131.196.243.140

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Alison Junior de A. Dos Santos

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Port probing on unauthorized port 445	2020-04-21 16:59:11

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.196.243.140
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45369
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;131.196.243.140.		IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020042100 1800 900 604800 86400

;; Query time: 195 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Apr 21 16:59:07 CST 2020
;; MSG SIZE  rcvd: 119

Host info

Host 140.243.196.131.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 140.243.196.131.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
114.67.87.81	attackbotsspam	Apr 02 05:54:11 askasleikir sshd[102952]: Failed password for root from 114.67.87.81 port 33058 ssh2	2020-04-02 20:17:30
153.246.16.157	attackspam	Apr 2 07:35:54 host sshd[2772]: Invalid user admin from 153.246.16.157 port 41906 ...	2020-04-02 19:57:40
106.13.207.159	attack	ssh brute force	2020-04-02 19:52:02
104.236.224.69	attack	$f2bV_matches	2020-04-02 19:49:47
210.245.92.228	attack	Apr 1 16:51:20 hostnameproxy sshd[2184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.245.92.228 user=r.r Apr 1 16:51:22 hostnameproxy sshd[2184]: Failed password for r.r from 210.245.92.228 port 37051 ssh2 Apr 1 16:53:06 hostnameproxy sshd[2230]: Invalid user aq from 210.245.92.228 port 48494 Apr 1 16:53:06 hostnameproxy sshd[2230]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.245.92.228 Apr 1 16:53:08 hostnameproxy sshd[2230]: Failed password for invalid user aq from 210.245.92.228 port 48494 ssh2 Apr 1 16:55:58 hostnameproxy sshd[2307]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=210.245.92.228 user=r.r Apr 1 16:56:00 hostnameproxy sshd[2307]: Failed password for r.r from 210.245.92.228 port 55988 ssh2 Apr 1 16:57:01 hostnameproxy sshd[2331]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser=........ ------------------------------	2020-04-02 20:08:43
138.68.148.177	attack	Apr 2 13:53:05 pve sshd[433]: Failed password for root from 138.68.148.177 port 44552 ssh2 Apr 2 13:57:34 pve sshd[1176]: Failed password for root from 138.68.148.177 port 57900 ssh2	2020-04-02 20:18:02
78.180.182.91	attackbots	DATE:2020-04-02 05:50:23, IP:78.180.182.91, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-04-02 20:26:42
31.184.199.114	attackbotsspam	Apr 2 12:12:35 [HOSTNAME] sshd[21412]: Invalid user 0 from 31.184.199.114 port 47359 Apr 2 12:12:35 [HOSTNAME] sshd[21412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=31.184.199.114 Apr 2 12:12:37 [HOSTNAME] sshd[21412]: Failed password for invalid user 0 from 31.184.199.114 port 47359 ssh2 ...	2020-04-02 20:21:33
120.132.117.254	attack	Apr 2 13:16:26 ovpn sshd\[14107\]: Invalid user io from 120.132.117.254 Apr 2 13:16:26 ovpn sshd\[14107\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.117.254 Apr 2 13:16:28 ovpn sshd\[14107\]: Failed password for invalid user io from 120.132.117.254 port 41782 ssh2 Apr 2 13:26:23 ovpn sshd\[16422\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=120.132.117.254 user=root Apr 2 13:26:25 ovpn sshd\[16422\]: Failed password for root from 120.132.117.254 port 38127 ssh2	2020-04-02 19:50:31
27.191.209.93	attack	Apr 2 08:06:06 server sshd\[19951\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.191.209.93 user=root Apr 2 08:06:09 server sshd\[19951\]: Failed password for root from 27.191.209.93 port 40149 ssh2 Apr 2 08:14:20 server sshd\[21628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.191.209.93 user=root Apr 2 08:14:21 server sshd\[21628\]: Failed password for root from 27.191.209.93 port 60647 ssh2 Apr 2 08:19:47 server sshd\[22866\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.191.209.93 user=root ...	2020-04-02 19:44:28
118.174.109.192	attackbotsspam	Unauthorized connection attempt detected from IP address 118.174.109.192 to port 445	2020-04-02 20:11:08
129.146.172.170	attack	2020-04-01 UTC: (30x) - admin,bd,demo,hongli,iu,nproc(8x),root(14x),www,yaoyinqi,zengfl	2020-04-02 19:47:20
198.245.53.242	attackspam	$f2bV_matches	2020-04-02 20:06:04
194.228.3.191	attack	SSH Brute Force	2020-04-02 20:20:54
78.111.126.140	attack	Apr 2 05:50:44 debian-2gb-nbg1-2 kernel: \[8058489.466358\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=78.111.126.140 DST=195.201.40.59 LEN=163 TOS=0x00 PREC=0x00 TTL=115 ID=26840 PROTO=UDP SPT=62112 DPT=60475 LEN=143	2020-04-02 20:03:48

Recently Reported IPs

200.194.39.184	45.95.169.232	91.216.164.252	20.48.40.93
45.238.229.241	185.209.0.79	162.243.128.32	18.163.29.88
174.110.88.87	188.16.147.225	180.247.2.12	223.206.219.169
146.90.99.105	51.75.175.26	50.87.253.242	14.232.7.69
54.39.96.155	117.244.89.29	231.78.141.61	212.129.154.148