdns2 sshd\[27576\]: Invalid user itbs from 182.61.21.155May 14 16:26:38 pkdns2 sshd\[27576\]: Failed password for invalid user itbs from 182.61.21.155 port 49114 ssh2May 14 16:28:42 pkdns2 sshd\[27666\]: Invalid user test from 182.61.21.155May 14 16:28:45 pkdns2 sshd\[27666\]: Failed password for invalid user test from 182.61.21.155 port 43684 ssh2 ...	2020-05-15 02:00:48
218.81.245.185	attackspambots	May 14 15:05:16 server3 sshd[22850]: Did not receive identification string from 218.81.245.185 May 14 15:05:22 server3 sshd[22851]: Invalid user 666666 from 218.81.245.185 May 14 15:05:23 server3 sshd[22851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.81.245.185 May 14 15:05:26 server3 sshd[22851]: Failed password for invalid user 666666 from 218.81.245.185 port 64112 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=218.81.245.185	2020-05-15 02:28:06
183.88.172.46	attack	Lines containing failures of 183.88.172.46 May 14 14:05:18 shared05 sshd[27732]: Did not receive identification string from 183.88.172.46 port 31216 May 14 14:05:21 shared05 sshd[27758]: Invalid user support from 183.88.172.46 port 14628 May 14 14:05:21 shared05 sshd[27758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.88.172.46 May 14 14:05:23 shared05 sshd[27758]: Failed password for invalid user support from 183.88.172.46 port 14628 ssh2 May 14 14:05:23 shared05 sshd[27758]: Connection closed by invalid user support 183.88.172.46 port 14628 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=183.88.172.46	2020-05-15 02:26:00
122.243.223.208	attackbotsspam	Icarus honeypot on github	2020-05-15 02:12:17
75.164.171.249	attackbotsspam	May 14 13:04:55 mailserver sshd[881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.164.171.249 user=r.r May 14 13:04:57 mailserver sshd[881]: Failed password for r.r from 75.164.171.249 port 39686 ssh2 May 14 13:04:57 mailserver sshd[881]: Received disconnect from 75.164.171.249 port 39686:11: Bye Bye [preauth] May 14 13:04:57 mailserver sshd[881]: Disconnected from 75.164.171.249 port 39686 [preauth] May 14 13:11:02 mailserver sshd[1809]: Invalid user admin from 75.164.171.249 May 14 13:11:02 mailserver sshd[1809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.164.171.249 May 14 13:11:04 mailserver sshd[1809]: Failed password for invalid user admin from 75.164.171.249 port 52056 ssh2 May 14 13:11:04 mailserver sshd[1809]: Received disconnect from 75.164.171.249 port 52056:11: Bye Bye [preauth] May 14 13:11:04 mailserver sshd[1809]: Disconnected from 75.164.171.249 port 52056 [pr........ -------------------------------	2020-05-15 02:13:51

Recently Reported IPs

87.233.185.153	14.248.75.180	94.177.132.2	178.214.245.58
185.152.65.233	41.160.113.205	213.108.134.180	210.212.240.238
103.140.16.81	111.90.105.86	36.76.91.118	52.221.47.76
13.66.139.144	78.99.213.162	62.168.48.25	212.32.237.101
38.142.79.193	149.167.137.246	175.176.40.229	174.253.161.230