45.162.99.142 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Delha Barbosa de Carvalho - ME

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Automatic report - Port Scan Attack	2019-11-22 16:17:12

Comments on same subnet:

IP	Type	Details	Datetime
45.162.99.139	attackspam	1593057236 - 06/25/2020 10:53:56 Host: 45.162.99.139/45.162.99.139 Port: 23 TCP Blocked ...	2020-06-25 14:54:26
45.162.99.11	attackspambots	Automatic report - Port Scan Attack	2020-04-24 18:00:49
45.162.99.32	attackspam	20/4/23@23:57:22: FAIL: Alarm-Telnet address from=45.162.99.32 ...	2020-04-24 12:48:26
45.162.99.212	attack	Automatic report - Port Scan Attack	2020-02-12 02:57:25
45.162.99.74	attack	port scan and connect, tcp 23 (telnet)	2019-12-08 17:38:03
45.162.99.106	attack	port scan/probe/communication attempt; port 23	2019-12-02 07:53:54
45.162.99.50	attackspambots	UTC: 2019-11-30 port: 26/tcp	2019-12-01 18:00:57
45.162.99.223	attack	UTC: 2019-11-30 port: 23/tcp	2019-12-01 16:29:09
45.162.99.108	attackspam	Automatic report - Port Scan Attack	2019-11-29 09:17:06
45.162.99.188	attack	Automatic report - Port Scan Attack	2019-11-27 02:28:04
45.162.99.111	attackspam	Automatic report - Port Scan Attack	2019-11-22 16:34:08
45.162.99.126	attackspambots	Automatic report - Port Scan Attack	2019-11-15 18:18:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.162.99.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28056
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.162.99.142.			IN	A

;; AUTHORITY SECTION:
.			539	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112101 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 22 16:17:06 CST 2019
;; MSG SIZE  rcvd: 117

Host info

142.99.162.45.in-addr.arpa domain name pointer 45.162.99-142.grupoleontelecom.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.99.162.45.in-addr.arpa	name = 45.162.99-142.grupoleontelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.180.6	attackbotsspam	May 31 22:26:32 santamaria sshd\[21615\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root May 31 22:26:35 santamaria sshd\[21615\]: Failed password for root from 222.186.180.6 port 28858 ssh2 May 31 22:27:03 santamaria sshd\[21617\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.6 user=root ...	2020-06-01 04:30:38
45.88.104.99	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 28 - port: 1788 proto: TCP cat: Misc Attack	2020-06-01 04:27:04
84.2.226.70	attack	May 31 22:11:29 pornomens sshd\[5465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.2.226.70 user=root May 31 22:11:31 pornomens sshd\[5465\]: Failed password for root from 84.2.226.70 port 35434 ssh2 May 31 22:26:55 pornomens sshd\[5636\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=84.2.226.70 user=root ...	2020-06-01 04:35:37
94.102.49.190	attackbots	Port Scan detected! ...	2020-06-01 04:06:52
82.202.197.233	attackspam	ET CINS Active Threat Intelligence Poor Reputation IP group 74 - port: 3757 proto: TCP cat: Misc Attack	2020-06-01 04:15:42
87.251.74.136	attack	May 31 21:55:12 debian-2gb-nbg1-2 kernel: \[13213687.338478\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=87.251.74.136 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=245 ID=14286 PROTO=TCP SPT=55567 DPT=3289 WINDOW=1024 RES=0x00 SYN URGP=0	2020-06-01 04:12:55
59.127.57.83	attackbotsspam	firewall-block, port(s): 23/tcp	2020-06-01 04:21:52
211.159.147.188	attackbots	2020-05-31T20:22:04.225491shield sshd\[4512\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.147.188 user=root 2020-05-31T20:22:06.472259shield sshd\[4512\]: Failed password for root from 211.159.147.188 port 39622 ssh2 2020-05-31T20:24:32.074115shield sshd\[5203\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.147.188 user=root 2020-05-31T20:24:34.305903shield sshd\[5203\]: Failed password for root from 211.159.147.188 port 43164 ssh2 2020-05-31T20:26:53.160955shield sshd\[5858\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.159.147.188 user=root	2020-06-01 04:36:53
188.166.251.87	attackbotsspam	SSH authentication failure x 6 reported by Fail2Ban ...	2020-06-01 04:33:42
109.236.60.42	attackspam	ET SCAN Sipvicious Scan - port: 5060 proto: UDP cat: Attempted Information Leak	2020-06-01 04:04:00
178.242.114.190	attackbots	2020-05-3122:25:581jfUWr-0006E4-U6\<=info@whatsup2013.chH=\(localhost\)[85.12.245.153]:37415P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2997id=25aedf8c87ac79755217a1f206c14b4774870081@whatsup2013.chT="toarslanmaqsood"forarslanmaqsood@live.comsikmfk@yahoo.comsanchezsouza08@hotmail.com2020-05-3122:26:221jfUX8-0006Gp-Uk\<=info@whatsup2013.chH=\(localhost\)[121.28.69.115]:54623P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=3017id=27b113404b60b5b99edb6d3eca0d878bb89f9aaf@whatsup2013.chT="tonathanielp1010"fornathanielp1010@gmail.comswagcameron@gmail.comzuhdyabu0192@gmail.com2020-05-3122:26:481jfUXf-0006Is-Cu\<=info@whatsup2013.chH=\(localhost\)[221.218.247.202]:53345P=esmtpsaX=TLS1.2:ECDHE-RSA-AES256-GCM-SHA384:256CV=noA=dovecot_login:info@whatsup2013.chS=2956id=22a315464d664c44d8dd6bc720547e62c4a217@whatsup2013.chT="tofelixestevanez"forfelixestevanez@gmail.comjibarra727@gmail.comtypriceisright@gmail.com2020-05-3122:26:	2020-06-01 04:37:41
93.174.89.20	attackspam	firewall-block, port(s): 8/tcp, 45/tcp, 68/tcp	2020-06-01 04:07:30
51.75.52.127	attackspambots	Port scanning [2 denied]	2020-06-01 04:24:53
171.103.57.178	attackspambots	(imapd) Failed IMAP login from 171.103.57.178 (TH/Thailand/171-103-57-178.static.asianet.co.th): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: Jun 1 00:57:00 ir1 dovecot[2885757]: imap-login: Disconnected (auth failed, 1 attempts in 6 secs): user=, method=PLAIN, rip=171.103.57.178, lip=5.63.12.44, session=<0AHOf/em95CrZzmy>	2020-06-01 04:32:12
94.255.247.223	attackbots	ET CINS Active Threat Intelligence Poor Reputation IP group 91 - port: 23 proto: TCP cat: Misc Attack	2020-06-01 04:05:04

Recently Reported IPs

244.242.192.221	62.224.161.122	237.163.239.49	48.229.189.255
44.69.100.47	86.156.247.227	2001:4cc8:1:1:250:56ff:fe8d:ba40	45.146.203.169
58.17.246.139	201.163.229.234	111.68.101.167	62.210.207.246
45.162.99.111	203.210.192.225	71.166.171.50	198.109.73.234
179.189.190.166	180.124.29.70	200.56.31.112	116.111.65.31