JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 192.140.64.119

192.140.64.119 was found in our database!

This IP was reported 10 times. Confidence of Abuse is 29%: ?

29%

ISP	WTD TELECOM
Usage Type	Fixed Line ISP
ASN	AS266550
Hostname(s)	192-140-64-119.wtdtelecom-ba.com.br
Domain Name	wtdtelecom-ba.com.br
Country	🇧🇷 Brazil
City	Rio de Janeiro, Rio de Janeiro

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 192.140.64.119

Whois 192.140.64.119

IP Abuse Reports for 192.140.64.119:

This IP address has been reported a total of 10 times from 9 distinct sources. 192.140.64.119 was first reported on November 15th 2023, and the most recent report was 2 weeks ago.

Old Reports: The most recent abuse report for this IP address is from 2 weeks ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
Anonymous	2026-06-05 00:01:05 (2 weeks ago)	WordPress Brute Force	Brute-Force
🇩🇪 NewWavesApp	2026-06-04 23:02:19 (2 weeks ago)	(wordpress) Failed wordpress login from 192.140.64.119 (BR/Brazil/192-140-64-119.wtdtelecom-ba.com.b ... show more (wordpress) Failed wordpress login from 192.140.64.119 (BR/Brazil/192-140-64-119.wtdtelecom-ba.com.br): (CF_ENABLE) show less	Brute-Force
Anonymous	2026-06-04 20:57:03 (2 weeks ago)	[redacted] 192.140.64.119 - - [04/Jun/2026:22:56:10 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" " ... show more [redacted] 192.140.64.119 - - [04/Jun/2026:22:56:10 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.5; WordPress 6.1)" [redacted] 192.140.64.119 - - [04/Jun/2026:22:56:22 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack/12.1; WordPress/6.2; http://site12273216.com" [redacted] 192.140.64.119 - - [04/Jun/2026:22:56:34 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com" [redacted] 192.140.64.119 - - [04/Jun/2026:22:56:46 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "WordPress.com; https://wordpress.com" [redacted] 192.140.64.119 - - [04/Jun/2026:22:57:02 +0200] "POST /xmlrpc.php HTTP/1.1" 405 428 "-" "Jetpack by WordPress.com (Jetpack 12.0; WordPress 6.4)" ... show less	Hacking Web App Attack
Anonymous	2026-06-04 18:48:17 (2 weeks ago)	Attac	Brute-Force
🇩🇪 phil2k	2026-05-01 06:42:43 (1 month ago)	fail2ban:firewall:2026-05-01T08:42:36.752560+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> ... show more fail2ban:firewall:2026-05-01T08:42:36.752560+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> OUT= MAC=<ANONYMIZED_MAC> SRC=192.140.64.119 DST=<PRIVATE_IPv4> LEN=44 TOS=0x00 PREC=0x00 TTL=48 ID=41290 PROTO=TCP SPT=4123 DPT=23 WINDOW=12122 RES=0x00 SYN URGP=0 2026-05-01T08:42:41.608947+02:00 <SRV> firewall: filter IN=<ANONYMIZED_INTERFACE> OUT= MAC=<ANONYMIZED_MAC> SRC=192.140.64.119 DST=<PRIVATE_IPv4> LEN=60 TOS=0x00 PREC=0x00 TTL=48 ID=18980 DF PROTO=TCP SPT=4298 DPT=23 WINDOW=65535 RES=0x00 SYN URGP=0 show less	DDoS Attack Port Scan Brute-Force
🇩🇪 guldkage	2026-04-26 09:06:15 (1 month ago)	Unauthorized connection attempt detected from IP address 192.140.64.119 to port 23 (ger-02) [TELNET]	Exploited Host
🇫🇷 sthoyer.de	2026-04-26 08:25:16 (1 month ago)	Apr 26 10:25:14 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f ... show more Apr 26 10:25:14 sthoyer kernel: [IPTables-Block] IN=eth0 OUT= MAC=00:50:56:43:00:af:c0:69:11:cd:10:f7:08:00 SRC=192.140.64.119 DST=173.212.223.67 LEN=44 TOS=0x00 PREC=0x00 TTL=55 ID=29071 PROTO=TCP SPT=7777 DPT=23 WINDOW=3511 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇺🇸 RAP	2026-04-26 08:04:40 (1 month ago)	2026-04-26 08:04:40 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇩🇪 Pingger Shikkoken	2023-11-16 10:48:14 (2 years ago)	Participating in DDoS Amplification Attack! Sending 11 requests over 56228s asking for ?0? of atlass ... show more Participating in DDoS Amplification Attack! Sending 11 requests over 56228s asking for ?0? of atlassian.com, apple.com, cisco.com show less	DNS Poisoning DDoS Attack Hacking Brute-Force Exploited Host
🇩🇪 Pingger Shikkoken	2023-11-15 10:28:48 (2 years ago)	Participating in DDoS Amplification Attack! Sending 13 requests over 13556s asking for ?0? of cisco. ... show more Participating in DDoS Amplification Attack! Sending 13 requests over 13556s asking for ?0? of cisco.com, apple.com, atlassian.com show less	DNS Poisoning DDoS Attack Hacking Brute-Force Exploited Host

Showing 1 to 10 of 10 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 218.248.19.102

🇷🇺 188.225.47.120

🇮🇩 182.253.64.11

🇺🇸 172.203.149.63

🇨🇳 115.231.78.11

🇺🇸 44.197.62.243

🇺🇸 44.85.126.191

🇬🇧 193.163.125.77

🇺🇸 189.104.94.58

🇧🇷 186.238.210.226

🇮🇷 85.198.20.161

🇱🇻 83.99.206.12

🇷🇴 80.94.92.128

🇩🇪 49.12.77.100

🇧🇷 45.164.115.86

🇺🇸 44.229.132.8

🇨🇳 39.97.53.147

🇧🇷 20.226.42.95

🇳🇱 195.178.110.30

🇸🇪 176.10.203.54