201.48.143.139

基本信息:

城市(city): Canoas

省份(region): Rio Grande do Sul

国家(country): Brazil

运营商(isp): Algar Telecom S/A

主机名(hostname): unknown

机构(organization): ALGAR TECNOLOGIA E CONSULTORIA SA

使用类型(Usage Type): unknown

用户上报:

点此参与IP信息讨论

类型	评论内容	时间
attackbotsspam	2 pkts, ports: TCP:445	2019-09-03 01:23:01

相同子网IP讨论:

IP	类型	评论内容	时间
201.48.143.14	attack	Honeypot attack, port: 445, PTR: 201-048-143-014.static.ctbctelecom.com.br.	2020-07-25 23:39:44
201.48.143.246	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 06-02-2020 13:45:17.	2020-02-06 23:32:49
201.48.143.246	attackspambots	Honeypot attack, port: 445, PTR: 201-048-143-246.static.ctbctelecom.com.br.	2020-01-28 19:32:00
201.48.143.84	attack	Unauthorized connection attempt detected from IP address 201.48.143.84 to port 88 [J]	2020-01-19 17:11:59
201.48.143.0	attackspam	Unauthorized connection attempt from IP address 201.48.143.0 on Port 445(SMB)	2019-12-06 08:45:12
201.48.143.44	attackbotsspam	Unauthorized connection attempt from IP address 201.48.143.44 on Port 445(SMB)	2019-08-30 21:16:31

WHOIS信息:

DIG信息:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.48.143.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 7427
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.48.143.139.			IN	A

;; AUTHORITY SECTION:
.			2813	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090200 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Sep 03 01:22:49 CST 2019
;; MSG SIZE  rcvd: 118

HOST信息:

139.143.48.201.in-addr.arpa has no PTR record

NSLOOKUP信息:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
139.143.48.201.in-addr.arpa	name = 201-048-143-139.static.ctbctelecom.com.br.

Authoritative answers can be found from:

最新评论:

IP	类型	评论内容	时间
177.103.231.141	attackspam	TCP Port: 25 _ invalid blocked abuseat-org also barracuda and zen-spamhaus _ _ _ _ (1749)	2019-12-10 08:17:41
178.33.234.234	attack	Dec 8 16:42:29 mail sshd[5542]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.234.234 Dec 8 16:42:31 mail sshd[5542]: Failed password for invalid user mko,lp from 178.33.234.234 port 48454 ssh2 Dec 8 16:48:03 mail sshd[6701]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.33.234.234	2019-12-10 08:52:07
14.162.62.119	attackspambots	Dec 8 14:34:14 mail postfix/smtpd[8746]: warning: unknown[14.162.62.119]: SASL PLAIN authentication failed: Dec 8 14:40:52 mail postfix/smtpd[9648]: warning: unknown[14.162.62.119]: SASL PLAIN authentication failed: Dec 8 14:42:29 mail postfix/smtpd[9798]: warning: unknown[14.162.62.119]: SASL PLAIN authentication failed:	2019-12-10 08:47:45
212.64.94.179	attack	Dec 10 01:06:18 sso sshd[4499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.94.179 Dec 10 01:06:20 sso sshd[4499]: Failed password for invalid user pulliam from 212.64.94.179 port 32640 ssh2 ...	2019-12-10 08:27:11
101.78.209.39	attack	Dec 10 02:43:52 server sshd\[15055\]: Invalid user kelsch from 101.78.209.39 Dec 10 02:43:52 server sshd\[15055\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.78.209.39 Dec 10 02:43:54 server sshd\[15055\]: Failed password for invalid user kelsch from 101.78.209.39 port 49402 ssh2 Dec 10 02:53:51 server sshd\[17931\]: Invalid user patzer from 101.78.209.39 Dec 10 02:53:51 server sshd\[17931\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.78.209.39 ...	2019-12-10 08:28:27
128.199.253.133	attackspambots	Dec 10 01:36:03 vps647732 sshd[15744]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.253.133 Dec 10 01:36:06 vps647732 sshd[15744]: Failed password for invalid user ii from 128.199.253.133 port 53973 ssh2 ...	2019-12-10 08:36:28
60.250.149.19	attack	2019-12-10T00:26:10.959194abusebot-6.cloudsearch.cf sshd\[25178\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=60-250-149-19.hinet-ip.hinet.net user=root	2019-12-10 08:33:02
128.199.142.138	attack	$f2bV_matches	2019-12-10 08:44:44
211.220.27.191	attack	Dec 10 01:21:13 * sshd[19262]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.220.27.191 Dec 10 01:21:15 * sshd[19262]: Failed password for invalid user sysman from 211.220.27.191 port 35148 ssh2	2019-12-10 08:43:18
115.78.8.83	attackspam	Dec 10 00:51:57 markkoudstaal sshd[16163]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.78.8.83 Dec 10 00:51:59 markkoudstaal sshd[16163]: Failed password for invalid user boisvert from 115.78.8.83 port 52321 ssh2 Dec 10 00:59:25 markkoudstaal sshd[17011]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=115.78.8.83	2019-12-10 08:27:44
178.62.239.205	attack	Dec 8 13:57:59 mail sshd[694]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.239.205 Dec 8 13:58:00 mail sshd[694]: Failed password for invalid user adya from 178.62.239.205 port 32837 ssh2 Dec 8 14:04:28 mail sshd[2652]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.239.205	2019-12-10 08:51:38
193.112.54.66	attackbotsspam	Dec 10 00:59:01 lnxded64 sshd[5254]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.54.66	2019-12-10 08:39:51
218.92.0.141	attack	Dec 10 06:07:11 vibhu-HP-Z238-Microtower-Workstation sshd\[25214\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.141 user=root Dec 10 06:07:12 vibhu-HP-Z238-Microtower-Workstation sshd\[25214\]: Failed password for root from 218.92.0.141 port 59817 ssh2 Dec 10 06:07:31 vibhu-HP-Z238-Microtower-Workstation sshd\[25233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.141 user=root Dec 10 06:07:33 vibhu-HP-Z238-Microtower-Workstation sshd\[25233\]: Failed password for root from 218.92.0.141 port 26309 ssh2 Dec 10 06:07:36 vibhu-HP-Z238-Microtower-Workstation sshd\[25233\]: Failed password for root from 218.92.0.141 port 26309 ssh2 ...	2019-12-10 08:42:47
112.85.42.177	attack	Dec 8 20:52:13 mail sshd[32085]: Failed password for root from 112.85.42.177 port 48674 ssh2 Dec 8 20:52:18 mail sshd[32085]: Failed password for root from 112.85.42.177 port 48674 ssh2 Dec 8 20:52:23 mail sshd[32085]: Failed password for root from 112.85.42.177 port 48674 ssh2 Dec 8 20:52:26 mail sshd[32085]: Failed password for root from 112.85.42.177 port 48674 ssh2	2019-12-10 08:55:44
194.141.2.248	attackbotsspam	Dec 8 16:32:10 mail sshd[3167]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.141.2.248 Dec 8 16:32:12 mail sshd[3167]: Failed password for invalid user wallhagen from 194.141.2.248 port 56822 ssh2 Dec 8 16:41:08 mail sshd[5268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=194.141.2.248	2019-12-10 08:49:57

最近上报的IP列表

147.4.83.109	152.239.101.206	71.27.90.143	65.231.121.127
190.115.72.182	147.216.170.216	189.20.97.2	179.50.224.246
151.86.135.0	191.235.63.73	158.117.27.148	187.190.221.74
143.180.106.188	44.78.247.224	39.151.148.238	163.182.52.247
90.140.53.153	173.5.223.115	216.240.175.46	4.133.6.164