IP Address

45.183.247.34

IPv4 Public
CO CO
AS269777
GRUPO LUMA SAS
323 Reports
This IP is under Observation Suspicious activity detected - monitor closely
8/10 Threat
68% Confidence
323 Reports

Threat Intelligence Analysis

AI-generated security assessment based on aggregated threat data

Above Average Risk
CO
CO Location
GRUPO LUMA SAS ASN 269777
323 Reports
Honeypot Data Source

High Risk

IP address 45.183.247.34 is a high-risk address associated with SSH brute-force attack activity, with a threat level rated at 8 out of 10 and 323 total abuse reports filed against it through automated honeypot sensors between August and November 2025.

The address, registered to GRUPO LUMA SAS in Colombia under autonomous system number AS269777, has generated a substantial volume of incident reports during its active window of approximately four months. The 323 total reports indicate persistent threatening behaviour directed at network infrastructure, with 20 recent reports specifically categorising the activity as SSH-related attack attempts. A confidence score of 68 percent suggests the assessment is well-supported by evidence but allows for the possibility that some benign traffic may have been misclassified. The activity frequency metric of 0 out of 10 likely reflects the temporal distribution of the reports across the four-month period, indicating sustained rather than burst-style engagement with target systems.

SSH brute-force attacks represent a direct pathway to server compromise when organisations rely on password-based authentication. Attackers systematically cycle through credential combinations to guess weak or commonly used passwords, exploiting any exposed SSH service listening on port 22 or alternative ports. Successful authentication grants remote command execution capabilities, enabling data exfiltration, malware deployment or use of the compromised host as a pivot point for deeper network intrusion.

Defensive measures should include immediately deploying key-based authentication and disabling password-based SSH access entirely where feasible. Operators should confirm that fail2ban or equivalent intrusion-prevention tools are actively monitoring authentication logs and auto-banning repeat offenders. Changing the default SSH listening port reduces opportunistic scanning volume, and disabling root login over SSH forces adversaries to compromise an intermediate unprivileged account before attempting privilege escalation. Regular auditing of authentication logs and enforcement of strong password policies on any remaining password-authenticated services will further reduce exposure to this threat category.

More threatening than 79% of monitored IPs

Threat Categories

SSH 30

Technical Details

SSH attacks attempt to gain server access through password guessing or exploitation of SSH vulnerabilities.

Recommended Mitigations

Use key-based authentication, change default ports, implement fail2ban, and disable root login.

Reputable Network

This IP is hosted on a network (ASN 269777) with generally good reputation. The ISP GRUPO LUMA SAS maintains standard security practices.

The malicious activity may represent an isolated compromised system rather than systematic abuse.

Security Recommendations

Continue monitoring for emerging patterns.

This analysis is automatically generated from aggregated, anonymized threat intelligence data. No personal information is displayed or stored. Assessment accuracy depends on available data volume and diversity.

Reputation Summary

Threat Level 8/10 High
Critical
Activity Frequency 0/10 Inactive
Confidence Score 62% High Confidence

Confidence History

5. Nov 2025 - 7. Nov 2025
68% Current
Stable Trend

The confidence score shows the reliability of the threat assessment based on the number and quality of reports.

Security Reports (30)

Date Categories Source Confidence
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
SSH Honeypot 75%
10 of 323 shown

Technical Details

Basic Information

IP Address
45.183.247.34
IP Version
IPv4
Network Type
Public
Tor Network
No
Network Class
Class A

Geolocation

Country
CO CO
ASN
AS269777
ISP
GRUPO LUMA SAS

DNS Information

Reverse DNS
None
PTR Record
No
Connection Type
Static

Statistics

Total Reports
323
First Reported
20 Aug 2025
Last Reported
7 Nov 2025, 04:59

Network Reputation

Analysis of the entire network (ASN) that this IP address belongs to, providing context about the hosting provider and network-wide threat patterns.

Network Identity

AS269777
GRUPO LUMA SAS
CO CO

Network Threat Assessment

0/10
This network appears to be relatively clean with very low threat indicators.

Network Statistics

2
Total IPs Monitored
360
Total Reports
180
Reports per IP

Network Context

This IP address belongs to GRUPO LUMA SAS (AS269777), which manages 2 IP addresses in our monitoring system. Out of these, 360 have been reported for suspicious activities, resulting in a network-wide threat level of 0/10.

Network status: This network appears to be well-maintained with low threat indicators.

Comparative Analysis

How this IP compares to others in our threat intelligence database

79 %

Global Threat Ranking

This IP is more threatening than 79% of all IPs in our database.

High Threat Percentile

Global Comparison

Compared against 199,476 reported IPs worldwide

Threat Level 8/10 avg: 5.3 ++
Total Reports 323 avg: 23 ++

Network Comparison

Compared against 2 IPs in ASN 269777

Threat Level 8/10 network avg: 7.5 =
Total Reports 323 network avg: 170 ++
Network GRUPO LUMA SAS has overall threat level 0/10

Geographic Comparison

Compared against 442 IPs in CO

Threat Level 8/10 country avg: 5.5 +
Total Reports 323 country avg: 20 ++
Indicators:
++ Much Higher + Higher = Similar - Lower -- Much Lower

Geographic Threat Distribution

187,140 threat incidents tracked globally • Last 24h: 19,043 Logs

FEED

Top Threat Sources

  1. 01
    US
    United States US
    38,446 20.5%
  2. 02
    IN
    India IN
    29,023 15.5%
  3. 03
    CN
    China CN
    26,021 13.9%
  4. 04
    BR
    Brazil BR
    10,256 5.5%
  5. 05
    DE
    Germany DE
    7,142 3.8%
  6. 06
    SG
    Singapore SG
    6,476 3.5%
  7. 07
    ID
    Indonesia ID
    5,539 3%
  8. 08
    RU
    Russia RU
    4,703 2.5%
  9. 09
    PK
    Pakistan PK
    4,654 2.5%
  10. 10
    NL
    Netherlands NL
    4,356 2.3%

+40 more countries

THREAT LEVEL
LOW MED HIGH

Geographic data is aggregated and anonymized. No personal information displayed.

Map: simplemaps.com (MIT License)

Related IPs

Other IPs associated with this address through network or behavioral similarity

IPs from the same Autonomous System (AS) network provider.

1 Related IPs
7/10 Avg Threat
14% Avg Confidence
1 High Threat
High-risk network: Majority of related IPs are flagged
45.183.247.183 7/10
Confidence 14%
Reports 17
Location CO CO
27 Nov 2025

IPs from the same subnet range, likely same network segment.

1 Related IPs
7/10 Avg Threat
14% Avg Confidence
1 High Threat
High-risk network: Majority of related IPs are flagged
45.183.247.183 7/10
Confidence 14%
Reports 17
Location CO CO
27 Nov 2025

IPs from the same country with similar threat profiles.

15 Related IPs
9.9/10 Avg Threat
98% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
186.31.95.163 10/10
Confidence 100%
Reports 88
ISP Colombia
31 May 2026
186.80.18.158 8/10
Confidence 99%
Reports 94
ISP Telmex Colombia...
26 Apr 2026
191.97.12.90 10/10
Confidence 99%
Reports 32
ISP TV AZTECA SUCUR...
7 Jun 2026
45.65.233.18 10/10
Confidence 99%
Reports 29
ISP COLOMBIA MAS TV...
8 Jun 2026
186.118.142.245 10/10
Confidence 99%
Reports 20
ISP COLOMBIA TELECO...
29 May 2026
179.33.186.150 10/10
Confidence 98%
Reports 106
ISP COLOMBIA TELECO...
7 Jun 2026
69.6.234.27 10/10
Confidence 98%
Reports 17
ISP Oracle Corporation
1 Jun 2026
190.5.200.98 10/10
Confidence 98%
Reports 16
ISP EMTEL S.A. E.S.P.
9 Jun 2026
152.200.205.180 10/10
Confidence 98%
Reports 15
ISP COLOMBIA TELECO...
26 May 2026
190.85.41.170 10/10
Confidence 97%
Reports 33
ISP Telmex Colombia...
28 May 2026
186.146.235.58 10/10
Confidence 97%
Reports 27
ISP Telmex Colombia...
3 Jun 2026
190.242.109.42 10/10
Confidence 97%
Reports 26
ISP LIBERTY NETWORK...
5 Jun 2026
186.30.115.187 10/10
Confidence 96%
Reports 70
ISP Colombia
7 May 2026
181.49.8.57 10/10
Confidence 96%
Reports 27
ISP Telmex Colombia...
13 May 2026
190.65.59.53 10/10
Confidence 95%
Reports 11
ISP COLOMBIA TELECO...
14 May 2026

IPs with similar threat level and confidence scores.

15 Related IPs
9.4/10 Avg Threat
68% Avg Confidence
15 High Threat
High-risk network: Majority of related IPs are flagged
159.69.99.156 10/10
Confidence 68%
Reports 4,561
Location DE DE
26 Mar 2026
66.132.153.60 10/10
Confidence 68%
Reports 1,351
Location US US
23 Mar 2026
66.132.153.61 10/10
Confidence 68%
Reports 1,298
Location US US
23 Mar 2026
66.132.153.63 10/10
Confidence 68%
Reports 1,290
Location US US
23 Mar 2026
66.132.153.57 10/10
Confidence 68%
Reports 1,228
Location US US
23 Mar 2026
66.132.153.52 10/10
Confidence 68%
Reports 1,173
Location US US
23 Mar 2026
194.165.16.11 10/10
Confidence 68%
Reports 981
Location MC MC
4 Jun 2026
91.92.242.109 10/10
Confidence 68%
Reports 876
Location NL NL
3 Apr 2026
77.83.39.156 7/10
Confidence 68%
Reports 718
Location UA UA
19 Mar 2026
164.92.205.72 10/10
Confidence 68%
Reports 494
Location DE DE
1 Nov 2025
204.76.203.192 10/10
Confidence 68%
Reports 458
Location NL NL
30 Sep 2025
178.62.53.116 10/10
Confidence 68%
Reports 450
Location GB GB
25 Oct 2025
142.93.141.251 10/10
Confidence 68%
Reports 386
Location NL NL
5 Feb 2026
62.60.130.65 7/10
Confidence 68%
Reports 346
Location IR IR
24 Mar 2026
107.189.22.56 7/10
Confidence 68%
Reports 304
Location NL NL
10 Mar 2026

Export & Firewall Rules

Download threat data or generate firewall rules to block this IP

JSON Report

Structured data format for integration with security tools and SIEM systems.

{
    "ip_address": "45.183.247.34",
    "threat_level": 8,
    "confidence_score": 68,
    "total_reports": 323,
    "country_code": "CO",
    "isp_name": "GRUPO LUMA SAS",
    "asn": "269777",
    "first_reported": "2025-08-20 23:50:01",
    "last_reported": "2025-11-07 04:59:41",
    "exported_at": "2026-06-09T08:57:53+02:00",
    "source": "https://reportedip.de/ip/45.183.247.34/"
}
Download JSON

GDPR Compliant: Exports contain only IP-related threat data. No personal information or reporter details are included.

Analyzed high-risk IP addresses