164.163.99.1 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Bruno Granadier Escorsin

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SSH login attempts with user root at 2020-01-02.	2020-01-03 02:24:05

Comments on same subnet:

IP	Type	Details	Datetime
164.163.99.10	attackbotsspam	Sep 25 19:53:48 ift sshd\[1495\]: Invalid user vmware from 164.163.99.10Sep 25 19:53:50 ift sshd\[1495\]: Failed password for invalid user vmware from 164.163.99.10 port 39234 ssh2Sep 25 19:58:41 ift sshd\[2221\]: Invalid user roland from 164.163.99.10Sep 25 19:58:43 ift sshd\[2221\]: Failed password for invalid user roland from 164.163.99.10 port 44353 ssh2Sep 25 20:03:37 ift sshd\[3346\]: Invalid user pi from 164.163.99.10 ...	2020-09-26 04:46:01
164.163.99.10	attack	Sep 25 14:54:40 nextcloud sshd\[6047\]: Invalid user ftproot from 164.163.99.10 Sep 25 14:54:40 nextcloud sshd\[6047\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.163.99.10 Sep 25 14:54:41 nextcloud sshd\[6047\]: Failed password for invalid user ftproot from 164.163.99.10 port 57332 ssh2	2020-09-25 21:37:49
164.163.99.10	attackbots	Sep 25 04:04:17 nas sshd[13874]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.163.99.10 Sep 25 04:04:19 nas sshd[13874]: Failed password for invalid user produccion from 164.163.99.10 port 51381 ssh2 Sep 25 04:08:47 nas sshd[13955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.163.99.10 ...	2020-09-25 13:16:25
164.163.99.10	attackspambots	Invalid user jeff from 164.163.99.10 port 50493	2020-08-28 15:26:48
164.163.99.10	attackbotsspam	Aug 16 23:11:06 master sshd[19830]: Failed password for invalid user ubuntu from 164.163.99.10 port 33266 ssh2 Aug 16 23:21:12 master sshd[19984]: Failed password for root from 164.163.99.10 port 35301 ssh2 Aug 16 23:24:16 master sshd[19988]: Failed password for invalid user mon from 164.163.99.10 port 57155 ssh2 Aug 16 23:27:04 master sshd[20041]: Failed password for root from 164.163.99.10 port 50774 ssh2 Aug 16 23:29:57 master sshd[20049]: Failed password for invalid user postgres from 164.163.99.10 port 44398 ssh2 Aug 16 23:32:52 master sshd[20484]: Failed password for invalid user ocadmin from 164.163.99.10 port 38018 ssh2 Aug 16 23:35:48 master sshd[20537]: Failed password for invalid user steam from 164.163.99.10 port 59872 ssh2 Aug 16 23:38:52 master sshd[20545]: Failed password for invalid user postgres from 164.163.99.10 port 53491 ssh2 Aug 16 23:41:49 master sshd[20677]: Failed password for invalid user discover from 164.163.99.10 port 47112 ssh2	2020-08-17 07:53:42
164.163.99.10	attack	2020-07-24T14:30:27.523501n23.at sshd[1544824]: Invalid user dev from 164.163.99.10 port 37983 2020-07-24T14:30:29.380707n23.at sshd[1544824]: Failed password for invalid user dev from 164.163.99.10 port 37983 ssh2 2020-07-24T14:35:27.019133n23.at sshd[1548360]: Invalid user omt from 164.163.99.10 port 40366 ...	2020-07-24 21:20:37
164.163.99.10	attackspambots	$f2bV_matches	2020-07-24 05:53:27
164.163.99.10	attack	2020-07-11T19:25:33.017380afi-git.jinr.ru sshd[13199]: Invalid user fedot from 164.163.99.10 port 34604 2020-07-11T19:25:33.022903afi-git.jinr.ru sshd[13199]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.163.99.10 2020-07-11T19:25:33.017380afi-git.jinr.ru sshd[13199]: Invalid user fedot from 164.163.99.10 port 34604 2020-07-11T19:25:34.581594afi-git.jinr.ru sshd[13199]: Failed password for invalid user fedot from 164.163.99.10 port 34604 ssh2 2020-07-11T19:29:39.356298afi-git.jinr.ru sshd[14310]: Invalid user thaddaeus from 164.163.99.10 port 33427 ...	2020-07-12 00:45:15
164.163.99.10	attackspam	Jul 10 08:33:45 Host-KEWR-E sshd[4377]: Invalid user yongjun from 164.163.99.10 port 52598 ...	2020-07-10 23:38:29
164.163.99.10	attackspambots	Invalid user anita from 164.163.99.10 port 38088	2020-06-27 20:21:18
164.163.99.10	attack	Jun 27 08:14:33 web1 sshd[11147]: Invalid user wow from 164.163.99.10 port 46502 Jun 27 08:14:33 web1 sshd[11147]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.163.99.10 Jun 27 08:14:33 web1 sshd[11147]: Invalid user wow from 164.163.99.10 port 46502 Jun 27 08:14:36 web1 sshd[11147]: Failed password for invalid user wow from 164.163.99.10 port 46502 ssh2 Jun 27 08:23:01 web1 sshd[13190]: Invalid user rpt from 164.163.99.10 port 35661 Jun 27 08:23:01 web1 sshd[13190]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.163.99.10 Jun 27 08:23:01 web1 sshd[13190]: Invalid user rpt from 164.163.99.10 port 35661 Jun 27 08:23:03 web1 sshd[13190]: Failed password for invalid user rpt from 164.163.99.10 port 35661 ssh2 Jun 27 08:25:45 web1 sshd[13886]: Invalid user abc from 164.163.99.10 port 54668 ...	2020-06-27 08:03:12
164.163.99.10	attackspam	Invalid user www from 164.163.99.10 port 51418	2020-06-20 18:11:37
164.163.99.10	attackspam	Invalid user user from 164.163.99.10 port 42159	2020-06-15 13:56:17
164.163.99.10	attackspambots	"fail2ban match"	2020-06-08 16:48:47
164.163.99.10	attackbotsspam	Brute-force attempt banned	2020-06-05 13:50:50

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 164.163.99.1
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25708
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;164.163.99.1.			IN	A

;; AUTHORITY SECTION:
.			487	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010200 1800 900 604800 86400

;; Query time: 272 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Jan 03 02:24:01 CST 2020
;; MSG SIZE  rcvd: 116

Host info

1.99.163.164.in-addr.arpa domain name pointer 164-163-99-1.isp.infomaistelecom.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
1.99.163.164.in-addr.arpa	name = 164-163-99-1.isp.infomaistelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
122.155.1.148	attackspam	Jan 25 04:10:03 firewall sshd[7937]: Failed password for invalid user tty from 122.155.1.148 port 58472 ssh2 Jan 25 04:12:26 firewall sshd[7983]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.155.1.148 user=root Jan 25 04:12:29 firewall sshd[7983]: Failed password for root from 122.155.1.148 port 50252 ssh2 ...	2020-01-25 15:48:12
152.136.143.77	attackspam	Jan 24 21:30:49 php1 sshd\[10072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.143.77 user=root Jan 24 21:30:51 php1 sshd\[10072\]: Failed password for root from 152.136.143.77 port 36776 ssh2 Jan 24 21:34:39 php1 sshd\[10414\]: Invalid user hans from 152.136.143.77 Jan 24 21:34:39 php1 sshd\[10414\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=152.136.143.77 Jan 24 21:34:40 php1 sshd\[10414\]: Failed password for invalid user hans from 152.136.143.77 port 36116 ssh2	2020-01-25 15:37:32
89.210.156.48	attack	port scan and connect, tcp 23 (telnet)	2020-01-25 15:42:01
49.235.145.231	attackspambots	Unauthorized connection attempt detected from IP address 49.235.145.231 to port 2220 [J]	2020-01-25 15:39:17
76.176.68.212	attackbots	Jan 25 01:53:21 ws19vmsma01 sshd[159024]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=76.176.68.212 Jan 25 01:53:24 ws19vmsma01 sshd[159024]: Failed password for invalid user pavel from 76.176.68.212 port 34484 ssh2 ...	2020-01-25 15:43:00
109.116.196.174	attackbotsspam	Jan 25 07:34:30 hcbbdb sshd\[22403\]: Invalid user test from 109.116.196.174 Jan 25 07:34:30 hcbbdb sshd\[22403\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.116.196.174 Jan 25 07:34:31 hcbbdb sshd\[22403\]: Failed password for invalid user test from 109.116.196.174 port 42452 ssh2 Jan 25 07:38:01 hcbbdb sshd\[22950\]: Invalid user tmuser from 109.116.196.174 Jan 25 07:38:01 hcbbdb sshd\[22950\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=109.116.196.174	2020-01-25 15:53:14
181.174.81.246	attackspambots	Invalid user teamspeak3 from 181.174.81.246 port 36129	2020-01-25 16:17:49
221.229.219.188	attack	Invalid user soumu from 221.229.219.188 port 49057	2020-01-25 15:55:33
191.32.218.21	attack	Jan 25 08:40:06 MK-Soft-VM8 sshd[14326]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=191.32.218.21 Jan 25 08:40:08 MK-Soft-VM8 sshd[14326]: Failed password for invalid user amstest from 191.32.218.21 port 42068 ssh2 ...	2020-01-25 16:11:13
106.12.3.170	attackbotsspam	Unauthorized connection attempt detected from IP address 106.12.3.170 to port 2220 [J]	2020-01-25 16:11:45
116.6.84.60	attackbotsspam	Unauthorized connection attempt detected from IP address 116.6.84.60 to port 2220 [J]	2020-01-25 15:59:01
114.119.129.95	attackspambots	badbot	2020-01-25 15:40:07
95.33.74.166	attackbotsspam	Jan 25 07:41:54 server sshd\[17903\]: Invalid user sid from 95.33.74.166 Jan 25 07:41:54 server sshd\[17903\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dyndsl-095-033-074-166.ewe-ip-backbone.de Jan 25 07:41:55 server sshd\[17903\]: Failed password for invalid user sid from 95.33.74.166 port 49787 ssh2 Jan 25 07:53:16 server sshd\[20576\]: Invalid user lenka from 95.33.74.166 Jan 25 07:53:16 server sshd\[20576\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dyndsl-095-033-074-166.ewe-ip-backbone.de ...	2020-01-25 15:47:03
94.191.120.108	attackspam	Jan 25 07:54:34 MainVPS sshd[23914]: Invalid user user from 94.191.120.108 port 36288 Jan 25 07:54:34 MainVPS sshd[23914]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=94.191.120.108 Jan 25 07:54:34 MainVPS sshd[23914]: Invalid user user from 94.191.120.108 port 36288 Jan 25 07:54:37 MainVPS sshd[23914]: Failed password for invalid user user from 94.191.120.108 port 36288 ssh2 Jan 25 08:02:30 MainVPS sshd[6572]: Invalid user pt from 94.191.120.108 port 58450 ...	2020-01-25 16:10:41
185.156.73.57	attackbots	Jan 25 08:11:40 debian-2gb-nbg1-2 kernel: \[2195575.212492\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=185.156.73.57 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=247 ID=61195 PROTO=TCP SPT=57260 DPT=37404 WINDOW=1024 RES=0x00 SYN URGP=0	2020-01-25 15:38:56

Recently Reported IPs

108.191.131.184	108.83.125.178	164.132.54.2	65.218.197.117
132.27.12.78	43.190.71.101	110.49.194.181	63.65.245.228
164.52.24.1	73.151.247.215	73.244.159.187	198.126.27.58
222.122.63.243	128.119.250.236	211.207.77.64	223.25.102.185
200.94.153.18	121.12.54.51	180.28.166.193	106.254.145.27