45.162.154.3 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: GM Telecom e Informatica Ltda

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Aug 12 08:22:03 localhost kernel: [16856716.874276] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=45.162.154.3 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=41794 PROTO=TCP SPT=36833 DPT=52869 WINDOW=19513 RES=0x00 SYN URGP=0 Aug 12 08:22:03 localhost kernel: [16856716.874306] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=45.162.154.3 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=41794 PROTO=TCP SPT=36833 DPT=52869 SEQ=758669438 ACK=0 WINDOW=19513 RES=0x00 SYN URGP=0 OPT (020405A0)	2019-08-12 23:41:28

Type

Details

Datetime

attack

Aug 12 08:22:03 localhost kernel: [16856716.874276] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=45.162.154.3 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=41794 PROTO=TCP SPT=36833 DPT=52869 WINDOW=19513 RES=0x00 SYN URGP=0 
Aug 12 08:22:03 localhost kernel: [16856716.874306] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=45.162.154.3 DST=[mungedIP2] LEN=44 TOS=0x00 PREC=0x00 TTL=54 ID=41794 PROTO=TCP SPT=36833 DPT=52869 SEQ=758669438 ACK=0 WINDOW=19513 RES=0x00 SYN URGP=0 OPT (020405A0)

2019-08-12 23:41:28

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.162.154.3
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17662
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.162.154.3.			IN	A

;; AUTHORITY SECTION:
.			462	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070400 1800 900 604800 86400

;; Query time: 110 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 04 15:04:22 CST 2019
;; MSG SIZE  rcvd: 116

Host info

3.154.162.45.in-addr.arpa has no PTR record

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
*** Can't find 3.154.162.45.in-addr.arpa.: No answer

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.241.162.142	attackspam	Jul 25 20:23:23 ns392434 sshd[21228]: Invalid user uniform from 35.241.162.142 port 44850 Jul 25 20:23:23 ns392434 sshd[21228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.241.162.142 Jul 25 20:23:23 ns392434 sshd[21228]: Invalid user uniform from 35.241.162.142 port 44850 Jul 25 20:23:25 ns392434 sshd[21228]: Failed password for invalid user uniform from 35.241.162.142 port 44850 ssh2 Jul 25 20:27:34 ns392434 sshd[21379]: Invalid user cdarte from 35.241.162.142 port 60948 Jul 25 20:27:34 ns392434 sshd[21379]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.241.162.142 Jul 25 20:27:34 ns392434 sshd[21379]: Invalid user cdarte from 35.241.162.142 port 60948 Jul 25 20:27:36 ns392434 sshd[21379]: Failed password for invalid user cdarte from 35.241.162.142 port 60948 ssh2 Jul 25 20:31:27 ns392434 sshd[21518]: Invalid user portia from 35.241.162.142 port 46394	2020-07-26 02:36:04
118.163.80.204	attackbots	07/25/2020-11:14:30.547291 118.163.80.204 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-07-26 02:27:55
139.198.121.63	attackbotsspam	Unauthorized access or intrusion attempt detected from Thor banned IP	2020-07-26 02:27:40
196.52.43.53	attack	TCP (SYN) 196.52.43.53:53511 -> port 8531, len 44	2020-07-26 02:08:12
14.202.63.46	attackspambots	Exploited Host.	2020-07-26 01:55:11
104.211.167.49	attack	Invalid user katy from 104.211.167.49 port 1024	2020-07-26 01:57:38
54.39.133.91	attackspam	firewall-block, port(s): 20716/tcp	2020-07-26 02:30:37
139.199.115.210	attackspam	Exploited Host.	2020-07-26 02:26:38
139.199.228.154	attackbots	Exploited Host.	2020-07-26 02:24:36
192.200.207.127	attackbotsspam	Invalid user xiaowei from 192.200.207.127 port 35308	2020-07-26 02:19:04
92.118.160.9	attackspam	Honeypot attack, port: 81, PTR: 92.118.160.9.netsystemsresearch.com.	2020-07-26 02:18:10
106.12.75.43	attack	Jul 25 18:48:57 vps647732 sshd[8716]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.75.43 Jul 25 18:48:59 vps647732 sshd[8716]: Failed password for invalid user sven from 106.12.75.43 port 58096 ssh2 ...	2020-07-26 02:10:43
139.199.48.217	attack	Exploited Host.	2020-07-26 02:23:25
92.118.161.17	attackbots	Honeypot attack, port: 135, PTR: 92.118.161.17.netsystemsresearch.com.	2020-07-26 02:22:05
141.98.10.193	attackbots	UDP 141.98.10.193:5136 -> port 5060, len 429	2020-07-26 02:29:14

Recently Reported IPs

75.46.163.82	103.224.187.163	101.109.113.26	94.230.79.195
113.168.199.90	201.131.220.20	115.144.178.105	170.152.28.127
113.90.92.16	46.182.6.249	175.107.192.153	185.15.175.110
188.165.242.84	103.21.207.3	101.53.100.115	37.236.155.21
246.8.7.111	213.163.174.17	196.221.26.235	190.109.43.56