45.148.10.72 - IPInfo

Basic Info

City: Amsterdam

Region: North Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 45.148.10.72 to port 10000	2020-05-07 03:39:03
attackbotsspam	" "	2020-03-06 21:52:31
attackbotsspam	Nov 9 17:05:45 host postfix/smtpd[65121]: warning: unknown[45.148.10.72]: SASL LOGIN authentication failed: authentication failure Nov 9 17:09:50 host postfix/smtpd[65121]: warning: unknown[45.148.10.72]: SASL LOGIN authentication failed: authentication failure ...	2019-11-10 07:56:16
attack	Connection by 45.148.10.72 on port: 25 got caught by honeypot at 10/23/2019 4:13:50 AM	2019-10-23 19:31:55
attack	Connection by 45.148.10.72 on port: 25 got caught by honeypot at 10/22/2019 7:00:26 PM	2019-10-23 03:11:36
attack	Rude login attack (70 tries in 1d)	2019-10-17 03:21:07

Comments on same subnet:

IP	Type	Details	Datetime
45.148.10.241	attack	DDoS Inbound	2023-11-15 18:54:04
45.148.10.28	attackspam	Oct 13 20:18:40 sshgateway sshd\[2360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root Oct 13 20:18:43 sshgateway sshd\[2360\]: Failed password for root from 45.148.10.28 port 40178 ssh2 Oct 13 20:19:07 sshgateway sshd\[2364\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root	2020-10-14 02:28:44
45.148.10.15	attackspambots	Bruteforce detected by fail2ban	2020-10-13 21:25:53
45.148.10.186	attackspam	Unable to negotiate with 45.148.10.186 port 47964: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]	2020-10-13 21:24:21
45.148.10.28	attackbotsspam	SSH Server Abuse (45.148.10.28 as ): ...	2020-10-13 17:43:00
45.148.10.15	attackbotsspam	Oct 13 05:18:03 server2 sshd\[31409\]: Invalid user user from 45.148.10.15 Oct 13 05:18:48 server2 sshd\[31424\]: Invalid user server from 45.148.10.15 Oct 13 05:19:33 server2 sshd\[31465\]: Invalid user steam from 45.148.10.15 Oct 13 05:20:17 server2 sshd\[31678\]: Invalid user vmware from 45.148.10.15 Oct 13 05:21:00 server2 sshd\[31685\]: Invalid user microsoft from 45.148.10.15 Oct 13 05:21:44 server2 sshd\[31730\]: Invalid user cloud from 45.148.10.15	2020-10-13 12:52:46
45.148.10.186	attackspam	Oct 13 05:33:03 ns308116 sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:05 ns308116 sshd[11001]: Failed password for root from 45.148.10.186 port 41866 ssh2 Oct 13 05:33:38 ns308116 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:40 ns308116 sshd[11016]: Failed password for root from 45.148.10.186 port 39380 ssh2 Oct 13 05:34:15 ns308116 sshd[11027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root ...	2020-10-13 12:50:57
45.148.10.15	attack	Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: Invalid user user from 45.148.10.15 Oct 12 23:36:08 srv-ubuntu-dev3 sshd[31523]: Failed password for invalid user user from 45.148.10.15 port 40704 ssh2 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:40 srv-ubuntu-dev3 sshd[31590]: Failed password for invalid user 123Diego from 45.148.10.15 port 59760 ssh2 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: Invalid user Alphanetworks from 45.148.10.15 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-10-13 05:40:39
45.148.10.186	attack	Fail2Ban	2020-10-13 05:39:02
45.148.10.15	attackbotsspam	Fail2Ban	2020-10-12 05:52:51
45.148.10.65	attackbots	Invalid user ubuntu from 45.148.10.65 port 43138	2020-10-12 05:36:52
45.148.10.15	attack	Brute force attempt	2020-10-11 21:59:38
45.148.10.65	attackspam	Oct 01 10:49:15 host sshd[12378]: Invalid user ubuntu from 45.148.10.65 port 41060	2020-10-11 21:43:21
45.148.10.28	attack	Fail2Ban automatic report: SSH brute-force:	2020-10-11 21:05:28
45.148.10.15	attackspam	Cowrie Honeypot: 10 unauthorised SSH/Telnet login attempts between 2020-10-11T05:41:40Z and 2020-10-11T05:47:54Z	2020-10-11 13:57:38

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.10.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11029
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.148.10.72.			IN	A

;; AUTHORITY SECTION:
.			220	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101601 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 17 03:21:04 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 72.10.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 72.10.148.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
120.31.201.11	attack	Repeated RDP login failures. Last user: Mike	2020-07-24 06:07:10
222.186.169.192	attack	2020-07-23T23:58:49.862551vps773228.ovh.net sshd[19951]: Failed password for root from 222.186.169.192 port 20456 ssh2 2020-07-23T23:58:53.588606vps773228.ovh.net sshd[19951]: Failed password for root from 222.186.169.192 port 20456 ssh2 2020-07-23T23:58:57.394398vps773228.ovh.net sshd[19951]: Failed password for root from 222.186.169.192 port 20456 ssh2 2020-07-23T23:59:00.081926vps773228.ovh.net sshd[19951]: Failed password for root from 222.186.169.192 port 20456 ssh2 2020-07-23T23:59:02.512089vps773228.ovh.net sshd[19951]: Failed password for root from 222.186.169.192 port 20456 ssh2 ...	2020-07-24 06:15:19
1.20.100.111	attackspambots	Dovecot Invalid User Login Attempt.	2020-07-24 06:06:29
107.170.249.6	attackspam	IP blocked	2020-07-24 06:10:32
164.132.225.151	attackspam	Invalid user jjq from 164.132.225.151 port 48230	2020-07-24 06:24:13
103.99.207.165	attackbots	Repeated RDP login failures. Last user: Marta	2020-07-24 06:01:46
114.237.18.201	attackbotsspam	Port scan on 1 port(s): 139	2020-07-24 06:24:46
185.202.175.54	attackbotsspam	Jul 23 22:19:22 vps sshd[782]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=185.202.175.54 Jul 23 22:19:24 vps sshd[782]: Failed password for invalid user ubnt from 185.202.175.54 port 54100 ssh2 Jul 23 22:19:25 vps sshd[782]: error: Received disconnect from 185.202.175.54 port 54100:3: com.jcraft.jsch.JSchException: Auth fail [preauth] ...	2020-07-24 06:19:43
151.253.125.137	attackbotsspam	Jul 23 18:00:47 NPSTNNYC01T sshd[21328]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.253.125.137 Jul 23 18:00:49 NPSTNNYC01T sshd[21328]: Failed password for invalid user user2 from 151.253.125.137 port 58350 ssh2 Jul 23 18:05:09 NPSTNNYC01T sshd[21678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.253.125.137 ...	2020-07-24 06:08:43
111.204.16.35	attackbots	Fail2Ban Ban Triggered	2020-07-24 06:09:07
46.101.103.207	attackbotsspam	Invalid user ulo from 46.101.103.207 port 41770	2020-07-24 06:12:57
222.186.15.18	attackbots	Jul 24 00:13:45 OPSO sshd\[20030\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root Jul 24 00:13:47 OPSO sshd\[20030\]: Failed password for root from 222.186.15.18 port 24234 ssh2 Jul 24 00:13:49 OPSO sshd\[20030\]: Failed password for root from 222.186.15.18 port 24234 ssh2 Jul 24 00:13:51 OPSO sshd\[20030\]: Failed password for root from 222.186.15.18 port 24234 ssh2 Jul 24 00:14:53 OPSO sshd\[20252\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.18 user=root	2020-07-24 06:21:49
222.186.42.7	attack	Jul 24 00:13:19 abendstille sshd\[15494\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Jul 24 00:13:21 abendstille sshd\[15494\]: Failed password for root from 222.186.42.7 port 43483 ssh2 Jul 24 00:13:26 abendstille sshd\[15525\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.7 user=root Jul 24 00:13:29 abendstille sshd\[15525\]: Failed password for root from 222.186.42.7 port 13431 ssh2 Jul 24 00:13:31 abendstille sshd\[15525\]: Failed password for root from 222.186.42.7 port 13431 ssh2 ...	2020-07-24 06:14:31
102.130.118.83	attackbotsspam	Repeated RDP login failures. Last user: T1	2020-07-24 06:02:16
49.234.120.148	attackspambots	Repeated RDP login failures. Last user: Ftp	2020-07-24 06:05:32

Recently Reported IPs

134.209.251.180	47.19.177.243	91.126.87.130	94.182.147.2
98.252.1.61	89.135.167.49	191.214.42.184	118.175.4.22
163.191.37.3	61.147.247.5	173.175.125.74	12.13.87.122
118.119.27.152	62.85.232.148	150.185.128.49	75.23.22.128
177.28.105.239	180.158.245.198	83.51.140.97	84.208.241.55