209.141.42.128

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
209.141.42.45	attackspambots	Unauthorized connection attempt detected from IP address 209.141.42.45 to port 4567	2020-07-03 21:51:41
209.141.42.45	attackbots	<6 unauthorized SSH connections	2020-06-27 16:37:45
209.141.42.45	attackspam	SmallBizIT.US 1 packets to tcp(22)	2020-06-25 06:27:22
209.141.42.45	attackspam	Unauthorized connection attempt detected from IP address 209.141.42.45 to port 22	2020-06-19 22:54:42
209.141.42.26	attackbots	05/11/2020-08:10:45.452460 209.141.42.26 Protocol: 17 GPL EXPLOIT ntpdx overflow attempt	2020-05-11 20:33:19
209.141.42.120	attack	(Aug 24) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=60457 TCP DPT=8080 WINDOW=31931 SYN (Aug 24) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=58695 TCP DPT=8080 WINDOW=31931 SYN (Aug 24) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=32669 TCP DPT=8080 WINDOW=31931 SYN (Aug 24) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=10737 TCP DPT=8080 WINDOW=31931 SYN (Aug 24) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=46197 TCP DPT=8080 WINDOW=51653 SYN (Aug 23) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=34143 TCP DPT=8080 WINDOW=31931 SYN (Aug 23) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=56089 TCP DPT=8080 WINDOW=51653 SYN (Aug 23) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=35383 TCP DPT=23 WINDOW=16779 SYN (Aug 23) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=54791 TCP DPT=8080 WINDOW=31931 SYN (Aug 22) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=54373 TCP DPT=8080 WINDOW=31931 SYN (Aug 22) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=64482 TCP DPT=8080 WINDOW=31931 SYN (Aug 22) LEN=44 TOS=0x08 PREC=0x20 TTL=45 ID=39051 TCP DPT=8080 WINDOW=51653...	2019-08-25 04:59:16
209.141.42.120	attackbotsspam	DATE:2019-08-15 13:53:29, IP:209.141.42.120, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2019-08-15 22:57:46
209.141.42.85	attackspambots	Jul 18 20:19:51 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 209.141.42.85 port 51330 ssh2 (target: 158.69.100.140:22, password: r.r) Jul 18 20:19:52 wildwolf ssh-honeypotd[26164]: Failed password for admin from 209.141.42.85 port 52816 ssh2 (target: 158.69.100.140:22, password: admin) Jul 18 20:19:55 wildwolf ssh-honeypotd[26164]: Failed password for r.r from 209.141.42.85 port 55738 ssh2 (target: 158.69.100.140:22, password: password) Jul 18 20:19:56 wildwolf ssh-honeypotd[26164]: Failed password for admin from 209.141.42.85 port 57604 ssh2 (target: 158.69.100.140:22, password: 1234) Jul 18 20:19:59 wildwolf ssh-honeypotd[26164]: Failed password for user from 209.141.42.85 port 59074 ssh2 (target: 158.69.100.140:22, password: user) Jul 18 20:20:00 wildwolf ssh-honeypotd[26164]: Failed password for user from 209.141.42.85 port 34844 ssh2 (target: 158.69.100.140:22, password: passwd) Jul 18 20:20:01 wildwolf ssh-honeypotd[26164]: Failed password for admin ........ ------------------------------	2019-07-19 13:55:37

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 209.141.42.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 27589
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;209.141.42.128.			IN	A

;; AUTHORITY SECTION:
.			540	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020601 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 07 12:21:02 CST 2022
;; MSG SIZE  rcvd: 107

Host info

128.42.141.209.in-addr.arpa domain name pointer gondor.daemondot.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
128.42.141.209.in-addr.arpa	name = gondor.daemondot.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.216.146.133	attackbots	1433/tcp 1433/tcp 1433/tcp [2019-11-26/12-15]3pkt	2019-12-16 07:13:11
190.46.157.140	attackbots	Dec 15 12:42:15 web9 sshd\[8363\]: Invalid user test from 190.46.157.140 Dec 15 12:42:15 web9 sshd\[8363\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.46.157.140 Dec 15 12:42:16 web9 sshd\[8363\]: Failed password for invalid user test from 190.46.157.140 port 38033 ssh2 Dec 15 12:49:53 web9 sshd\[9481\]: Invalid user emerson from 190.46.157.140 Dec 15 12:49:53 web9 sshd\[9481\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.46.157.140	2019-12-16 06:55:46
94.191.93.34	attackbots	detected by Fail2Ban	2019-12-16 07:21:12
129.28.165.178	attackbotsspam	Dec 15 13:19:35 auw2 sshd\[7148\]: Invalid user garantia from 129.28.165.178 Dec 15 13:19:35 auw2 sshd\[7148\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.165.178 Dec 15 13:19:38 auw2 sshd\[7148\]: Failed password for invalid user garantia from 129.28.165.178 port 54196 ssh2 Dec 15 13:24:28 auw2 sshd\[7639\]: Invalid user millero from 129.28.165.178 Dec 15 13:24:28 auw2 sshd\[7639\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.165.178	2019-12-16 07:30:39
149.202.18.43	attackbots	5060/udp 5060/udp 5060/udp [2019-12-06/15]3pkt	2019-12-16 07:30:27
106.12.211.247	attackspam	Dec 15 12:42:47 auw2 sshd\[3426\]: Invalid user sangiovanni from 106.12.211.247 Dec 15 12:42:47 auw2 sshd\[3426\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.211.247 Dec 15 12:42:49 auw2 sshd\[3426\]: Failed password for invalid user sangiovanni from 106.12.211.247 port 57986 ssh2 Dec 15 12:49:45 auw2 sshd\[4119\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.211.247 user=root Dec 15 12:49:47 auw2 sshd\[4119\]: Failed password for root from 106.12.211.247 port 59362 ssh2	2019-12-16 07:01:49
42.236.84.176	attackbotsspam	1433/tcp 1433/tcp 1433/tcp... [2019-10-24/12-15]7pkt,1pt.(tcp)	2019-12-16 07:16:04
132.232.79.135	attackbots	2019-12-15T23:18:28.650520shield sshd\[19464\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.79.135 user=root 2019-12-15T23:18:30.407123shield sshd\[19464\]: Failed password for root from 132.232.79.135 port 33460 ssh2 2019-12-15T23:24:29.948684shield sshd\[21579\]: Invalid user backup from 132.232.79.135 port 59142 2019-12-15T23:24:29.953274shield sshd\[21579\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.79.135 2019-12-15T23:24:32.271500shield sshd\[21579\]: Failed password for invalid user backup from 132.232.79.135 port 59142 ssh2	2019-12-16 07:28:52
139.199.80.67	attack	SSH Brute Force	2019-12-16 07:19:20
95.189.104.78	attackspam	Unauthorised access (Dec 16) SRC=95.189.104.78 LEN=52 PREC=0x20 TTL=114 ID=17216 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-16 06:59:19
222.186.180.9	attack	Dec 15 23:49:39 vps691689 sshd[29365]: Failed password for root from 222.186.180.9 port 59794 ssh2 Dec 15 23:49:42 vps691689 sshd[29365]: Failed password for root from 222.186.180.9 port 59794 ssh2 Dec 15 23:49:53 vps691689 sshd[29365]: error: maximum authentication attempts exceeded for root from 222.186.180.9 port 59794 ssh2 [preauth] ...	2019-12-16 06:55:29
157.230.119.200	attackbotsspam	$f2bV_matches	2019-12-16 06:57:47
167.99.155.36	attackspambots	Dec 16 01:49:21 hosting sshd[1268]: Invalid user torulf from 167.99.155.36 port 50584 ...	2019-12-16 07:34:43
222.174.105.84	attackspam	Honeypot hit.	2019-12-16 07:10:28
124.163.212.124	attackbots	1433/tcp 1433/tcp 1433/tcp... [2019-10-25/12-15]4pkt,1pt.(tcp)	2019-12-16 07:05:21

Recently Reported IPs

52.253.105.45	109.197.82.136	117.199.30.142	116.75.146.3
68.183.84.59	178.128.184.213	49.235.125.47	112.85.42.2
156.194.221.66	212.70.149.57	47.97.50.62	137.220.131.96
192.184.39.176	167.99.137.34	202.53.94.195	66.215.192.15
128.116.245.82	45.142.212.31	106.75.173.75	87.226.204.9