201.131.82.139

Basic Info

City: unknown

Region: unknown

Country: None

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.131.82.139
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 29708
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.131.82.139.			IN	A

;; AUTHORITY SECTION:
.			513	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019103000 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Oct 31 00:48:29 CST 2019
;; MSG SIZE  rcvd: 118

Host info

139.82.131.201.in-addr.arpa domain name pointer 201.131.82.139.wireless.tknet-ti.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
139.82.131.201.in-addr.arpa	name = 201.131.82.139.wireless.tknet-ti.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
5.9.141.8	attackbotsspam	20 attempts against mh-misbehave-ban on flare	2020-08-11 18:12:12
203.162.54.246	attackbotsspam	SSH	2020-08-11 18:13:44
129.158.74.141	attackspam	Aug 11 05:16:16 rocket sshd[490]: Failed password for root from 129.158.74.141 port 57077 ssh2 Aug 11 05:18:40 rocket sshd[800]: Failed password for root from 129.158.74.141 port 46868 ssh2 ...	2020-08-11 18:08:41
164.132.73.220	attackbots	TCP port : 17495	2020-08-11 18:17:03
14.225.17.9	attackspam	Aug 11 05:45:50 haigwepa sshd[25008]: Failed password for root from 14.225.17.9 port 54614 ssh2 ...	2020-08-11 18:15:56
106.12.165.53	attackspam	2020-08-10 UTC: (30x) - root(30x)	2020-08-11 17:46:06
189.208.236.220	attackbotsspam	Automatic report - Port Scan Attack	2020-08-11 18:08:00
139.59.3.170	attackbots	Aug 9 17:05:41 Ubuntu-1404-trusty-64-minimal sshd\[17653\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.170 user=root Aug 9 17:05:44 Ubuntu-1404-trusty-64-minimal sshd\[17653\]: Failed password for root from 139.59.3.170 port 59120 ssh2 Aug 9 17:13:19 Ubuntu-1404-trusty-64-minimal sshd\[22606\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.170 user=root Aug 9 17:13:21 Ubuntu-1404-trusty-64-minimal sshd\[22606\]: Failed password for root from 139.59.3.170 port 38592 ssh2 Aug 9 17:15:49 Ubuntu-1404-trusty-64-minimal sshd\[25266\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.3.170 user=root	2020-08-11 18:03:23
222.186.30.218	attackspam	Aug 11 11:56:13 theomazars sshd[25332]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.30.218 user=root Aug 11 11:56:15 theomazars sshd[25332]: Failed password for root from 222.186.30.218 port 30498 ssh2	2020-08-11 17:56:34
138.197.66.68	attack	SSH invalid-user multiple login try	2020-08-11 18:13:31
62.173.147.228	attack	[2020-08-11 05:59:41] NOTICE[1185][C-00000e39] chan_sip.c: Call from '' (62.173.147.228:60144) to extension '+18052654165' rejected because extension not found in context 'public'. [2020-08-11 05:59:41] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-11T05:59:41.842-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="+18052654165",SessionID="0x7f10c43e3a48",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.173.147.228/60144",ACLName="no_extension_match" [2020-08-11 06:00:53] NOTICE[1185][C-00000e3d] chan_sip.c: Call from '' (62.173.147.228:54858) to extension '18052654165' rejected because extension not found in context 'public'. [2020-08-11 06:00:53] SECURITY[1203] res_security_log.c: SecurityEvent="FailedACL",EventTV="2020-08-11T06:00:53.233-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="18052654165",SessionID="0x7f10c4305a88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/62.173.147. ...	2020-08-11 18:06:01
63.245.58.161	attackspambots	Wordpress attack	2020-08-11 18:11:15
144.22.95.234	attackbots	srvr2: (mod_security) mod_security (id:920350) triggered by 144.22.95.234 (BR/-/oc-144-22-95-234.compute.oraclecloud.com): 1 in the last 600 secs; Ports: ; Direction: inout; Trigger: LF_MODSEC; Logs: 2020/08/11 05:49:31 [error] 58795#0: 59991 [client 144.22.95.234] ModSecurity: Access denied with code 406 (phase 2). Matched "Operator `Rx' with parameter `^[\d.:]+$' against variable `REQUEST_HEADERS:Host' [redacted] [file "/etc/modsecurity.d/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "718"] [id "920350"] [rev ""] [msg "Host header is a numeric IP address"] [redacted] [severity "4"] [ver "OWASP_CRS/3.3.0"] [maturity "0"] [accuracy "0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "paranoia-level/1"] [tag "OWASP_CRS"] [tag "capec/1000/210/272"] [tag "PCI/6.5.10"] [redacted] [uri "/"] [unique_id "159711777120.368337"] [ref "o0,15v21,15"], client: 144.22.95.234, [redacted] request: "GET / HTTP/1.1" [redacted]	2020-08-11 18:18:39
104.215.182.47	attackspam	Aug 11 00:41:29 ws24vmsma01 sshd[138514]: Failed password for root from 104.215.182.47 port 55450 ssh2 ...	2020-08-11 17:59:37
64.227.94.82	attack	Automatic report - Banned IP Access	2020-08-11 17:49:32

Recently Reported IPs

129.50.195.228	159.252.191.108	222.189.10.54	0.111.208.19
1.144.231.79	13.209.19.23	228.15.25.13	11.63.101.211
184.15.250.92	176.221.38.40	217.104.235.218	2.173.234.116
7.220.55.235	109.3.60.210	99.66.36.130	199.49.49.107
11.162.191.162	90.162.121.76	251.161.35.108	50.84.138.51