199.45.154.131

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
199.45.154.113	spambotsattackproxy	Postfix attacker IP	2025-03-05 22:38:52

Whois info:

#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#


NetRange:       199.45.154.0 - 199.45.155.255
CIDR:           199.45.154.0/23
NetName:        CENSY
NetHandle:      NET-199-45-154-0-1
Parent:         NET199 (NET-199-0-0-0-0)
NetType:        Direct Allocation
OriginAS:       
Organization:   Censys, Inc. (CENSY)
RegDate:        2022-10-26
Updated:        2024-03-29
Ref:            https://rdap.arin.net/registry/ip/199.45.154.0



OrgName:        Censys, Inc.
OrgId:          CENSY
Address:        116 1/2 S Main Street
City:           Ann Arbor
StateProv:      MI
PostalCode:     48104
Country:        US
RegDate:        2018-08-06
Updated:        2019-08-03
Comment:        https://censys.io
Ref:            https://rdap.arin.net/registry/entity/CENSY


OrgAbuseHandle: CAT20-ARIN
OrgAbuseName:   Censys Abuse Team
OrgAbusePhone:  +1-248-629-0125 
OrgAbuseEmail:  scan-abuse@censys.com
OrgAbuseRef:    https://rdap.arin.net/registry/entity/CAT20-ARIN

OrgTechHandle: COT12-ARIN
OrgTechName:   Censys Operations Team
OrgTechPhone:  +1-248-629-0125 
OrgTechEmail:  ops@censys.io
OrgTechRef:    https://rdap.arin.net/registry/entity/COT12-ARIN

OrgNOCHandle: COT12-ARIN
OrgNOCName:   Censys Operations Team
OrgNOCPhone:  +1-248-629-0125 
OrgNOCEmail:  ops@censys.io
OrgNOCRef:    https://rdap.arin.net/registry/entity/COT12-ARIN


#
# ARIN WHOIS data and services are subject to the Terms of Use
# available at: https://www.arin.net/resources/registry/whois/tou/
#
# If you see inaccuracies in the results, please report at
# https://www.arin.net/resources/registry/whois/inaccuracy_reporting/
#
# Copyright 1997-2025, American Registry for Internet Numbers, Ltd.
#

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 199.45.154.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22330
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;199.45.154.131.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025120902 1800 900 604800 86400

;; Query time: 56 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 10 06:00:10 CST 2025
;; MSG SIZE  rcvd: 107

Host info

131.154.45.199.in-addr.arpa domain name pointer scanner-203.hk2.censys-scanner.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
131.154.45.199.in-addr.arpa	name = scanner-203.hk2.censys-scanner.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
106.12.93.160	attackspam	Nov 30 13:10:24 ncomp sshd[25462]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.93.160 user=root Nov 30 13:10:26 ncomp sshd[25462]: Failed password for root from 106.12.93.160 port 43314 ssh2 Nov 30 13:30:52 ncomp sshd[25772]: Invalid user karly from 106.12.93.160	2019-11-30 22:27:46
14.186.20.139	attackspam	Nov 30 01:10:18 penfold postfix/smtpd[2042]: warning: hostname static.vnpt.vn does not resolve to address 14.186.20.139 Nov 30 01:10:18 penfold postfix/smtpd[2042]: connect from unknown[14.186.20.139] Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x Nov x@x ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=14.186.20.139	2019-11-30 22:10:05
195.128.101.205	attackspam	Nov 30 14:42:37 lnxweb61 sshd[29419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.128.101.205 Nov 30 14:42:37 lnxweb61 sshd[29419]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.128.101.205	2019-11-30 21:53:04
112.33.16.34	attackspambots	Nov 30 14:03:13 server sshd\[10825\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.16.34 user=root Nov 30 14:03:15 server sshd\[10825\]: Failed password for root from 112.33.16.34 port 40262 ssh2 Nov 30 14:25:29 server sshd\[16588\]: Invalid user shalinir from 112.33.16.34 Nov 30 14:25:29 server sshd\[16588\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.33.16.34 Nov 30 14:25:30 server sshd\[16588\]: Failed password for invalid user shalinir from 112.33.16.34 port 37182 ssh2 ...	2019-11-30 22:30:40
39.42.106.83	attack	Unauthorized connection attempt from IP address 39.42.106.83 on Port 445(SMB)	2019-11-30 22:34:00
173.212.204.184	attackspam	Unauthorized SSH login attempts	2019-11-30 21:57:33
197.34.72.37	attackspambots	Lines containing failures of 197.34.72.37 Nov 30 07:33:56 srv02 sshd[2692]: Invalid user admin from 197.34.72.37 port 49940 Nov 30 07:33:56 srv02 sshd[2692]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.34.72.37 Nov 30 07:33:58 srv02 sshd[2692]: Failed password for invalid user admin from 197.34.72.37 port 49940 ssh2 Nov 30 07:33:58 srv02 sshd[2692]: Connection closed by invalid user admin 197.34.72.37 port 49940 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=197.34.72.37	2019-11-30 22:10:54
190.221.81.6	attackbots	Nov 30 11:22:37 ws12vmsma01 sshd[21461]: Invalid user aery from 190.221.81.6 Nov 30 11:22:39 ws12vmsma01 sshd[21461]: Failed password for invalid user aery from 190.221.81.6 port 40708 ssh2 Nov 30 11:26:18 ws12vmsma01 sshd[21917]: Invalid user patricia from 190.221.81.6 ...	2019-11-30 21:58:44
88.247.161.188	attack	Automatic report - Port Scan Attack	2019-11-30 22:00:28
180.76.173.189	attackbotsspam	2019-11-30T08:06:20.6253301495-001 sshd\[12722\]: Invalid user guest from 180.76.173.189 port 57158 2019-11-30T08:06:20.6299211495-001 sshd\[12722\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.173.189 2019-11-30T08:06:22.3790651495-001 sshd\[12722\]: Failed password for invalid user guest from 180.76.173.189 port 57158 ssh2 2019-11-30T08:28:33.2532271495-001 sshd\[14313\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.173.189 user=mysql 2019-11-30T08:28:35.6693021495-001 sshd\[14313\]: Failed password for mysql from 180.76.173.189 port 33986 ssh2 2019-11-30T08:32:38.1667701495-001 sshd\[14478\]: Invalid user postgres from 180.76.173.189 port 35356 2019-11-30T08:32:38.1702151495-001 sshd\[14478\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.76.173.189 ...	2019-11-30 22:30:24
181.65.164.179	attackspambots	Invalid user elisangela from 181.65.164.179 port 54910	2019-11-30 22:06:11
78.128.113.124	attack	Nov 26 21:03:11 xzibhostname postfix/smtpd[27245]: warning: hostname ip-113-124.4vendeta.com does not resolve to address 78.128.113.124: Name or service not known Nov 26 21:03:11 xzibhostname postfix/smtpd[27245]: connect from unknown[78.128.113.124] Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: warning: unknown[78.128.113.124]: SASL LOGIN authentication failed: authentication failure Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: lost connection after AUTH from unknown[78.128.113.124] Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: disconnect from unknown[78.128.113.124] Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: warning: hostname ip-113-124.4vendeta.com does not resolve to address 78.128.113.124: Name or service not known Nov 26 21:03:12 xzibhostname postfix/smtpd[27245]: connect from unknown[78.128.113.124] Nov 26 21:03:14 xzibhostname postfix/smtpd[27245]: warning: unknown[78.128.113.124]: SASL LOGIN authentication failed: authentication failure ........ -------------------------------	2019-11-30 22:19:56
180.250.115.93	attackspambots	Apr 19 07:29:16 meumeu sshd[26361]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.115.93 Apr 19 07:29:17 meumeu sshd[26361]: Failed password for invalid user frodo from 180.250.115.93 port 59401 ssh2 Apr 19 07:33:06 meumeu sshd[27004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=180.250.115.93 ...	2019-11-30 21:57:01
185.173.35.57	attackbotsspam	firewall-block, port(s): 161/udp	2019-11-30 22:28:49
220.191.160.42	attack	Automatic report - Banned IP Access	2019-11-30 22:07:50

Recently Reported IPs

212.134.93.223	34.247.40.14	182.51.78.191	10.15.203.30
45.156.87.46	192.81.208.214	72.219.203.118	52.215.189.96
34.254.251.69	10.12.51.233	13.212.95.124	34.243.145.255
103.157.42.41	103.157.42.16	3.253.246.7	147.185.133.179
10.2.41.59	20.38.42.22	185.191.118.188	177.124.88.18