45.148.122.221 Threat Intelligence and Host Information

Share on:

General

This page contains threat intelligence information for the IPv4 address 45.148.122.221 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Possibly Malicious Host 🟢 30/100

Host and Network Information

  • Tags: cyber security, ioc, malicious, Nextray, phishing, tsec

  • View other sources: Spamhaus VirusTotal

  • Country: Netherlands
  • Network: AS64425 skb enterprise b.v.
  • Noticed: 1 times
  • Protcols Attacked: SSH
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America
  • Passive DNS Results: sk-nl1.pocoir.fun

Malware Detected on Host

Count: 18 8008fd8c98586105781dfc21c3465a5c767612c97a9e75f60c598e2e2224e6ec 80c731b9e586138550662caf82a5e889bd58fd73d6d4064eef25c465cdfca13a c7fbc0b371cd6c106c5d1dc3edd9f29e524638402ac32fbdc63e68f515c9f80d 2b4a4b6b07659029f8fe797d7341ea7e31779909b85ebd9a1f5f8563a69010e7 80c0c2c1a4cc762e9cf84a286d7d3ed68a75a938b0639a4f2e63b3d8d156bc89 3fa2f41ea21f72d1ffe4570974877007af6eac7385c29bf11ab2cea9e8e66cfe bfb731c34e64b222689de5f019cfaee02d9d0f26a6912546653feaf4de494130 01610c535eb408dc2e9698a287f11d4229c74b13963c4beaf468db9accf3fa2f 0bfab667fad88a0f2d11279090724c6c7f164d60a2e5b342629db55b3333b898 82b6dccaf22a5e375b3ffab1fde63ce6e51e67b60fa54050254e449b802bc2c3

Map

Whois Information

  • inetnum: 45.148.122.0 - 45.148.122.255
  • netname: SKB-Enterprise
  • country: NL
  • geoloc: 52.3702 4.8952
  • admin-c: SE4295-RIPE
  • tech-c: SE4295-RIPE
  • org: ORG-SE92-RIPE
  • status: ASSIGNED PA
  • mnt-by: skbenterprise
  • created: 2019-09-03T08:08:59Z
  • last-modified: 2023-04-17T20:25:40Z
  • organisation: ORG-SE92-RIPE
  • org-name: SKB Enterprise B.V.
  • country: NL
  • org-type: OTHER
  • address: Kingsfordweg 151
  • address: 1043 GR Amsterdam
  • address: The Netherlands
  • abuse-c: SE4341-RIPE
  • mnt-ref: skbenterprise
  • mnt-ref: IPXO-MNT
  • mnt-ref: SpectraIP
  • mnt-by: skbenterprise
  • created: 2016-07-28T14:36:56Z
  • last-modified: 2022-12-01T17:25:32Z
  • role: SKB Enterprise B.V.
  • address: Kingsfordweg 151
  • address: 1043 GR Amsterdam
  • address: The Netherlands
  • abuse-mailbox: [email protected]
  • phone: +31852018594
  • nic-hdl: SE4295-RIPE
  • mnt-by: skbenterprise
  • created: 2016-06-01T08:52:20Z
  • last-modified: 2021-09-20T13:47:20Z
  • route: 45.148.122.0/24
  • origin: AS64425
  • mnt-by: skbenterprise
  • created: 2019-09-06T21:03:47Z
  • last-modified: 2019-09-06T21:03:47Z

Links to attack logs

ntp-bruteforce-ip-list-2022-07-13 ntp-bruteforce-ip-list-2022-08-05