City: Ituiutaba
Region: Minas Gerais
Country: Brazil
Internet Service Provider: Algar Telecom
Hostname: unknown
Organization: ALGAR TELECOM S/A
Usage Type: unknown
| IP | Type | Details | Datetime |
|---|---|---|---|
| 201.48.148.26 | attackbots | Unauthorized connection attempt detected from IP address 201.48.148.26 to port 445 [T] |
2020-08-16 19:57:47 |
| 201.48.143.14 | attack | Honeypot attack, port: 445, PTR: 201-048-143-014.static.ctbctelecom.com.br. |
2020-07-25 23:39:44 |
| 201.48.147.177 | attack | Unauthorized connection attempt detected from IP address 201.48.147.177 to port 1433 [T] |
2020-07-22 02:04:58 |
| 201.48.142.167 | attackbots | [portscan] tcp/1433 [MsSQL] *(RWIN=1024)(03031155) |
2020-03-03 20:46:50 |
| 201.48.142.8 | attackbots | Scanning random ports - tries to find possible vulnerable services |
2020-03-02 07:18:32 |
| 201.48.148.26 | attack | Unauthorized connection attempt detected from IP address 201.48.148.26 to port 445 |
2020-02-09 05:37:58 |
| 201.48.143.246 | attackbots | Attempt to attack host OS, exploiting network vulnerabilities, on 06-02-2020 13:45:17. |
2020-02-06 23:32:49 |
| 201.48.142.117 | attackbots | trying to access non-authorized port |
2020-02-03 00:58:07 |
| 201.48.143.246 | attackspambots | Honeypot attack, port: 445, PTR: 201-048-143-246.static.ctbctelecom.com.br. |
2020-01-28 19:32:00 |
| 201.48.143.84 | attack | Unauthorized connection attempt detected from IP address 201.48.143.84 to port 88 [J] |
2020-01-19 17:11:59 |
| 201.48.147.177 | attack | Honeypot attack, port: 445, PTR: 201-048-147-177.static.ctbctelecom.com.br. |
2020-01-10 08:04:52 |
| 201.48.143.0 | attackspam | Unauthorized connection attempt from IP address 201.48.143.0 on Port 445(SMB) |
2019-12-06 08:45:12 |
| 201.48.142.63 | attack | email spam |
2019-11-08 22:37:03 |
| 201.48.142.161 | attackbots | 445/tcp [2019-09-04]1pkt |
2019-09-05 09:08:37 |
| 201.48.143.139 | attackbotsspam | 2 pkts, ports: TCP:445 |
2019-09-03 01:23:01 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.48.14.45
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49283
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.48.14.45. IN A
;; AUTHORITY SECTION:
. 3600 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2019050900 1800 900 604800 86400
;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Thu May 09 20:04:52 +08 2019
;; MSG SIZE rcvd: 116
45.14.48.201.in-addr.arpa domain name pointer 201-048-014-045.static.ctbctelecom.com.br.
Server: 67.207.67.3
Address: 67.207.67.3#53
Non-authoritative answer:
45.14.48.201.in-addr.arpa name = 201-048-014-045.static.ctbctelecom.com.br.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 88.11.179.232 | attackspam | 2019-11-15T16:14:25.104542abusebot-5.cloudsearch.cf sshd\[18199\]: Invalid user bjorn from 88.11.179.232 port 56960 |
2019-11-16 02:57:57 |
| 121.225.19.225 | attackspambots | FTP brute-force attack |
2019-11-16 02:41:15 |
| 37.114.180.255 | attackbots | Nov 15 14:41:01 localhost sshd\[18465\]: Invalid user admin from 37.114.180.255 port 33465 Nov 15 14:41:01 localhost sshd\[18465\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.114.180.255 Nov 15 14:41:03 localhost sshd\[18465\]: Failed password for invalid user admin from 37.114.180.255 port 33465 ssh2 ... |
2019-11-16 02:39:21 |
| 138.201.203.73 | attackbots | Sql/code injection probe |
2019-11-16 03:08:59 |
| 103.97.82.50 | attackspam | MultiHost/MultiPort Probe, Scan, Hack - |
2019-11-16 03:06:35 |
| 41.196.0.189 | attack | Nov 15 20:00:42 meumeu sshd[15397]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.196.0.189 Nov 15 20:00:44 meumeu sshd[15397]: Failed password for invalid user aswini from 41.196.0.189 port 51240 ssh2 Nov 15 20:08:48 meumeu sshd[16473]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.196.0.189 ... |
2019-11-16 03:15:42 |
| 45.227.255.203 | attack | leo_www |
2019-11-16 02:36:04 |
| 104.140.188.38 | attackbots | 11/15/2019-13:29:07.309645 104.140.188.38 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433 |
2019-11-16 02:49:13 |
| 188.215.134.75 | attackbotsspam | scan z |
2019-11-16 02:54:44 |
| 104.140.188.46 | attack | Portscan or hack attempt detected by psad/fwsnort |
2019-11-16 02:44:13 |
| 68.183.179.129 | attack | Port scan on 9 port(s): 4103 4107 4111 4112 4145 4147 4163 4182 4193 |
2019-11-16 02:53:05 |
| 60.12.212.156 | attack | Honeypot hit. |
2019-11-16 03:00:47 |
| 222.186.180.8 | attack | Nov 15 19:46:17 vps666546 sshd\[4060\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.8 user=root Nov 15 19:46:20 vps666546 sshd\[4060\]: Failed password for root from 222.186.180.8 port 36246 ssh2 Nov 15 19:46:23 vps666546 sshd\[4060\]: Failed password for root from 222.186.180.8 port 36246 ssh2 Nov 15 19:46:27 vps666546 sshd\[4060\]: Failed password for root from 222.186.180.8 port 36246 ssh2 Nov 15 19:46:30 vps666546 sshd\[4060\]: Failed password for root from 222.186.180.8 port 36246 ssh2 ... |
2019-11-16 02:54:23 |
| 193.138.153.8 | attack | Brute force SMTP login attempts. |
2019-11-16 02:57:18 |
| 104.140.188.26 | attackbots | 104.140.188.26 was recorded 5 times by 5 hosts attempting to connect to the following ports: 5060,3306,5900,1433,5432. Incident counter (4h, 24h, all-time): 5, 9, 76 |
2019-11-16 02:55:18 |