191.242.74.214

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Verdenet Fibra Optica

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Aug 9 03:04:36 web1 postfix/smtpd[22143]: warning: unknown[191.242.74.214]: SASL PLAIN authentication failed: authentication failure ...	2019-08-09 15:31:02

Comments on same subnet:

IP	Type	Details	Datetime
191.242.74.194	attack	Jul 8 04:28:02 web1 postfix/smtpd[19138]: warning: unknown[191.242.74.194]: SASL PLAIN authentication failed: authentication failure ...	2019-07-08 17:03:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 191.242.74.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38581
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;191.242.74.214.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019080900 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Fri Aug 09 15:30:54 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 214.74.242.191.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 214.74.242.191.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.175.150	attackspam	Oct 22 14:36:48 SilenceServices sshd[20828]: Failed password for root from 222.186.175.150 port 11476 ssh2 Oct 22 14:37:02 SilenceServices sshd[20828]: Failed password for root from 222.186.175.150 port 11476 ssh2 Oct 22 14:37:06 SilenceServices sshd[20828]: Failed password for root from 222.186.175.150 port 11476 ssh2 Oct 22 14:37:06 SilenceServices sshd[20828]: error: maximum authentication attempts exceeded for root from 222.186.175.150 port 11476 ssh2 [preauth]	2019-10-22 20:37:45
222.186.180.147	attackspam	SSH bruteforce (Triggered fail2ban)	2019-10-22 20:26:33
138.197.195.52	attack	web-1 [ssh] SSH Attack	2019-10-22 21:09:24
103.141.138.127	attackbots	Oct 22 19:42:16 webhost01 sshd[3700]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.141.138.127 Oct 22 19:42:18 webhost01 sshd[3700]: Failed password for invalid user admin from 103.141.138.127 port 53779 ssh2 ...	2019-10-22 21:09:10
129.204.50.75	attackspambots	2019-10-22T12:26:48.534789abusebot-3.cloudsearch.cf sshd\[27645\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.50.75 user=root	2019-10-22 20:47:07
93.34.85.54	attack	ENG,WP GET /wp-login.php	2019-10-22 20:55:29
165.227.22.111	attackspam	chaangnoifulda.de 165.227.22.111 \[22/Oct/2019:13:52:59 +0200\] "POST /wp-login.php HTTP/1.1" 200 5874 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" chaangnoifulda.de 165.227.22.111 \[22/Oct/2019:13:53:01 +0200\] "POST /wp-login.php HTTP/1.1" 200 5833 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-10-22 20:38:12
118.25.133.121	attackbots	Invalid user admin from 118.25.133.121 port 40326	2019-10-22 21:10:51
125.165.1.135	attackbotsspam	19/10/22@07:53:11: FAIL: IoT-Telnet address from=125.165.1.135 ...	2019-10-22 20:30:45
105.145.33.143	attackspambots	Brute force attempt	2019-10-22 20:48:51
139.162.184.156	attackspam	SSH-bruteforce attempts	2019-10-22 20:47:46
185.40.13.3	attack	10/22/2019-08:26:26.038779 185.40.13.3 Protocol: 6 ET SCAN Potential SSH Scan	2019-10-22 20:27:32
219.152.28.49	attackbotsspam	Oct 22 14:22:32 django sshd[127927]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.152.28.49 user=r.r Oct 22 14:22:34 django sshd[127927]: Failed password for r.r from 219.152.28.49 port 11225 ssh2 Oct 22 14:22:35 django sshd[127928]: Received disconnect from 219.152.28.49: 11: Bye Bye Oct 22 14:37:09 django sshd[129071]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.152.28.49 user=r.r Oct 22 14:37:10 django sshd[129071]: Failed password for r.r from 219.152.28.49 port 41151 ssh2 Oct 22 14:37:11 django sshd[129074]: Received disconnect from 219.152.28.49: 11: Bye Bye Oct 22 14:48:55 django sshd[130146]: Invalid user postgres from 219.152.28.49 Oct 22 14:48:55 django sshd[130146]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=219.152.28.49 Oct 22 14:48:56 django sshd[130146]: Failed password for invalid user postgres from 219.152.28.49 ........ -------------------------------	2019-10-22 20:27:50
189.109.247.148	attack	Oct 22 15:13:45 site2 sshd\[3758\]: Invalid user $erver from 189.109.247.148Oct 22 15:13:47 site2 sshd\[3758\]: Failed password for invalid user $erver from 189.109.247.148 port 25617 ssh2Oct 22 15:18:16 site2 sshd\[3852\]: Invalid user 1 from 189.109.247.148Oct 22 15:18:18 site2 sshd\[3852\]: Failed password for invalid user 1 from 189.109.247.148 port 20584 ssh2Oct 22 15:22:47 site2 sshd\[3985\]: Invalid user jaqueline from 189.109.247.148Oct 22 15:22:49 site2 sshd\[3985\]: Failed password for invalid user jaqueline from 189.109.247.148 port 3844 ssh2 ...	2019-10-22 20:39:05
148.245.172.242	attackbots	Oct 22 13:52:45 tuxlinux sshd[40736]: Invalid user telegraf from 148.245.172.242 port 47122 Oct 22 13:52:45 tuxlinux sshd[40736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.245.172.242 Oct 22 13:52:45 tuxlinux sshd[40736]: Invalid user telegraf from 148.245.172.242 port 47122 Oct 22 13:52:45 tuxlinux sshd[40736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.245.172.242 Oct 22 13:52:45 tuxlinux sshd[40736]: Invalid user telegraf from 148.245.172.242 port 47122 Oct 22 13:52:45 tuxlinux sshd[40736]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.245.172.242 Oct 22 13:52:47 tuxlinux sshd[40736]: Failed password for invalid user telegraf from 148.245.172.242 port 47122 ssh2 ...	2019-10-22 20:51:16

Recently Reported IPs

132.148.153.156	118.141.45.138	197.54.110.182	184.168.193.196
58.247.32.82	182.114.173.96	110.77.251.54	221.8.85.235
180.248.162.114	165.255.252.104	143.223.169.210	141.98.80.128
14.191.92.93	223.16.154.93	162.144.23.210	77.68.64.31
42.112.141.29	114.35.10.232	191.53.194.68	121.143.111.46