143.0.42.196 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Lucas Network Informatica Ltda ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 18:35:45

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 143.0.42.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 65238
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;143.0.42.196.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019070800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 08 18:35:34 CST 2019
;; MSG SIZE  rcvd: 116

Host info

196.42.0.143.in-addr.arpa domain name pointer 143.0.42.196.lucasnet.com.br.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
196.42.0.143.in-addr.arpa	name = 143.0.42.196.lucasnet.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
200.169.6.202	attackbotsspam	Jul 4 23:42:25 vps639187 sshd\[11754\]: Invalid user wg from 200.169.6.202 port 41394 Jul 4 23:42:25 vps639187 sshd\[11754\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.169.6.202 Jul 4 23:42:27 vps639187 sshd\[11754\]: Failed password for invalid user wg from 200.169.6.202 port 41394 ssh2 ...	2020-07-05 06:03:50
46.101.224.184	attack	SSH Invalid Login	2020-07-05 06:04:16
103.79.79.188	attackspam	Wp-admin	2020-07-05 06:33:54
103.8.79.67	attack	$f2bV_matches	2020-07-05 06:25:20
191.235.91.156	attack	Jul 4 22:06:18 vps1 sshd[2213647]: Failed password for root from 191.235.91.156 port 45210 ssh2 Jul 4 22:16:16 vps1 sshd[2213871]: Invalid user zjy from 191.235.91.156 port 46472 ...	2020-07-05 06:37:58
183.15.179.151	attackspambots	Jul 4 23:59:46 vps687878 sshd\[6090\]: Failed password for invalid user ubuntu from 183.15.179.151 port 44056 ssh2 Jul 5 00:02:50 vps687878 sshd\[6443\]: Invalid user apc from 183.15.179.151 port 60120 Jul 5 00:02:50 vps687878 sshd\[6443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.15.179.151 Jul 5 00:02:52 vps687878 sshd\[6443\]: Failed password for invalid user apc from 183.15.179.151 port 60120 ssh2 Jul 5 00:06:00 vps687878 sshd\[6638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.15.179.151 user=root ...	2020-07-05 06:14:36
107.170.249.6	attack	Invalid user javier from 107.170.249.6 port 47293	2020-07-05 06:06:31
112.85.42.187	attackspam	2020-07-04T18:05:14.304643uwu-server sshd[1788717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.187 user=root 2020-07-04T18:05:16.314748uwu-server sshd[1788717]: Failed password for root from 112.85.42.187 port 14047 ssh2 2020-07-04T18:05:14.304643uwu-server sshd[1788717]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.187 user=root 2020-07-04T18:05:16.314748uwu-server sshd[1788717]: Failed password for root from 112.85.42.187 port 14047 ssh2 2020-07-04T18:05:20.054226uwu-server sshd[1788717]: Failed password for root from 112.85.42.187 port 14047 ssh2 ...	2020-07-05 06:06:09
141.98.10.198	attack	Cowrie Honeypot: 3 unauthorised SSH/Telnet login attempts between 2020-07-04T22:15:33Z and 2020-07-04T22:17:45Z	2020-07-05 06:34:59
46.101.150.9	attack	46.101.150.9 - - [04/Jul/2020:23:39:32 +0200] "POST /xmlrpc.php HTTP/1.1" 403 461 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.150.9 - - [04/Jul/2020:23:42:12 +0200] "POST /xmlrpc.php HTTP/1.1" 403 613 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-05 06:21:01
193.228.91.123	attackbots	SmallBizIT.US 1 packets to tcp(22)	2020-07-05 06:32:58
49.235.11.46	attack	Failed password for invalid user devops from 49.235.11.46 port 36140 ssh2	2020-07-05 06:15:57
221.149.8.48	attack	Jul 5 00:05:45 abendstille sshd\[29844\]: Invalid user chen from 221.149.8.48 Jul 5 00:05:45 abendstille sshd\[29844\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.8.48 Jul 5 00:05:47 abendstille sshd\[29844\]: Failed password for invalid user chen from 221.149.8.48 port 33542 ssh2 Jul 5 00:07:35 abendstille sshd\[31714\]: Invalid user master from 221.149.8.48 Jul 5 00:07:35 abendstille sshd\[31714\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.149.8.48 ...	2020-07-05 06:14:13
187.200.93.29	attackbotsspam	Jul 5 03:58:36 our-server-hostname sshd[11366]: reveeclipse mapping checking getaddrinfo for dsl-187-200-93-29-dyn.prod-infinhostnameum.com.mx [187.200.93.29] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 5 03:58:36 our-server-hostname sshd[11366]: Invalid user guest10 from 187.200.93.29 Jul 5 03:58:36 our-server-hostname sshd[11366]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.200.93.29 Jul 5 03:58:38 our-server-hostname sshd[11366]: Failed password for invalid user guest10 from 187.200.93.29 port 55737 ssh2 Jul 5 04:05:53 our-server-hostname sshd[12395]: reveeclipse mapping checking getaddrinfo for dsl-187-200-93-29-dyn.prod-infinhostnameum.com.mx [187.200.93.29] failed - POSSIBLE BREAK-IN ATTEMPT! Jul 5 04:05:53 our-server-hostname sshd[12395]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.200.93.29 user=r.r Jul 5 04:05:54 our-server-hostname sshd[12395]: Failed password ........ -------------------------------	2020-07-05 06:16:23
222.186.175.23	attack	Jul 4 22:22:14 scw-6657dc sshd[3109]: Failed password for root from 222.186.175.23 port 57856 ssh2 Jul 4 22:22:14 scw-6657dc sshd[3109]: Failed password for root from 222.186.175.23 port 57856 ssh2 Jul 4 22:22:16 scw-6657dc sshd[3109]: Failed password for root from 222.186.175.23 port 57856 ssh2 ...	2020-07-05 06:38:53

Recently Reported IPs

124.132.116.178	195.145.225.214	138.219.201.13	30.17.198.253
47.31.97.156	138.186.199.99	179.109.119.43	35.141.183.220
138.121.93.14	71.89.66.110	103.3.226.166	37.49.229.137
138.121.22.18	178.127.59.74	2.10.107.3	138.121.22.17
14.40.212.208	49.81.199.129	32.95.188.120	172.245.211.186