45.148.122.106 Threat Intelligence and Host Information

Share on:
Oct 21, 2023 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 45.148.122.106 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 34/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing

  • JARM: 2ad2ad0002ad2ad00042d42d000000301510f56407964db9434a9bb0d4ee4a

  • View other sources: Spamhaus VirusTotal

  • Country: Netherlands
  • Network: AS64425 skb enterprise b.v.
  • Noticed: 1 times
  • Protcols Attacked: ntp
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: getmarketingkicks.com emonabnk.net www.tafouyt.com tafouyt.com www.trader-jack.com trader-jack.com

Malware Detected on Host

Count: 10 d24fd397d7a32c63a5376d0ec7a4befbf8700540aac769f102ca7ed7c749641a afa9c8cea039e3083385749a05752b9f9926876be468e7fee1d6d4cde4d34fe9 7837fb9042f0412339fb78aaf45b218c2db98cf7f481f8ee329421700cb148a6 506b84d5a234e1cff573425992e39f924257144fdddbd6c523c8509f5526f709 96d5f5d5d9e219b7cda7fc8d7148d9092706e3c1419170112e74e65794c93d9b 523cb7eaf28a3836d5847f2d6a855b617e17b79ff011f3d804175933330b2636 45a691729dfd58b7a6733de0b45897fe47133fa94bcb1fe8d8ba727fa4c18cfc 25c49e5397a5413b8828cc296887918fd12944acde7a1061f8f81c8a9791e469 2776ca16da6e44cce84ba04433fbec33ca3414cf2d5d897b0a719a0d0fbd8052 85fe9cfce755388ee3be4216acf1a362efedd788c0ddbb5da93b3c9b63c1802e

Open Ports Detected

22 443

CVEs Detected

CVE-2021-23017 CVE-2021-3618

Map

Whois Information

  • inetnum: 45.148.122.0 - 45.148.122.255
  • netname: SKB-Enterprise
  • country: NL
  • geoloc: 52.3702 4.8952
  • admin-c: SE4295-RIPE
  • tech-c: SE4295-RIPE
  • org: ORG-SE92-RIPE
  • status: ASSIGNED PA
  • mnt-by: skbenterprise
  • created: 2019-09-03T08:08:59Z
  • last-modified: 2023-04-17T20:25:40Z
  • organisation: ORG-SE92-RIPE
  • org-name: SKB Enterprise B.V.
  • country: NL
  • org-type: OTHER
  • address: Kingsfordweg 151
  • address: 1043 GR Amsterdam
  • address: The Netherlands
  • abuse-c: SE4341-RIPE
  • mnt-ref: skbenterprise
  • mnt-ref: IPXO-MNT
  • mnt-ref: SpectraIP
  • mnt-by: skbenterprise
  • created: 2016-07-28T14:36:56Z
  • last-modified: 2022-12-01T17:25:32Z
  • role: SKB Enterprise B.V.
  • address: Kingsfordweg 151
  • address: 1043 GR Amsterdam
  • address: The Netherlands
  • abuse-mailbox: [email protected]
  • phone: +31852018594
  • nic-hdl: SE4295-RIPE
  • mnt-by: skbenterprise
  • created: 2016-06-01T08:52:20Z
  • last-modified: 2021-09-20T13:47:20Z
  • route: 45.148.122.0/24
  • origin: AS64425
  • mnt-by: skbenterprise
  • created: 2019-09-06T21:03:47Z
  • last-modified: 2019-09-06T21:03:47Z

Links to attack logs

ntp-bruteforce-ip-list-2021-12-19 awsjap-ntp-bruteforce-ip-list-2021-12-19 awsbah-ntp-bruteforce-ip-list-2021-12-19 ** awsau-ntp-bruteforce-ip-list-2021-12-19 nmap-scanning-list-2021-09-13