167.57.150.131

Basic Info

City: Montevideo

Region: Departamento de Montevideo

Country: Uruguay

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
167.57.150.66	attack	Dec 3 23:31:11 vps sshd[29886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.57.150.66 Dec 3 23:31:13 vps sshd[29886]: Failed password for invalid user admin from 167.57.150.66 port 54636 ssh2 Dec 3 23:31:32 vps sshd[29902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.57.150.66 ...	2019-12-04 07:12:09

Type

Details

Datetime

167.57.150.66

attack

Dec  3 23:31:11 vps sshd[29886]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.57.150.66 
Dec  3 23:31:13 vps sshd[29886]: Failed password for invalid user admin from 167.57.150.66 port 54636 ssh2
Dec  3 23:31:32 vps sshd[29902]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.57.150.66 
...

2019-12-04 07:12:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.57.150.131
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61310
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;167.57.150.131.			IN	A

;; AUTHORITY SECTION:
.			370	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020090301 1800 900 604800 86400

;; Query time: 63 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Sep 04 08:02:26 CST 2020
;; MSG SIZE  rcvd: 118

Host info

131.150.57.167.in-addr.arpa domain name pointer r167-57-150-131.dialup.adsl.anteldata.net.uy.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
131.150.57.167.in-addr.arpa	name = r167-57-150-131.dialup.adsl.anteldata.net.uy.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.15.158	attack	Feb 16 18:12:07 debian64 sshd[28496]: Failed password for root from 222.186.15.158 port 51154 ssh2 Feb 16 18:12:09 debian64 sshd[28496]: Failed password for root from 222.186.15.158 port 51154 ssh2 ...	2020-02-17 01:15:00
125.91.32.65	attackbots	(sshd) Failed SSH login from 125.91.32.65 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Feb 16 14:12:58 elude sshd[31661]: Invalid user ubuntu from 125.91.32.65 port 33569 Feb 16 14:13:00 elude sshd[31661]: Failed password for invalid user ubuntu from 125.91.32.65 port 33569 ssh2 Feb 16 14:44:21 elude sshd[1134]: Invalid user daan from 125.91.32.65 port 52414 Feb 16 14:44:24 elude sshd[1134]: Failed password for invalid user daan from 125.91.32.65 port 52414 ssh2 Feb 16 14:47:38 elude sshd[1317]: Invalid user osadrc from 125.91.32.65 port 4227	2020-02-17 01:31:30
103.215.245.163	attack	Automatic report - Port Scan Attack	2020-02-17 01:34:29
222.186.30.76	attackbots	Feb 16 17:55:32 markkoudstaal sshd[6971]: Failed password for root from 222.186.30.76 port 41919 ssh2 Feb 16 17:55:34 markkoudstaal sshd[6971]: Failed password for root from 222.186.30.76 port 41919 ssh2 Feb 16 17:55:36 markkoudstaal sshd[6971]: Failed password for root from 222.186.30.76 port 41919 ssh2	2020-02-17 01:05:53
86.107.158.90	attackspambots	Attempts against SMTP/SSMTP	2020-02-17 01:21:53
185.143.223.164	attackspam	Feb 16 17:32:09 relay postfix/smtpd\[9884\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.164\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.163\]\> Feb 16 17:32:09 relay postfix/smtpd\[9884\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.164\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.163\]\> Feb 16 17:32:09 relay postfix/smtpd\[9884\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.164\]: 554 5.7.1 \: Relay access denied\; from=\ to=\ proto=ESMTP helo=\<\[185.143.223.163\]\> Feb 16 17:32:09 relay postfix/smtpd\[9884\]: NOQUEUE: reject: RCPT from unknown\[185.143.223.164\]: 554 5.7.1 \: Relay access denied\; from=\ to=\< ...	2020-02-17 00:54:40
222.186.42.155	attack	Feb 16 18:28:40 MK-Soft-VM8 sshd[30314]: Failed password for root from 222.186.42.155 port 31449 ssh2 Feb 16 18:28:44 MK-Soft-VM8 sshd[30314]: Failed password for root from 222.186.42.155 port 31449 ssh2 ...	2020-02-17 01:32:13
37.255.230.11	attackbotsspam	Automatic report - Port Scan Attack	2020-02-17 01:23:25
91.133.32.144	attack	RDPBruteCAu	2020-02-17 01:07:22
45.141.86.128	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-02-17 01:19:26
222.186.180.41	attackbotsspam	Feb 16 18:32:26 minden010 sshd[31235]: Failed password for root from 222.186.180.41 port 38534 ssh2 Feb 16 18:32:40 minden010 sshd[31235]: error: maximum authentication attempts exceeded for root from 222.186.180.41 port 38534 ssh2 [preauth] Feb 16 18:32:47 minden010 sshd[31326]: Failed password for root from 222.186.180.41 port 58652 ssh2 ...	2020-02-17 01:35:56
144.217.80.80	attackspambots	02/16/2020-14:47:45.780117 144.217.80.80 Protocol: 6 ET TOR Known Tor Exit Node Traffic group 11	2020-02-17 01:24:40
218.92.0.168	attackbots	Feb 16 17:09:15 IngegnereFirenze sshd[25375]: User root from 218.92.0.168 not allowed because not listed in AllowUsers ...	2020-02-17 01:12:59
43.231.61.146	attack	Feb 16 06:14:33 hpm sshd\[18560\]: Invalid user mnikolova from 43.231.61.146 Feb 16 06:14:33 hpm sshd\[18560\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.231.61.146 Feb 16 06:14:35 hpm sshd\[18560\]: Failed password for invalid user mnikolova from 43.231.61.146 port 58906 ssh2 Feb 16 06:18:52 hpm sshd\[19083\]: Invalid user sater from 43.231.61.146 Feb 16 06:18:52 hpm sshd\[19083\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.231.61.146	2020-02-17 01:20:16
159.89.177.46	attackbotsspam	Feb 16 14:45:00 markkoudstaal sshd[6062]: Failed password for root from 159.89.177.46 port 35772 ssh2 Feb 16 14:47:56 markkoudstaal sshd[6597]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.177.46 Feb 16 14:47:58 markkoudstaal sshd[6597]: Failed password for invalid user postgres from 159.89.177.46 port 35336 ssh2	2020-02-17 01:13:23

Recently Reported IPs

115.248.86.253	185.118.162.233	27.231.52.134	75.62.178.68
203.106.138.84	15.156.56.210	129.16.110.179	117.69.154.5
111.131.255.62	82.106.11.4	190.61.38.228	174.157.157.42
67.158.6.30	117.228.174.43	82.89.163.118	65.209.57.187
66.140.84.159	68.97.24.250	66.244.91.126	71.168.129.225