201.139.88.52 - IPInfo

Basic Info

City: Leopoldina

Region: Minas Gerais

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: P. R. LIMA & CIA LTDA

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
201.139.88.19	attack	suspicious action Wed, 11 Mar 2020 16:14:25 -0300	2020-03-12 07:26:10
201.139.88.35	attackspam	email spam	2019-12-19 20:51:50
201.139.88.58	attack	email spam	2019-12-17 18:13:37
201.139.88.19	attackbotsspam	Dec 12 22:16:43 server sshd\[32051\]: Invalid user admin from 201.139.88.19 Dec 12 22:16:43 server sshd\[32051\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns1.microtechnet.com.br Dec 12 22:16:45 server sshd\[32051\]: Failed password for invalid user admin from 201.139.88.19 port 56854 ssh2 Dec 12 22:27:52 server sshd\[2827\]: Invalid user mcblain from 201.139.88.19 Dec 12 22:27:52 server sshd\[2827\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ns1.microtechnet.com.br ...	2019-12-13 03:28:58
201.139.88.19	attackbotsspam	Dec 11 06:01:52 MK-Soft-VM7 sshd[16046]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.139.88.19 Dec 11 06:01:54 MK-Soft-VM7 sshd[16046]: Failed password for invalid user steam from 201.139.88.19 port 58196 ssh2 ...	2019-12-11 13:05:52
201.139.88.19	attackbotsspam	Dec 9 01:44:20 iago sshd[25311]: Invalid user arriero from 201.139.88.19 Dec 9 01:44:22 iago sshd[25311]: Failed password for invalid user arriero from 201.139.88.19 port 40614 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=201.139.88.19	2019-12-09 09:25:18
201.139.88.22	attackbots	Port 22 Scan, PTR: None	2019-12-03 17:18:47
201.139.88.22	attackspambots	$f2bV_matches	2019-11-12 04:43:36
201.139.88.22	attackspambots	Nov 9 21:08:06 firewall sshd[23192]: Invalid user warrior from 201.139.88.22 Nov 9 21:08:08 firewall sshd[23192]: Failed password for invalid user warrior from 201.139.88.22 port 59006 ssh2 Nov 9 21:13:01 firewall sshd[23296]: Invalid user ocadmin123 from 201.139.88.22 ...	2019-11-10 08:20:35
201.139.88.22	attack	Nov 9 16:26:30 woltan sshd[15905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.139.88.22 Nov 9 16:26:33 woltan sshd[15905]: Failed password for invalid user sinusbot from 201.139.88.22 port 38060 ssh2 Nov 9 16:31:48 woltan sshd[16229]: Failed password for root from 201.139.88.22 port 47872 ssh2	2019-11-10 00:50:51
201.139.88.19	attackbotsspam	Nov 8 10:01:36 sd-53420 sshd\[17627\]: Invalid user chskjx from 201.139.88.19 Nov 8 10:01:36 sd-53420 sshd\[17627\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.139.88.19 Nov 8 10:01:38 sd-53420 sshd\[17627\]: Failed password for invalid user chskjx from 201.139.88.19 port 54888 ssh2 Nov 8 10:06:14 sd-53420 sshd\[18921\]: Invalid user china@888 from 201.139.88.19 Nov 8 10:06:14 sd-53420 sshd\[18921\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.139.88.19 ...	2019-11-08 20:29:29
201.139.88.19	attackspam	Nov 5 17:40:57 jane sshd[19360]: Failed password for root from 201.139.88.19 port 38098 ssh2 ...	2019-11-06 04:40:44
201.139.88.19	attack	Nov 4 15:50:05 legacy sshd[11517]: Failed password for root from 201.139.88.19 port 50660 ssh2 Nov 4 15:54:54 legacy sshd[11706]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.139.88.19 Nov 4 15:54:55 legacy sshd[11706]: Failed password for invalid user hc from 201.139.88.19 port 59944 ssh2 ...	2019-11-04 22:57:39
201.139.88.22	attackbots	Oct 30 16:30:40 localhost sshd\[29886\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.139.88.22 user=root Oct 30 16:30:42 localhost sshd\[29886\]: Failed password for root from 201.139.88.22 port 59710 ssh2 Oct 30 16:35:28 localhost sshd\[30167\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.139.88.22 user=root Oct 30 16:35:29 localhost sshd\[30167\]: Failed password for root from 201.139.88.22 port 41392 ssh2 Oct 30 16:40:13 localhost sshd\[30499\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.139.88.22 user=root ...	2019-10-30 23:50:29
201.139.88.23	attackspambots	Oct 29 23:18:39 vayu sshd[595573]: reveeclipse mapping checking getaddrinfo for clt-home-201-139-88-23.microtechnet.com.br [201.139.88.23] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 29 23:18:39 vayu sshd[595573]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.139.88.23 user=r.r Oct 29 23:18:41 vayu sshd[595573]: Failed password for r.r from 201.139.88.23 port 39994 ssh2 Oct 29 23:18:41 vayu sshd[595573]: Received disconnect from 201.139.88.23: 11: Bye Bye [preauth] Oct 29 23:39:36 vayu sshd[603150]: reveeclipse mapping checking getaddrinfo for clt-home-201-139-88-23.microtechnet.com.br [201.139.88.23] failed - POSSIBLE BREAK-IN ATTEMPT! Oct 29 23:39:36 vayu sshd[603150]: Invalid user zelibobla from 201.139.88.23 Oct 29 23:39:36 vayu sshd[603150]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.139.88.23 Oct 29 23:39:38 vayu sshd[603150]: Failed password for invalid user zelibobla fro........ -------------------------------	2019-10-30 19:20:21

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.139.88.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 20560
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.139.88.52.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019050500 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Sun May 05 22:49:14 +08 2019
;; MSG SIZE  rcvd: 117

Host info

Host 52.88.139.201.in-addr.arpa not found: 2(SERVFAIL)

Nslookup info:

;; Got SERVFAIL reply from 67.207.67.3, trying next server
Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 52.88.139.201.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.162.243.44	attackspam	Unauthorized connection attempt detected, IP banned.	2020-04-09 22:29:02
46.21.168.246	attackbots	Apr 9 05:35:36 v26 sshd[16007]: Invalid user nvp from 46.21.168.246 port 42278 Apr 9 05:35:38 v26 sshd[16007]: Failed password for invalid user nvp from 46.21.168.246 port 42278 ssh2 Apr 9 05:35:38 v26 sshd[16007]: Received disconnect from 46.21.168.246 port 42278:11: Bye Bye [preauth] Apr 9 05:35:38 v26 sshd[16007]: Disconnected from 46.21.168.246 port 42278 [preauth] Apr 9 05:41:35 v26 sshd[16598]: Invalid user deploy from 46.21.168.246 port 41912 Apr 9 05:41:37 v26 sshd[16598]: Failed password for invalid user deploy from 46.21.168.246 port 41912 ssh2 Apr 9 05:41:37 v26 sshd[16598]: Received disconnect from 46.21.168.246 port 41912:11: Bye Bye [preauth] Apr 9 05:41:37 v26 sshd[16598]: Disconnected from 46.21.168.246 port 41912 [preauth] Apr 9 05:43:34 v26 sshd[16802]: Invalid user test from 46.21.168.246 port 48434 Apr 9 05:43:37 v26 sshd[16802]: Failed password for invalid user test from 46.21.168.246 port 48434 ssh2 Apr 9 05:43:37 v26 sshd[16802]: Receiv........ -------------------------------	2020-04-09 22:23:49
116.196.82.80	attackspam	04/09/2020-09:16:22.012259 116.196.82.80 Protocol: 6 ET SCAN Potential SSH Scan	2020-04-09 23:04:03
112.21.191.252	attackbots	Apr 9 15:41:42 srv01 sshd[1009]: Invalid user rian from 112.21.191.252 port 52690 Apr 9 15:41:42 srv01 sshd[1009]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.21.191.252 Apr 9 15:41:42 srv01 sshd[1009]: Invalid user rian from 112.21.191.252 port 52690 Apr 9 15:41:43 srv01 sshd[1009]: Failed password for invalid user rian from 112.21.191.252 port 52690 ssh2 Apr 9 15:46:35 srv01 sshd[1410]: Invalid user ns2server from 112.21.191.252 port 44695 ...	2020-04-09 23:08:46
142.4.22.236	attack	WordPress wp-login brute force :: 142.4.22.236 0.116 - [09/Apr/2020:13:41:07 0000] [censored_1] "POST /wp-login.php HTTP/1.1" 200 1804 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "HTTP/1.1"	2020-04-09 22:09:58
80.211.128.151	attackbots	2020-04-09T12:58:03.015222abusebot-6.cloudsearch.cf sshd[19016]: Invalid user deploy from 80.211.128.151 port 37508 2020-04-09T12:58:03.026938abusebot-6.cloudsearch.cf sshd[19016]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.128.151 2020-04-09T12:58:03.015222abusebot-6.cloudsearch.cf sshd[19016]: Invalid user deploy from 80.211.128.151 port 37508 2020-04-09T12:58:04.402765abusebot-6.cloudsearch.cf sshd[19016]: Failed password for invalid user deploy from 80.211.128.151 port 37508 ssh2 2020-04-09T13:03:17.215423abusebot-6.cloudsearch.cf sshd[19425]: Invalid user admin from 80.211.128.151 port 47936 2020-04-09T13:03:17.223564abusebot-6.cloudsearch.cf sshd[19425]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.211.128.151 2020-04-09T13:03:17.215423abusebot-6.cloudsearch.cf sshd[19425]: Invalid user admin from 80.211.128.151 port 47936 2020-04-09T13:03:19.040739abusebot-6.cloudsearch.cf sshd[1942 ...	2020-04-09 22:17:18
45.14.224.117	attackbots	Unauthorized connection attempt detected from IP address 45.14.224.117 to port 22	2020-04-09 22:14:27
213.42.147.134	attackbots	SMB Server BruteForce Attack	2020-04-09 22:25:16
183.89.212.129	attackspambots	Dovecot Invalid User Login Attempt.	2020-04-09 22:43:19
134.0.113.108	attack	Apr 9 14:32:28 * sshd[25434]: Invalid user apache from 134.0.113.108 Apr 9 14:32:30 * sshd[25434]: Failed password for invalid user apache from 134.0.113.108 port 40760 ssh2 Apr 9 14:41:26 *** sshd[26407]: Invalid user jenkins from 134.0.113.108 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=134.0.113.108	2020-04-09 23:04:56
185.216.140.185	attackbotsspam	Check all public IP adress on TCP port 5900	2020-04-09 22:34:16
106.12.207.236	attack	Apr 9 14:55:01 server sshd[26266]: Failed password for invalid user stack from 106.12.207.236 port 59596 ssh2 Apr 9 14:59:17 server sshd[18121]: Failed password for invalid user test1 from 106.12.207.236 port 57902 ssh2 Apr 9 15:03:22 server sshd[8900]: Failed password for invalid user kibana from 106.12.207.236 port 56206 ssh2	2020-04-09 22:10:19
195.12.137.210	attackspambots	Apr 9 15:02:27 sso sshd[28842]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.12.137.210 Apr 9 15:02:28 sso sshd[28842]: Failed password for invalid user git_user from 195.12.137.210 port 45166 ssh2 ...	2020-04-09 23:16:29
119.160.136.138	attackbots	Dovecot Invalid User Login Attempt.	2020-04-09 22:45:28
195.154.189.14	attack	Port scan: Attack repeated for 24 hours	2020-04-09 22:19:46

Recently Reported IPs

138.42.116.171	190.60.79.134	137.59.1.197	189.254.123.60
185.156.177.220	118.7.68.148	193.17.6.34	59.38.241.31
86.91.66.155	99.251.167.86	60.225.122.131	108.167.165.237
70.49.202.52	132.207.238.229	193.112.12.183	178.248.172.25
91.107.122.115	197.82.220.123	128.102.40.76	57.2.229.9