189.39.242.16 - IPInfo

Basic Info

City: Armacao de Buzios

Region: Rio de Janeiro

Country: Brazil

Internet Service Provider: Mar Internet Provider Ltda.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	23/tcp [2020-04-05]1pkt	2020-04-06 05:23:18

Comments on same subnet:

IP	Type	Details	Datetime
189.39.242.50	attackbotsspam	Unauthorized connection attempt detected from IP address 189.39.242.50 to port 80	2020-04-13 00:22:19
189.39.242.155	attack	Telnet/23 MH Probe, BF, Hack -	2020-01-22 05:24:11
189.39.242.148	attackbotsspam	Unauthorized connection attempt detected from IP address 189.39.242.148 to port 23 [J]	2020-01-21 13:43:37
189.39.242.129	attackbots	1566826211 - 08/26/2019 20:30:11 Host: 189.39.242.129.mar.com.br/189.39.242.129 Port: 23 TCP Blocked ...	2019-08-27 06:07:12

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 189.39.242.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25204
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;189.39.242.16.			IN	A

;; AUTHORITY SECTION:
.			193	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020040501 1800 900 604800 86400

;; Query time: 169 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Apr 06 05:23:15 CST 2020
;; MSG SIZE  rcvd: 117

Host info

16.242.39.189.in-addr.arpa domain name pointer 189.39.242.16.mar.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
16.242.39.189.in-addr.arpa	name = 189.39.242.16.mar.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
36.84.239.142	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-06 03:46:51,121 INFO [amun_request_handler] PortScan Detected on Port: 445 (36.84.239.142)	2019-09-06 15:33:55
106.13.117.96	attackspam	Sep 6 07:14:08 tuotantolaitos sshd[9607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.117.96 Sep 6 07:14:10 tuotantolaitos sshd[9607]: Failed password for invalid user testftp from 106.13.117.96 port 39272 ssh2 ...	2019-09-06 15:28:11
203.171.227.205	attackspam	Sep 6 09:38:55 vps691689 sshd[10686]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.171.227.205 Sep 6 09:38:57 vps691689 sshd[10686]: Failed password for invalid user mysql from 203.171.227.205 port 42803 ssh2 ...	2019-09-06 15:49:41
112.231.255.63	attackbots	" "	2019-09-06 15:51:48
152.136.76.134	attack	$f2bV_matches	2019-09-06 15:48:24
222.242.104.188	attackspam	Sep 6 06:52:09 game-panel sshd[32248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.242.104.188 Sep 6 06:52:11 game-panel sshd[32248]: Failed password for invalid user teamspeak3 from 222.242.104.188 port 51463 ssh2 Sep 6 06:57:48 game-panel sshd[32472]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.242.104.188	2019-09-06 15:07:28
106.12.24.234	attackbotsspam	Sep 5 21:18:10 hpm sshd\[993\]: Invalid user ftp1 from 106.12.24.234 Sep 5 21:18:10 hpm sshd\[993\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.24.234 Sep 5 21:18:13 hpm sshd\[993\]: Failed password for invalid user ftp1 from 106.12.24.234 port 39234 ssh2 Sep 5 21:23:42 hpm sshd\[1435\]: Invalid user nagios from 106.12.24.234 Sep 5 21:23:42 hpm sshd\[1435\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.24.234	2019-09-06 15:24:17
209.97.161.177	attack	Sep 5 21:35:03 hcbb sshd\[24296\]: Invalid user admin from 209.97.161.177 Sep 5 21:35:03 hcbb sshd\[24296\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.161.177 Sep 5 21:35:05 hcbb sshd\[24296\]: Failed password for invalid user admin from 209.97.161.177 port 57804 ssh2 Sep 5 21:43:44 hcbb sshd\[25176\]: Invalid user test101 from 209.97.161.177 Sep 5 21:43:44 hcbb sshd\[25176\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.97.161.177	2019-09-06 15:49:07
91.220.235.51	attackspam	19/9/5@23:55:22: FAIL: IoT-Telnet address from=91.220.235.51 ...	2019-09-06 15:25:07
106.52.95.68	attackbotsspam	SSH invalid-user multiple login try	2019-09-06 15:19:46
129.211.125.143	attack	Sep 5 21:00:02 hpm sshd\[31780\]: Invalid user qwer1234 from 129.211.125.143 Sep 5 21:00:02 hpm sshd\[31780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.125.143 Sep 5 21:00:04 hpm sshd\[31780\]: Failed password for invalid user qwer1234 from 129.211.125.143 port 47809 ssh2 Sep 5 21:05:12 hpm sshd\[32201\]: Invalid user pass from 129.211.125.143 Sep 5 21:05:12 hpm sshd\[32201\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.125.143	2019-09-06 15:05:54
222.186.31.204	attack	Sep 6 07:10:48 herz-der-gamer sshd[30626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.204 user=root Sep 6 07:10:49 herz-der-gamer sshd[30626]: Failed password for root from 222.186.31.204 port 21356 ssh2 Sep 6 07:10:52 herz-der-gamer sshd[30626]: Failed password for root from 222.186.31.204 port 21356 ssh2 Sep 6 07:10:48 herz-der-gamer sshd[30626]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.31.204 user=root Sep 6 07:10:49 herz-der-gamer sshd[30626]: Failed password for root from 222.186.31.204 port 21356 ssh2 Sep 6 07:10:52 herz-der-gamer sshd[30626]: Failed password for root from 222.186.31.204 port 21356 ssh2 ...	2019-09-06 15:47:53
83.166.154.159	attackbotsspam	Sep 6 04:15:00 game-panel sshd[23512]: Failed password for root from 83.166.154.159 port 44656 ssh2 Sep 6 04:18:47 game-panel sshd[23658]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=83.166.154.159 Sep 6 04:18:49 game-panel sshd[23658]: Failed password for invalid user test7 from 83.166.154.159 port 60994 ssh2	2019-09-06 15:32:16
104.196.50.15	attackbots	2019-09-06T07:39:13.730751lon01.zurich-datacenter.net sshd\[31508\]: Invalid user teamspeak3 from 104.196.50.15 port 54702 2019-09-06T07:39:13.737687lon01.zurich-datacenter.net sshd\[31508\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.50.196.104.bc.googleusercontent.com 2019-09-06T07:39:15.688154lon01.zurich-datacenter.net sshd\[31508\]: Failed password for invalid user teamspeak3 from 104.196.50.15 port 54702 ssh2 2019-09-06T07:43:38.598553lon01.zurich-datacenter.net sshd\[31604\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=15.50.196.104.bc.googleusercontent.com user=root 2019-09-06T07:43:40.896334lon01.zurich-datacenter.net sshd\[31604\]: Failed password for root from 104.196.50.15 port 42226 ssh2 ...	2019-09-06 15:24:52
104.248.185.25	attackbots	Port Scan detected from 104.248.185.25 (US/United States/-). 4 hits in the last 220 seconds	2019-09-06 15:36:00

Recently Reported IPs

2.225.131.220	58.96.115.203	222.108.160.129	137.116.236.138
172.62.66.200	23.106.219.154	67.89.39.19	36.87.2.135
87.245.7.79	79.17.166.88	63.39.102.38	32.234.40.172
207.154.195.24	129.207.139.83	95.195.182.50	93.47.206.120
59.13.212.191	109.239.43.15	132.216.78.151	47.13.78.59