JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 189.51.19.248

189.51.19.248 was found in our database!

This IP was reported 77 times. Confidence of Abuse is 0%: ?

ISP	SEMPRE TELECOMUNICACOES LTDA
Usage Type	Fixed Line ISP
ASN	AS28198
Hostname(s)	189-51-19-248.sempre.tec.br
Domain Name	sempre.tec.br
Country	🇧🇷 Brazil
City	Oliveira, Minas Gerais

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 189.51.19.248

Whois 189.51.19.248

IP Abuse Reports for 189.51.19.248:

This IP address has been reported a total of 77 times from 29 distinct sources. 189.51.19.248 was first reported on August 1st 2021, and the most recent report was 3 years ago.

Old Reports: The most recent abuse report for this IP address is from 3 years ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇺🇸 VSM Networks	2022-08-31 22:54:49 (3 years ago)	Credential Stuffing	Brute-Force
🇨🇭 unifr	2022-08-16 20:17:05 (3 years ago)	Unauthorized IMAP connection attempt	Brute-Force
🇺🇸 serverargentina.com	2022-07-26 14:43:26 (3 years ago)	Jul 26 18:43:06 serverargentina sshd[19241]: Did not receive identification string from 189.51.19.24 ... show more Jul 26 18:43:06 serverargentina sshd[19241]: Did not receive identification string from 189.51.19.248 port 57164 ... show less	Brute-Force SSH
🇺🇸 serverargentina.com	2022-07-18 11:22:38 (3 years ago)	Jul 18 11:19:37 serverargentina sshd[22534]: Did not receive identification string from 189.51.19.24 ... show more Jul 18 11:19:37 serverargentina sshd[22534]: Did not receive identification string from 189.51.19.248 port 44788 ... show less	Brute-Force SSH
🇺🇸 serverargentina.com	2022-07-13 18:32:29 (3 years ago)	Jul 13 18:31:19 serverargentina sshd[25799]: Did not receive identification string from 189.51.19.24 ... show more Jul 13 18:31:19 serverargentina sshd[25799]: Did not receive identification string from 189.51.19.248 port 58950 ... show less	Brute-Force SSH
🇮🇸 ISPLtd	2022-07-02 11:32:23 (3 years ago)	Jul 2 12:29:30 SRC=189.51.19.248 PROTO=TCP SPT=54818 DPT=6666 SYN Jul 2 12:29:31 SRC=189.51.19.248 ... show more Jul 2 12:29:30 SRC=189.51.19.248 PROTO=TCP SPT=54818 DPT=6666 SYN Jul 2 12:29:31 SRC=189.51.19.248 PROTO=TCP SPT=54818 DPT=6666 SYN Jul 2 12:29:33 SRC=189.51.19.248 PROTO=TCP SPT=54818 DPT=6666 ... show less	Port Scan
Anonymous	2022-07-02 02:05:37 (3 years ago)	HTTP DDoS	DDoS Attack
Anonymous	2022-07-02 02:05:37 (3 years ago)	HTTP DDoS	DDoS Attack
🇺🇸 VSM Networks	2022-06-30 07:44:04 (3 years ago)	Credential Stuffing	Brute-Force
🇮🇸 ISPLtd	2022-05-31 11:42:59 (4 years ago)	May 31 12:38:46 SRC=189.51.19.248 PROTO=TCP SPT=46282 DPT=3478 SYN May 31 12:38:46 SRC=189.51.19.248 ... show more May 31 12:38:46 SRC=189.51.19.248 PROTO=TCP SPT=46282 DPT=3478 SYN May 31 12:38:46 SRC=189.51.19.248 PROTO=TCP SPT=46287 DPT=3478 SYN May 31 12:38:47 SRC=189.51.19.248 PROTO=TCP SPT=46282 DPT=3478 ... show less	Port Scan
🇨🇦 VentryShield	2022-05-20 19:39:30 (4 years ago)	Unauthorized connection on port 23.	Port Scan
🇺🇸 VSM Networks	2022-05-17 23:23:21 (4 years ago)	Credential Stuffing	Brute-Force
🇺🇸 Blue Pumpkin	2022-05-15 14:57:24 (4 years ago)	[Sun May 15 18:56:49.477003 2022] [:error] [pid 697492] [client 189.51.19.248:0] [client 189.51.19.2 ... show more [Sun May 15 18:56:49.477003 2022] [:error] [pid 697492] [client 189.51.19.248:0] [client 189.51.19.248] ModSecurity: Access denied with code 403 (phase 4). Operator GE matched 4 at TX:outbound_anomaly_score. [file "/etc/apache2/modsecurity-crs/coreruleset-3.3.2/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"] [line "76"] [id "959100"] [msg "Outbound Anomaly Score Exceeded (Total Score: 4)"] [ver "OWASP_CRS/3.3.2"] [tag "anomaly-evaluation" ... show less	Brute-Force
🇺🇸 Blue Pumpkin	2022-05-15 01:49:42 (4 years ago)	[Sun May 15 05:48:30.634359 2022] [:error] [pid 367635] [client 189.51.19.248:0] [client 189.51.19.2 ... show more [Sun May 15 05:48:30.634359 2022] [:error] [pid 367635] [client 189.51.19.248:0] [client 189.51.19.248] ModSecurity: Access denied with code 403 (phase 4). Operator GE matched 4 at TX:outbound_anomaly_score. [file "/etc/apache2/modsecurity-crs/coreruleset-3.3.2/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"] [line "76"] [id "959100"] [msg "Outbound Anomaly Score Exceeded (Total Score: 4)"] [ver "OWASP_CRS/3.3.2"] [tag "anomaly-evaluation" ... show less	Brute-Force
🇺🇸 Blue Pumpkin	2022-05-14 20:50:10 (4 years ago)	[Sun May 15 00:49:39.966708 2022] [:error] [pid 260210] [client 189.51.19.248:0] [client 189.51.19.2 ... show more [Sun May 15 00:49:39.966708 2022] [:error] [pid 260210] [client 189.51.19.248:0] [client 189.51.19.248] ModSecurity: Access denied with code 403 (phase 4). Operator GE matched 4 at TX:outbound_anomaly_score. [file "/etc/apache2/modsecurity-crs/coreruleset-3.3.2/rules/RESPONSE-959-BLOCKING-EVALUATION.conf"] [line "76"] [id "959100"] [msg "Outbound Anomaly Score Exceeded (Total Score: 4)"] [ver "OWASP_CRS/3.3.2"] [tag "anomaly-evaluation" ... show less	Brute-Force

Showing 1 to 15 of 77 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇩🇪 213.209.159.56

🇭🇰 194.187.178.126

🇧🇩 103.153.110.190

🇩🇪 47.254.142.61

🇭🇰 47.238.103.64

🇩🇪 45.135.141.18

🇬🇧 35.203.211.35

🇺🇸 132.148.148.91

🇺🇸 74.7.241.8

🇩🇪 65.111.28.102

🇩🇪 46.249.99.46

🇩🇪 167.94.145.20

🇰🇷 118.36.175.206

🇺🇸 107.173.70.115

🇺🇸 52.204.71.8

🇨🇳 39.90.9.100

🇨🇳 27.155.92.28

🇹🇼 211.73.177.140

🇺🇸 209.50.172.248

🇺🇸 205.210.31.38