201.48.42.109 - IPInfo

Basic Info

City: São Paulo

Region: Sao Paulo

Country: Brazil

Internet Service Provider: Algar Telecom

Hostname: unknown

Organization: ALGAR TELECOM S/A

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.48.42.109
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28385
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.48.42.109.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050600 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Mon May 06 22:05:41 +08 2019
;; MSG SIZE  rcvd: 117

Host info

109.42.48.201.in-addr.arpa domain name pointer 201-048-042-109.static.ctbctelecom.com.br.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
109.42.48.201.in-addr.arpa	name = 201-048-042-109.static.ctbctelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
190.128.230.206	attack	SSH login attempts.	2020-10-02 06:44:06
176.99.163.138	attackbotsspam	fell into ViewStateTrap:wien2018	2020-10-02 06:50:52
37.98.196.42	attack	Oct 1 21:22:28 ns382633 sshd\[17598\]: Invalid user teste from 37.98.196.42 port 41700 Oct 1 21:22:28 ns382633 sshd\[17598\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.98.196.42 Oct 1 21:22:30 ns382633 sshd\[17598\]: Failed password for invalid user teste from 37.98.196.42 port 41700 ssh2 Oct 1 21:27:06 ns382633 sshd\[18205\]: Invalid user mine from 37.98.196.42 port 63022 Oct 1 21:27:06 ns382633 sshd\[18205\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.98.196.42	2020-10-02 06:20:59
164.68.112.178	attack	Failed password for invalid user from 164.68.112.178 port 48267 ssh2	2020-10-02 06:24:52
194.87.138.211	attackbotsspam	frenzy	2020-10-02 06:21:27
37.247.209.180	attack	2020-10-01T20:59:02.655751amanda2.illicoweb.com sshd\[19529\]: Invalid user charlie from 37.247.209.180 port 47330 2020-10-01T20:59:02.662331amanda2.illicoweb.com sshd\[19529\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=apn-37-247-209-180.dynamic.gprs.plus.pl 2020-10-01T20:59:04.436286amanda2.illicoweb.com sshd\[19529\]: Failed password for invalid user charlie from 37.247.209.180 port 47330 ssh2 2020-10-01T21:08:52.699048amanda2.illicoweb.com sshd\[20099\]: Invalid user admin from 37.247.209.180 port 33514 2020-10-01T21:08:52.704609amanda2.illicoweb.com sshd\[20099\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=apn-37-247-209-180.dynamic.gprs.plus.pl ...	2020-10-02 06:19:29
103.99.189.17	attackbots	Oct 1 13:12:43 mail.srvfarm.net postfix/smtps/smtpd[3882226]: warning: unknown[103.99.189.17]: SASL PLAIN authentication failed: Oct 1 13:12:44 mail.srvfarm.net postfix/smtps/smtpd[3882226]: lost connection after AUTH from unknown[103.99.189.17] Oct 1 13:18:19 mail.srvfarm.net postfix/smtps/smtpd[3882224]: warning: unknown[103.99.189.17]: SASL PLAIN authentication failed: Oct 1 13:18:19 mail.srvfarm.net postfix/smtps/smtpd[3882224]: lost connection after AUTH from unknown[103.99.189.17] Oct 1 13:21:41 mail.srvfarm.net postfix/smtps/smtpd[3882225]: warning: unknown[103.99.189.17]: SASL PLAIN authentication failed:	2020-10-02 06:45:30
45.142.120.38	attack	Oct 2 00:33:06 srv01 postfix/smtpd\[13963\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 00:33:14 srv01 postfix/smtpd\[20442\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 00:33:15 srv01 postfix/smtpd\[20426\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 00:33:18 srv01 postfix/smtpd\[13963\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 00:33:28 srv01 postfix/smtpd\[20486\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Oct 2 00:33:28 srv01 postfix/smtpd\[20470\]: warning: unknown\[45.142.120.38\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-10-02 06:50:38
117.28.25.50	attackbotsspam	Oct 2 01:12:42 pkdns2 sshd\[52390\]: Invalid user user from 117.28.25.50Oct 2 01:12:43 pkdns2 sshd\[52390\]: Failed password for invalid user user from 117.28.25.50 port 8686 ssh2Oct 2 01:16:58 pkdns2 sshd\[52604\]: Invalid user bitbucket from 117.28.25.50Oct 2 01:17:00 pkdns2 sshd\[52604\]: Failed password for invalid user bitbucket from 117.28.25.50 port 8707 ssh2Oct 2 01:20:59 pkdns2 sshd\[52786\]: Invalid user scan from 117.28.25.50Oct 2 01:21:01 pkdns2 sshd\[52786\]: Failed password for invalid user scan from 117.28.25.50 port 8721 ssh2 ...	2020-10-02 06:33:22
52.172.38.185	attackspam	Oct 1 18:46:18 Tower sshd[17985]: Connection from 52.172.38.185 port 57522 on 192.168.10.220 port 22 rdomain "" Oct 1 18:46:19 Tower sshd[17985]: Invalid user user10 from 52.172.38.185 port 57522 Oct 1 18:46:19 Tower sshd[17985]: error: Could not get shadow information for NOUSER Oct 1 18:46:19 Tower sshd[17985]: Failed password for invalid user user10 from 52.172.38.185 port 57522 ssh2 Oct 1 18:46:19 Tower sshd[17985]: Received disconnect from 52.172.38.185 port 57522:11: Bye Bye [preauth] Oct 1 18:46:19 Tower sshd[17985]: Disconnected from invalid user user10 52.172.38.185 port 57522 [preauth]	2020-10-02 06:46:46
173.242.115.171	attack	fail2ban -- 173.242.115.171 ...	2020-10-02 06:26:18
109.87.159.118	attack	Automatic report - Port Scan Attack	2020-10-02 06:16:43
67.207.89.15	attack	Oct 1 23:19:55 con01 sshd[3220481]: Invalid user sysbackup from 67.207.89.15 port 53192 Oct 1 23:19:55 con01 sshd[3220481]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=67.207.89.15 Oct 1 23:19:55 con01 sshd[3220481]: Invalid user sysbackup from 67.207.89.15 port 53192 Oct 1 23:19:57 con01 sshd[3220481]: Failed password for invalid user sysbackup from 67.207.89.15 port 53192 ssh2 Oct 1 23:22:15 con01 sshd[3225465]: Invalid user designer from 67.207.89.15 port 41616 ...	2020-10-02 06:15:59
156.54.171.41	attackbots	2020-10-01T23:51:01.900688hostname sshd[13285]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.54.171.41 2020-10-01T23:51:01.859544hostname sshd[13285]: Invalid user vlc from 156.54.171.41 port 50804 2020-10-01T23:51:03.543770hostname sshd[13285]: Failed password for invalid user vlc from 156.54.171.41 port 50804 ssh2 ...	2020-10-02 06:24:08
45.7.182.15	attackbots	Unauthorized SMTP/IMAP/POP3 connection attempt	2020-10-02 06:49:33

Recently Reported IPs

145.8.127.140	165.73.106.89	92.253.123.252	107.107.2.186
36.76.118.0	46.97.37.110	205.205.150.20	71.229.53.207
119.42.119.67	94.191.10.77	46.42.114.227	52.202.161.66
206.17.248.24	192.117.232.175	223.233.102.244	154.83.5.41
195.39.6.80	191.146.209.208	159.89.171.164	42.39.220.46