45.148.10.72 - IPInfo

Basic Info

City: Amsterdam

Region: North Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 45.148.10.72 to port 10000	2020-05-07 03:39:03
attackbotsspam	" "	2020-03-06 21:52:31
attackbotsspam	Nov 9 17:05:45 host postfix/smtpd[65121]: warning: unknown[45.148.10.72]: SASL LOGIN authentication failed: authentication failure Nov 9 17:09:50 host postfix/smtpd[65121]: warning: unknown[45.148.10.72]: SASL LOGIN authentication failed: authentication failure ...	2019-11-10 07:56:16
attack	Connection by 45.148.10.72 on port: 25 got caught by honeypot at 10/23/2019 4:13:50 AM	2019-10-23 19:31:55
attack	Connection by 45.148.10.72 on port: 25 got caught by honeypot at 10/22/2019 7:00:26 PM	2019-10-23 03:11:36
attack	Rude login attack (70 tries in 1d)	2019-10-17 03:21:07

Comments on same subnet:

IP	Type	Details	Datetime
45.148.10.247	botsattack	45.148.10.247/Trojan Linux	2025-11-19 14:09:00
45.148.10.241	attack	DDoS Inbound	2023-11-15 18:54:04
45.148.10.28	attackspam	Oct 13 20:18:40 sshgateway sshd\[2360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root Oct 13 20:18:43 sshgateway sshd\[2360\]: Failed password for root from 45.148.10.28 port 40178 ssh2 Oct 13 20:19:07 sshgateway sshd\[2364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root	2020-10-14 02:28:44
45.148.10.15	attackspambots	Bruteforce detected by fail2ban	2020-10-13 21:25:53
45.148.10.186	attackspam	Unable to negotiate with 45.148.10.186 port 47964: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]	2020-10-13 21:24:21
45.148.10.28	attackbotsspam	SSH Server Abuse (45.148.10.28 as ): ...	2020-10-13 17:43:00
45.148.10.15	attackbotsspam	Oct 13 05:18:03 server2 sshd\[31409\]: Invalid user user from 45.148.10.15 Oct 13 05:18:48 server2 sshd\[31424\]: Invalid user server from 45.148.10.15 Oct 13 05:19:33 server2 sshd\[31465\]: Invalid user steam from 45.148.10.15 Oct 13 05:20:17 server2 sshd\[31678\]: Invalid user vmware from 45.148.10.15 Oct 13 05:21:00 server2 sshd\[31685\]: Invalid user microsoft from 45.148.10.15 Oct 13 05:21:44 server2 sshd\[31730\]: Invalid user cloud from 45.148.10.15	2020-10-13 12:52:46
45.148.10.186	attackspam	Oct 13 05:33:03 ns308116 sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:05 ns308116 sshd[11001]: Failed password for root from 45.148.10.186 port 41866 ssh2 Oct 13 05:33:38 ns308116 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:40 ns308116 sshd[11016]: Failed password for root from 45.148.10.186 port 39380 ssh2 Oct 13 05:34:15 ns308116 sshd[11027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root ...	2020-10-13 12:50:57
45.148.10.15	attack	Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: Invalid user user from 45.148.10.15 Oct 12 23:36:08 srv-ubuntu-dev3 sshd[31523]: Failed password for invalid user user from 45.148.10.15 port 40704 ssh2 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:40 srv-ubuntu-dev3 sshd[31590]: Failed password for invalid user 123Diego from 45.148.10.15 port 59760 ssh2 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: Invalid user Alphanetworks from 45.148.10.15 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-10-13 05:40:39
45.148.10.186	attack	Fail2Ban	2020-10-13 05:39:02
45.148.10.15	attackbotsspam	Fail2Ban	2020-10-12 05:52:51
45.148.10.65	attackbots	Invalid user ubuntu from 45.148.10.65 port 43138	2020-10-12 05:36:52
45.148.10.15	attack	Brute force attempt	2020-10-11 21:59:38
45.148.10.65	attackspam	Oct 01 10:49:15 host sshd[12378]: Invalid user ubuntu from 45.148.10.65 port 41060	2020-10-11 21:43:21
45.148.10.28	attack	Fail2Ban automatic report: SSH brute-force:	2020-10-11 21:05:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.10.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11029
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.148.10.72.			IN	A

;; AUTHORITY SECTION:
.			220	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101601 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 17 03:21:04 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 72.10.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 72.10.148.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
78.9.28.241	attack	2020-01-31T11:02:05.330958suse-nuc sshd[3568]: Invalid user uftp from 78.9.28.241 port 58982 ...	2020-02-18 07:09:27
79.112.59.252	attack	Automatic report - Port Scan Attack	2020-02-18 06:41:01
78.128.113.46	attackspambots	Feb 17 23:10:18 mail kernel: [804281.799663] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=78.128.113.46 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=5337 PROTO=TCP SPT=61000 DPT=3306 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 17 23:10:33 mail kernel: [804297.161734] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=78.128.113.46 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=22930 PROTO=TCP SPT=61000 DPT=1434 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 17 23:10:33 mail kernel: [804297.161734] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=78.128.113.46 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=22930 PROTO=TCP SPT=61000 DPT=1434 WINDOW=1024 RES=0x00 SYN URGP=0 Feb 17 23:10:51 mail kernel: [804314.724422] [UFW BLOCK] IN=eth0 OUT= MAC=00:16:3c:05:0d:89:f8:66:f2:68:66:ff:08:00 SRC=78.128.113.46 DST=77.73.69.240 LEN=40 TOS=0x00 PREC=0x00 TTL=246 ID=22807 PROTO=TCP SPT=61000 DPT=626 WINDOW=1024 RES=0x00 SYN URGP=0 Fe	2020-02-18 06:49:55
79.143.180.16	attackspam	2020-02-03T16:36:45.929387suse-nuc sshd[14600]: Invalid user sinusbot from 79.143.180.16 port 53644 ...	2020-02-18 06:43:35
78.47.122.177	attackspam	2019-12-13T19:19:11.215040suse-nuc sshd[10757]: Invalid user lucky from 78.47.122.177 port 41524 ...	2020-02-18 07:12:13
79.137.2.105	attackbots	2020-01-22T15:37:10.795766suse-nuc sshd[12388]: Invalid user renz from 79.137.2.105 port 57994 ...	2020-02-18 06:57:18
78.49.166.239	attackspam	2020-02-12T19:31:51.266084suse-nuc sshd[5661]: Invalid user ruperto from 78.49.166.239 port 56066 ...	2020-02-18 07:11:14
79.137.82.213	attackbots	2019-12-09T06:43:34.673801suse-nuc sshd[9089]: Invalid user server from 79.137.82.213 port 58534 ...	2020-02-18 06:49:40
84.91.128.47	attack	Invalid user tigger from 84.91.128.47 port 52856	2020-02-18 07:01:17
37.130.119.63	attackspam	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-18 07:07:10
218.149.106.172	attackspam	Feb 17 17:38:12 plusreed sshd[5853]: Invalid user james from 218.149.106.172 Feb 17 17:38:12 plusreed sshd[5853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.149.106.172 Feb 17 17:38:12 plusreed sshd[5853]: Invalid user james from 218.149.106.172 Feb 17 17:38:14 plusreed sshd[5853]: Failed password for invalid user james from 218.149.106.172 port 38726 ssh2 Feb 17 17:46:44 plusreed sshd[8143]: Invalid user testuser from 218.149.106.172 ...	2020-02-18 06:54:07
79.137.34.248	attack	2020-02-04T05:05:39.442308suse-nuc sshd[28037]: Invalid user admin from 79.137.34.248 port 44086 ...	2020-02-18 06:55:16
223.112.218.250	attack	Feb 17 23:10:34 v22018076590370373 sshd[3430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=223.112.218.250 ...	2020-02-18 07:13:31
79.137.72.98	attack	2020-02-03T11:08:31.902570suse-nuc sshd[30847]: Invalid user exploit from 79.137.72.98 port 43328 ...	2020-02-18 06:52:17
192.230.134.52	attack	Feb 17 22:37:53 host3 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=192.230.134.52, lip=207.180.241.50, session= Feb 17 22:45:15 host3 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=192.230.134.52, lip=207.180.241.50, session=<5ypaeMye6J7A5oY0> Feb 17 22:55:38 host3 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=192.230.134.52, lip=207.180.241.50, session=<0dZ9ncyeobPA5oY0> Feb 17 23:10:05 host3 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=192.230.134.52, lip=207.180.241.50, session= Feb 17 23:10:56 host3 dovecot: imap-login: Disconnected (auth failed, 1 attempts in 2 secs): user=, method=PLAIN, rip=192.230.134.52, lip=207.180.241.50, session=	2020-02-18 06:42:22

Recently Reported IPs

134.209.251.180	47.19.177.243	91.126.87.130	94.182.147.2
98.252.1.61	89.135.167.49	191.214.42.184	118.175.4.22
163.191.37.3	61.147.247.5	173.175.125.74	12.13.87.122
118.119.27.152	62.85.232.148	150.185.128.49	75.23.22.128
177.28.105.239	180.158.245.198	83.51.140.97	84.208.241.55