201.55.143.245

Basic Info

City: Cianorte

Region: Parana

Country: Brazil

Internet Service Provider: WI - Provedor de Telecomunicacoes Ltda.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Jun 13 22:35:18 mail.srvfarm.net postfix/smtpd[1275649]: warning: unknown[201.55.143.245]: SASL PLAIN authentication failed: Jun 13 22:35:18 mail.srvfarm.net postfix/smtpd[1275649]: lost connection after AUTH from unknown[201.55.143.245] Jun 13 22:38:29 mail.srvfarm.net postfix/smtpd[1286879]: warning: unknown[201.55.143.245]: SASL PLAIN authentication failed: Jun 13 22:38:30 mail.srvfarm.net postfix/smtpd[1286879]: lost connection after AUTH from unknown[201.55.143.245] Jun 13 22:42:19 mail.srvfarm.net postfix/smtps/smtpd[1286914]: warning: unknown[201.55.143.245]: SASL PLAIN authentication failed:	2020-06-14 08:31:34

Type

Details

Datetime

attackspambots

Jun 13 22:35:18 mail.srvfarm.net postfix/smtpd[1275649]: warning: unknown[201.55.143.245]: SASL PLAIN authentication failed: 
Jun 13 22:35:18 mail.srvfarm.net postfix/smtpd[1275649]: lost connection after AUTH from unknown[201.55.143.245]
Jun 13 22:38:29 mail.srvfarm.net postfix/smtpd[1286879]: warning: unknown[201.55.143.245]: SASL PLAIN authentication failed: 
Jun 13 22:38:30 mail.srvfarm.net postfix/smtpd[1286879]: lost connection after AUTH from unknown[201.55.143.245]
Jun 13 22:42:19 mail.srvfarm.net postfix/smtps/smtpd[1286914]: warning: unknown[201.55.143.245]: SASL PLAIN authentication failed:

2020-06-14 08:31:34

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.55.143.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 46161
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.55.143.245.			IN	A

;; AUTHORITY SECTION:
.			454	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020061301 1800 900 604800 86400

;; Query time: 106 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Jun 14 08:31:27 CST 2020
;; MSG SIZE  rcvd: 118

Host info

Host 245.143.55.201.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 245.143.55.201.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
67.216.193.100	attackbotsspam	SSH bruteforce	2020-10-11 08:27:03
112.85.42.172	attack	2020-10-11T03:28:29.929880afi-git.jinr.ru sshd[25697]: Failed password for root from 112.85.42.172 port 31202 ssh2 2020-10-11T03:28:33.932317afi-git.jinr.ru sshd[25697]: Failed password for root from 112.85.42.172 port 31202 ssh2 2020-10-11T03:28:37.156827afi-git.jinr.ru sshd[25697]: Failed password for root from 112.85.42.172 port 31202 ssh2 2020-10-11T03:28:37.156999afi-git.jinr.ru sshd[25697]: error: maximum authentication attempts exceeded for root from 112.85.42.172 port 31202 ssh2 [preauth] 2020-10-11T03:28:37.157013afi-git.jinr.ru sshd[25697]: Disconnecting: Too many authentication failures [preauth] ...	2020-10-11 08:35:28
36.155.115.72	attack	Oct 11 00:25:17 vps-51d81928 sshd[730630]: Failed password for invalid user test8 from 36.155.115.72 port 43259 ssh2 Oct 11 00:27:58 vps-51d81928 sshd[730679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.115.72 user=root Oct 11 00:28:00 vps-51d81928 sshd[730679]: Failed password for root from 36.155.115.72 port 56752 ssh2 Oct 11 00:30:36 vps-51d81928 sshd[730720]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=36.155.115.72 user=root Oct 11 00:30:37 vps-51d81928 sshd[730720]: Failed password for root from 36.155.115.72 port 42009 ssh2 ...	2020-10-11 08:30:53
222.186.30.76	attackspam	Oct 11 02:43:13 piServer sshd[13145]: Failed password for root from 222.186.30.76 port 20671 ssh2 Oct 11 02:43:18 piServer sshd[13145]: Failed password for root from 222.186.30.76 port 20671 ssh2 Oct 11 02:43:20 piServer sshd[13145]: Failed password for root from 222.186.30.76 port 20671 ssh2 ...	2020-10-11 08:46:24
101.32.40.216	attackbotsspam	Oct 11 01:05:35 vps647732 sshd[4574]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.32.40.216 Oct 11 01:05:37 vps647732 sshd[4574]: Failed password for invalid user austin from 101.32.40.216 port 57544 ssh2 ...	2020-10-11 08:48:15
152.136.143.44	attack	2020-10-09T18:36:35.502507morrigan.ad5gb.com sshd[3605885]: Failed password for invalid user spider from 152.136.143.44 port 35508 ssh2	2020-10-11 08:48:04
222.185.235.186	attack	SSH / Telnet Brute Force Attempts on Honeypot	2020-10-11 08:41:53
183.81.13.152	attack	Port Scan ...	2020-10-11 09:02:56
101.36.118.86	attack	Oct 8 22:53:28 uapps sshd[5284]: Invalid user jobs from 101.36.118.86 port 47336 Oct 8 22:53:30 uapps sshd[5284]: Failed password for invalid user jobs from 101.36.118.86 port 47336 ssh2 Oct 8 22:53:31 uapps sshd[5284]: Received disconnect from 101.36.118.86 port 47336:11: Bye Bye [preauth] Oct 8 22:53:31 uapps sshd[5284]: Disconnected from invalid user jobs 101.36.118.86 port 47336 [preauth] Oct 8 23:06:56 uapps sshd[5433]: Invalid user ghostname from 101.36.118.86 port 39298 Oct 8 23:06:58 uapps sshd[5433]: Failed password for invalid user ghostname from 101.36.118.86 port 39298 ssh2 Oct 8 23:07:00 uapps sshd[5433]: Received disconnect from 101.36.118.86 port 39298:11: Bye Bye [preauth] Oct 8 23:07:00 uapps sshd[5433]: Disconnected from invalid user ghostname 101.36.118.86 port 39298 [preauth] Oct 8 23:10:39 uapps sshd[5548]: User r.r from 101.36.118.86 not allowed because not listed in AllowUsers Oct 8 23:10:39 uapps sshd[5548]: pam_unix(sshd:auth): authent........ -------------------------------	2020-10-11 08:27:51
121.121.100.143	attack	Automatic report - Port Scan Attack	2020-10-11 08:33:05
5.62.136.142	attackbotsspam	Use Brute-Force	2020-10-11 08:42:44
103.45.130.165	attack	Invalid user support1 from 103.45.130.165 port 47538	2020-10-11 08:40:27
182.254.166.97	attack	Oct 11 00:10:19 *** sshd[19377]: Invalid user robot from 182.254.166.97	2020-10-11 08:40:13
112.85.42.183	attackspambots	[MK-VM2] SSH login failed	2020-10-11 08:24:51
42.194.159.233	attack	Oct 10 23:07:43 vps-51d81928 sshd[729128]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.194.159.233 user=root Oct 10 23:07:45 vps-51d81928 sshd[729128]: Failed password for root from 42.194.159.233 port 45740 ssh2 Oct 10 23:10:06 vps-51d81928 sshd[729200]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=42.194.159.233 user=root Oct 10 23:10:08 vps-51d81928 sshd[729200]: Failed password for root from 42.194.159.233 port 55730 ssh2 Oct 10 23:12:46 vps-51d81928 sshd[729285]: Invalid user server from 42.194.159.233 port 37522 ...	2020-10-11 09:02:19

Recently Reported IPs

189.91.3.146	117.56.248.213	61.158.207.70	65.39.141.13
185.140.243.49	179.96.146.184	177.85.19.97	176.143.168.98
70.137.41.38	124.160.236.14	217.100.90.157	176.101.135.32
122.135.5.247	170.0.48.161	138.122.97.254	104.59.56.199
122.97.214.73	17.32.41.112	103.87.46.86	78.25.39.193