IP Address

45.173.176.254

IPv4 Public
BR BR
AS268818
Kobertura Telecom LTDA
572 Reports
This IP is under Observation Suspicious activity detected - monitor closely
10/10 Threat
64% Confidence
572 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Top 10% High Threat
BR
BR Location
Kobertura Telecom LTDA ASN 268818
572 Reports
Honeypot Data Source

Severe Risk

IP 45.173.176.254 is a critical-risk address linked to 572 abuse reports and sustained hacking activity, originating from the Brazilian network AS268818 operated by Kobertura Telecom LTDA, with automated honeypot sensors detecting persistent intrusion attempts during January-February 2026.

The available intelligence shows all 20 recent reported incidents categorized as hacking activity, sourced exclusively from automated honeypot detection systems. While the overall confidence score stands at 64%, the cumulative report volume paints a consistent picture of a threat actor engaged in systematic probing and unauthorized access attempts. The activity timeframe spans from January through February 2026, indicating a concentrated campaign rather than isolated incidents. Geographic attribution to Brazil places this source within a South American network operator, which aligns with patterns observed in automated credential-based attacks targeting internet-facing services globally.

Hacking activity in this context encompasses vulnerability exploitation attempts, intrusion enumeration, and unauthorized access probing against exposed services such as SSH, Telnet, or web interfaces. The volume of 572 reports demonstrates persistent interest from this address in compromising target systems, with each report representing a detected attempt that would have succeeded against unpatched or misconfigured targets. Real-world risk includes credential theft, data exfiltration, and establishment of footholds for subsequent lateral movement within victim networks. The honeypot-derived detections suggest this IP participates in broad scanning campaigns that systematically catalogue and exploit exposed attack surfaces.

Network defenders should immediately block this IP at perimeter firewalls and intrusion prevention systems based on its confirmed malicious reputation. Implementing fail2ban or equivalent authentication hardening tools on SSH and remote access services will automate blocking of repeated connection attempts. Rate-limiting login attempts and enforcing strong, unique credentials alongside multi-factor authentication significantly reduces the effectiveness of the intrusion techniques employed. Regular security patching and monitoring of authentication logs for the geographic origin patterns associated with this source address will further strengthen defensive posture.

More threatening than 91% of monitored IPs

Threat Categories

Hacking 30

Technical Details

General hacking activity includes various intrusion attempts, exploitation of vulnerabilities, and unauthorized access attempts.

Recommended Mitigations

Keep systems patched, implement intrusion detection, and follow security best practices.

High-Risk Network Association

This IP belongs to a network (ASN 268818) with elevated threat levels. The ISP Kobertura Telecom LTDA hosts multiple reported malicious addresses, suggesting systemic security issues or permissive policies.

Network-wide patterns may indicate this is part of a larger malicious infrastructure.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 10/10 Critical
Critical
Activity Frequency 0/10 Inactive
Confidence Score 61% High Confidence

Confidence History

17. Feb 2026 - 19. Feb 2026
64% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x2 75%
Hacking Honeypot 75%
Hacking Honeypot 75%
Hacking Honeypot x2 75%
Hacking Honeypot x3 75%
Hacking Honeypot x2 75%
Hacking Honeypot 75%
Hacking Honeypot x3 75%
Hacking Honeypot x2 75%
Hacking Honeypot 75%
Hacking Honeypot x3 75%
Hacking Honeypot x2 75%
Hacking Honeypot 75%
Hacking Honeypot x2 75%
Hacking Honeypot 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
Hacking Honeypot x3 75%
10 of 572 shown

Technical Details

Basic Information

IP Address
45.173.176.254
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class A

Geolocation

Country
BR BR
ASN
AS268818
ISP
Kobertura Telecom LTDA

DNS Information

Reverse DNS
45.173.176.254.koberturatelecom.com.br
PTR Record
Yes
Connection Type
Dynamic

Statistics

Total Reports
572
First Reported
20 Jan 2026
Last Reported
19 Feb 2026, 16:05

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS268818
Kobertura Telecom LTDA
BR BR

Network Threat Assessment

10/10
This network has a high threat level with significant malicious activity reported across multiple IPs.

Network Statistics

1
Total IPs Monitored
1,420
Total Reports
1420
Reports per IP

Network Context

This IP address belongs to Kobertura Telecom LTDA (AS268818), which manages 1 IP addresses in our monitoring system. Out of these, 1,420 have been reported for suspicious activities, resulting in a network-wide threat level of 10/10.

Network warning: This network has elevated threat levels. Exercise caution when interacting with IPs from this ASN.

Comparative Analysis

How this IP compares to others in our threat intelligence database

91 %

Global Threat Ranking

This IP is more threatening than 91% of all IPs in our database.

Top 10% Most Dangerous

Global Comparison

Compared against 199,810 reported IPs worldwide

Threat Level 10/10 avg: 5.3 ++
Total Reports 572 avg: 23 ++

Geographic Comparison

Compared against 10,259 IPs in BR

Threat Level 10/10 country avg: 5.5 ++
Total Reports 572 country avg: 14 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,517 threat incidents tracked globally • Last 24h: 19,025 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,480 20.5%
  2. 02
    IN
    India IN
    29,193 15.6%
  3. 03
    CN
    China CN
    26,035 13.9%
  4. 04
    BR
    Brazil BR THIS IP
    10,259 5.5%
  5. 05
    DE
    Germany DE
    7,146 3.8%
  6. 06
    SG
    Singapore SG
    6,479 3.5%
  7. 07
    ID
    Indonesia ID
    5,557 3%
  8. 08
    RU
    Russia RU
    4,707 2.5%
  9. 09
    PK
    Pakistan PK
    4,689 2.5%
  10. 10
    NL
    Netherlands NL
    4,361 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs with similar threat level and confidence scores.

15 Related IPs
9.5/10 Avg Threat
64% Avg Confidence
14 High Threat
High-risk network: Majority of related IPs are flagged
3.143.33.63 8/10
Confidence 64%
Reports 3,636
Location US US
4 Feb 2026
218.78.24.117 10/10
Confidence 64%
Reports 2,055
Location CN CN
27 Apr 2026
93.152.230.150 10/10
Confidence 64%
Reports 1,761
Location BG BG
13 Jan 2026
185.192.96.169 10/10
Confidence 64%
Reports 884
Location DE DE
13 Oct 2025
3.137.151.234 10/10
Confidence 64%
Reports 816
Location US US
11 Oct 2025
91.224.92.28 10/10
Confidence 64%
Reports 631
Location GB GB
29 Nov 2025
79.124.8.120 10/10
Confidence 64%
Reports 620
Location NL NL
28 Oct 2025
36.255.98.3 10/10
Confidence 64%
Reports 567
Location SG SG
16 Oct 2025
58.9.10.203 10/10
Confidence 64%
Reports 497
Location TH TH
8 Nov 2025
103.119.3.109 5/10
Confidence 64%
Reports 486
Location HK HK
10 Nov 2025
195.178.110.15 10/10
Confidence 64%
Reports 485
Location BG BG
23 Apr 2026
172.110.223.5 10/10
Confidence 64%
Reports 457
Location CZ CZ
13 Feb 2026
103.207.3.28 10/10
Confidence 64%
Reports 427
Location IN IN
8 Oct 2025
198.199.86.189 10/10
Confidence 64%
Reports 419
Location US US
6 Oct 2025
85.11.167.3 10/10
Confidence 64%
Reports 415
Location BG BG
16 Feb 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "45.173.176.254",
    "threat_level": 10,
    "confidence_score": 64,
    "total_reports": 572,
    "country_code": "BR",
    "isp_name": "Kobertura Telecom LTDA",
    "asn": "268818",
    "first_reported": "2026-01-20 20:48:24",
    "last_reported": "2026-02-19 16:05:11",
    "exported_at": "2026-06-09T11:39:02+02:00",
    "source": "https://reportedip.de/ip/45.173.176.254/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses