201.55.200.142

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Altanet Telecom e Inf. Ltda-ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Unauthorized connection attempt from IP address 201.55.200.142 on Port 445(SMB)	2020-05-24 21:43:04

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.55.200.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19047
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;201.55.200.142.			IN	A

;; AUTHORITY SECTION:
.			565	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020052400 1800 900 604800 86400

;; Query time: 104 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun May 24 21:42:59 CST 2020
;; MSG SIZE  rcvd: 118

Host info

142.200.55.201.in-addr.arpa domain name pointer 201-55-200-142.altanettelecom.com.br.

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
142.200.55.201.in-addr.arpa	name = 201-55-200-142.altanettelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
83.4.201.24	attackspam	Automatic report - Port Scan Attack	2019-10-04 12:44:30
184.66.248.150	attack	Oct 3 18:30:17 php1 sshd\[5631\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=s010600f28b41237d.gv.shawcable.net user=root Oct 3 18:30:19 php1 sshd\[5631\]: Failed password for root from 184.66.248.150 port 35032 ssh2 Oct 3 18:34:13 php1 sshd\[6010\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=s010600f28b41237d.gv.shawcable.net user=root Oct 3 18:34:15 php1 sshd\[6010\]: Failed password for root from 184.66.248.150 port 47970 ssh2 Oct 3 18:38:08 php1 sshd\[6523\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=s010600f28b41237d.gv.shawcable.net user=root	2019-10-04 12:38:24
222.186.173.142	attackbots	Oct 4 06:31:47 legacy sshd[2487]: Failed password for root from 222.186.173.142 port 58540 ssh2 Oct 4 06:31:51 legacy sshd[2487]: Failed password for root from 222.186.173.142 port 58540 ssh2 Oct 4 06:31:56 legacy sshd[2487]: Failed password for root from 222.186.173.142 port 58540 ssh2 Oct 4 06:32:00 legacy sshd[2487]: Failed password for root from 222.186.173.142 port 58540 ssh2 ...	2019-10-04 12:39:14
177.100.50.182	attack	Oct 4 04:10:18 game-panel sshd[32268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.100.50.182 Oct 4 04:10:20 game-panel sshd[32268]: Failed password for invalid user Psyche_123 from 177.100.50.182 port 60142 ssh2 Oct 4 04:15:31 game-panel sshd[32430]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.100.50.182	2019-10-04 12:15:43
181.174.166.91	attack	Oct 3 18:17:12 localhost kernel: [3878851.459442] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=181.174.166.91 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=82 ID=49622 DF PROTO=TCP SPT=61294 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 18:17:12 localhost kernel: [3878851.459449] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:aa:c1:08:00 SRC=181.174.166.91 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=82 ID=49622 DF PROTO=TCP SPT=61294 DPT=22 SEQ=175517773 ACK=0 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:58:25 localhost kernel: [3899324.964156] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=181.174.166.91 DST=[mungedIP2] LEN=40 TOS=0x08 PREC=0x20 TTL=73 ID=9271 DF PROTO=TCP SPT=59265 DPT=22 WINDOW=29200 RES=0x00 SYN URGP=0 Oct 3 23:58:25 localhost kernel: [3899324.964183] iptables_INPUT_denied: IN=eth0 OUT= MAC=f2:3c:91:84:83:95:84:78:ac:57:a8:41:08:00 SRC=181.174.166.91 DST=[mungedIP2] LEN=40 TOS=0x08	2019-10-04 12:53:30
106.12.213.162	attackbots	Oct 3 18:13:01 php1 sshd\[370\]: Invalid user P@sswd123!@\# from 106.12.213.162 Oct 3 18:13:01 php1 sshd\[370\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.213.162 Oct 3 18:13:03 php1 sshd\[370\]: Failed password for invalid user P@sswd123!@\# from 106.12.213.162 port 48116 ssh2 Oct 3 18:18:01 php1 sshd\[845\]: Invalid user Qw3rty@123 from 106.12.213.162 Oct 3 18:18:01 php1 sshd\[845\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.213.162	2019-10-04 12:46:38
116.104.93.88	attackspambots	Unauthorised access (Oct 4) SRC=116.104.93.88 LEN=40 TTL=45 ID=9516 TCP DPT=23 WINDOW=64190 SYN	2019-10-04 12:29:11
153.36.242.143	attackbotsspam	Oct 4 06:25:05 vpn01 sshd[27348]: Failed password for root from 153.36.242.143 port 39537 ssh2 Oct 4 06:25:07 vpn01 sshd[27348]: Failed password for root from 153.36.242.143 port 39537 ssh2 ...	2019-10-04 12:26:17
103.12.162.159	attack	[Aegis] @ 2019-10-04 04:58:47 0100 -> Sendmail rejected message.	2019-10-04 12:32:39
129.28.196.92	attackbotsspam	Oct 4 05:54:29 SilenceServices sshd[1922]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.196.92 Oct 4 05:54:31 SilenceServices sshd[1922]: Failed password for invalid user PASSWORD@1 from 129.28.196.92 port 53432 ssh2 Oct 4 05:59:25 SilenceServices sshd[3175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.196.92	2019-10-04 12:20:06
14.21.7.162	attackbotsspam	Oct 4 06:59:31 www sshd\[227114\]: Invalid user Test@2016 from 14.21.7.162 Oct 4 06:59:31 www sshd\[227114\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.21.7.162 Oct 4 06:59:33 www sshd\[227114\]: Failed password for invalid user Test@2016 from 14.21.7.162 port 4724 ssh2 ...	2019-10-04 12:13:56
51.255.44.56	attackspam	Oct 4 06:36:10 vps01 sshd[29536]: Failed password for root from 51.255.44.56 port 55754 ssh2	2019-10-04 12:52:49
201.163.180.183	attackbots	Oct 4 05:55:13 vps691689 sshd[13814]: Failed password for root from 201.163.180.183 port 37382 ssh2 Oct 4 05:59:35 vps691689 sshd[13898]: Failed password for root from 201.163.180.183 port 57417 ssh2 ...	2019-10-04 12:12:45
111.200.168.133	attackbotsspam	Oct 4 05:58:42 host proftpd\[22132\]: 0.0.0.0 \(111.200.168.133\[111.200.168.133\]\) - USER anonymous: no such user found from 111.200.168.133 \[111.200.168.133\] to 62.210.146.38:21 ...	2019-10-04 12:41:10
128.199.142.0	attackspam	2019-10-04T03:50:32.237054shield sshd\[13992\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.142.0 user=root 2019-10-04T03:50:33.951686shield sshd\[13992\]: Failed password for root from 128.199.142.0 port 59152 ssh2 2019-10-04T03:55:03.491313shield sshd\[14497\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.142.0 user=root 2019-10-04T03:55:06.078769shield sshd\[14497\]: Failed password for root from 128.199.142.0 port 43248 ssh2 2019-10-04T03:59:35.885980shield sshd\[15175\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.142.0 user=root	2019-10-04 12:13:24

Recently Reported IPs

99.82.180.240	202.51.88.176	181.135.144.136	103.58.65.248
114.119.163.192	227.7.201.121	49.233.201.17	177.190.88.108
159.203.35.141	77.132.83.160	37.226.73.234	45.54.95.111
106.54.208.21	200.214.95.184	61.126.113.111	119.108.163.70
10.12.90.70	175.245.74.71	40.90.38.232	50.68.95.254