189.39.242.129

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Mar Internet Provider Ltda.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	1566826211 - 08/26/2019 20:30:11 Host: 189.39.242.129.mar.com.br/189.39.242.129 Port: 23 TCP Blocked ...	2019-08-27 06:07:12

Comments on same subnet:

IP	Type	Details	Datetime
189.39.242.50	attackbotsspam	Unauthorized connection attempt detected from IP address 189.39.242.50 to port 80	2020-04-13 00:22:19
189.39.242.16	attackspam	23/tcp [2020-04-05]1pkt	2020-04-06 05:23:18
189.39.242.155	attack	Telnet/23 MH Probe, BF, Hack -	2020-01-22 05:24:11
189.39.242.148	attackbotsspam	Unauthorized connection attempt detected from IP address 189.39.242.148 to port 23 [J]	2020-01-21 13:43:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.39.242.129
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 26159
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.39.242.129.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019082601 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 27 06:07:06 CST 2019
;; MSG SIZE  rcvd: 118

Host info

129.242.39.189.in-addr.arpa domain name pointer 189.39.242.129.mar.com.br.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
129.242.39.189.in-addr.arpa	name = 189.39.242.129.mar.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
118.19.236.108	attackspambots	5500/tcp [2020-01-27]1pkt	2020-01-28 05:18:53
18.140.97.126	attackspambots	Microsoft-Windows-Security-Auditing	2020-01-28 04:53:05
2a03:4000:2b:105f:e8e3:f3ff:fe25:b6d3	attack	01/27/2020-21:31:40.785158 2a03:4000:002b:105f:e8e3:f3ff:fe25:b6d3 Protocol: 6 SURICATA TLS invalid record/traffic	2020-01-28 04:54:53
80.231.126.198	attack	Automatic report - Port Scan	2020-01-28 04:58:10
78.128.113.30	attackspambots	20 attempts against mh_ha-misbehave-ban on wheat	2020-01-28 04:50:09
93.56.26.2	attackspambots	Honeypot attack, port: 445, PTR: 93-56-26-2.ip287.fastwebnet.it.	2020-01-28 05:15:08
92.53.59.25	attack	2019-07-06 12:17:27 1hjhl0-0003pK-H9 SMTP connection from \(ctel-92-53-59-25.cabletel.com.mk\) \[92.53.59.25\]:31186 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-06 12:17:40 1hjhlE-0003pf-7L SMTP connection from \(ctel-92-53-59-25.cabletel.com.mk\) \[92.53.59.25\]:31367 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-07-06 12:17:46 1hjhlJ-0003pi-4Y SMTP connection from \(ctel-92-53-59-25.cabletel.com.mk\) \[92.53.59.25\]:31432 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 05:11:05
113.121.243.94	attackspambots	445/tcp [2020-01-27]1pkt	2020-01-28 05:21:40
157.230.249.122	attack	Automatic report - XMLRPC Attack	2020-01-28 05:04:42
163.172.100.71	attack	Brute force VPN server	2020-01-28 05:13:06
2a00:1158:2:6d00::2	attackspambots	01/27/2020-19:36:03.575079 2a00:1158:0002:6d00:0000:0000:0000:0002 Protocol: 6 SURICATA TLS invalid record/traffic	2020-01-28 05:00:54
190.7.113.46	attackbotsspam	Unauthorized connection attempt detected from IP address 190.7.113.46 to port 5555 [J]	2020-01-28 05:14:25
138.68.111.27	attackspam	Dec 31 23:17:22 dallas01 sshd[4352]: Failed password for invalid user yoyo from 138.68.111.27 port 19976 ssh2 Dec 31 23:19:56 dallas01 sshd[5947]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.111.27 Dec 31 23:19:58 dallas01 sshd[5947]: Failed password for invalid user kave from 138.68.111.27 port 48116 ssh2 Dec 31 23:22:24 dallas01 sshd[7650]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.111.27	2020-01-28 05:23:02
222.186.180.147	attackspambots	Jan 27 22:07:01 sd-53420 sshd\[13286\]: User root from 222.186.180.147 not allowed because none of user's groups are listed in AllowGroups Jan 27 22:07:01 sd-53420 sshd\[13286\]: Failed none for invalid user root from 222.186.180.147 port 26502 ssh2 Jan 27 22:07:01 sd-53420 sshd\[13286\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.180.147 user=root Jan 27 22:07:04 sd-53420 sshd\[13286\]: Failed password for invalid user root from 222.186.180.147 port 26502 ssh2 Jan 27 22:07:07 sd-53420 sshd\[13286\]: Failed password for invalid user root from 222.186.180.147 port 26502 ssh2 ...	2020-01-28 05:18:17
92.53.54.199	attackspam	2019-09-16 12:46:33 1i9oWc-0002WI-Fq SMTP connection from \(ctel-92-53-54-199.cabletel.com.mk\) \[92.53.54.199\]:21787 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-16 12:47:23 1i9oXQ-0002YB-Q8 SMTP connection from \(ctel-92-53-54-199.cabletel.com.mk\) \[92.53.54.199\]:21965 I=\[193.107.88.166\]:25 closed by DROP in ACL 2019-09-16 12:47:54 1i9oXt-0002Yr-4o SMTP connection from \(ctel-92-53-54-199.cabletel.com.mk\) \[92.53.54.199\]:22072 I=\[193.107.88.166\]:25 closed by DROP in ACL ...	2020-01-28 05:11:44

Recently Reported IPs

79.12.140.32	61.176.239.65	37.76.133.155	123.21.157.137
113.111.108.15	103.125.191.26	87.242.15.123	19.21.184.142
59.16.10.243	221.201.251.102	216.248.98.44	187.176.33.127
186.124.208.35	171.243.130.245	229.148.92.234	168.232.129.193
161.191.244.0	130.29.147.136	181.51.154.13	167.71.219.49