Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Hope Internet - Ltda

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:
Type Details Datetime
attack
Aug 29 22:05:13 Ubuntu-1404-trusty-64-minimal sshd\[13689\]: Invalid user apache from 45.165.48.2
Aug 29 22:05:13 Ubuntu-1404-trusty-64-minimal sshd\[13689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.165.48.2
Aug 29 22:05:15 Ubuntu-1404-trusty-64-minimal sshd\[13689\]: Failed password for invalid user apache from 45.165.48.2 port 55160 ssh2
Aug 29 22:23:53 Ubuntu-1404-trusty-64-minimal sshd\[28759\]: Invalid user apagar from 45.165.48.2
Aug 29 22:23:53 Ubuntu-1404-trusty-64-minimal sshd\[28759\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.165.48.2
2019-08-30 09:11:46
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.165.48.2
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 239
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.165.48.2.			IN	A

;; AUTHORITY SECTION:
.			2319	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082901 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 30 09:11:37 CST 2019
;; MSG SIZE  rcvd: 115
Host info
Host 2.48.165.45.in-addr.arpa. not found: 3(NXDOMAIN)
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 2.48.165.45.in-addr.arpa: NXDOMAIN
Related IP info:
Related comments:
IP Type Details Datetime
49.88.112.65 attack
Jan  9 14:34:41 hcbbdb sshd\[25361\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65  user=root
Jan  9 14:34:43 hcbbdb sshd\[25361\]: Failed password for root from 49.88.112.65 port 36249 ssh2
Jan  9 14:35:49 hcbbdb sshd\[25483\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65  user=root
Jan  9 14:35:52 hcbbdb sshd\[25483\]: Failed password for root from 49.88.112.65 port 53470 ssh2
Jan  9 14:36:59 hcbbdb sshd\[25606\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.65  user=root
2020-01-09 22:56:14
206.72.198.29 attack
Jan  9 15:43:39 MK-Soft-VM8 sshd[426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=206.72.198.29 
Jan  9 15:43:41 MK-Soft-VM8 sshd[426]: Failed password for invalid user lab from 206.72.198.29 port 38756 ssh2
...
2020-01-09 22:44:06
123.127.41.171 attack
firewall-block, port(s): 6379/tcp
2020-01-09 23:20:36
222.186.15.166 attackbotsspam
09.01.2020 15:13:21 SSH access blocked by firewall
2020-01-09 23:13:51
220.134.131.160 attack
Telnet/23 MH Probe, BF, Hack -
2020-01-09 23:09:20
185.156.73.54 attack
01/09/2020-09:53:16.725778 185.156.73.54 Protocol: 6 ET SCAN NMAP -sS window 1024
2020-01-09 23:07:01
112.169.152.105 attackspambots
Jan  9 15:44:15 [host] sshd[21778]: Invalid user ltb from 112.169.152.105
Jan  9 15:44:15 [host] sshd[21778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.169.152.105
Jan  9 15:44:17 [host] sshd[21778]: Failed password for invalid user ltb from 112.169.152.105 port 55096 ssh2
2020-01-09 22:55:37
185.184.79.35 attackbots
SIP/5060 Probe, BF, Hack -
2020-01-09 23:06:39
115.212.99.4 attackbotsspam
2020-01-09 07:08:46 dovecot_login authenticator failed for (pdrxr) [115.212.99.4]:55317 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=chenna@lerctr.org)
2020-01-09 07:08:54 dovecot_login authenticator failed for (gpjpd) [115.212.99.4]:55317 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=chenna@lerctr.org)
2020-01-09 07:09:09 dovecot_login authenticator failed for (fsdyh) [115.212.99.4]:55317 I=[192.147.25.65]:25: 535 Incorrect authentication data (set_id=chenna@lerctr.org)
...
2020-01-09 23:12:00
174.71.159.170 attackbotsspam
port scan and connect, tcp 1433 (ms-sql-s)
2020-01-09 23:10:02
218.92.0.158 attackspam
Jan  9 15:02:02 sigma sshd\[11081\]: Failed password for root from 218.92.0.158 port 16218 ssh2Jan  9 15:02:06 sigma sshd\[11081\]: Failed password for root from 218.92.0.158 port 16218 ssh2
...
2020-01-09 23:07:40
94.25.229.79 attackbotsspam
1578575361 - 01/09/2020 14:09:21 Host: 94.25.229.79/94.25.229.79 Port: 445 TCP Blocked
2020-01-09 23:04:59
118.25.44.66 attackbots
Jan  9 04:25:07 web9 sshd\[11844\]: Invalid user belen from 118.25.44.66
Jan  9 04:25:07 web9 sshd\[11844\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.44.66
Jan  9 04:25:08 web9 sshd\[11844\]: Failed password for invalid user belen from 118.25.44.66 port 47308 ssh2
Jan  9 04:27:06 web9 sshd\[12186\]: Invalid user student1 from 118.25.44.66
Jan  9 04:27:06 web9 sshd\[12186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.44.66
2020-01-09 22:47:29
109.253.208.237 attack
hack to netflix account
2020-01-09 23:14:02
221.232.177.99 attack
Telnet/23 MH Probe, BF, Hack -
2020-01-09 23:13:12

Recently Reported IPs

224.188.121.229 153.160.16.133 66.84.147.3 75.149.191.85
182.71.108.154 65.48.129.185 222.45.16.245 66.155.94.179
142.103.107.243 89.39.107.191 120.237.231.110 177.21.202.251
191.53.56.59 119.51.108.200 85.214.122.154 181.29.12.19
79.249.252.236 42.54.164.164 78.141.107.74 45.247.129.60