45.171.124.64 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: N & K Eletronica Ltda

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Automatic report - Port Scan Attack	2019-10-08 17:04:04

Comments on same subnet:

IP	Type	Details	Datetime
45.171.124.30	attack	Unauthorized connection attempt detected from IP address 45.171.124.30 to port 23	2020-01-13 17:52:40
45.171.124.30	attackbotsspam	firewall-block, port(s): 23/tcp	2020-01-08 17:22:01
45.171.124.30	attackspam	Unauthorized connection attempt detected from IP address 45.171.124.30 to port 26 [J]	2020-01-06 02:36:10
45.171.124.30	attackbots	Unauthorized connection attempt detected from IP address 45.171.124.30 to port 9000	2019-12-30 02:52:03
45.171.124.30	attack	Unauthorized connection attempt detected from IP address 45.171.124.30 to port 2223	2019-12-29 08:47:57
45.171.124.30	attackbotsspam	Unauthorized connection attempt detected from IP address 45.171.124.30 to port 9000	2019-12-26 08:59:23
45.171.124.30	attackbots	Port Scan	2019-12-12 16:03:18
45.171.124.30	attackbots	Port scan: Attack repeated for 24 hours	2019-11-21 20:00:39

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.171.124.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3274
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.171.124.64.			IN	A

;; AUTHORITY SECTION:
.			228	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019100800 1800 900 604800 86400

;; Query time: 103 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Oct 08 17:04:01 CST 2019
;; MSG SIZE  rcvd: 117

Host info

64.124.171.45.in-addr.arpa domain name pointer ip45-171-124-64.ultraconect.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.124.171.45.in-addr.arpa	name = ip45-171-124-64.ultraconect.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.124.147.117	attack	Jan 23 17:04:21 nextcloud sshd\[3597\]: Invalid user anna from 125.124.147.117 Jan 23 17:04:21 nextcloud sshd\[3597\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.124.147.117 Jan 23 17:04:23 nextcloud sshd\[3597\]: Failed password for invalid user anna from 125.124.147.117 port 37260 ssh2 ...	2020-01-24 04:32:46
184.105.139.69	attackspambots	Unauthorized connection attempt detected from IP address 184.105.139.69 to port 21 [J]	2020-01-24 04:18:20
95.137.204.67	attackspambots	1579795506 - 01/23/2020 17:05:06 Host: 95.137.204.67/95.137.204.67 Port: 445 TCP Blocked	2020-01-24 04:11:25
92.50.151.170	attackspambots	Jan 24 01:29:05 gw1 sshd[19003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.50.151.170 Jan 24 01:29:07 gw1 sshd[19003]: Failed password for invalid user sleepy from 92.50.151.170 port 55170 ssh2 ...	2020-01-24 04:30:30
118.239.11.29	attackbots	unauthorized connection attempt	2020-01-24 04:43:39
157.245.58.40	attack	20 attempts against mh_ha-misbehave-ban on air	2020-01-24 04:44:35
222.186.42.4	attackbotsspam	Jan 23 21:37:17 mail sshd[21367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root Jan 23 21:37:20 mail sshd[21367]: Failed password for root from 222.186.42.4 port 32994 ssh2 ...	2020-01-24 04:39:22
78.134.99.105	attack	Jan 23 21:14:31 hosting sshd[24691]: Invalid user mine from 78.134.99.105 port 49244 ...	2020-01-24 04:29:12
189.238.60.55	attackspam	Lines containing failures of 189.238.60.55 Jan 23 13:48:55 zabbix sshd[1678]: Invalid user testuser from 189.238.60.55 port 52497 Jan 23 13:48:55 zabbix sshd[1678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.238.60.55 Jan 23 13:48:57 zabbix sshd[1678]: Failed password for invalid user testuser from 189.238.60.55 port 52497 ssh2 Jan 23 13:48:57 zabbix sshd[1678]: Received disconnect from 189.238.60.55 port 52497:11: Bye Bye [preauth] Jan 23 13:48:57 zabbix sshd[1678]: Disconnected from invalid user testuser 189.238.60.55 port 52497 [preauth] Jan 23 14:35:12 zabbix sshd[8356]: Invalid user csgo from 189.238.60.55 port 55654 Jan 23 14:35:12 zabbix sshd[8356]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.238.60.55 Jan 23 14:35:13 zabbix sshd[8356]: Failed password for invalid user csgo from 189.238.60.55 port 55654 ssh2 Jan 23 14:35:13 zabbix sshd[8356]: Received disconnect from 1........ ------------------------------	2020-01-24 04:32:29
54.71.99.108	attackbots	01/23/2020-21:51:47.441370 54.71.99.108 Protocol: 6 SURICATA TLS invalid record/traffic	2020-01-24 04:54:23
102.39.22.74	attackspam	unauthorized connection attempt	2020-01-24 04:24:21
70.186.146.138	attack	Jan 23 17:10:52 ws24vmsma01 sshd[189443]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=70.186.146.138 Jan 23 17:10:53 ws24vmsma01 sshd[189443]: Failed password for invalid user craig from 70.186.146.138 port 35674 ssh2 ...	2020-01-24 04:12:40
106.54.142.84	attack	$f2bV_matches	2020-01-24 04:52:32
178.128.79.169	attackbotsspam	Port scan on 1 port(s): 2222	2020-01-24 04:57:17
190.77.226.147	attackspam	VE__<177>1579795406 [1:2010935:3] ET SCAN Suspicious inbound to MSSQL port 1433 [Classification: Potentially Bad Traffic] [Priority: 2] {TCP} 190.77.226.147:26343	2020-01-24 04:55:42

Recently Reported IPs

114.143.205.13	1.54.51.236	200.11.240.237	111.230.56.96
138.68.215.182	201.176.82.6	39.73.59.191	61.222.56.80
133.155.3.78	15.206.219.134	13.92.137.228	186.225.63.206
185.120.38.104	183.15.122.207	114.229.191.135	104.238.110.15
190.117.62.241	5.204.58.231	181.97.17.84	177.98.240.220