45.148.10.69 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Italy

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Automatic report - Port Scan	2020-02-12 05:22:52
attackbots	failed_logins	2020-01-24 23:39:42
attack	Trying brute force access to mail accounts	2020-01-21 16:06:09
attackspambots	2019-11-0204:32:09dovecot_loginauthenticatorfailedfor\(ADMIN\)[45.148.10.69]:34474:535Incorrectauthenticationdata\(set_id=info@bestwaysagl.ch\)2019-11-0204:35:25dovecot_loginauthenticatorfailedfor\(ADMIN\)[45.148.10.69]:43934:535Incorrectauthenticationdata\(set_id=info@bestwaysagl.ch\)2019-11-0204:38:39dovecot_loginauthenticatorfailedfor\(ADMIN\)[45.148.10.69]:53370:535Incorrectauthenticationdata\(set_id=info@bestwaysagl.ch\)2019-11-0204:41:54dovecot_loginauthenticatorfailedfor\(ADMIN\)[45.148.10.69]:34604:535Incorrectauthenticationdata\(set_id=info@bestwaysagl.ch\)2019-11-0204:45:15dovecot_loginauthenticatorfailedfor\(ADMIN\)[45.148.10.69]:44058:535Incorrectauthenticationdata\(set_id=info@bestwaysagl.ch\)2019-11-0204:48:38dovecot_loginauthenticatorfailedfor\(ADMIN\)[45.148.10.69]:53526:535Incorrectauthenticationdata\(set_id=info@bestwaysagl.ch\)2019-11-0204:52:00dovecot_loginauthenticatorfailedfor\(ADMIN\)[45.148.10.69]:34758:535Incorrectauthenticationdata\(set_id=info@bestwaysagl.ch\)2019-11-0204:55:23dovec	2019-11-02 12:15:06
attack	Oct 20 22:43:10 lnxmail61 postfix/submission/smtpd[26663]: warning: unknown[45.148.10.69]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-10-21 07:07:20

Comments on same subnet:

IP	Type	Details	Datetime
45.148.10.247	botsattack	45.148.10.247/Trojan Linux	2025-11-19 14:09:00
45.148.10.241	attack	DDoS Inbound	2023-11-15 18:54:04
45.148.10.28	attackspam	Oct 13 20:18:40 sshgateway sshd\[2360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root Oct 13 20:18:43 sshgateway sshd\[2360\]: Failed password for root from 45.148.10.28 port 40178 ssh2 Oct 13 20:19:07 sshgateway sshd\[2364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root	2020-10-14 02:28:44
45.148.10.15	attackspambots	Bruteforce detected by fail2ban	2020-10-13 21:25:53
45.148.10.186	attackspam	Unable to negotiate with 45.148.10.186 port 47964: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]	2020-10-13 21:24:21
45.148.10.28	attackbotsspam	SSH Server Abuse (45.148.10.28 as ): ...	2020-10-13 17:43:00
45.148.10.15	attackbotsspam	Oct 13 05:18:03 server2 sshd\[31409\]: Invalid user user from 45.148.10.15 Oct 13 05:18:48 server2 sshd\[31424\]: Invalid user server from 45.148.10.15 Oct 13 05:19:33 server2 sshd\[31465\]: Invalid user steam from 45.148.10.15 Oct 13 05:20:17 server2 sshd\[31678\]: Invalid user vmware from 45.148.10.15 Oct 13 05:21:00 server2 sshd\[31685\]: Invalid user microsoft from 45.148.10.15 Oct 13 05:21:44 server2 sshd\[31730\]: Invalid user cloud from 45.148.10.15	2020-10-13 12:52:46
45.148.10.186	attackspam	Oct 13 05:33:03 ns308116 sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:05 ns308116 sshd[11001]: Failed password for root from 45.148.10.186 port 41866 ssh2 Oct 13 05:33:38 ns308116 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:40 ns308116 sshd[11016]: Failed password for root from 45.148.10.186 port 39380 ssh2 Oct 13 05:34:15 ns308116 sshd[11027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root ...	2020-10-13 12:50:57
45.148.10.15	attack	Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: Invalid user user from 45.148.10.15 Oct 12 23:36:08 srv-ubuntu-dev3 sshd[31523]: Failed password for invalid user user from 45.148.10.15 port 40704 ssh2 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:40 srv-ubuntu-dev3 sshd[31590]: Failed password for invalid user 123Diego from 45.148.10.15 port 59760 ssh2 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: Invalid user Alphanetworks from 45.148.10.15 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-10-13 05:40:39
45.148.10.186	attack	Fail2Ban	2020-10-13 05:39:02
45.148.10.15	attackbotsspam	Fail2Ban	2020-10-12 05:52:51
45.148.10.65	attackbots	Invalid user ubuntu from 45.148.10.65 port 43138	2020-10-12 05:36:52
45.148.10.15	attack	Brute force attempt	2020-10-11 21:59:38
45.148.10.65	attackspam	Oct 01 10:49:15 host sshd[12378]: Invalid user ubuntu from 45.148.10.65 port 41060	2020-10-11 21:43:21
45.148.10.28	attack	Fail2Ban automatic report: SSH brute-force:	2020-10-11 21:05:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.10.69
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 24221
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.148.10.69.			IN	A

;; AUTHORITY SECTION:
.			165	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019102001 1800 900 604800 86400

;; Query time: 118 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Oct 21 07:07:17 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 69.10.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 69.10.148.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
158.69.220.70	attackspambots	SSH-BruteForce	2019-07-03 11:11:30
77.247.109.72	attackspam	\[2019-07-02 21:19:18\] NOTICE\[13443\] chan_sip.c: Registration from '"9999" \' failed for '77.247.109.72:5694' - Wrong password \[2019-07-02 21:19:18\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-02T21:19:18.877-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9999",SessionID="0x7f02f8740ce8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/77.247.109.72/5694",Challenge="6ddd491f",ReceivedChallenge="6ddd491f",ReceivedHash="332536c3638c84667e8035396528a656" \[2019-07-02 21:19:19\] NOTICE\[13443\] chan_sip.c: Registration from '"9999" \' failed for '77.247.109.72:5694' - Wrong password \[2019-07-02 21:19:19\] SECURITY\[13451\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-07-02T21:19:19.041-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="9999",SessionID="0x7f02f810d948",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV	2019-07-03 11:15:08
205.185.114.20	attackspambots	19/7/2@19:11:33: FAIL: IoT-SSH address from=205.185.114.20 ...	2019-07-03 11:27:41
52.20.28.170	attackspam	TERRORIST SPAM MAIL USED TO GAIN AND MOVE LARGE SUMS OF MONEY BETWEEN GROUPS FROM NOC.RENATER.FR WITH TWO WEB PAGES FROM AMAZONAWS.COM AND A REPLY TO EMAIL ADDRESS FROM NOC.RENATER.FR	2019-07-03 11:35:45
153.36.232.49	attackspam	2019-07-03T10:24:30.584635enmeeting.mahidol.ac.th sshd\[20163\]: User root from 153.36.232.49 not allowed because not listed in AllowUsers 2019-07-03T10:24:30.803950enmeeting.mahidol.ac.th sshd\[20163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=153.36.232.49 user=root 2019-07-03T10:24:33.071870enmeeting.mahidol.ac.th sshd\[20163\]: Failed password for invalid user root from 153.36.232.49 port 58369 ssh2 ...	2019-07-03 11:26:15
42.112.16.126	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-03 02:57:40,930 INFO [amun_request_handler] PortScan Detected on Port: 445 (42.112.16.126)	2019-07-03 12:07:18
122.195.200.148	attackbotsspam	Jul 3 04:56:34 MainVPS sshd[17451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.148 user=root Jul 3 04:56:35 MainVPS sshd[17451]: Failed password for root from 122.195.200.148 port 19684 ssh2 Jul 3 04:56:42 MainVPS sshd[17460]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.148 user=root Jul 3 04:56:44 MainVPS sshd[17460]: Failed password for root from 122.195.200.148 port 46456 ssh2 Jul 3 04:56:43 MainVPS sshd[17464]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.195.200.148 user=root Jul 3 04:56:46 MainVPS sshd[17464]: Failed password for root from 122.195.200.148 port 55525 ssh2 ...	2019-07-03 11:29:28
45.13.39.120	attackbots	Jul 3 02:45:29 heicom postfix/smtpd\[3771\]: warning: unknown\[45.13.39.120\]: SASL LOGIN authentication failed: authentication failure Jul 3 02:46:04 heicom postfix/smtpd\[3771\]: warning: unknown\[45.13.39.120\]: SASL LOGIN authentication failed: authentication failure Jul 3 02:46:39 heicom postfix/smtpd\[3771\]: warning: unknown\[45.13.39.120\]: SASL LOGIN authentication failed: authentication failure Jul 3 02:47:14 heicom postfix/smtpd\[3771\]: warning: unknown\[45.13.39.120\]: SASL LOGIN authentication failed: authentication failure Jul 3 02:47:49 heicom postfix/smtpd\[3771\]: warning: unknown\[45.13.39.120\]: SASL LOGIN authentication failed: authentication failure ...	2019-07-03 11:06:21
111.231.217.253	attackbotsspam	03.07.2019 01:46:50 SSH access blocked by firewall	2019-07-03 11:35:02
159.89.205.153	attackspam	Jul 1 17:29:28 xxxxxxx7446550 sshd[20815]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.205.153 user=r.r Jul 1 17:29:29 xxxxxxx7446550 sshd[20815]: Failed password for r.r from 159.89.205.153 port 52376 ssh2 Jul 1 17:29:29 xxxxxxx7446550 sshd[20817]: Received disconnect from 159.89.205.153: 11: Bye Bye Jul 1 17:29:31 xxxxxxx7446550 sshd[20823]: Invalid user admin from 159.89.205.153 Jul 1 17:29:31 xxxxxxx7446550 sshd[20823]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.205.153 Jul 1 17:29:33 xxxxxxx7446550 sshd[20823]: Failed password for invalid user admin from 159.89.205.153 port 55584 ssh2 Jul 1 17:29:33 xxxxxxx7446550 sshd[20824]: Received disconnect from 159.89.205.153: 11: Bye Bye Jul 1 17:29:35 xxxxxxx7446550 sshd[20827]: Invalid user admin from 159.89.205.153 Jul 1 17:29:35 xxxxxxx7446550 sshd[20827]: pam_unix(sshd:auth): authentication failure; logname........ -------------------------------	2019-07-03 11:19:38
150.255.85.56	attackbots	Jul 2 23:12:12 *** sshd[26666]: Did not receive identification string from 150.255.85.56	2019-07-03 11:11:52
87.98.171.226	attackspambots	Feb 24 12:42:19 motanud sshd\[15081\]: Invalid user teamspeak3-user from 87.98.171.226 port 51606 Feb 24 12:42:19 motanud sshd\[15081\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=87.98.171.226 Feb 24 12:42:21 motanud sshd\[15081\]: Failed password for invalid user teamspeak3-user from 87.98.171.226 port 51606 ssh2	2019-07-03 11:05:18
193.106.30.98	attackspam	Someone's cheating! /wp-content/themes/bloggingcream/404.php	2019-07-03 11:17:18
35.228.156.146	attackspam	Jul 2 15:20:10 Ubuntu-1404-trusty-64-minimal sshd\[400\]: Invalid user despacho from 35.228.156.146 Jul 2 15:20:10 Ubuntu-1404-trusty-64-minimal sshd\[400\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.228.156.146 Jul 2 15:20:12 Ubuntu-1404-trusty-64-minimal sshd\[400\]: Failed password for invalid user despacho from 35.228.156.146 port 54012 ssh2 Jul 3 04:53:25 Ubuntu-1404-trusty-64-minimal sshd\[9099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.228.156.146 user=root Jul 3 04:53:28 Ubuntu-1404-trusty-64-minimal sshd\[9099\]: Failed password for root from 35.228.156.146 port 59110 ssh2	2019-07-03 11:04:49
37.49.230.10	attackspambots	Jul 3 06:00:15 esset sshd\[7176\]: Invalid user ubnt from 37.49.230.10 port 37578 Jul 3 06:00:18 esset sshd\[7187\]: Invalid user cloudera from 37.49.230.10 port 39894	2019-07-03 12:12:09

Recently Reported IPs

41.66.9.195	35.187.201.189	192.99.253.153	82.237.215.53
94.127.205.243	54.240.3.6	27.105.249.85	185.40.13.72
206.189.143.219	185.40.13.53	94.191.66.227	172.68.144.129
188.225.58.60	222.218.102.248	192.144.219.221	120.35.12.153
103.215.210.146	2.93.151.32	89.67.190.213	177.106.114.161