168.194.160.49

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Copel Telecomunicacoes S.A.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	...	2020-01-13 09:27:25

Comments on same subnet:

IP	Type	Details	Datetime
168.194.160.125	attackbots	20 attempts against mh-ssh on snow	2020-07-10 18:54:20
168.194.160.47	attackspam	$f2bV_matches	2020-02-23 09:28:53
168.194.160.47	attackspam	Feb 16 09:38:17 dedicated sshd[24881]: Invalid user noah from 168.194.160.47 port 32672	2020-02-16 16:44:47
168.194.160.14	attackbotsspam	Nov 22 20:43:29 sauna sshd[172947]: Failed password for root from 168.194.160.14 port 58097 ssh2 ...	2019-11-23 05:45:20
168.194.160.223	attack	Nov 20 02:15:22 linuxvps sshd\[15807\]: Invalid user guest from 168.194.160.223 Nov 20 02:15:22 linuxvps sshd\[15807\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.223 Nov 20 02:15:24 linuxvps sshd\[15807\]: Failed password for invalid user guest from 168.194.160.223 port 49186 ssh2 Nov 20 02:22:46 linuxvps sshd\[20217\]: Invalid user odendaal from 168.194.160.223 Nov 20 02:22:46 linuxvps sshd\[20217\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.223	2019-11-20 21:05:43
168.194.160.223	attackbots	Nov 19 23:49:06 linuxvps sshd\[58659\]: Invalid user dovecot from 168.194.160.223 Nov 19 23:49:06 linuxvps sshd\[58659\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.223 Nov 19 23:49:08 linuxvps sshd\[58659\]: Failed password for invalid user dovecot from 168.194.160.223 port 23782 ssh2 Nov 19 23:56:50 linuxvps sshd\[63284\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.223 user=root Nov 19 23:56:52 linuxvps sshd\[63284\]: Failed password for root from 168.194.160.223 port 45425 ssh2	2019-11-20 13:40:23
168.194.160.213	attackbots	Nov 12 09:24:03 SilenceServices sshd[10324]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.213 Nov 12 09:24:06 SilenceServices sshd[10324]: Failed password for invalid user obeidat from 168.194.160.213 port 59576 ssh2 Nov 12 09:31:34 SilenceServices sshd[12657]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.213	2019-11-12 17:13:34
168.194.160.235	attackbotsspam	Mar 9 02:56:44 dillonfme sshd\[10119\]: User root from 168.194.160.235 not allowed because not listed in AllowUsers Mar 9 02:56:44 dillonfme sshd\[10119\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.235 user=root Mar 9 02:56:47 dillonfme sshd\[10119\]: Failed password for invalid user root from 168.194.160.235 port 28286 ssh2 Mar 9 03:04:20 dillonfme sshd\[10294\]: Invalid user musique from 168.194.160.235 port 19050 Mar 9 03:04:20 dillonfme sshd\[10294\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.235 ...	2019-10-14 04:48:31
168.194.160.179	attack	Jul 6 21:05:06 server sshd\[20410\]: Invalid user test from 168.194.160.179 Jul 6 21:05:06 server sshd\[20410\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.179 Jul 6 21:05:08 server sshd\[20410\]: Failed password for invalid user test from 168.194.160.179 port 15036 ssh2 ...	2019-10-09 13:06:32
168.194.160.224	attackspambots	May 26 13:42:59 server sshd\[7008\]: Invalid user squid from 168.194.160.224 May 26 13:42:59 server sshd\[7008\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.224 May 26 13:43:00 server sshd\[7008\]: Failed password for invalid user squid from 168.194.160.224 port 21419 ssh2 ...	2019-10-09 13:05:13
168.194.160.202	attackbots	Sep 25 19:12:44 itv-usvr-01 sshd[1233]: Invalid user bruce from 168.194.160.202 Sep 25 19:12:44 itv-usvr-01 sshd[1233]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.202 Sep 25 19:12:44 itv-usvr-01 sshd[1233]: Invalid user bruce from 168.194.160.202 Sep 25 19:12:45 itv-usvr-01 sshd[1233]: Failed password for invalid user bruce from 168.194.160.202 port 31600 ssh2 Sep 25 19:17:53 itv-usvr-01 sshd[1469]: Invalid user admin from 168.194.160.202	2019-09-26 01:43:59
168.194.160.202	attack	$f2bV_matches	2019-09-21 19:54:23
168.194.160.215	attack	Jan 3 02:46:11 vpn sshd[22209]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.215 Jan 3 02:46:14 vpn sshd[22209]: Failed password for invalid user clamav1 from 168.194.160.215 port 37424 ssh2 Jan 3 02:49:26 vpn sshd[22228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.215	2019-07-19 08:35:35
168.194.160.235	attackbotsspam	Mar 10 05:35:48 vpn sshd[27050]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=168.194.160.235 Mar 10 05:35:50 vpn sshd[27050]: Failed password for invalid user max from 168.194.160.235 port 37530 ssh2 Mar 10 05:42:16 vpn sshd[27091]: Failed password for root from 168.194.160.235 port 21270 ssh2	2019-07-19 08:35:16

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.194.160.49
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19047
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;168.194.160.49.			IN	A

;; AUTHORITY SECTION:
.			586	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011201 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 13 09:27:14 CST 2020
;; MSG SIZE  rcvd: 118

Host info

49.160.194.168.in-addr.arpa domain name pointer 49.160.194.168.rfc6598.dynamic.copelfibra.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
49.160.194.168.in-addr.arpa	name = 49.160.194.168.rfc6598.dynamic.copelfibra.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.197.163.11	attackbots	SSH brute-force: detected 38 distinct usernames within a 24-hour window.	2019-12-24 03:51:21
129.204.254.4	attack	Jul 19 03:59:29 yesfletchmain sshd\[4477\]: Invalid user toor from 129.204.254.4 port 41078 Jul 19 03:59:29 yesfletchmain sshd\[4477\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.254.4 Jul 19 03:59:31 yesfletchmain sshd\[4477\]: Failed password for invalid user toor from 129.204.254.4 port 41078 ssh2 Jul 19 04:05:02 yesfletchmain sshd\[4545\]: Invalid user deploy from 129.204.254.4 port 37368 Jul 19 04:05:02 yesfletchmain sshd\[4545\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.254.4 ...	2019-12-24 03:49:28
129.204.4.85	attackbots	Feb 21 02:48:24 dillonfme sshd\[7780\]: Invalid user user from 129.204.4.85 port 38117 Feb 21 02:48:24 dillonfme sshd\[7780\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.4.85 Feb 21 02:48:26 dillonfme sshd\[7780\]: Failed password for invalid user user from 129.204.4.85 port 38117 ssh2 Feb 21 02:55:27 dillonfme sshd\[7994\]: Invalid user openvpn from 129.204.4.85 port 33528 Feb 21 02:55:27 dillonfme sshd\[7994\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.4.85 ...	2019-12-24 03:40:49
75.80.193.222	attackspambots	Dec 23 15:54:54 web8 sshd\[29763\]: Invalid user akutsu from 75.80.193.222 Dec 23 15:54:54 web8 sshd\[29763\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.80.193.222 Dec 23 15:54:56 web8 sshd\[29763\]: Failed password for invalid user akutsu from 75.80.193.222 port 37745 ssh2 Dec 23 16:02:19 web8 sshd\[784\]: Invalid user \\|\\|\\|\\|\\|\\|\\|\\|\\| from 75.80.193.222 Dec 23 16:02:19 web8 sshd\[784\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=75.80.193.222	2019-12-24 03:39:14
103.225.124.50	attackbots	Dec 23 05:46:19 kapalua sshd\[17347\]: Invalid user guest from 103.225.124.50 Dec 23 05:46:19 kapalua sshd\[17347\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.225.124.50 Dec 23 05:46:21 kapalua sshd\[17347\]: Failed password for invalid user guest from 103.225.124.50 port 37183 ssh2 Dec 23 05:52:45 kapalua sshd\[17871\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.225.124.50 user=root Dec 23 05:52:46 kapalua sshd\[17871\]: Failed password for root from 103.225.124.50 port 39578 ssh2	2019-12-24 03:52:09
129.204.3.240	attack	Apr 20 19:28:18 yesfletchmain sshd\[26061\]: Invalid user spider from 129.204.3.240 port 55288 Apr 20 19:28:18 yesfletchmain sshd\[26061\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.3.240 Apr 20 19:28:19 yesfletchmain sshd\[26061\]: Failed password for invalid user spider from 129.204.3.240 port 55288 ssh2 Apr 20 19:31:32 yesfletchmain sshd\[26181\]: Invalid user adele from 129.204.3.240 port 53540 Apr 20 19:31:32 yesfletchmain sshd\[26181\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.3.240 ...	2019-12-24 03:48:01
45.55.233.213	attack	Dec 23 13:01:53 firewall sshd[14413]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.233.213 Dec 23 13:01:53 firewall sshd[14413]: Invalid user squid from 45.55.233.213 Dec 23 13:01:55 firewall sshd[14413]: Failed password for invalid user squid from 45.55.233.213 port 35340 ssh2 ...	2019-12-24 03:36:13
40.73.39.195	attack	Dec 23 15:48:33 h2177944 sshd\[1375\]: Invalid user quach from 40.73.39.195 port 34888 Dec 23 15:48:33 h2177944 sshd\[1375\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.39.195 Dec 23 15:48:35 h2177944 sshd\[1375\]: Failed password for invalid user quach from 40.73.39.195 port 34888 ssh2 Dec 23 15:55:44 h2177944 sshd\[1613\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.73.39.195 user=root ...	2019-12-24 03:42:19
167.99.68.198	attack	$f2bV_matches	2019-12-24 03:23:16
185.175.93.3	attack	ET DROP Dshield Block Listed Source group 1 - port: 7585 proto: TCP cat: Misc Attack	2019-12-24 03:18:06
212.64.127.106	attackspambots	Dec 23 09:23:27 php1 sshd\[18888\]: Invalid user saligrama from 212.64.127.106 Dec 23 09:23:27 php1 sshd\[18888\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.127.106 Dec 23 09:23:28 php1 sshd\[18888\]: Failed password for invalid user saligrama from 212.64.127.106 port 42810 ssh2 Dec 23 09:29:19 php1 sshd\[19443\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.127.106 user=root Dec 23 09:29:21 php1 sshd\[19443\]: Failed password for root from 212.64.127.106 port 40921 ssh2	2019-12-24 03:50:34
59.55.37.179	attackspam	Dec 23 15:55:28 localhost postfix/smtpd\[1875\]: warning: unknown\[59.55.37.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 15:55:34 localhost postfix/smtpd\[1896\]: warning: unknown\[59.55.37.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 15:55:36 localhost postfix/smtpd\[2939\]: warning: unknown\[59.55.37.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 15:55:52 localhost postfix/smtpd\[3137\]: warning: unknown\[59.55.37.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Dec 23 15:55:57 localhost postfix/smtpd\[1896\]: warning: unknown\[59.55.37.179\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2019-12-24 03:28:17
80.244.179.6	attack	Dec 23 16:57:49 minden010 sshd[27764]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.244.179.6 Dec 23 16:57:50 minden010 sshd[27764]: Failed password for invalid user ubnt from 80.244.179.6 port 52294 ssh2 Dec 23 17:03:07 minden010 sshd[30154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.244.179.6 ...	2019-12-24 03:23:02
129.211.130.66	attackbotsspam	Dec 23 20:09:04 icinga sshd[30853]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.211.130.66 Dec 23 20:09:06 icinga sshd[30853]: Failed password for invalid user greear from 129.211.130.66 port 52380 ssh2 ...	2019-12-24 03:25:58
86.184.31.219	attack	SSH Brute Force	2019-12-24 03:24:35

Recently Reported IPs

25.61.15.198	108.225.95.138	220.135.86.55	114.119.132.43
211.136.96.179	65.49.20.69	14.254.127.169	76.19.119.78
106.52.89.51	146.88.201.253	223.95.89.248	196.218.185.218
54.5.28.157	104.192.163.119	80.213.194.37	45.14.148.98
120.29.109.169	94.191.90.85	89.248.168.63	36.78.3.92