191.242.21.185

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
191.242.217.110	attack	Oct 6 13:47:29 prox sshd[30389]: Failed password for root from 191.242.217.110 port 21060 ssh2	2020-10-07 04:21:57
191.242.217.110	attackbots	Oct 6 13:47:29 prox sshd[30389]: Failed password for root from 191.242.217.110 port 21060 ssh2	2020-10-06 20:25:50
191.242.217.110	attack	SSH Brute-Force Attack	2020-10-06 12:05:15
191.242.217.110	attack	Sep 14 05:27:32 vmd26974 sshd[22903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.242.217.110 Sep 14 05:27:34 vmd26974 sshd[22903]: Failed password for invalid user zhaowei from 191.242.217.110 port 18673 ssh2 ...	2020-09-14 21:31:36
191.242.217.110	attackbots	Sep 14 05:27:32 vmd26974 sshd[22903]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.242.217.110 Sep 14 05:27:34 vmd26974 sshd[22903]: Failed password for invalid user zhaowei from 191.242.217.110 port 18673 ssh2 ...	2020-09-14 13:24:39
191.242.217.110	attackbots	Sep 13 21:45:42 ncomp sshd[21995]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.242.217.110 user=root Sep 13 21:45:44 ncomp sshd[21995]: Failed password for root from 191.242.217.110 port 49484 ssh2 Sep 13 21:53:38 ncomp sshd[22145]: Invalid user viki from 191.242.217.110 port 39848	2020-09-14 05:24:18
191.242.217.110	attackspambots	Invalid user zj from 191.242.217.110 port 2223	2020-09-04 20:22:41
191.242.217.110	attackbots	(sshd) Failed SSH login from 191.242.217.110 (BR/Brazil/EspÃrito Santo/Linhares (Palmital)/191.242.217.110-static.host.megalink.net.br): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 3 12:59:17 atlas sshd[20281]: Invalid user usuario from 191.242.217.110 port 28374 Sep 3 12:59:18 atlas sshd[20281]: Failed password for invalid user usuario from 191.242.217.110 port 28374 ssh2 Sep 3 13:13:00 atlas sshd[23347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.242.217.110 user=mysql Sep 3 13:13:02 atlas sshd[23347]: Failed password for mysql from 191.242.217.110 port 25419 ssh2 Sep 3 13:17:50 atlas sshd[24535]: Invalid user wzc from 191.242.217.110 port 5871	2020-09-04 04:34:22
191.242.216.7	attackspambots	Port Scan ...	2020-08-09 02:59:53
191.242.214.249	attackspam	port scan and connect, tcp 80 (http)	2020-03-24 16:22:47
191.242.214.214	attack	Automatic report - Port Scan Attack	2020-02-26 03:12:26
191.242.214.5	attackspam	Unauthorized connection attempt detected from IP address 191.242.214.5 to port 23 [J]	2020-01-26 21:09:07
191.242.217.6	attackbotsspam	Port Scan: UDP/137	2019-09-20 20:04:26
191.242.217.6	attackbots	Port Scan: UDP/137	2019-09-03 01:59:44

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 191.242.21.185
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 56669
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;191.242.21.185.			IN	A

;; AUTHORITY SECTION:
.			30	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025012200 1800 900 604800 86400

;; Query time: 37 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 22 15:15:37 CST 2025
;; MSG SIZE  rcvd: 107

Host info

185.21.242.191.in-addr.arpa domain name pointer br-go-gsia-191-242-21-185.vocenafrente.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
185.21.242.191.in-addr.arpa	name = br-go-gsia-191-242-21-185.vocenafrente.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.51.94.92	attackspam	Invalid user qha from 122.51.94.92 port 33650	2020-03-30 14:00:22
168.232.13.74	attack	Mar 30 05:55:22 debian-2gb-nbg1-2 kernel: \[7799581.268524\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=168.232.13.74 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=238 ID=13558 DF PROTO=TCP SPT=14797 DPT=23 WINDOW=14600 RES=0x00 SYN URGP=0	2020-03-30 13:51:32
92.151.99.164	attackbots	Mar 30 06:09:49 OPSO sshd\[29198\]: Invalid user ms from 92.151.99.164 port 40534 Mar 30 06:09:49 OPSO sshd\[29198\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.151.99.164 Mar 30 06:09:51 OPSO sshd\[29198\]: Failed password for invalid user ms from 92.151.99.164 port 40534 ssh2 Mar 30 06:14:51 OPSO sshd\[30490\]: Invalid user rtp from 92.151.99.164 port 42756 Mar 30 06:14:51 OPSO sshd\[30490\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=92.151.99.164	2020-03-30 13:57:37
141.98.10.137	attack	Rude login attack (16 tries in 1d)	2020-03-30 13:55:28
52.66.81.12	attack	(sshd) Failed SSH login from 52.66.81.12 (IN/India/ec2-52-66-81-12.ap-south-1.compute.amazonaws.com): 2 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Mar 30 05:55:33 ubnt-55d23 sshd[15297]: Invalid user healer from 52.66.81.12 port 36680 Mar 30 05:55:35 ubnt-55d23 sshd[15297]: Failed password for invalid user healer from 52.66.81.12 port 36680 ssh2	2020-03-30 13:34:33
150.242.213.189	attack	SSH Brute-Forcing (server2)	2020-03-30 13:21:43
140.86.12.31	attackspambots	Mar 30 06:00:56 vmd26974 sshd[842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.86.12.31 Mar 30 06:00:59 vmd26974 sshd[842]: Failed password for invalid user mssql from 140.86.12.31 port 36768 ssh2 ...	2020-03-30 13:37:55
49.235.62.222	attack	$f2bV_matches	2020-03-30 13:36:43
83.254.58.75	attack	Honeypot attack, port: 5555, PTR: c83-254-58-75.bredband.comhem.se.	2020-03-30 13:52:19
113.53.29.172	attack	2020-03-30T04:19:19.103476shield sshd\[10928\]: Invalid user rnu from 113.53.29.172 port 42780 2020-03-30T04:19:19.112278shield sshd\[10928\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.53.29.172 2020-03-30T04:19:21.887362shield sshd\[10928\]: Failed password for invalid user rnu from 113.53.29.172 port 42780 ssh2 2020-03-30T04:21:30.075982shield sshd\[11622\]: Invalid user oar from 113.53.29.172 port 46898 2020-03-30T04:21:30.079844shield sshd\[11622\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.53.29.172	2020-03-30 13:45:51
106.240.234.114	attack	SSH brute-force attempt	2020-03-30 13:31:35
54.38.33.178	attackspam	Mar 30 05:11:54 web8 sshd\[14976\]: Invalid user nfm from 54.38.33.178 Mar 30 05:11:54 web8 sshd\[14976\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.33.178 Mar 30 05:11:56 web8 sshd\[14976\]: Failed password for invalid user nfm from 54.38.33.178 port 34038 ssh2 Mar 30 05:16:07 web8 sshd\[17175\]: Invalid user eur from 54.38.33.178 Mar 30 05:16:07 web8 sshd\[17175\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.38.33.178	2020-03-30 13:40:54
218.92.0.195	attack	03/30/2020-01:44:42.470870 218.92.0.195 Protocol: 6 ET SCAN Potential SSH Scan	2020-03-30 13:45:23
106.12.156.236	attack	Mar 30 06:53:50 server sshd\[7645\]: Invalid user mwf from 106.12.156.236 Mar 30 06:53:50 server sshd\[7645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.156.236 Mar 30 06:53:51 server sshd\[7645\]: Failed password for invalid user mwf from 106.12.156.236 port 35856 ssh2 Mar 30 07:00:40 server sshd\[9760\]: Invalid user mdh from 106.12.156.236 Mar 30 07:00:40 server sshd\[9760\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.156.236 ...	2020-03-30 13:36:02
51.79.70.223	attackspam	Mar 29 19:42:15 wbs sshd\[4422\]: Invalid user ias from 51.79.70.223 Mar 29 19:42:15 wbs sshd\[4422\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=elite-tracker.com Mar 29 19:42:17 wbs sshd\[4422\]: Failed password for invalid user ias from 51.79.70.223 port 39530 ssh2 Mar 29 19:46:10 wbs sshd\[4701\]: Invalid user srvadmin from 51.79.70.223 Mar 29 19:46:10 wbs sshd\[4701\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=elite-tracker.com	2020-03-30 14:04:52

Recently Reported IPs

164.148.240.0	30.116.180.2	79.217.230.113	208.93.239.121
170.208.87.238	38.108.101.167	187.43.32.42	152.31.239.69
169.163.111.127	192.78.11.30	143.69.161.41	237.107.187.232
155.196.107.201	101.79.60.41	50.112.14.112	207.147.174.12
79.230.8.250	45.88.184.81	227.211.20.204	53.116.185.226