JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 161.248.189.72

161.248.189.72 was found in our database!

This IP was reported 10,935 times. Confidence of Abuse is 100%: ?

100%

ISP	Ummah Host BD
Usage Type	Data Center/Web Hosting/Transit
ASN	AS153523
Domain Name	ummahhostbd.com
Country	🇧🇩 Bangladesh
City	Dhaka, Dhaka Division

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 161.248.189.72

Whois 161.248.189.72

IP Abuse Reports for 161.248.189.72:

This IP address has been reported a total of 10,935 times from 1,473 distinct sources. 161.248.189.72 was first reported on January 13th 2026, and the most recent report was 23 minutes ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇩🇪 LoNET	2026-06-04 17:09:17 (23 minutes ago)	Report 2431416 with IP 3091755 for SSH brute-force attack by source 3448912 via ssh-honeypot/0.2.0+h ... show more Report 2431416 with IP 3091755 for SSH brute-force attack by source 3448912 via ssh-honeypot/0.2.0+http show less	Brute-Force SSH
🇬🇧 Steve	2026-06-04 17:01:55 (31 minutes ago)	SSH invalid-user multiple login attempts	SSH Brute-Force
🇫🇷 Kaas	2026-06-04 16:20:13 (1 hour ago)	Automatic ban by Fail2Ban	Brute-Force SSH
🇩🇪 lespbaj	2026-06-04 16:18:58 (1 hour ago)	2026-06-04T16:07:37.665986+00:00 ginemed-prod sshd[3770380]: Invalid user mk from 161.248.189.72 por ... show more 2026-06-04T16:07:37.665986+00:00 ginemed-prod sshd[3770380]: Invalid user mk from 161.248.189.72 port 39948 2026-06-04T16:16:35.158459+00:00 ginemed-prod sshd[3770756]: Invalid user jackson from 161.248.189.72 port 40234 2026-06-04T16:18:57.688391+00:00 ginemed-prod sshd[3770827]: Invalid user idf from 161.248.189.72 port 40380 ... show less	Brute-Force SSH
🇺🇸 yzfdude1	2026-06-04 14:50:31 (2 hours ago)	Jun 4 08:50:28 b146-64 sshd[433214]: Invalid user ubuntu from 161.248.189.72 port 46580 Jun 4 08:5 ... show more Jun 4 08:50:28 b146-64 sshd[433214]: Invalid user ubuntu from 161.248.189.72 port 46580 Jun 4 08:50:28 b146-64 sshd[433214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.248.189.72 Jun 4 08:50:31 b146-64 sshd[433214]: Failed password for invalid user ubuntu from 161.248.189.72 port 46580 ssh2 ... show less	Brute-Force SSH
🇩🇪 dsp	2026-06-04 14:38:40 (2 hours ago)	SSH tarpit (endlessh): 2026-06-04T14:38:40.408Z ACCEPT host=161.248.189.72 port=52656 fd=5 n=2/4096	Brute-Force SSH
🇩🇪 kowal	2026-06-04 14:03:00 (3 hours ago)	Jun 4 13:58:38 n8n sshd[1044295]: Invalid user vinicius from 161.248.189.72 port 41108 Jun 4 14:00 ... show more Jun 4 13:58:38 n8n sshd[1044295]: Invalid user vinicius from 161.248.189.72 port 41108 Jun 4 14:00:50 n8n sshd[1044306]: Invalid user eqemu from 161.248.189.72 port 41300 Jun 4 14:02:59 n8n sshd[1044323]: Invalid user tao from 161.248.189.72 port 41496 show less	Brute-Force SSH
🇧🇬 OHOST.BG	2026-06-04 12:47:41 (4 hours ago)	2026-06-04T15:45:31.129866+03:00 fastdl sshd[532974]: pam_unix(sshd:auth): authentication failure; l ... show more 2026-06-04T15:45:31.129866+03:00 fastdl sshd[532974]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.248.189.72 2026-06-04T15:45:33.154592+03:00 fastdl sshd[532974]: Failed password for invalid user rock from 161.248.189.72 port 37298 ssh2 2026-06-04T15:47:38.797414+03:00 fastdl sshd[533183]: Invalid user heni from 161.248.189.72 port 37458 2026-06-04T15:47:38.806037+03:00 fastdl sshd[533183]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.248.189.72 2026-06-04T15:47:40.933744+03:00 fastdl sshd[533183]: Failed password for invalid user heni from 161.248.189.72 port 37458 ssh2 ... show less	Brute-Force SSH
🇭🇰 demonsword	2026-06-04 12:44:24 (4 hours ago)	SSH brute-force detected: 16 failed login attempts in the last 1 hour.	Brute-Force SSH
🇺🇸 m2jest1c	2026-06-04 12:39:01 (4 hours ago)	Jun 4 12:39:00 instance1 sshd[666609]: Disconnected from authenticating user root 161.248.189.72 po ... show more Jun 4 12:39:00 instance1 sshd[666609]: Disconnected from authenticating user root 161.248.189.72 port 48890 [preauth] ... show less	Brute-Force SSH
🇫🇷 John Doe	2026-06-04 12:01:37 (5 hours ago)	$f2bV_matches	Brute-Force SSH
🇭🇺 szasa	2026-06-04 12:00:05 (5 hours ago)	Jun 4 13:56:02 cif02 sshd[316280]: Failed password for invalid user gakusei from 161.248.189.72 por ... show more Jun 4 13:56:02 cif02 sshd[316280]: Failed password for invalid user gakusei from 161.248.189.72 port 37408 ssh2 Jun 4 14:00:30 cif02 sshd[316382]: Invalid user car from 161.248.189.72 port 37586 Jun 4 14:00:30 cif02 sshd[316382]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.248.189.72 Jun 4 14:00:31 cif02 sshd[316382]: Failed password for invalid user car from 161.248.189.72 port 37586 ssh2 ... show less	Brute-Force SSH
🇰🇷 hanb.jp	2026-06-04 11:59:44 (5 hours ago)	Jun 4 11:53:32 v4bgp sshd[270620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid ... show more Jun 4 11:53:32 v4bgp sshd[270620]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=161.248.189.72 Jun 4 11:53:34 v4bgp sshd[270620]: Failed password for invalid user gakusei from 161.248.189.72 port 46194 ssh2 Jun 4 11:59:43 v4bgp sshd[270811]: Invalid user car from 161.248.189.72 port 46476 ... show less	Brute-Force SSH
Anonymous	2026-06-04 10:36:09 (6 hours ago)	sshd	Brute-Force SSH
🇩🇪 licen777	2026-06-04 10:24:02 (7 hours ago)	Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-04T09:33:40Z and 2026-06-0 ... show more Cowrie Honeypot: 5 unauthorised SSH/Telnet login attempts between 2026-06-04T09:33:40Z and 2026-06-04T10:24:02Z show less	Brute-Force SSH

Showing 1 to 15 of 10935 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 119.18.52.246

🇨🇳 14.103.116.173

🇺🇸 2a09:bac5:a53b:32d::51:52

🇧🇷 179.150.119.237

🇺🇸 162.216.149.18

🇮🇳 103.30.83.58

🇷🇴 80.94.92.165

🇧🇬 79.124.62.134

🇫🇮 65.21.127.46

🇸🇬 43.156.168.214

🇩🇪 213.209.159.225

🇧🇷 205.210.31.184

🇧🇷 187.17.224.139

🇨🇳 182.43.22.64

🇺🇸 173.255.225.139

🇵🇭 154.18.197.35

🇵🇭 150.228.189.132

🇰🇷 121.178.185.141

🇨🇦 104.207.61.192

🇵🇱 87.251.64.158