170.254.52.145

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: RMR Assessoria Tecnica em Teleinformatica Ltda-ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2019-12-13 16:39:07

Comments on same subnet:

IP	Type	Details	Datetime
170.254.52.99	attackspambots	23/tcp [2019-11-01]1pkt	2019-11-01 14:32:43
170.254.52.224	attackspam	Automatic report - Port Scan Attack	2019-10-30 02:11:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 170.254.52.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44245
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;170.254.52.145.			IN	A

;; AUTHORITY SECTION:
.			567	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121300 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 13 16:39:02 CST 2019
;; MSG SIZE  rcvd: 118

Host info

145.52.254.170.in-addr.arpa domain name pointer 170-254-52-145.rmrti.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
145.52.254.170.in-addr.arpa	name = 170-254-52-145.rmrti.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.196.93.55	attackbots	Automatic report - XMLRPC Attack	2019-10-02 14:57:30
77.123.154.234	attackspam	Automatic report - Banned IP Access	2019-10-02 14:50:15
94.23.215.90	attack	Oct 2 07:34:00 microserver sshd[25601]: Invalid user cloud_user from 94.23.215.90 port 59313 Oct 2 07:34:00 microserver sshd[25601]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 Oct 2 07:34:03 microserver sshd[25601]: Failed password for invalid user cloud_user from 94.23.215.90 port 59313 ssh2 Oct 2 07:37:39 microserver sshd[26178]: Invalid user martine from 94.23.215.90 port 57802 Oct 2 07:37:39 microserver sshd[26178]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 Oct 2 07:48:14 microserver sshd[27494]: Invalid user ubuntu from 94.23.215.90 port 55516 Oct 2 07:48:14 microserver sshd[27494]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.23.215.90 Oct 2 07:48:16 microserver sshd[27494]: Failed password for invalid user ubuntu from 94.23.215.90 port 55516 ssh2 Oct 2 07:51:47 microserver sshd[28079]: Invalid user odroid from 94.23.215.90 port 61374	2019-10-02 14:37:32
197.43.173.78	attackspambots	Chat Spam	2019-10-02 14:43:00
123.214.186.186	attack	10/02/2019-02:19:06.989901 123.214.186.186 Protocol: 6 ET COMPROMISED Known Compromised or Hostile Host Traffic group 6	2019-10-02 14:52:22
187.188.148.50	attackspambots	Oct 2 08:11:55 vpn01 sshd[26432]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.188.148.50 Oct 2 08:11:57 vpn01 sshd[26432]: Failed password for invalid user linux from 187.188.148.50 port 37411 ssh2 ...	2019-10-02 14:46:56
134.209.147.198	attack	Oct 2 08:05:23 pkdns2 sshd\[22472\]: Invalid user pv from 134.209.147.198Oct 2 08:05:24 pkdns2 sshd\[22472\]: Failed password for invalid user pv from 134.209.147.198 port 50238 ssh2Oct 2 08:10:18 pkdns2 sshd\[22712\]: Invalid user fwong from 134.209.147.198Oct 2 08:10:19 pkdns2 sshd\[22712\]: Failed password for invalid user fwong from 134.209.147.198 port 45810 ssh2Oct 2 08:15:19 pkdns2 sshd\[22946\]: Invalid user catchall from 134.209.147.198Oct 2 08:15:21 pkdns2 sshd\[22946\]: Failed password for invalid user catchall from 134.209.147.198 port 40976 ssh2 ...	2019-10-02 14:22:07
154.124.243.58	attackspambots	Lines containing failures of 154.124.243.58 Oct 2 05:29:22 shared03 sshd[26650]: Invalid user pi from 154.124.243.58 port 35474 Oct 2 05:29:22 shared03 sshd[26650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.124.243.58 Oct 2 05:29:23 shared03 sshd[26656]: Invalid user pi from 154.124.243.58 port 35482 Oct 2 05:29:23 shared03 sshd[26656]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=154.124.243.58 Oct 2 05:29:24 shared03 sshd[26650]: Failed password for invalid user pi from 154.124.243.58 port 35474 ssh2 Oct 2 05:29:24 shared03 sshd[26650]: Connection closed by invalid user pi 154.124.243.58 port 35474 [preauth] Oct 2 05:29:24 shared03 sshd[26656]: Failed password for invalid user pi from 154.124.243.58 port 35482 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=154.124.243.58	2019-10-02 14:29:21
208.58.129.131	attackspam	Oct 2 05:58:42 game-panel sshd[12262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.58.129.131 Oct 2 05:58:45 game-panel sshd[12262]: Failed password for invalid user tery from 208.58.129.131 port 60720 ssh2 Oct 2 06:03:19 game-panel sshd[12397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=208.58.129.131	2019-10-02 14:21:18
41.218.220.175	attack	Oct 2 05:34:06 xxxxxxx sshd[30570]: reveeclipse mapping checking getaddrinfo for 41-218-220-175-adsl-dyn.4u.com.gh [41.218.220.175] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 2 05:34:08 xxxxxxx sshd[30570]: Failed password for invalid user admin from 41.218.220.175 port 48479 ssh2 Oct 2 05:34:09 xxxxxxx sshd[30570]: Connection closed by 41.218.220.175 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=41.218.220.175	2019-10-02 14:51:58
193.112.48.179	attackspam	Oct 2 06:16:08 ns3110291 sshd\[11082\]: Invalid user 123456 from 193.112.48.179 Oct 2 06:16:08 ns3110291 sshd\[11082\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.48.179 Oct 2 06:16:10 ns3110291 sshd\[11082\]: Failed password for invalid user 123456 from 193.112.48.179 port 48376 ssh2 Oct 2 06:19:16 ns3110291 sshd\[11185\]: Invalid user changeme from 193.112.48.179 Oct 2 06:19:16 ns3110291 sshd\[11185\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.48.179 ...	2019-10-02 14:32:24
187.87.38.63	attackbots	Oct 1 20:25:13 auw2 sshd\[6063\]: Invalid user bigman from 187.87.38.63 Oct 1 20:25:13 auw2 sshd\[6063\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.87.38.63.gd.net.br Oct 1 20:25:16 auw2 sshd\[6063\]: Failed password for invalid user bigman from 187.87.38.63 port 56162 ssh2 Oct 1 20:30:54 auw2 sshd\[6581\]: Invalid user nice from 187.87.38.63 Oct 1 20:30:54 auw2 sshd\[6581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.87.38.63.gd.net.br	2019-10-02 14:33:55
142.93.163.77	attackbotsspam	Oct 2 06:35:38 venus sshd\[11581\]: Invalid user owen from 142.93.163.77 port 42398 Oct 2 06:35:38 venus sshd\[11581\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.163.77 Oct 2 06:35:39 venus sshd\[11581\]: Failed password for invalid user owen from 142.93.163.77 port 42398 ssh2 ...	2019-10-02 14:37:09
14.248.234.105	attackspam	14.248.234.105 has been banned for [spam] ...	2019-10-02 15:00:37
103.243.107.92	attackbots	Invalid user luky from 103.243.107.92 port 43383	2019-10-02 14:24:14

Recently Reported IPs

59.22.158.105	87.105.81.175	112.118.172.246	58.247.244.1
140.143.30.117	123.16.143.138	77.34.160.229	190.42.19.236
94.125.242.150	179.53.20.247	208.94.176.5	189.92.231.75
140.115.77.98	117.2.60.28	189.86.195.46	115.75.161.229
36.224.217.243	186.116.2.138	36.255.53.1	125.161.130.242