Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: Amsterdam

Region: North Holland

Country: Netherlands

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
45.9.148.29 attackbots
Fail2Ban Ban Triggered
2020-09-09 20:28:52
45.9.148.29 attack
Fail2Ban Ban Triggered
2020-09-09 14:26:03
45.9.148.29 attackbots
Fail2Ban Ban Triggered
2020-09-09 06:37:37
45.9.148.82 attackspam
Probable attack : HTTPS hit by IP; not hostname
2020-08-05 05:13:44
45.9.148.125 attack
2020-07-23 15:43:19
45.9.148.194 attack
/adminer/adminer.php
2020-07-08 02:48:46
45.9.148.91 attack
sca
2020-07-05 19:44:20
45.9.148.194 attackbotsspam
404 NOT FOUND
2020-07-04 16:33:20
45.9.148.91 attackspambots
Unauthorized connection attempt detected from IP address 45.9.148.91 to port 53
2020-06-24 12:48:06
45.9.148.213 attackbots
schuetzenmusikanten.de 45.9.148.213 [20/Jun/2020:14:18:46 +0200] "POST /xmlrpc.php HTTP/1.0" 301 511 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko"
schuetzenmusikanten.de 45.9.148.213 [20/Jun/2020:14:18:48 +0200] "POST /xmlrpc.php HTTP/1.0" 200 3595 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64; Trident/7.0; rv:11.0) like Gecko"
2020-06-20 22:24:58
45.9.148.91 attackspambots
IP: 45.9.148.91
Ports affected
    HTTP protocol over TLS/SSL (443) 
Abuse Confidence rating 100%
Found in DNSBL('s)
ASN Details
   AS49447 Nice IT Services Group Inc.
   Netherlands (NL)
   CIDR 45.9.148.0/23
Log Date: 10/06/2020 8:12:49 AM UTC
2020-06-10 16:38:20
45.9.148.215 attackspambots
xmlrpc attack
2020-06-05 21:27:32
45.9.148.220 attackbotsspam
(mod_security) mod_security (id:210492) triggered by 45.9.148.220 (NL/Netherlands/-): 5 in the last 3600 secs
2020-05-31 07:52:05
45.9.148.131 attack
SSH login attempts.
2020-05-28 14:52:20
45.9.148.213 attackbots
Tor exit node
2020-05-28 02:35:30
Whois info:
b
Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.9.148.154
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44904
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.9.148.154.			IN	A

;; AUTHORITY SECTION:
.			217	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020111600 1800 900 604800 86400

;; Query time: 78 msec
;; SERVER: 183.60.82.98#53(183.60.82.98)
;; WHEN: Tue Nov 17 00:15:46 CST 2020
;; MSG SIZE  rcvd: 116

Host info
Host 154.148.9.45.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 154.148.9.45.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
47.100.112.214 attackspambots
47.100.112.214 - - [14/May/2020:18:22:36 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
47.100.112.214 - - [14/May/2020:18:23:03 +0200] "POST /wp-login.php HTTP/1.1" 200 1811 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
47.100.112.214 - - [14/May/2020:18:23:05 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
47.100.112.214 - - [14/May/2020:18:23:35 +0200] "POST /wp-login.php HTTP/1.1" 200 1799 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
47.100.112.214 - - [14/May/2020:18:23:36 +0200] "GET /wp-login.php HTTP/1.1" 200 1689 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
47.100.112.214 - - [14/May/2020:18:23:43 +0200] "POST /wp-login.php HTTP/1.1" 200 1798 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/201001
...
2020-05-15 02:18:31
35.199.82.233 attackbotsspam
May 14 20:00:55 abendstille sshd\[6127\]: Invalid user kristine from 35.199.82.233
May 14 20:00:55 abendstille sshd\[6127\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.82.233
May 14 20:00:57 abendstille sshd\[6127\]: Failed password for invalid user kristine from 35.199.82.233 port 59240 ssh2
May 14 20:05:10 abendstille sshd\[10860\]: Invalid user user from 35.199.82.233
May 14 20:05:10 abendstille sshd\[10860\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.199.82.233
...
2020-05-15 02:14:41
218.92.0.138 attack
May 14 21:13:25 ift sshd\[60654\]: Failed password for root from 218.92.0.138 port 57233 ssh2May 14 21:13:49 ift sshd\[60728\]: Failed password for root from 218.92.0.138 port 27427 ssh2May 14 21:13:52 ift sshd\[60728\]: Failed password for root from 218.92.0.138 port 27427 ssh2May 14 21:13:56 ift sshd\[60728\]: Failed password for root from 218.92.0.138 port 27427 ssh2May 14 21:13:59 ift sshd\[60728\]: Failed password for root from 218.92.0.138 port 27427 ssh2
...
2020-05-15 02:21:19
68.183.193.46 attack
May 14 17:07:02 plex sshd[9970]: Invalid user mario from 68.183.193.46 port 40944
2020-05-15 02:24:29
140.143.16.158 attackspambots
$f2bV_matches
2020-05-15 02:07:39
49.234.70.67 attack
May 14 14:51:34 server sshd[16023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.234.70.67
May 14 14:51:35 server sshd[16023]: Failed password for invalid user git from 49.234.70.67 port 49130 ssh2
May 14 14:55:41 server sshd[16392]: Failed password for root from 49.234.70.67 port 37434 ssh2
...
2020-05-15 02:12:46
129.150.66.38 attackbotsspam
Lines containing failures of 129.150.66.38
May 14 00:25:42 shared05 sshd[10584]: Connection closed by 129.150.66.38 port 3593 [preauth]
May 14 01:11:50 shared05 sshd[27519]: Connection closed by 129.150.66.38 port 3593 [preauth]
May 14 01:58:05 shared05 sshd[12023]: Connection closed by 129.150.66.38 port 3593 [preauth]
May 14 02:44:19 shared05 sshd[28870]: Connection closed by 129.150.66.38 port 3593 [preauth]
May 14 03:30:42 shared05 sshd[14381]: Connection closed by 129.150.66.38 port 3593 [preauth]
May 14 04:17:01 shared05 sshd[31424]: Connection closed by 129.150.66.38 port 3593 [preauth]
May 14 05:03:27 shared05 sshd[16862]: Connection closed by 129.150.66.38 port 3593 [preauth]
May 14 05:49:21 shared05 sshd[2448]: Connection closed by 129.150.66.38 port 3593 [preauth]
May 14 06:35:18 shared05 sshd[21159]: Connection closed by 129.150.66.38 port 3593 [preauth]
May 14 07:21:24 shared05 sshd[4278]: Connection closed by 129.150.66.38 port 3593 [preauth]
May 14 08:07:3........
------------------------------
2020-05-15 02:08:05
124.225.69.95 attackbotsspam
May 14 12:37:38 game-panel sshd[14217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.225.69.95
May 14 12:37:40 game-panel sshd[14217]: Failed password for invalid user mcguitaruser from 124.225.69.95 port 49792 ssh2
May 14 12:41:07 game-panel sshd[14398]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.225.69.95
2020-05-15 01:52:59
145.239.156.84 attack
2020-05-14T13:35:54.8605581495-001 sshd[29305]: Invalid user bonaka from 145.239.156.84 port 48878
2020-05-14T13:35:57.4195021495-001 sshd[29305]: Failed password for invalid user bonaka from 145.239.156.84 port 48878 ssh2
2020-05-14T13:39:37.6431011495-001 sshd[29463]: Invalid user developer from 145.239.156.84 port 57100
2020-05-14T13:39:37.6472971495-001 sshd[29463]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=b29.bexter-network.net
2020-05-14T13:39:37.6431011495-001 sshd[29463]: Invalid user developer from 145.239.156.84 port 57100
2020-05-14T13:39:39.9239651495-001 sshd[29463]: Failed password for invalid user developer from 145.239.156.84 port 57100 ssh2
...
2020-05-15 02:19:49
134.119.221.30 attackspam
Dovecot Invalid User Login Attempt.
2020-05-15 02:05:07
182.61.21.155 attackspam
May 14 16:24:41 pkdns2 sshd\[27441\]: Invalid user deploy from 182.61.21.155May 14 16:24:44 pkdns2 sshd\[27441\]: Failed password for invalid user deploy from 182.61.21.155 port 54544 ssh2May 14 16:26:36 pkdns2 sshd\[27576\]: Invalid user itbs from 182.61.21.155May 14 16:26:38 pkdns2 sshd\[27576\]: Failed password for invalid user itbs from 182.61.21.155 port 49114 ssh2May 14 16:28:42 pkdns2 sshd\[27666\]: Invalid user test from 182.61.21.155May 14 16:28:45 pkdns2 sshd\[27666\]: Failed password for invalid user test from 182.61.21.155 port 43684 ssh2
...
2020-05-15 02:00:48
218.81.245.185 attackspambots
May 14 15:05:16 server3 sshd[22850]: Did not receive identification string from 218.81.245.185
May 14 15:05:22 server3 sshd[22851]: Invalid user 666666 from 218.81.245.185
May 14 15:05:23 server3 sshd[22851]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.81.245.185
May 14 15:05:26 server3 sshd[22851]: Failed password for invalid user 666666 from 218.81.245.185 port 64112 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=218.81.245.185
2020-05-15 02:28:06
183.88.172.46 attack
Lines containing failures of 183.88.172.46
May 14 14:05:18 shared05 sshd[27732]: Did not receive identification string from 183.88.172.46 port 31216
May 14 14:05:21 shared05 sshd[27758]: Invalid user support from 183.88.172.46 port 14628
May 14 14:05:21 shared05 sshd[27758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.88.172.46
May 14 14:05:23 shared05 sshd[27758]: Failed password for invalid user support from 183.88.172.46 port 14628 ssh2
May 14 14:05:23 shared05 sshd[27758]: Connection closed by invalid user support 183.88.172.46 port 14628 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=183.88.172.46
2020-05-15 02:26:00
122.243.223.208 attackbotsspam
Icarus honeypot on github
2020-05-15 02:12:17
75.164.171.249 attackbotsspam
May 14 13:04:55 mailserver sshd[881]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.164.171.249  user=r.r
May 14 13:04:57 mailserver sshd[881]: Failed password for r.r from 75.164.171.249 port 39686 ssh2
May 14 13:04:57 mailserver sshd[881]: Received disconnect from 75.164.171.249 port 39686:11: Bye Bye [preauth]
May 14 13:04:57 mailserver sshd[881]: Disconnected from 75.164.171.249 port 39686 [preauth]
May 14 13:11:02 mailserver sshd[1809]: Invalid user admin from 75.164.171.249
May 14 13:11:02 mailserver sshd[1809]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.164.171.249
May 14 13:11:04 mailserver sshd[1809]: Failed password for invalid user admin from 75.164.171.249 port 52056 ssh2
May 14 13:11:04 mailserver sshd[1809]: Received disconnect from 75.164.171.249 port 52056:11: Bye Bye [preauth]
May 14 13:11:04 mailserver sshd[1809]: Disconnected from 75.164.171.249 port 52056 [pr........
-------------------------------
2020-05-15 02:13:51

Recently Reported IPs

87.233.185.153 14.248.75.180 94.177.132.2 178.214.245.58
185.152.65.233 41.160.113.205 213.108.134.180 210.212.240.238
103.140.16.81 111.90.105.86 36.76.91.118 52.221.47.76
13.66.139.144 78.99.213.162 62.168.48.25 212.32.237.101
38.142.79.193 149.167.137.246 175.176.40.229 174.253.161.230