User LIT-BR0169 joined AbuseIPDB in December 2025 and has reported 27 IP addresses.

Standing (weight) is good.

ACTIVE USER
IP Date Comment Categories
๐Ÿ‡บ๐Ÿ‡ธ 54.240.8.62
Credential Harvesting behavior, phishing hosting.
Phishing
๐Ÿ‡บ๐Ÿ‡ธ 162.240.162.190
Spam. E-mails quarantined.
Email Spam
๐Ÿ‡บ๐Ÿ‡ธ 74.207.235.70
Malicious repository http://74.207.235.70/promotion.php
Hacking Web App Attack
๐Ÿ‡ต๐Ÿ‡ฐ 223.123.38.36
IP meets block IP policy to Mitrotik devices (network sniffing device) tcp/16150
Port Scan
๐Ÿ‡จ๐Ÿ‡ณ 81.70.136.146
P2P connexion via BitTorrent.
Port Scan
๐Ÿ‡ง๐Ÿ‡ท 170.78.119.172
Attempt succeeded to connect via SSH to one of our client's host
SSH
๐Ÿ‡บ๐Ÿ‡ธ 66.175.211.202
Request a predictable resource using the string hostxxxxx/administrator/manifests/files/joomla.xml
Web App Attack
๐Ÿ‡บ๐Ÿ‡ธ 40.83.53.97
Hacking
๐Ÿ‡บ๐Ÿ‡ธ 209.126.5.94
Web App Attack
๐Ÿ‡บ๐Ÿ‡ธ 50.49.206.242
Web App Attack
๐Ÿ‡บ๐Ÿ‡ธ 198.160.6.4
Web App Attack
๐Ÿ‡บ๐Ÿ‡ธ 207.90.244.19
tcp port scan up to 1000 different ports.
Port Scan
๐Ÿ‡บ๐Ÿ‡ธ 23.19.231.99
Attempt to exploit the CVE-2025-55182 NextJS Vulnerability
Web App Attack
๐Ÿ‡บ๐Ÿ‡ธ 206.41.72.116
Attempt to exploit the CVE-2025-55182 NextJS Vulnerability
Web App Attack
๐Ÿ‡บ๐Ÿ‡ธ 34.44.222.88
Web App Attack
๐Ÿ‡บ๐Ÿ‡ธ 34.58.169.33
Web App Attack
๐Ÿ‡บ๐Ÿ‡ธ 160.153.176.241
Phishing
๐Ÿ‡บ๐Ÿ‡ธ 150.241.206.248
Web App Attack
๐Ÿ‡บ๐Ÿ‡ธ 50.35.69.30
Attempt to exploit the next.js vulnerability to one of our clients.
Hacking
๐Ÿ‡บ๐Ÿ‡ธ 96.250.84.167
Tor Node.
DNS Compromise
๐Ÿ‡ง๐Ÿ‡ท 181.191.9.80
Connection to a TOR destination port (9050 or 9051).
DNS Compromise
๐Ÿ‡บ๐Ÿ‡ธ 34.59.175.189
Web App Attack
๐Ÿ‡ธ๐Ÿ‡ฌ 139.59.101.238
Multiple requests to subdomains xxxxxx.mattosfilho.com.br
Port Scan
๐Ÿ‡บ๐Ÿ‡ธ 194.54.144.89
Multiple requests to the same corp. destination IP: 104.xx.190.17x
DDoS Attack Web App Attack
๐Ÿ‡บ๐Ÿ‡ธ 162.241.63.14
Web App Attack