201.42.140.78 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: TELEFÔNICA BRASIL S.A

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.42.140.78
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3791
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.42.140.78.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019072800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 29 00:17:19 CST 2019
;; MSG SIZE  rcvd: 117

Host info

78.140.42.201.in-addr.arpa domain name pointer 201-42-140-78.dsl.telesp.net.br.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
78.140.42.201.in-addr.arpa	name = 201-42-140-78.dsl.telesp.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.227.72.66	attack	ENG,WP GET /wp-login.php	2019-07-18 07:37:44
185.242.249.92	attackspambots	Automatic report - Banned IP Access	2019-07-18 07:41:30
140.143.236.53	attackbots	2019-07-17T21:25:56.458888abusebot-4.cloudsearch.cf sshd\[5052\]: Invalid user maciek from 140.143.236.53 port 50692	2019-07-18 07:21:33
213.224.20.234	attack	Jul 14 21:55:30 vpxxxxxxx22308 sshd[16214]: Invalid user misp from 213.224.20.234 Jul 14 21:55:32 vpxxxxxxx22308 sshd[16214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.224.20.234 Jul 14 21:55:34 vpxxxxxxx22308 sshd[16214]: Failed password for invalid user misp from 213.224.20.234 port 49392 ssh2 Jul 14 21:56:59 vpxxxxxxx22308 sshd[16435]: Invalid user osbash from 213.224.20.234 Jul 14 21:57:02 vpxxxxxxx22308 sshd[16435]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.224.20.234 Jul 14 21:57:04 vpxxxxxxx22308 sshd[16435]: Failed password for invalid user osbash from 213.224.20.234 port 1041 ssh2 ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=213.224.20.234	2019-07-18 07:05:12
89.248.160.193	attackspambots	17.07.2019 23:04:44 Connection to port 1517 blocked by firewall	2019-07-18 07:08:51
158.69.241.196	attackspambots	\[2019-07-17 19:18:37\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-17T19:18:37.482-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="11800646313113298",SessionID="0x7f06f85ff978",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/158.69.241.196/23460",ACLName="no_extension_match" \[2019-07-17 19:18:39\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-17T19:18:39.236-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="11800646313113298",SessionID="0x7f06f85ff978",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/158.69.241.196/18819",ACLName="no_extension_match" \[2019-07-17 19:20:09\] SECURITY\[20812\] res_security_log.c: SecurityEvent="FailedACL",EventTV="2019-07-17T19:20:09.019-0400",Severity="Error",Service="SIP",EventVersion="1",AccountID="11800746313113298",SessionID="0x7f06f811a3c8",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/158.69.241.196/5057",ACLN	2019-07-18 07:39:35
151.66.53.222	attack	MultiHost/MultiPort Probe, Scan, Hack -	2019-07-18 07:06:48
123.130.118.19	attackbots	17.07.2019 22:41:29 SSH access blocked by firewall	2019-07-18 07:39:57
178.93.11.132	attack	Jul 17 01:57:41 srv1 postfix/smtpd[18688]: connect from 132-11-93-178.pool.ukrtel.net[178.93.11.132] Jul x@x Jul 17 01:57:48 srv1 postfix/smtpd[18688]: lost connection after RCPT from 132-11-93-178.pool.ukrtel.net[178.93.11.132] Jul 17 01:57:48 srv1 postfix/smtpd[18688]: disconnect from 132-11-93-178.pool.ukrtel.net[178.93.11.132] Jul 17 05:09:37 srv1 postfix/smtpd[30138]: connect from 132-11-93-178.pool.ukrtel.net[178.93.11.132] Jul x@x Jul 17 05:09:43 srv1 postfix/smtpd[30138]: lost connection after RCPT from 132-11-93-178.pool.ukrtel.net[178.93.11.132] Jul 17 05:09:43 srv1 postfix/smtpd[30138]: disconnect from 132-11-93-178.pool.ukrtel.net[178.93.11.132] Jul 17 05:12:22 srv1 postfix/smtpd[1084]: connect from 132-11-93-178.pool.ukrtel.net[178.93.11.132] Jul x@x Jul 17 05:12:28 srv1 postfix/smtpd[1084]: lost connection after RCPT from 132-11-93-178.pool.ukrtel.net[178.93.11.132] Jul 17 05:12:28 srv1 postfix/smtpd[1084]: disconnect from 132-11-93-178.pool.ukrtel.net[178........ -------------------------------	2019-07-18 07:35:22
167.71.192.131	attack	Jul 17 19:24:12 server2 sshd\[27705\]: User root from 167.71.192.131 not allowed because not listed in AllowUsers Jul 17 19:24:14 server2 sshd\[27707\]: Invalid user admin from 167.71.192.131 Jul 17 19:24:17 server2 sshd\[27709\]: Invalid user admin from 167.71.192.131 Jul 17 19:24:20 server2 sshd\[27711\]: Invalid user user from 167.71.192.131 Jul 17 19:24:30 server2 sshd\[27713\]: Invalid user ubnt from 167.71.192.131 Jul 17 19:24:33 server2 sshd\[27715\]: Invalid user admin from 167.71.192.131	2019-07-18 07:19:41
192.169.202.119	attackbotsspam	As always with godaddy	2019-07-18 07:37:18
175.168.26.187	attack	Telnet Server BruteForce Attack	2019-07-18 07:32:36
186.232.141.151	attack	Brute force attempt	2019-07-18 07:34:04
175.211.112.254	attack	ssh failed login	2019-07-18 06:55:47
45.55.35.40	attackbotsspam	Jul 17 22:02:07 ip-172-31-1-72 sshd\[29668\]: Invalid user wang from 45.55.35.40 Jul 17 22:02:07 ip-172-31-1-72 sshd\[29668\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.35.40 Jul 17 22:02:09 ip-172-31-1-72 sshd\[29668\]: Failed password for invalid user wang from 45.55.35.40 port 37562 ssh2 Jul 17 22:06:29 ip-172-31-1-72 sshd\[29750\]: Invalid user uniform from 45.55.35.40 Jul 17 22:06:29 ip-172-31-1-72 sshd\[29750\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.35.40	2019-07-18 07:11:04

Recently Reported IPs

83.199.52.153	156.134.0.183	172.89.57.1	134.73.129.107
196.187.115.2	173.174.21.117	221.216.230.161	176.228.112.153
197.141.60.253	215.118.104.90	74.73.224.114	216.75.6.218
200.144.253.137	144.136.47.96	62.219.236.118	8.169.134.212
50.100.85.87	231.227.13.200	27.147.206.50	69.110.83.58