45.162.99.50 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Delha Barbosa de Carvalho - ME

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	UTC: 2019-11-30 port: 26/tcp	2019-12-01 18:00:57

Comments on same subnet:

IP	Type	Details	Datetime
45.162.99.139	attackspam	1593057236 - 06/25/2020 10:53:56 Host: 45.162.99.139/45.162.99.139 Port: 23 TCP Blocked ...	2020-06-25 14:54:26
45.162.99.11	attackspambots	Automatic report - Port Scan Attack	2020-04-24 18:00:49
45.162.99.32	attackspam	20/4/23@23:57:22: FAIL: Alarm-Telnet address from=45.162.99.32 ...	2020-04-24 12:48:26
45.162.99.212	attack	Automatic report - Port Scan Attack	2020-02-12 02:57:25
45.162.99.74	attack	port scan and connect, tcp 23 (telnet)	2019-12-08 17:38:03
45.162.99.106	attack	port scan/probe/communication attempt; port 23	2019-12-02 07:53:54
45.162.99.223	attack	UTC: 2019-11-30 port: 23/tcp	2019-12-01 16:29:09
45.162.99.108	attackspam	Automatic report - Port Scan Attack	2019-11-29 09:17:06
45.162.99.188	attack	Automatic report - Port Scan Attack	2019-11-27 02:28:04
45.162.99.111	attackspam	Automatic report - Port Scan Attack	2019-11-22 16:34:08
45.162.99.142	attackbots	Automatic report - Port Scan Attack	2019-11-22 16:17:12
45.162.99.126	attackspambots	Automatic report - Port Scan Attack	2019-11-15 18:18:01

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.162.99.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18000
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.162.99.50.			IN	A

;; AUTHORITY SECTION:
.			248	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120100 1800 900 604800 86400

;; Query time: 96 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Dec 01 18:00:53 CST 2019
;; MSG SIZE  rcvd: 116

Host info

50.99.162.45.in-addr.arpa domain name pointer 45.162.99-50.grupoleontelecom.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
50.99.162.45.in-addr.arpa	name = 45.162.99-50.grupoleontelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.217.222.124	attackspambots	/var/log/messages:Sep 15 15:09:10 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1568560150.437:164003): pid=3251 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-server cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=3252 suid=74 rport=36234 laddr=104.167.106.93 lport=23 exe="/usr/sbin/sshd" hostname=? addr=139.217.222.124 terminal=? res=success' /var/log/messages:Sep 15 15:09:10 sanyalnet-cloud-vps audispd: node=sanyalnet-cloud-vps.freeddns.org type=CRYPTO_SESSION msg=audhostname(1568560150.441:164004): pid=3251 uid=0 auid=4294967295 ses=4294967295 msg='op=start direction=from-client cipher=aes256-ctr ksize=256 mac=hmac-sha1 pfs=ecdh-sha2-nistp256 spid=3252 suid=74 rport=36234 laddr=104.167.106.93 lport=23 exe="/usr/sbin/sshd" hostname=? addr=139.217.222.124 terminal=? res=success' /var/log/messages:Sep 15 15:09:12 sanyalnet-cloud-vps fail2ban.filter[1478]: INFO [sshd] Fou........ -------------------------------	2019-09-16 04:13:51
181.231.121.107	attack	Multiple failed RDP login attempts	2019-09-16 04:28:28
118.24.37.81	attack	Sep 15 15:21:24 MK-Soft-VM7 sshd\[29157\]: Invalid user ts3 from 118.24.37.81 port 56114 Sep 15 15:21:24 MK-Soft-VM7 sshd\[29157\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.37.81 Sep 15 15:21:26 MK-Soft-VM7 sshd\[29157\]: Failed password for invalid user ts3 from 118.24.37.81 port 56114 ssh2 ...	2019-09-16 04:18:30
111.68.46.68	attackbots	Sep 15 05:38:42 wbs sshd\[20869\]: Invalid user ab from 111.68.46.68 Sep 15 05:38:42 wbs sshd\[20869\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.68.46.68 Sep 15 05:38:45 wbs sshd\[20869\]: Failed password for invalid user ab from 111.68.46.68 port 37885 ssh2 Sep 15 05:43:14 wbs sshd\[21355\]: Invalid user et from 111.68.46.68 Sep 15 05:43:14 wbs sshd\[21355\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.68.46.68	2019-09-16 04:10:46
192.99.47.10	attackspambots	Automatic report - Banned IP Access	2019-09-16 04:38:17
49.83.151.94	attackspam	Sep 15 11:25:44 econome sshd[20009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.83.151.94 user=r.r Sep 15 11:25:46 econome sshd[20009]: Failed password for r.r from 49.83.151.94 port 36003 ssh2 Sep 15 11:25:48 econome sshd[20009]: Failed password for r.r from 49.83.151.94 port 36003 ssh2 Sep 15 11:25:51 econome sshd[20009]: Failed password for r.r from 49.83.151.94 port 36003 ssh2 Sep 15 11:25:53 econome sshd[20009]: Failed password for r.r from 49.83.151.94 port 36003 ssh2 Sep 15 11:25:56 econome sshd[20009]: Failed password for r.r from 49.83.151.94 port 36003 ssh2 Sep 15 11:25:58 econome sshd[20009]: Failed password for r.r from 49.83.151.94 port 36003 ssh2 Sep 15 11:25:58 econome sshd[20009]: Disconnecting: Too many authentication failures for r.r from 49.83.151.94 port 36003 ssh2 [preauth] Sep 15 11:25:58 econome sshd[20009]: PAM 5 more authentication failures; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.83.151.94 ........ -------------------------------	2019-09-16 04:35:16
191.36.169.246	attackspam	RDP Bruteforce	2019-09-16 04:31:00
46.229.173.66	attackspam	Fail2Ban Ban Triggered	2019-09-16 04:36:20
206.81.18.60	attackspambots	Sep 15 08:54:08 sachi sshd\[22326\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.18.60 user=mysql Sep 15 08:54:10 sachi sshd\[22326\]: Failed password for mysql from 206.81.18.60 port 43490 ssh2 Sep 15 08:57:59 sachi sshd\[22655\]: Invalid user sftp from 206.81.18.60 Sep 15 08:57:59 sachi sshd\[22655\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.81.18.60 Sep 15 08:58:01 sachi sshd\[22655\]: Failed password for invalid user sftp from 206.81.18.60 port 57142 ssh2	2019-09-16 04:31:51
159.89.111.136	attack	Sep 15 18:39:58 srv206 sshd[25637]: Invalid user qv from 159.89.111.136 ...	2019-09-16 04:03:20
91.208.84.141	attackspambots	Lines containing failures of 91.208.84.141 Sep 15 10:25:02 zabbix sshd[69962]: Invalid user loch from 91.208.84.141 port 56232 Sep 15 10:25:02 zabbix sshd[69962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.208.84.141 Sep 15 10:25:04 zabbix sshd[69962]: Failed password for invalid user loch from 91.208.84.141 port 56232 ssh2 Sep 15 10:25:04 zabbix sshd[69962]: Received disconnect from 91.208.84.141 port 56232:11: Bye Bye [preauth] Sep 15 10:25:04 zabbix sshd[69962]: Disconnected from invalid user loch 91.208.84.141 port 56232 [preauth] Sep 15 10:37:57 zabbix sshd[70984]: Invalid user greg from 91.208.84.141 port 56604 Sep 15 10:37:57 zabbix sshd[70984]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.208.84.141 Sep 15 10:37:59 zabbix sshd[70984]: Failed password for invalid user greg from 91.208.84.141 port 56604 ssh2 Sep 15 10:37:59 zabbix sshd[70984]: Received disconnect from 91.2........ ------------------------------	2019-09-16 04:29:54
83.69.106.140	attack	Sep 15 14:39:07 xtremcommunity sshd\[117541\]: Invalid user sendmail from 83.69.106.140 port 60096 Sep 15 14:39:07 xtremcommunity sshd\[117541\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.69.106.140 Sep 15 14:39:08 xtremcommunity sshd\[117541\]: Failed password for invalid user sendmail from 83.69.106.140 port 60096 ssh2 Sep 15 14:43:12 xtremcommunity sshd\[117717\]: Invalid user eu from 83.69.106.140 port 44804 Sep 15 14:43:12 xtremcommunity sshd\[117717\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.69.106.140 ...	2019-09-16 04:39:36
62.234.154.56	attack	Sep 15 22:21:39 vps691689 sshd[15785]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.154.56 Sep 15 22:21:41 vps691689 sshd[15785]: Failed password for invalid user ubnt from 62.234.154.56 port 45663 ssh2 ...	2019-09-16 04:39:53
74.208.252.136	attack	Invalid user chao from 74.208.252.136 port 39822	2019-09-16 04:08:21
165.22.246.63	attackspambots	Sep 15 18:33:34 eventyay sshd[2487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.246.63 Sep 15 18:33:36 eventyay sshd[2487]: Failed password for invalid user urens from 165.22.246.63 port 55826 ssh2 Sep 15 18:38:52 eventyay sshd[2582]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.246.63 ...	2019-09-16 04:07:10

Recently Reported IPs

136.192.65.232	59.36.132.240	117.217.78.171	185.53.168.96
37.220.176.38	211.72.236.239	125.43.57.159	213.232.229.170
39.40.12.247	176.109.190.15	118.161.170.133	191.37.229.221
24.244.133.152	2.191.124.118	250.221.204.26	239.228.238.222
179.7.137.128	206.146.127.97	68.82.68.240	96.51.48.160