JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 187.85.151.122

187.85.151.122 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 0%: ?

ISP	ALT \| GRUPO BRASIL TECPAR
Usage Type	Fixed Line ISP
ASN	AS53062
Hostname(s)	187-85-151-122.gegnet.com.br
Domain Name	alt.com.br
Country	🇧🇷 Brazil
City	Chapeco, Santa Catarina

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 187.85.151.122

Whois 187.85.151.122

IP Abuse Reports for 187.85.151.122:

This IP address has been reported a total of 18 times from 13 distinct sources. 187.85.151.122 was first reported on January 2nd 2021, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 malamanhado.com.br	2025-03-16 10:30:44 (1 year ago)	2025-03-16T10:30:42.218125+00:00 jitsi.malamanhado.com.br sshd[356389]: Connection from 187.85.151.1 ... show more 2025-03-16T10:30:42.218125+00:00 jitsi.malamanhado.com.br sshd[356389]: Connection from 187.85.151.122 port 55357 on 74.50.123.34 port 22 rdomain "" 2025-03-16T10:30:43.999456+00:00 jitsi.malamanhado.com.br sshd[356389]: Failed password for root from 187.85.151.122 port 55357 ssh2 show less	Brute-Force SSH
🇳🇱 applemooz	2025-03-15 15:19:24 (1 year ago)	Mar 15 16:17:10 lnxweb62 sshd[13456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 eu ... show more Mar 15 16:17:10 lnxweb62 sshd[13456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.85.151.122 user=root Mar 15 16:17:12 lnxweb62 sshd[13456]: Failed password for root from 187.85.151.122 port 51848 ssh2 Mar 15 16:17:15 lnxweb62 sshd[13456]: Connection closed by authenticating user root 187.85.151.122 port 51848 [preauth] Mar 15 16:19:21 lnxweb62 sshd[15086]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.85.151.122 user=root Mar 15 16:19:23 lnxweb62 sshd[15086]: Failed password for root from 187.85.151.122 port 53896 ssh2 ... show less	Brute-Force SSH
🇨🇿 unhfree.net	2025-03-09 05:54:53 (1 year ago)	Mar 9 04:23:53 canopus postfix/smtpd[770040]: NOQUEUE: reject: RCPT from 187-85-151-122.gegnet.com. ... show more Mar 9 04:23:53 canopus postfix/smtpd[770040]: NOQUEUE: reject: RCPT from 187-85-151-122.gegnet.com.br[187.85.151.122]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Mar 9 04:23:53 canopus postfix/smtpd[770040]: too many errors after RCPT from 187-85-151-122.gegnet.com.br[187.85.151.122] Mar 9 05:23:37 canopus postfix/smtpd[777026]: NOQUEUE: reject: RCPT from 187-85-151-122.gegnet.com.br[187.85.151.122]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Mar 9 05:23:37 canopus postfix/smtpd[777026]: too many errors after RCPT from 187-85-151-122.gegnet.com.br[187.85.151.122] Mar 9 06:54:53 canopus postfix/smtpd[786250]: NOQUEUE: reject: RCPT from 187-85-151-122.gegnet.com.br[187.85.151.122]: ... show less	Brute-Force Exploited Host
🇨🇿 unhfree.net	2025-02-21 04:27:37 (1 year ago)	Feb 21 01:05:52 canopus postfix/smtpd[1449327]: NOQUEUE: reject: RCPT from 187-85-151-122.gegnet.com ... show more Feb 21 01:05:52 canopus postfix/smtpd[1449327]: NOQUEUE: reject: RCPT from 187-85-151-122.gegnet.com.br[187.85.151.122]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Feb 21 01:05:52 canopus postfix/smtpd[1449327]: NOQUEUE: reject: RCPT from 187-85-151-122.gegnet.com.br[187.85.151.122]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Feb 21 01:05:52 canopus postfix/smtpd[1449327]: NOQUEUE: reject: RCPT from 187-85-151-122.gegnet.com.br[187.85.151.122]: 554 5.7.1 <[email protected]>: Recipient address rejected: Maximum 20 messages per 60 minutes limit reached; from=<[email protected]> to=<[email protected]> proto=ESMTP helo=<localhost> Feb 21 01:05:52 canopus postfix/smtpd ... show less	Brute-Force Exploited Host
🇩🇪 nyuuzyou	2024-12-14 11:18:41 (1 year ago)	Intensive scraping: /web?s=%D0%B4%D0%BE%D1%81%D1%82%D0%B0%D0%B2%D0%BA%D0%B0%20Mikhaylovka&country=be ... show more Intensive scraping: /web?s=%D0%B4%D0%BE%D1%81%D1%82%D0%B0%D0%B2%D0%BA%D0%B0%20Mikhaylovka&country=be-be&scraper=ddg. User-Agent: Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/114.0.0.0 YaBrowser/22.7.0 Yowser/2.5 Safari/537.36. show less	Bad Web Bot
🇩🇪 Pingger Shikkoken	2023-11-15 14:17:29 (2 years ago)	Participating in DDoS Amplification Attack! Sending 11 requests over 43s asking for ?0? of apple.com ... show more Participating in DDoS Amplification Attack! Sending 11 requests over 43s asking for ?0? of apple.com, cisco.com, atlassian.com show less	DNS Poisoning DDoS Attack Hacking Brute-Force Exploited Host
🇩🇪 Pingger Shikkoken	2023-11-14 09:36:45 (2 years ago)	Participating in DDoS Amplification Attack! Sending 11 requests over 4034s asking for ?0? of apple.c ... show more Participating in DDoS Amplification Attack! Sending 11 requests over 4034s asking for ?0? of apple.com, cisco.com, atlassian.com show less	DNS Poisoning DDoS Attack Hacking Brute-Force Exploited Host
🇨🇦 Peter Chargen	2022-10-20 02:10:33 (3 years ago)	PHP email form abuse/SPAM attempt	Email Spam
🇦🇷 Anonymous	2021-11-14 20:52:42 (4 years ago)	proxy reported by socks-proxy net	Open Proxy
🇵🇱 kolya	2021-11-12 10:39:09 (4 years ago)	[12/11/2021 15:39:08] Unauthorized connection attempt to port 25565, server 9a0b801d.	Port Scan
🇺🇸 VSM Networks	2021-11-12 01:06:11 (4 years ago)	Credential Stuffing	Brute-Force
🇺🇸 VSM Networks	2021-08-19 08:40:16 (4 years ago)	Credential Stuffing	Brute-Force
IrisFlower	2021-01-16 11:12:23 (5 years ago)	Unauthorized connection attempt detected from IP address 187.85.151.122 to port 8080	Hacking
🇯🇵 stfw	2021-01-11 00:34:15 (5 years ago)	8080/tcp [2021-01-11]1pkt	Port Scan
Anonymous	2021-01-05 04:20:48 (5 years ago)	port scan and connect, tcp 8080 (http-proxy)	Port Scan

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇧🇷 189.41.252.68

🇧🇷 189.34.145.38

🇩🇴 152.0.32.97

🇺🇸 104.196.30.98

🇺🇸 76.79.213.69

🇫🇷 75.119.129.233

🇮🇩 69.5.20.232

🇳🇱 45.142.193.53

🇨🇳 36.135.62.103

🇬🇧 35.203.211.39

🇺🇸 34.162.90.249

🇧🇪 34.78.205.32

🇮🇳 2405:201:a412:c961:69c0:a119:6348:aab1

🇳🇱 2001:610:9000::1

🇺🇸 216.73.216.216

🇧🇷 189.34.144.76

🇧🇷 189.33.66.209

🇨🇳 182.126.246.111

🇬🇧 162.158.74.21

🇨🇳 117.175.140.121