JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 201.18.12.194

201.18.12.194 was found in our database!

This IP was reported 609 times. Confidence of Abuse is 100%: ?

100%

ISP	V tal
Usage Type	Fixed Line ISP
ASN	AS7738
Hostname(s)	20118012194.host.telemar.net.br
Domain Name	vtal.com
Country	🇧🇷 Brazil
City	Rio de Janeiro, Rio de Janeiro

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 201.18.12.194

Whois 201.18.12.194

IP Abuse Reports for 201.18.12.194:

This IP address has been reported a total of 609 times from 184 distinct sources. 201.18.12.194 was first reported on May 12th 2021, and the most recent report was 1 day ago.

Recent Reports: We have received reports of abusive activity from this IP address within the last week. It is potentially still actively engaged in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇧🇷 ICS Labs	2026-06-18 18:52:21 (1 day ago)	ICS Labs identified 201.18.12.194 as a malicious indicator from threat intelligence.	DDoS Attack Hacking Brute-Force Exploited Host
🇺🇸 Rip	2026-06-08 15:42:47 (1 week ago)	SASL authentication brute-force attack.	Brute-Force
🇸🇪 triplecode	2026-06-08 14:40:20 (1 week ago)	Reported from hMailServer	Hacking
🇩🇪 eskilbrun	2026-06-08 14:09:09 (1 week ago)	2026-06-08T16:09:09.381064+02:00 linode1.eskil.net postfix/smtpd[51854]: warning: unknown[201.18.12. ... show more 2026-06-08T16:09:09.381064+02:00 linode1.eskil.net postfix/smtpd[51854]: warning: unknown[201.18.12.194]: SASL LOGIN authentication failed: (reason unavailable), [email protected] 2026-06-08T16:09:09.382408+02:00 linode1.eskil.net postfix/smtpd[51854]: lost connection after AUTH from unknown[201.18.12.194] 2026-06-08T16:09:09.382467+02:00 linode1.eskil.net postfix/smtpd[51854]: disconnect from unknown[201.18.12.194] ehlo=1 auth=0/1 commands=1/2 ... show less	Brute-Force
🇹🇷 ferique	2026-06-08 13:00:42 (1 week ago)	Real-time Intercept: SMTP attack. Reference: 2026-06-08 16:00:41.0705 Login failure: 201.18.12.194 ... show more Real-time Intercept: SMTP attack. Reference: 2026-06-08 16:00:41.0705 Login failure: 201.18.12.194 SMTP show less	Brute-Force Email Spam
🇩🇪 singertc	2026-06-08 12:59:05 (1 week ago)	2026-06-08 10:46:29 login_server authenticator failed for ([196.189.126.185]) [201.18.12.194]: 535 I ... show more 2026-06-08 10:46:29 login_server authenticator failed for ([196.189.126.185]) [201.18.12.194]: 535 Incorrect authentication data ([email protected]) 2026-06-08 14:59:02 login_server authenticator failed for ([121.129.75.178]) [201.18.12.194]: 535 Incorrect authentication data ([email protected]) ... show less	Brute-Force Hacking
🇬🇧 stom	2026-06-08 12:10:18 (1 week ago)	2026-06-08T12:10:15.107369ls2.tom2.co.uk postfix/smtpd[16685]: warning: unknown[201.18.12.194]: SASL ... show more 2026-06-08T12:10:15.107369ls2.tom2.co.uk postfix/smtpd[16685]: warning: unknown[201.18.12.194]: SASL LOGIN authentication failed: authentication failure ... show less	Brute-Force Email Spam
🇩🇪 EGP Abuse Dept	2026-06-08 09:14:33 (1 week ago)	SMTP AUTH attack	Brute-Force
Anonymous	2026-06-08 07:27:08 (1 week ago)	SMTP brute force - auth failed	Brute-Force Exploited Host
🇩🇪 FeG Deutschland	2026-06-08 05:16:08 (1 week ago)	Mail: - login with unknown user - bruteforce	Brute-Force
🇺🇸 Bankbook8585	2026-06-07 19:02:57 (1 week ago)	T-Pot honeypot \| Cowrie SSH/Telnet honeypot: cowrie.login.failed user=Debian	Brute-Force SSH
🇩🇪 Paul Smith	2026-06-07 14:40:20 (1 week ago)	Email Auth Brute force attack 1/1 in last day	Brute-Force
🇭🇺 dd3589	2026-06-07 12:31:01 (1 week ago)	2026-06-07T14:30:28+02:00 <masked> exim[616950]: fixed_login authenticator failed for (89-68-245-7.d ... show more 2026-06-07T14:30:28+02:00 <masked> exim[616950]: fixed_login authenticator failed for (89-68-245-7.dynamic.play.pl) [201.18.12.194]: 535 Incorrect authentication data ([email protected]) show less	Brute-Force
🇭🇺 dd3589	2026-06-07 09:46:03 (1 week ago)	2026-06-07T11:45:34.578459+02:00 <masked> exim[199597].info: REJECT [201.18.12.194]: bad recipient c ... show more 2026-06-07T11:45:34.578459+02:00 <masked> exim[199597].info: REJECT [201.18.12.194]: bad recipient count high [82] show less	Brute-Force
Anonymous	2026-06-07 03:55:55 (1 week ago)	SMTP brute force - auth failed	Brute-Force Exploited Host

Showing 1 to 15 of 609 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇭🇰 154.221.25.72

🇦🇺 43.226.229.30

🇳🇱 217.60.195.185

🇸🇬 159.138.98.197

🇷🇺 152.32.227.252

🇪🇸 135.136.4.7

🇺🇸 104.234.53.55

🇬🇪 37.230.247.213

🇳🇴 185.253.97.253

🇳🇱 176.65.149.182

🇳🇱 176.65.148.2

🇪🇪 165.231.182.143

🇫🇮 147.185.133.132

🇨🇳 112.46.212.158

🇺🇸 66.132.172.148

🇺🇸 20.163.33.221

🇺🇸 2620:171:fc:f0::236

🇺🇸 154.83.197.128

🇳🇬 102.88.137.80

🇮🇳 92.4.76.12