Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Caioba Fibra Comunicacoes Ltda

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:
Type Details Datetime
attackbots
@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-07-06 02:20:50,906 INFO [amun_request_handler] PortScan Detected on Port: 445 (45.4.239.5)
2019-07-06 11:30:33
Comments on same subnet:
No discussion about this subnet yet..
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 45.4.239.5
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 9173
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;45.4.239.5.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070501 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Jul 06 11:30:26 CST 2019
;; MSG SIZE  rcvd: 114
Host info
5.239.4.45.in-addr.arpa domain name pointer 45.4.239-5.in-addr.arpa.
Nslookup info:
Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
5.239.4.45.in-addr.arpa	name = 45.4.239-5.in-addr.arpa.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
198.108.67.104 attack
09/08/2019-15:34:42.925290 198.108.67.104 Protocol: 6 ET DROP Dshield Block Listed Source group 1
2019-09-09 03:57:01
59.10.5.156 attack
2019-09-08T19:34:30.674375abusebot-8.cloudsearch.cf sshd\[10129\]: Invalid user q1w2e3r4t5y6 from 59.10.5.156 port 33600
2019-09-09 04:02:26
220.92.16.82 attack
Sep  8 21:33:57 ncomp sshd[30652]: Invalid user support from 220.92.16.82
Sep  8 21:33:57 ncomp sshd[30652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.92.16.82
Sep  8 21:33:57 ncomp sshd[30652]: Invalid user support from 220.92.16.82
Sep  8 21:33:59 ncomp sshd[30652]: Failed password for invalid user support from 220.92.16.82 port 39166 ssh2
2019-09-09 04:22:01
192.99.167.136 attack
Sep  8 19:34:51 vm-dfa0dd01 sshd[58767]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.99.167.136  user=root
Sep  8 19:34:53 vm-dfa0dd01 sshd[58767]: Failed password for root from 192.99.167.136 port 54448 ssh2
...
2019-09-09 03:51:31
119.235.24.244 attackbots
Sep  8 14:55:43 aat-srv002 sshd[26424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.235.24.244
Sep  8 14:55:45 aat-srv002 sshd[26424]: Failed password for invalid user user from 119.235.24.244 port 56283 ssh2
Sep  8 15:06:37 aat-srv002 sshd[26808]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.235.24.244
Sep  8 15:06:39 aat-srv002 sshd[26808]: Failed password for invalid user deploy from 119.235.24.244 port 50100 ssh2
...
2019-09-09 04:08:56
190.151.26.35 attack
F2B jail: sshd. Time: 2019-09-08 21:35:18, Reported by: VKReport
2019-09-09 03:36:50
51.75.52.134 attackbots
Sep  8 09:29:24 wbs sshd\[4243\]: Invalid user server from 51.75.52.134
Sep  8 09:29:24 wbs sshd\[4243\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3130931.ip-51-75-52.eu
Sep  8 09:29:26 wbs sshd\[4243\]: Failed password for invalid user server from 51.75.52.134 port 54472 ssh2
Sep  8 09:35:11 wbs sshd\[4884\]: Invalid user gitblit from 51.75.52.134
Sep  8 09:35:11 wbs sshd\[4884\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns3130931.ip-51-75-52.eu
2019-09-09 03:41:34
118.24.84.203 attackspambots
Sep  8 21:58:52 dedicated sshd[4240]: Invalid user pass from 118.24.84.203 port 55419
2019-09-09 04:07:38
92.53.90.182 attackbotsspam
09/08/2019-15:34:23.479234 92.53.90.182 Protocol: 6 ET SCAN NMAP -sS window 1024
2019-09-09 04:05:43
54.38.184.235 attackspam
Sep  8 21:29:25 SilenceServices sshd[2190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.184.235
Sep  8 21:29:27 SilenceServices sshd[2190]: Failed password for invalid user teste from 54.38.184.235 port 57540 ssh2
Sep  8 21:35:06 SilenceServices sshd[6874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.184.235
2019-09-09 03:43:30
49.88.112.71 attackbotsspam
2019-09-08T20:03:44.796757abusebot-6.cloudsearch.cf sshd\[1306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.71  user=root
2019-09-09 04:12:13
52.162.237.22 attackspambots
Sep  8 09:59:16 lcprod sshd\[10140\]: Invalid user kfserver from 52.162.237.22
Sep  8 09:59:16 lcprod sshd\[10140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.162.237.22
Sep  8 09:59:18 lcprod sshd\[10140\]: Failed password for invalid user kfserver from 52.162.237.22 port 41016 ssh2
Sep  8 10:04:05 lcprod sshd\[10707\]: Invalid user user from 52.162.237.22
Sep  8 10:04:05 lcprod sshd\[10707\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.162.237.22
2019-09-09 04:08:00
77.247.108.202 attack
09/08/2019-15:34:47.137676 77.247.108.202 Protocol: 17 ET SCAN Sipvicious Scan
2019-09-09 03:56:03
138.68.208.48 attackbots
Lines containing failures of 138.68.208.48


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=138.68.208.48
2019-09-09 04:16:38
128.199.118.27 attackspam
$f2bV_matches
2019-09-09 04:24:44

Recently Reported IPs

39.215.204.54 51.89.142.93 36.184.251.88 87.76.206.72
74.5.86.247 249.237.21.174 177.238.249.22 179.64.166.14
45.13.39.19 37.229.197.42 191.53.253.250 67.196.136.48
189.216.95.164 197.56.72.186 14.63.18.230 122.3.49.253
168.195.208.226 103.242.57.155 80.201.245.254 89.186.2.18