201.140.209.42

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
201.140.209.33	attack	1578431972 - 01/07/2020 22:19:32 Host: 201.140.209.33/201.140.209.33 Port: 445 TCP Blocked	2020-01-08 06:23:43
201.140.209.33	attackbots	Unauthorized connection attempt detected from IP address 201.140.209.33 to port 445	2019-12-13 03:38:45
201.140.209.33	attackspam	Unauthorized connection attempt from IP address 201.140.209.33 on Port 445(SMB)	2019-09-30 03:13:51

Type

Details

Datetime

201.140.209.33

attack

1578431972 - 01/07/2020 22:19:32 Host: 201.140.209.33/201.140.209.33 Port: 445 TCP Blocked

2020-01-08 06:23:43

201.140.209.33

attackbots

Unauthorized connection attempt detected from IP address 201.140.209.33 to port 445

2019-12-13 03:38:45

201.140.209.33

attackspam

Unauthorized connection attempt from IP address 201.140.209.33 on Port 445(SMB)

2019-09-30 03:13:51

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.140.209.42
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 13211
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;201.140.209.42.			IN	A

;; AUTHORITY SECTION:
.			479	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 13:37:25 CST 2022
;; MSG SIZE  rcvd: 107

Host info

42.209.140.201.in-addr.arpa domain name pointer static-42.209.norteline.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
42.209.140.201.in-addr.arpa	name = static-42.209.norteline.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
195.154.112.212	attack	SSH brute-force: detected 6 distinct usernames within a 24-hour window.	2020-03-09 09:25:10
222.186.15.10	attack	2020-03-09T02:42:51.636559vps773228.ovh.net sshd[24941]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10 user=root 2020-03-09T02:42:53.751869vps773228.ovh.net sshd[24941]: Failed password for root from 222.186.15.10 port 48545 ssh2 2020-03-09T02:42:56.048213vps773228.ovh.net sshd[24941]: Failed password for root from 222.186.15.10 port 48545 ssh2 2020-03-09T02:42:58.087694vps773228.ovh.net sshd[24941]: Failed password for root from 222.186.15.10 port 48545 ssh2 2020-03-09T04:40:11.397595vps773228.ovh.net sshd[25760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10 user=root 2020-03-09T04:40:13.311787vps773228.ovh.net sshd[25760]: Failed password for root from 222.186.15.10 port 25606 ssh2 2020-03-09T04:40:11.397595vps773228.ovh.net sshd[25760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.15.10 user=root 2020-03-09T04:40:13.31 ...	2020-03-09 12:06:30
182.156.209.222	attackbots	2020-03-09T04:19:01.287976shield sshd\[25443\]: Invalid user lms from 182.156.209.222 port 55137 2020-03-09T04:19:01.292804shield sshd\[25443\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.156.209.222 2020-03-09T04:19:03.411877shield sshd\[25443\]: Failed password for invalid user lms from 182.156.209.222 port 55137 ssh2 2020-03-09T04:21:39.620401shield sshd\[25876\]: Invalid user sake from 182.156.209.222 port 53682 2020-03-09T04:21:39.625999shield sshd\[25876\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.156.209.222	2020-03-09 12:26:19
152.165.101.121	attackbots	Mar 8 17:47:54 wbs sshd\[27367\]: Invalid user laojiang from 152.165.101.121 Mar 8 17:47:54 wbs sshd\[27367\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fp98a56579.tkyc115.ap.nuro.jp Mar 8 17:47:57 wbs sshd\[27367\]: Failed password for invalid user laojiang from 152.165.101.121 port 33556 ssh2 Mar 8 17:55:39 wbs sshd\[28042\]: Invalid user admin from 152.165.101.121 Mar 8 17:55:39 wbs sshd\[28042\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=fp98a56579.tkyc115.ap.nuro.jp	2020-03-09 12:04:27
121.234.31.128	attack	suspicious action Sun, 08 Mar 2020 18:30:20 -0300	2020-03-09 09:29:22
190.27.171.39	attackbots	firewall-block, port(s): 1433/tcp	2020-03-09 09:35:48
179.49.112.90	attackspambots	Mar 9 06:14:06 pkdns2 sshd\[60250\]: Failed password for root from 179.49.112.90 port 52890 ssh2Mar 9 06:15:41 pkdns2 sshd\[60345\]: Failed password for root from 179.49.112.90 port 46262 ssh2Mar 9 06:17:15 pkdns2 sshd\[60405\]: Failed password for root from 179.49.112.90 port 39630 ssh2Mar 9 06:18:51 pkdns2 sshd\[60461\]: Failed password for root from 179.49.112.90 port 33002 ssh2Mar 9 06:20:19 pkdns2 sshd\[60576\]: Failed password for root from 179.49.112.90 port 54606 ssh2Mar 9 06:21:51 pkdns2 sshd\[60629\]: Failed password for root from 179.49.112.90 port 47974 ssh2 ...	2020-03-09 12:22:46
195.208.185.27	attackbots	Mar 8 18:08:39 wbs sshd\[29158\]: Invalid user yyg from 195.208.185.27 Mar 8 18:08:39 wbs sshd\[29158\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.208.185.27 Mar 8 18:08:41 wbs sshd\[29158\]: Failed password for invalid user yyg from 195.208.185.27 port 41736 ssh2 Mar 8 18:15:17 wbs sshd\[29730\]: Invalid user ocean from 195.208.185.27 Mar 8 18:15:17 wbs sshd\[29730\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=195.208.185.27	2020-03-09 12:18:20
27.74.249.172	attack	1583726107 - 03/09/2020 04:55:07 Host: 27.74.249.172/27.74.249.172 Port: 445 TCP Blocked	2020-03-09 12:27:01
107.13.186.21	attackbotsspam	Port Scan detected from 107.13.186.21 (US/United States/mta-107-13-186-21.nc.rr.com). 4 hits in the last 250 seconds	2020-03-09 12:29:38
104.236.250.155	attack	SSH invalid-user multiple login try	2020-03-09 09:26:34
139.59.47.39	attackspambots	Automatic report - XMLRPC Attack	2020-03-09 09:37:36
78.36.197.162	attackspam	Unauthorized connection attempt from IP address 78.36.197.162 on Port 445(SMB)	2020-03-09 09:36:33
1.179.185.50	attackbotsspam	frenzy	2020-03-09 12:21:10
118.25.156.20	attack	2020-03-09T03:47:50.131739abusebot-4.cloudsearch.cf sshd[30015]: Invalid user hblee from 118.25.156.20 port 35447 2020-03-09T03:47:50.137572abusebot-4.cloudsearch.cf sshd[30015]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.156.20 2020-03-09T03:47:50.131739abusebot-4.cloudsearch.cf sshd[30015]: Invalid user hblee from 118.25.156.20 port 35447 2020-03-09T03:47:52.733760abusebot-4.cloudsearch.cf sshd[30015]: Failed password for invalid user hblee from 118.25.156.20 port 35447 ssh2 2020-03-09T03:51:45.212249abusebot-4.cloudsearch.cf sshd[30253]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.156.20 user=root 2020-03-09T03:51:47.070633abusebot-4.cloudsearch.cf sshd[30253]: Failed password for root from 118.25.156.20 port 56512 ssh2 2020-03-09T03:55:30.442776abusebot-4.cloudsearch.cf sshd[30451]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.156 ...	2020-03-09 12:08:58

Recently Reported IPs

103.53.190.146	194.44.220.196	40.107.101.53	106.202.133.25
143.0.57.168	185.89.42.72	23.81.127.129	187.102.15.161
144.123.71.64	189.212.117.202	45.83.29.82	84.201.138.173
2.187.27.115	150.158.173.223	188.243.193.27	182.59.40.253
141.196.89.77	163.204.214.140	143.198.13.162	103.203.225.119