201.148.119.94

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Tvac TV Antena Comunitaria Ltda EPP

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Mar 10 03:11:30 odroid64 sshd\[12628\]: Invalid user admin from 201.148.119.94 Mar 10 03:11:30 odroid64 sshd\[12628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.148.119.94 Mar 10 03:11:32 odroid64 sshd\[12628\]: Failed password for invalid user admin from 201.148.119.94 port 55262 ssh2 ...	2019-10-18 07:42:51

Type

Details

Datetime

attack

Mar 10 03:11:30 odroid64 sshd\[12628\]: Invalid user admin from 201.148.119.94
Mar 10 03:11:30 odroid64 sshd\[12628\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.148.119.94
Mar 10 03:11:32 odroid64 sshd\[12628\]: Failed password for invalid user admin from 201.148.119.94 port 55262 ssh2
...

2019-10-18 07:42:51

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.148.119.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29913
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.148.119.94.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019101701 1800 900 604800 86400

;; Query time: 105 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 18 07:42:47 CST 2019
;; MSG SIZE  rcvd: 118

Host info

94.119.148.201.in-addr.arpa domain name pointer 201-148-119-94.tvactelecom.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
94.119.148.201.in-addr.arpa	name = 201-148-119-94.tvactelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
186.211.3.38	attack	8080/tcp [2019-11-01]1pkt	2019-11-01 14:42:27
49.85.87.149	attack	Automatic report - Port Scan	2019-11-01 15:09:48
223.25.103.42	attackspam	8080/tcp [2019-11-01]1pkt	2019-11-01 14:40:06
104.248.58.71	attackspam	2019-11-01T06:03:18.552130abusebot-6.cloudsearch.cf sshd\[4127\]: Invalid user 3edc4rfv5tgb from 104.248.58.71 port 33992	2019-11-01 14:30:56
62.231.164.1	attack	445/tcp 445/tcp 445/tcp [2019-11-01]3pkt	2019-11-01 14:55:48
106.13.96.210	attackspambots	Lines containing failures of 106.13.96.210 (max 1000) Oct 30 17:25:13 localhost sshd[27295]: Invalid user user3 from 106.13.96.210 port 43906 Oct 30 17:25:13 localhost sshd[27295]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.96.210 Oct 30 17:25:14 localhost sshd[27295]: Failed password for invalid user user3 from 106.13.96.210 port 43906 ssh2 Oct 30 17:25:16 localhost sshd[27295]: Received disconnect from 106.13.96.210 port 43906:11: Bye Bye [preauth] Oct 30 17:25:16 localhost sshd[27295]: Disconnected from invalid user user3 106.13.96.210 port 43906 [preauth] Oct 30 17:45:00 localhost sshd[14302]: Invalid user ultra from 106.13.96.210 port 40718 Oct 30 17:45:00 localhost sshd[14302]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.96.210 Oct 30 17:45:03 localhost sshd[14302]: Failed password for invalid user ultra from 106.13.96.210 port 40718 ssh2 Oct 30 17:45:03 localho........ ------------------------------	2019-11-01 14:48:24
185.232.67.8	attackbotsspam	Nov 1 07:46:50 dedicated sshd[21686]: Invalid user admin from 185.232.67.8 port 33920	2019-11-01 15:03:52
46.4.78.179	attack	Nov 1 04:45:36 liveconfig01 sshd[5309]: Did not receive identification string from 46.4.78.179 Nov 1 04:45:38 liveconfig01 sshd[5318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.4.78.179 user=r.r Nov 1 04:45:39 liveconfig01 sshd[5339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.4.78.179 user=r.r Nov 1 04:45:39 liveconfig01 sshd[5331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.4.78.179 user=r.r Nov 1 04:45:39 liveconfig01 sshd[5367]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.4.78.179 user=r.r Nov 1 04:45:39 liveconfig01 sshd[5322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.4.78.179 user=r.r Nov 1 04:45:39 liveconfig01 sshd[5353]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.4........ -------------------------------	2019-11-01 14:56:22
142.93.201.168	attackbotsspam	Invalid user earl from 142.93.201.168 port 37301	2019-11-01 14:47:19
62.234.74.29	attackbotsspam	Automatic report - Banned IP Access	2019-11-01 14:55:19
117.4.242.176	attackspam	1433/tcp [2019-11-01]1pkt	2019-11-01 14:39:26
157.230.11.154	attackbotsspam	WordPress login Brute force / Web App Attack on client site.	2019-11-01 14:50:32
5.196.217.177	attack	Nov 1 07:52:28 mail postfix/smtpd[32313]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 1 07:53:22 mail postfix/smtpd[32312]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 1 07:53:26 mail postfix/smtpd[2592]: warning: unknown[5.196.217.177]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-01 14:58:28
218.249.69.210	attackbotsspam	Invalid user minecraft from 218.249.69.210 port 23509	2019-11-01 14:42:06
45.242.108.152	attackspambots	1433/tcp [2019-11-01]1pkt	2019-11-01 14:43:30

Recently Reported IPs

106.75.109.223	112.121.178.187	133.130.29.137	60.112.184.34
162.73.230.176	149.244.191.84	82.194.229.214	103.54.219.250
202.182.106.136	103.119.62.121	93.41.182.249	157.245.107.153
96.9.74.139	111.91.237.208	13.233.91.123	122.154.103.68
190.111.249.153	72.240.134.230	202.53.81.253	144.214.25.150