201.150.149.200

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Halley Telecom Comercio & Servico Ltda ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Automatic report - Port Scan Attack	2019-08-12 16:15:39

Comments on same subnet:

IP	Type	Details	Datetime
201.150.149.91	attackspambots	Port probing on unauthorized port 23	2020-09-05 20:42:07
201.150.149.91	attack	Port probing on unauthorized port 23	2020-09-05 05:05:06
201.150.149.195	attack	Automatic report - Port Scan Attack	2020-06-21 00:58:29
201.150.149.194	attack	Unauthorized connection attempt detected from IP address 201.150.149.194 to port 80	2020-05-13 04:27:26
201.150.149.44	attackspambots	Unauthorized connection attempt detected from IP address 201.150.149.44 to port 8080	2020-05-13 03:08:07
201.150.149.87	attack	Automatic report - Port Scan Attack	2019-12-18 13:42:10
201.150.149.86	attackbots	Automatic report - Port Scan Attack	2019-10-06 23:19:56
201.150.149.162	attackbotsspam	:	2019-08-09 00:52:41
201.150.149.102	attackbotsspam	Honeypot attack, port: 23, PTR: 102-149-150-201.halleytelecom.com.br.	2019-07-07 11:50:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.150.149.200
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33418
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.150.149.200.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081200 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Aug 12 16:15:33 CST 2019
;; MSG SIZE  rcvd: 119

Host info

200.149.150.201.in-addr.arpa domain name pointer 200-149-150-201.halleytelecom.com.br.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
200.149.150.201.in-addr.arpa	name = 200-149-150-201.halleytelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
216.56.42.242	attackspambots	RDP Bruteforce	2019-11-23 20:10:03
68.183.219.24	attack	68.183.219.24 was recorded 13 times by 3 hosts attempting to connect to the following ports: 2377,4243,2376,2375. Incident counter (4h, 24h, all-time): 13, 54, 55	2019-11-23 20:13:17
1.34.117.251	attack	FTP Brute-Force reported by Fail2Ban	2019-11-23 19:36:01
46.38.144.32	attackbots	Nov 23 13:00:10 webserver postfix/smtpd\[10280\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 13:01:23 webserver postfix/smtpd\[6805\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 13:02:35 webserver postfix/smtpd\[6805\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 13:03:48 webserver postfix/smtpd\[6805\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 13:04:58 webserver postfix/smtpd\[6805\]: warning: unknown\[46.38.144.32\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-23 20:05:39
192.144.130.62	attackbotsspam	Nov 23 11:33:47 v22019058497090703 sshd[1355]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.130.62 Nov 23 11:33:49 v22019058497090703 sshd[1355]: Failed password for invalid user abcABC123!@ from 192.144.130.62 port 62768 ssh2 Nov 23 11:37:43 v22019058497090703 sshd[1725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.130.62 ...	2019-11-23 19:35:08
92.118.38.55	attackspambots	Nov 23 12:58:58 webserver postfix/smtpd\[6805\]: warning: unknown\[92.118.38.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 12:59:32 webserver postfix/smtpd\[10019\]: warning: unknown\[92.118.38.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 13:00:07 webserver postfix/smtpd\[6805\]: warning: unknown\[92.118.38.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 13:00:41 webserver postfix/smtpd\[10019\]: warning: unknown\[92.118.38.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 13:01:16 webserver postfix/smtpd\[10280\]: warning: unknown\[92.118.38.55\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-11-23 20:01:39
201.116.194.210	attackspambots	Nov 23 11:59:34 icinga sshd[19140]: Failed password for root from 201.116.194.210 port 11423 ssh2 ...	2019-11-23 20:03:43
182.242.138.147	attackspam	Nov 23 07:45:02 www sshd\[19096\]: Invalid user eric from 182.242.138.147 port 55926 ...	2019-11-23 19:47:46
91.134.140.242	attackspambots	Nov 23 12:24:12 minden010 sshd[26725]: Failed password for root from 91.134.140.242 port 55356 ssh2 Nov 23 12:27:28 minden010 sshd[29474]: Failed password for root from 91.134.140.242 port 35024 ssh2 ...	2019-11-23 19:42:45
129.204.108.143	attack	Nov 23 13:02:49 ArkNodeAT sshd\[28127\]: Invalid user cason from 129.204.108.143 Nov 23 13:02:49 ArkNodeAT sshd\[28127\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.108.143 Nov 23 13:02:52 ArkNodeAT sshd\[28127\]: Failed password for invalid user cason from 129.204.108.143 port 41897 ssh2	2019-11-23 20:16:18
81.213.214.225	attackspambots	5x Failed Password	2019-11-23 20:18:17
5.148.3.212	attack	2019-11-23T08:52:36.982973abusebot-4.cloudsearch.cf sshd\[8013\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=5.148.3.212 user=root	2019-11-23 20:17:03
46.38.144.17	attackbots	Nov 23 13:14:38 vmanager6029 postfix/smtpd\[14103\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Nov 23 13:15:14 vmanager6029 postfix/smtpd\[14103\]: warning: unknown\[46.38.144.17\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-23 20:17:38
179.110.177.233	attack	Automatic report - Port Scan Attack	2019-11-23 19:35:39
222.186.175.220	attackspambots	Nov 23 12:56:27 nextcloud sshd\[5140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.220 user=root Nov 23 12:56:29 nextcloud sshd\[5140\]: Failed password for root from 222.186.175.220 port 22476 ssh2 Nov 23 12:56:33 nextcloud sshd\[5140\]: Failed password for root from 222.186.175.220 port 22476 ssh2 ...	2019-11-23 20:02:41

Recently Reported IPs

77.87.77.19	107.167.189.99	67.207.94.61	103.71.18.234
125.17.78.242	185.121.138.203	175.149.49.198	77.236.97.111
41.36.31.88	123.110.233.81	223.204.176.177	123.157.113.150
94.15.172.181	14.253.142.108	177.158.158.2	73.169.179.92
187.107.136.134	187.232.41.120	90.114.115.72	202.51.100.30