Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Delha Barbosa de Carvalho - ME

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:
Type Details Datetime
attackbots
Automatic report - Port Scan Attack
2019-11-22 16:17:12
Comments on same subnet:
IP Type Details Datetime
45.162.99.139 attackspam
1593057236 - 06/25/2020 10:53:56 Host: 45.162.99.139/45.162.99.139 Port: 23 TCP Blocked
...
2020-06-25 14:54:26
45.162.99.11 attackspambots
Automatic report - Port Scan Attack
2020-04-24 18:00:49
45.162.99.32 attackspam
20/4/23@23:57:22: FAIL: Alarm-Telnet address from=45.162.99.32
...
2020-04-24 12:48:26
45.162.99.212 attack
Automatic report - Port Scan Attack
2020-02-12 02:57:25
45.162.99.74 attack
port scan and connect, tcp 23 (telnet)
2019-12-08 17:38:03
45.162.99.106 attack
port scan/probe/communication attempt; port 23
2019-12-02 07:53:54
45.162.99.50 attackspambots
UTC: 2019-11-30 port: 26/tcp
2019-12-01 18:00:57
45.162.99.223 attack
UTC: 2019-11-30 port: 23/tcp
2019-12-01 16:29:09
45.162.99.108 attackspam
Automatic report - Port Scan Attack
2019-11-29 09:17:06
45.162.99.188 attack
Automatic report - Port Scan Attack
2019-11-27 02:28:04
45.162.99.111 attackspam
Automatic report - Port Scan Attack
2019-11-22 16:34:08
45.162.99.126 attackspambots
Automatic report - Port Scan Attack
2019-11-15 18:18:01
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.162.99.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28056
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.162.99.142.			IN	A

;; AUTHORITY SECTION:
.			539	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019112101 1800 900 604800 86400

;; Query time: 99 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Nov 22 16:17:06 CST 2019
;; MSG SIZE  rcvd: 117
Host info
142.99.162.45.in-addr.arpa domain name pointer 45.162.99-142.grupoleontelecom.com.br.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.99.162.45.in-addr.arpa	name = 45.162.99-142.grupoleontelecom.com.br.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
134.209.165.1 attackbots
" "
2019-07-10 12:20:18
139.198.5.79 attackspam
SSH Brute Force
2019-07-10 11:47:24
61.163.231.150 attack
failed_logins
2019-07-10 12:24:01
175.170.217.199 attack
Jul 10 03:22:06 sanyalnet-awsem3-1 sshd[25234]: Connection from 175.170.217.199 port 13385 on 172.30.0.184 port 22
Jul 10 03:22:09 sanyalnet-awsem3-1 sshd[25234]: Invalid user admin from 175.170.217.199
Jul 10 03:22:09 sanyalnet-awsem3-1 sshd[25234]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=175.170.217.199 
Jul 10 03:22:11 sanyalnet-awsem3-1 sshd[25234]: Failed password for invalid user admin from 175.170.217.199 port 13385 ssh2
Jul 10 03:22:13 sanyalnet-awsem3-1 sshd[25234]: Failed password for invalid user admin from 175.170.217.199 port 13385 ssh2


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=175.170.217.199
2019-07-10 11:55:38
185.225.208.18 attack
Port scan on 1 port(s): 111
2019-07-10 12:20:40
134.175.84.31 attackspambots
Jul  8 07:33:17 shared03 sshd[26285]: Invalid user fcweb from 134.175.84.31
Jul  8 07:33:17 shared03 sshd[26285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.175.84.31
Jul  8 07:33:19 shared03 sshd[26285]: Failed password for invalid user fcweb from 134.175.84.31 port 47236 ssh2
Jul  8 07:33:19 shared03 sshd[26285]: Received disconnect from 134.175.84.31 port 47236:11: Bye Bye [preauth]
Jul  8 07:33:19 shared03 sshd[26285]: Disconnected from 134.175.84.31 port 47236 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=134.175.84.31
2019-07-10 11:36:18
92.118.161.29 attack
Port scan: Attack repeated for 24 hours
2019-07-10 11:55:08
103.75.56.93 attackspam
SMB Server BruteForce Attack
2019-07-10 11:49:42
78.195.160.147 attack
Jul 10 01:58:00 [host] sshd[26187]: Invalid user debian from 78.195.160.147
Jul 10 01:58:00 [host] sshd[26187]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=78.195.160.147
Jul 10 01:58:01 [host] sshd[26187]: Failed password for invalid user debian from 78.195.160.147 port 35244 ssh2
2019-07-10 12:18:08
92.118.37.70 attackspam
10.07.2019 04:05:22 Connection to port 3391 blocked by firewall
2019-07-10 12:11:32
80.93.177.65 attackspam
10.07.2019 01:37:52 SSH access blocked by firewall
2019-07-10 11:56:46
46.101.88.10 attackbots
2019-07-10T03:51:56.799196abusebot-4.cloudsearch.cf sshd\[26267\]: Invalid user bnc from 46.101.88.10 port 50288
2019-07-10 11:52:14
134.73.129.61 attack
Jul 10 01:20:59 keyhelp sshd[12650]: Invalid user arma3 from 134.73.129.61
Jul 10 01:20:59 keyhelp sshd[12650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.73.129.61
Jul 10 01:21:01 keyhelp sshd[12650]: Failed password for invalid user arma3 from 134.73.129.61 port 44848 ssh2
Jul 10 01:21:01 keyhelp sshd[12650]: Received disconnect from 134.73.129.61 port 44848:11: Bye Bye [preauth]
Jul 10 01:21:01 keyhelp sshd[12650]: Disconnected from 134.73.129.61 port 44848 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=134.73.129.61
2019-07-10 12:05:11
92.118.160.37 attackbotsspam
Port scan: Attack repeated for 24 hours
2019-07-10 11:51:28
203.195.134.205 attack
Jul  8 10:15:04 www6-3 sshd[1053]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.134.205  user=r.r
Jul  8 10:15:06 www6-3 sshd[1053]: Failed password for r.r from 203.195.134.205 port 44842 ssh2
Jul  8 10:15:06 www6-3 sshd[1053]: Received disconnect from 203.195.134.205 port 44842:11: Bye Bye [preauth]
Jul  8 10:15:06 www6-3 sshd[1053]: Disconnected from 203.195.134.205 port 44842 [preauth]
Jul  8 10:18:17 www6-3 sshd[1170]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.195.134.205  user=mysql
Jul  8 10:18:19 www6-3 sshd[1170]: Failed password for mysql from 203.195.134.205 port 45052 ssh2
Jul  8 10:18:19 www6-3 sshd[1170]: Received disconnect from 203.195.134.205 port 45052:11: Bye Bye [preauth]
Jul  8 10:18:19 www6-3 sshd[1170]: Disconnected from 203.195.134.205 port 45052 [preauth]
Jul  8 10:20:36 www6-3 sshd[1282]: Invalid user console from 203.195.134.205 port 34048
Jul ........
-------------------------------
2019-07-10 11:56:08

Recently Reported IPs

244.242.192.221 62.224.161.122 237.163.239.49 48.229.189.255
44.69.100.47 86.156.247.227 2001:4cc8:1:1:250:56ff:fe8d:ba40 45.146.203.169
58.17.246.139 201.163.229.234 111.68.101.167 62.210.207.246
45.162.99.111 203.210.192.225 71.166.171.50 198.109.73.234
179.189.190.166 180.124.29.70 200.56.31.112 116.111.65.31