Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Hong Kong

Internet Service Provider: Wenzhou Yunzhong Technology Co. Ltd.

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:
Type Details Datetime
attackbotsspam
2020-09-23T08:38:28.687098yoshi.linuxbox.ninja sshd[1842412]: Invalid user john from 45.149.16.242 port 48508
2020-09-23T08:38:30.252602yoshi.linuxbox.ninja sshd[1842412]: Failed password for invalid user john from 45.149.16.242 port 48508 ssh2
2020-09-23T08:41:40.492569yoshi.linuxbox.ninja sshd[1844403]: Invalid user dp from 45.149.16.242 port 60830
...
2020-09-23 22:28:05
attackspambots
SSH/22 MH Probe, BF, Hack -
2020-09-23 14:46:06
Comments on same subnet:
IP Type Details Datetime
45.149.16.250 attackspambots
SSH brute force
2020-10-01 02:44:04
45.149.16.250 attackbots
SSH brute force
2020-09-30 18:55:50
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.149.16.242
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26461
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.149.16.242.			IN	A

;; AUTHORITY SECTION:
.			373	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020092202 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Sep 23 06:37:31 CST 2020
;; MSG SIZE  rcvd: 117
Host info
Host 242.16.149.45.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 242.16.149.45.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
46.175.21.30 attack
Wordpress malicious attack:[sshd]
2020-05-25 12:22:30
111.229.116.227 attack
...
2020-05-25 12:14:23
94.102.51.29 attackspambots
This IP is associated with RDP abuse. It was found in a paste by https://twitter.com/RdpSnitch - https://pastebin.com/BAdjDqnq  
For more information, or to report interesting/incorrect findings, contact us - bot@tines.io
2020-05-25 08:30:45
88.149.173.179 attackbots
Brute forcing RDP port 3389
2020-05-25 12:12:08
125.91.124.125 attackbotsspam
2020-05-25T05:47:52.960476vps751288.ovh.net sshd\[2904\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.91.124.125  user=root
2020-05-25T05:47:55.067737vps751288.ovh.net sshd\[2904\]: Failed password for root from 125.91.124.125 port 54866 ssh2
2020-05-25T05:51:51.218429vps751288.ovh.net sshd\[2932\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.91.124.125  user=root
2020-05-25T05:51:52.803557vps751288.ovh.net sshd\[2932\]: Failed password for root from 125.91.124.125 port 48297 ssh2
2020-05-25T05:56:02.264988vps751288.ovh.net sshd\[2958\]: Invalid user user from 125.91.124.125 port 41729
2020-05-25 12:18:07
101.231.146.34 attack
Fail2Ban Ban Triggered
2020-05-25 12:09:49
198.199.81.6 attackspam
SASL PLAIN auth failed: ruser=...
2020-05-25 08:26:50
128.199.123.0 attackspam
May 25 06:24:01 OPSO sshd\[3917\]: Invalid user muiamatii981 from 128.199.123.0 port 45662
May 25 06:24:01 OPSO sshd\[3917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.123.0
May 25 06:24:03 OPSO sshd\[3917\]: Failed password for invalid user muiamatii981 from 128.199.123.0 port 45662 ssh2
May 25 06:27:17 OPSO sshd\[4643\]: Invalid user idcqa from 128.199.123.0 port 37266
May 25 06:27:17 OPSO sshd\[4643\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.123.0
2020-05-25 12:27:39
104.198.176.196 attackspambots
May 25 07:00:18 pkdns2 sshd\[39817\]: Invalid user mars from 104.198.176.196May 25 07:00:20 pkdns2 sshd\[39817\]: Failed password for invalid user mars from 104.198.176.196 port 45170 ssh2May 25 07:03:30 pkdns2 sshd\[39906\]: Failed password for root from 104.198.176.196 port 50228 ssh2May 25 07:06:45 pkdns2 sshd\[40030\]: Failed password for root from 104.198.176.196 port 55278 ssh2May 25 07:09:57 pkdns2 sshd\[40115\]: Invalid user emecha from 104.198.176.196May 25 07:09:59 pkdns2 sshd\[40115\]: Failed password for invalid user emecha from 104.198.176.196 port 60510 ssh2
...
2020-05-25 12:16:21
60.30.98.194 attackbotsspam
Failed password for invalid user test from 60.30.98.194 port 41245 ssh2
2020-05-25 12:19:17
51.89.94.204 attackbots
May 24 21:56:25 Host-KLAX-C sshd[23000]: User root from 51.89.94.204 not allowed because not listed in AllowUsers
...
2020-05-25 12:02:39
167.114.185.237 attackbots
May 25 05:47:02 nas sshd[29780]: Failed password for root from 167.114.185.237 port 48632 ssh2
May 25 05:52:09 nas sshd[29880]: Failed password for root from 167.114.185.237 port 36426 ssh2
May 25 05:56:15 nas sshd[29963]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.185.237  user=mysql
...
2020-05-25 12:10:05
123.206.17.3 attack
May 24 23:26:24 eventyay sshd[27184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=123.206.17.3
May 24 23:26:26 eventyay sshd[27184]: Failed password for invalid user shini from 123.206.17.3 port 33658 ssh2
May 24 23:31:12 eventyay sshd[27330]: Failed password for root from 123.206.17.3 port 60620 ssh2
...
2020-05-25 08:34:31
95.181.131.153 attackspam
May 25 01:06:36 roki-contabo sshd\[14678\]: Invalid user asterisk from 95.181.131.153
May 25 01:06:36 roki-contabo sshd\[14678\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.131.153
May 25 01:06:39 roki-contabo sshd\[14678\]: Failed password for invalid user asterisk from 95.181.131.153 port 49990 ssh2
May 25 01:09:28 roki-contabo sshd\[14761\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=95.181.131.153  user=root
May 25 01:09:29 roki-contabo sshd\[14761\]: Failed password for root from 95.181.131.153 port 56472 ssh2
...
2020-05-25 08:33:30
109.61.2.166 attack
Brute force attack stopped by firewall
2020-05-25 08:29:53

Recently Reported IPs

174.235.10.247 95.216.203.42 85.138.133.12 93.109.34.189
27.6.159.171 179.33.96.18 212.119.48.48 116.22.198.8
192.145.13.16 161.97.112.133 134.209.58.167 91.144.218.61
81.70.57.194 223.19.77.206 194.25.134.83 179.228.154.91
170.80.141.41 5.10.17.165 45.225.133.223 42.112.201.39