191.6.0.48 Threat Intelligence and Host Information

Share on:
Apr 20, 2023 ipinfopage

General

This page was generated as a result of this host being detected actively attacking or scanning another host. See below for information related to the host network, location, number of days noticed, protocols attacked and other information including reverse DNS and whois.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Tags: Nextray, SSH, Telnet, attack, aws, bruteforce, cyber security, ioc, login, malicious, phishing, scanner, telnet, tsec

  • View other sources: Spamhaus VirusTotal

  • Country: Brazil
  • Network: AS263545 betini net telecom ltda
  • Noticed: 19 times
  • Protcols Attacked: telnet
  • Countries Attacked: Canada, Czechia, Denmark, Estonia, France, Germany, Latvia, Lithuania, Norway, Poland, Romania, Turkey, Ukraine, United Kingdom of Great Britain and Northern Ireland, United States of America

Map

Whois Information

  • inetnum: 191.6.0.0/22
  • aut-num: AS263545
  • abuse-c: MAFER4372
  • owner: BETINI NET TELECOM LTDA
  • ownerid: 08.427.026/0001-22
  • responsible: deyvid guimaraes betini
  • owner-c: MMB276
  • tech-c: MAFER4372
  • inetrev: 191.6.0.0/22
  • nserver: ns1.betininet.com.br
  • nsstat: 20230423 AA
  • nslastaa: 20230423
  • nserver: ns2.betininet.com.br
  • nsstat: 20230423 AA
  • nslastaa: 20230423
  • dsinetrev: 191.6.0.0/24
  • dsrecord: 14774 ECDSA-SHA-256 2B1ED78D02C2EC5AA2477D42111488F4972B9513666DB769363647B6F3B5C3EE
  • dsstatus: 20230423 OK
  • dslastok: 20230423
  • dsinetrev: 191.6.1.0/24
  • dsrecord: 56376 ECDSA-SHA-256 B57F92897E370EA30AE0E80B5C0656A6BD33344D5B41DDCC6F62C07493E84922
  • dsstatus: 20230423 OK
  • dslastok: 20230423
  • dsinetrev: 191.6.2.0/24
  • dsrecord: 23034 ECDSA-SHA-256 93A1F93C452033443F4FE8920B8900F4BE80D07C83387D8CE8D08B8209825090
  • dsstatus: 20230423 OK
  • dslastok: 20230423
  • dsinetrev: 191.6.3.0/24
  • dsrecord: 5613 ECDSA-SHA-256 3DD465326F6E57A759C56549AD0188312E6E8DF3704EF748341A743E0EFA0862
  • dsstatus: 20230423 OK
  • dslastok: 20230423
  • created: 20140128
  • changed: 20220630
  • nic-hdl-br: MMB276
  • person: Matheus Magalh�es Bortolin
  • created: 20060117
  • changed: 20191227
  • nic-hdl-br: MAFER4372
  • person: Matheus Ferreira
  • created: 20220629
  • changed: 20230307

Links to attack logs

aws-telnet-bruteforce-ip-list-2021-04-02