167.57.239.106

Basic Info

City: unknown

Region: unknown

Country: Uruguay

Internet Service Provider: Administracion Nacional de Telecomunicaciones

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Honeypot attack, port: 445, PTR: r167-57-239-106.dialup.adsl.anteldata.net.uy.	2019-09-05 14:00:01

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 167.57.239.106
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57953
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;167.57.239.106.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019090402 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Thu Sep 05 13:59:53 CST 2019
;; MSG SIZE  rcvd: 118

Host info

106.239.57.167.in-addr.arpa domain name pointer r167-57-239-106.dialup.adsl.anteldata.net.uy.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
106.239.57.167.in-addr.arpa	name = r167-57-239-106.dialup.adsl.anteldata.net.uy.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
37.6.212.118	attack	Telnet/23 MH Probe, BF, Hack -	2019-08-16 07:42:46
222.186.15.110	attack	Aug 15 18:20:41 aat-srv002 sshd[31207]: Failed password for root from 222.186.15.110 port 29256 ssh2 Aug 15 18:20:43 aat-srv002 sshd[31207]: Failed password for root from 222.186.15.110 port 29256 ssh2 Aug 15 18:20:46 aat-srv002 sshd[31207]: Failed password for root from 222.186.15.110 port 29256 ssh2 Aug 15 18:20:50 aat-srv002 sshd[31233]: Failed password for root from 222.186.15.110 port 10028 ssh2 ...	2019-08-16 07:44:44
51.38.150.105	attack	Automated report - ssh fail2ban: Aug 16 02:10:48 wrong password, user=root, port=55734, ssh2 Aug 16 02:10:52 wrong password, user=root, port=55734, ssh2 Aug 16 02:10:56 wrong password, user=root, port=55734, ssh2	2019-08-16 08:18:16
41.202.0.153	attackspam	Aug 15 13:41:11 hpm sshd\[27453\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.202.0.153 user=irc Aug 15 13:41:12 hpm sshd\[27453\]: Failed password for irc from 41.202.0.153 port 4300 ssh2 Aug 15 13:46:27 hpm sshd\[27907\]: Invalid user arun from 41.202.0.153 Aug 15 13:46:27 hpm sshd\[27907\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=41.202.0.153 Aug 15 13:46:29 hpm sshd\[27907\]: Failed password for invalid user arun from 41.202.0.153 port 28327 ssh2	2019-08-16 07:59:54
111.183.121.44	attack	DATE:2019-08-15 22:17:42, IP:111.183.121.44, PORT:ssh SSH brute force auth (ermes)	2019-08-16 08:01:29
84.2.219.221	attack	SSH/22 MH Probe, BF, Hack -	2019-08-16 07:49:02
113.161.13.29	attackbots	Aug 15 22:06:35 shenron sshd[12164]: Did not receive identification string from 113.161.13.29 Aug 15 22:07:35 shenron sshd[12165]: Invalid user adminixxxr from 113.161.13.29 Aug 15 22:07:35 shenron sshd[12165]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.161.13.29 Aug 15 22:07:37 shenron sshd[12165]: Failed password for invalid user adminixxxr from 113.161.13.29 port 60637 ssh2 Aug 15 22:07:37 shenron sshd[12165]: Connection closed by 113.161.13.29 port 60637 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=113.161.13.29	2019-08-16 07:48:34
201.140.122.242	attackspam	Unauthorised access (Aug 15) SRC=201.140.122.242 LEN=52 TTL=117 ID=23255 DF TCP DPT=445 WINDOW=8192 SYN	2019-08-16 08:10:27
159.203.189.255	attack	Aug 16 00:01:14 hb sshd\[20138\]: Invalid user p@ssw0rd from 159.203.189.255 Aug 16 00:01:14 hb sshd\[20138\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.189.255 Aug 16 00:01:15 hb sshd\[20138\]: Failed password for invalid user p@ssw0rd from 159.203.189.255 port 50254 ssh2 Aug 16 00:05:26 hb sshd\[20462\]: Invalid user nagiosadmin from 159.203.189.255 Aug 16 00:05:26 hb sshd\[20462\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.189.255	2019-08-16 08:12:13
162.247.74.204	attackbotsspam	2019-08-15T23:40:14.065825abusebot.cloudsearch.cf sshd\[11186\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=billsf.tor-exit.calyxinstitute.org user=root	2019-08-16 08:20:27
159.65.6.57	attackbotsspam	Invalid user penelope from 159.65.6.57 port 51844	2019-08-16 08:02:13
2.153.184.166	attackspambots	Invalid user admin from 2.153.184.166 port 36250	2019-08-16 08:20:00
101.89.216.223	attackspam	SASL PLAIN auth failed: ruser=...	2019-08-16 08:05:36
1.170.19.136	attackbotsspam	08/15/2019-16:17:50.683236 1.170.19.136 Protocol: 6 ET CINS Active Threat Intelligence Poor Reputation IP group 2	2019-08-16 07:55:05
206.189.119.73	attackbotsspam	Aug 16 08:13:51 localhost sshd[19245]: Invalid user rg from 206.189.119.73 port 44964 ...	2019-08-16 08:16:27

Recently Reported IPs

89.234.58.154	61.7.241.196	167.114.242.179	185.36.81.16
148.240.6.127	96.255.194.127	173.249.48.86	83.110.85.220
116.109.57.163	83.110.157.234	177.65.153.126	31.215.192.137
192.227.252.25	2.87.35.54	211.221.250.5	207.9.180.246
14.177.250.6	115.59.48.92	24.89.226.62	123.206.90.98