45.148.10.72 - IPInfo

Basic Info

City: Amsterdam

Region: North Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt detected from IP address 45.148.10.72 to port 10000	2020-05-07 03:39:03
attackbotsspam	" "	2020-03-06 21:52:31
attackbotsspam	Nov 9 17:05:45 host postfix/smtpd[65121]: warning: unknown[45.148.10.72]: SASL LOGIN authentication failed: authentication failure Nov 9 17:09:50 host postfix/smtpd[65121]: warning: unknown[45.148.10.72]: SASL LOGIN authentication failed: authentication failure ...	2019-11-10 07:56:16
attack	Connection by 45.148.10.72 on port: 25 got caught by honeypot at 10/23/2019 4:13:50 AM	2019-10-23 19:31:55
attack	Connection by 45.148.10.72 on port: 25 got caught by honeypot at 10/22/2019 7:00:26 PM	2019-10-23 03:11:36
attack	Rude login attack (70 tries in 1d)	2019-10-17 03:21:07

Comments on same subnet:

IP	Type	Details	Datetime
45.148.10.247	botsattack	45.148.10.247/Trojan Linux	2025-11-19 14:09:00
45.148.10.241	attack	DDoS Inbound	2023-11-15 18:54:04
45.148.10.28	attackspam	Oct 13 20:18:40 sshgateway sshd\[2360\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root Oct 13 20:18:43 sshgateway sshd\[2360\]: Failed password for root from 45.148.10.28 port 40178 ssh2 Oct 13 20:19:07 sshgateway sshd\[2364\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.28 user=root	2020-10-14 02:28:44
45.148.10.15	attackspambots	Bruteforce detected by fail2ban	2020-10-13 21:25:53
45.148.10.186	attackspam	Unable to negotiate with 45.148.10.186 port 47964: no matching key exchange method found. Their offer: diffie-hellman-group14-sha1,diffie-hellman-group-exchange-sha1,diffie-hellman-group1-sha1 [preauth]	2020-10-13 21:24:21
45.148.10.28	attackbotsspam	SSH Server Abuse (45.148.10.28 as ): ...	2020-10-13 17:43:00
45.148.10.15	attackbotsspam	Oct 13 05:18:03 server2 sshd\[31409\]: Invalid user user from 45.148.10.15 Oct 13 05:18:48 server2 sshd\[31424\]: Invalid user server from 45.148.10.15 Oct 13 05:19:33 server2 sshd\[31465\]: Invalid user steam from 45.148.10.15 Oct 13 05:20:17 server2 sshd\[31678\]: Invalid user vmware from 45.148.10.15 Oct 13 05:21:00 server2 sshd\[31685\]: Invalid user microsoft from 45.148.10.15 Oct 13 05:21:44 server2 sshd\[31730\]: Invalid user cloud from 45.148.10.15	2020-10-13 12:52:46
45.148.10.186	attackspam	Oct 13 05:33:03 ns308116 sshd[11001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:05 ns308116 sshd[11001]: Failed password for root from 45.148.10.186 port 41866 ssh2 Oct 13 05:33:38 ns308116 sshd[11016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root Oct 13 05:33:40 ns308116 sshd[11016]: Failed password for root from 45.148.10.186 port 39380 ssh2 Oct 13 05:34:15 ns308116 sshd[11027]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.186 user=root ...	2020-10-13 12:50:57
45.148.10.15	attack	Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:06 srv-ubuntu-dev3 sshd[31523]: Invalid user user from 45.148.10.15 Oct 12 23:36:08 srv-ubuntu-dev3 sshd[31523]: Failed password for invalid user user from 45.148.10.15 port 40704 ssh2 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.148.10.15 Oct 12 23:36:38 srv-ubuntu-dev3 sshd[31590]: Invalid user 123Diego from 45.148.10.15 Oct 12 23:36:40 srv-ubuntu-dev3 sshd[31590]: Failed password for invalid user 123Diego from 45.148.10.15 port 59760 ssh2 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: Invalid user Alphanetworks from 45.148.10.15 Oct 12 23:37:17 srv-ubuntu-dev3 sshd[31656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rh ...	2020-10-13 05:40:39
45.148.10.186	attack	Fail2Ban	2020-10-13 05:39:02
45.148.10.15	attackbotsspam	Fail2Ban	2020-10-12 05:52:51
45.148.10.65	attackbots	Invalid user ubuntu from 45.148.10.65 port 43138	2020-10-12 05:36:52
45.148.10.15	attack	Brute force attempt	2020-10-11 21:59:38
45.148.10.65	attackspam	Oct 01 10:49:15 host sshd[12378]: Invalid user ubuntu from 45.148.10.65 port 41060	2020-10-11 21:43:21
45.148.10.28	attack	Fail2Ban automatic report: SSH brute-force:	2020-10-11 21:05:28

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.148.10.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11029
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.148.10.72.			IN	A

;; AUTHORITY SECTION:
.			220	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101601 1800 900 604800 86400

;; Query time: 116 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 17 03:21:04 CST 2019
;; MSG SIZE  rcvd: 116

Host info

Host 72.10.148.45.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 72.10.148.45.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
46.146.136.8	attack	Oct 9 01:44:22 dhoomketu sshd[3674441]: Failed password for root from 46.146.136.8 port 41604 ssh2 Oct 9 01:45:34 dhoomketu sshd[3674493]: Invalid user support1 from 46.146.136.8 port 59774 Oct 9 01:45:34 dhoomketu sshd[3674493]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.146.136.8 Oct 9 01:45:34 dhoomketu sshd[3674493]: Invalid user support1 from 46.146.136.8 port 59774 Oct 9 01:45:36 dhoomketu sshd[3674493]: Failed password for invalid user support1 from 46.146.136.8 port 59774 ssh2 ...	2020-10-09 04:42:40
211.22.154.223	attack	$f2bV_matches	2020-10-09 05:04:25
1.234.13.176	attackbots	Oct 8 17:34:59 ns382633 sshd\[2082\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.234.13.176 user=root Oct 8 17:35:01 ns382633 sshd\[2082\]: Failed password for root from 1.234.13.176 port 38126 ssh2 Oct 8 17:37:29 ns382633 sshd\[2285\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.234.13.176 user=root Oct 8 17:37:31 ns382633 sshd\[2285\]: Failed password for root from 1.234.13.176 port 42016 ssh2 Oct 8 17:39:01 ns382633 sshd\[2404\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.234.13.176 user=root	2020-10-09 05:13:20
51.68.172.217	attackspambots	$f2bV_matches	2020-10-09 05:11:38
60.167.177.172	attackspambots	Oct 7 16:34:22 lanister sshd[21890]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.177.172 user=root Oct 7 16:34:24 lanister sshd[21890]: Failed password for root from 60.167.177.172 port 36250 ssh2 Oct 7 16:46:32 lanister sshd[22095]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.167.177.172 user=root Oct 7 16:46:35 lanister sshd[22095]: Failed password for root from 60.167.177.172 port 42776 ssh2	2020-10-09 05:11:26
218.92.0.145	attackbots	Oct 8 22:24:24 nextcloud sshd\[14978\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.145 user=root Oct 8 22:24:26 nextcloud sshd\[14978\]: Failed password for root from 218.92.0.145 port 23376 ssh2 Oct 8 22:24:37 nextcloud sshd\[14978\]: Failed password for root from 218.92.0.145 port 23376 ssh2	2020-10-09 04:33:59
203.195.130.233	attackspam	Oct 8 20:43:18 marvibiene sshd[8446]: Failed password for root from 203.195.130.233 port 50518 ssh2	2020-10-09 04:47:57
154.202.5.175	attackspambots	2020-10-08T20:19:51.188126abusebot-5.cloudsearch.cf sshd[31816]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.202.5.175 user=root 2020-10-08T20:19:52.817025abusebot-5.cloudsearch.cf sshd[31816]: Failed password for root from 154.202.5.175 port 51834 ssh2 2020-10-08T20:22:34.993118abusebot-5.cloudsearch.cf sshd[31866]: Invalid user sunos from 154.202.5.175 port 46430 2020-10-08T20:22:35.002343abusebot-5.cloudsearch.cf sshd[31866]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.202.5.175 2020-10-08T20:22:34.993118abusebot-5.cloudsearch.cf sshd[31866]: Invalid user sunos from 154.202.5.175 port 46430 2020-10-08T20:22:37.147410abusebot-5.cloudsearch.cf sshd[31866]: Failed password for invalid user sunos from 154.202.5.175 port 46430 ssh2 2020-10-08T20:25:18.487160abusebot-5.cloudsearch.cf sshd[31871]: Invalid user admin from 154.202.5.175 port 41014 ...	2020-10-09 05:09:13
122.51.248.76	attack	Oct 8 20:58:40 sshgateway sshd\[19045\]: Invalid user ian from 122.51.248.76 Oct 8 20:58:40 sshgateway sshd\[19045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.248.76 Oct 8 20:58:42 sshgateway sshd\[19045\]: Failed password for invalid user ian from 122.51.248.76 port 34718 ssh2	2020-10-09 05:01:46
106.12.71.159	attackspam	Oct 8 20:06:24 host1 sshd[1594409]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.71.159 user=root Oct 8 20:06:26 host1 sshd[1594409]: Failed password for root from 106.12.71.159 port 56632 ssh2 ...	2020-10-09 04:58:23
113.161.69.158	attackbots	SSH login attempts.	2020-10-09 04:40:12
37.120.198.197	attackbots	2020-10-07 23:07:11 dovecot_login authenticator failed for $WIN-25FFVSIPLS1$ \[37.120.198.197\]: 535 Incorrect authentication data $set_id=infoeozo$ 2020-10-07 23:07:11 H=$WIN-25FFVSIPLS1$ \[37.120.198.197\] sender verify fail for \: Unrouteable address 2020-10-07 23:07:11 H=$WIN-25FFVSIPLS1$ \[37.120.198.197\] F=\ rejected RCPT \: Sender verify failed 2020-10-07 23:07:23 dovecot_login authenticator failed for $WIN-25FFVSIPLS1$ \[37.120.198.197\]: 535 Incorrect authentication data $set_id=info$ 2020-10-07 23:07:23 H=$WIN-25FFVSIPLS1$ \[37.120.198.197\] F=\ rejected RCPT \: relay not permitted	2020-10-09 05:07:32
119.4.240.104	attackbotsspam	2020-10-08T08:46:56.573617billing sshd[17586]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.4.240.104 user=root 2020-10-08T08:46:58.159938billing sshd[17586]: Failed password for root from 119.4.240.104 port 36310 ssh2 2020-10-08T08:47:36.102695billing sshd[19042]: Invalid user nagios from 119.4.240.104 port 40454 ...	2020-10-09 04:45:52
122.194.229.59	attack	Oct 8 23:05:47 OPSO sshd\[26086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.194.229.59 user=root Oct 8 23:05:49 OPSO sshd\[26086\]: Failed password for root from 122.194.229.59 port 59708 ssh2 Oct 8 23:05:53 OPSO sshd\[26086\]: Failed password for root from 122.194.229.59 port 59708 ssh2 Oct 8 23:05:57 OPSO sshd\[26086\]: Failed password for root from 122.194.229.59 port 59708 ssh2 Oct 8 23:06:00 OPSO sshd\[26086\]: Failed password for root from 122.194.229.59 port 59708 ssh2	2020-10-09 05:15:21
34.126.118.178	attackbotsspam	2020-10-08T20:48:31.499462shield sshd\[11823\]: Invalid user ftpuser1 from 34.126.118.178 port 1060 2020-10-08T20:48:31.510174shield sshd\[11823\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.118.126.34.bc.googleusercontent.com 2020-10-08T20:48:33.272636shield sshd\[11823\]: Failed password for invalid user ftpuser1 from 34.126.118.178 port 1060 ssh2 2020-10-08T20:52:32.082832shield sshd\[12407\]: Invalid user chris from 34.126.118.178 port 1071 2020-10-08T20:52:32.090016shield sshd\[12407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.118.126.34.bc.googleusercontent.com	2020-10-09 04:54:08

Recently Reported IPs

134.209.251.180	47.19.177.243	91.126.87.130	94.182.147.2
98.252.1.61	89.135.167.49	191.214.42.184	118.175.4.22
163.191.37.3	61.147.247.5	173.175.125.74	12.13.87.122
118.119.27.152	62.85.232.148	150.185.128.49	75.23.22.128
177.28.105.239	180.158.245.198	83.51.140.97	84.208.241.55