168.196.150.16

Basic Info

City: Campina da Lagoa

Region: Parana

Country: Brazil

Internet Service Provider: O. S. J. Net Ltda - ME

Hostname: unknown

Organization: O. S. J. NET LTDA - ME

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	SMTP-sasl brute force ...	2019-07-01 00:47:36

Comments on same subnet:

IP	Type	Details	Datetime
168.196.150.55	attack	SMTP AUTH LOGIN	2020-05-11 07:03:07
168.196.150.41	attackbotsspam	Aug 13 00:03:23 rigel postfix/smtpd[2886]: connect from unknown[168.196.150.41] Aug 13 00:03:27 rigel postfix/smtpd[2886]: warning: unknown[168.196.150.41]: SASL CRAM-MD5 authentication failed: authentication failure Aug 13 00:03:28 rigel postfix/smtpd[2886]: warning: unknown[168.196.150.41]: SASL PLAIN authentication failed: authentication failure Aug 13 00:03:30 rigel postfix/smtpd[2886]: warning: unknown[168.196.150.41]: SASL LOGIN authentication failed: authentication failure ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=168.196.150.41	2019-08-13 07:47:48
168.196.150.72	attack	SMTP-sasl brute force ...	2019-06-25 07:51:03
168.196.150.199	attack	SMTP-sasl brute force ...	2019-06-23 03:12:47

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.196.150.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 21934
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;168.196.150.16.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019063000 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Mon Jul 01 00:47:25 CST 2019
;; MSG SIZE  rcvd: 118

Host info

Host 16.150.196.168.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 16.150.196.168.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
43.231.113.125	attack	Sep 21 05:28:34 php1 sshd\[21908\]: Invalid user michaels from 43.231.113.125 Sep 21 05:28:34 php1 sshd\[21908\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.231.113.125 Sep 21 05:28:36 php1 sshd\[21908\]: Failed password for invalid user michaels from 43.231.113.125 port 59068 ssh2 Sep 21 05:33:56 php1 sshd\[22397\]: Invalid user ubnt from 43.231.113.125 Sep 21 05:33:56 php1 sshd\[22397\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=43.231.113.125	2019-09-22 03:36:06
2400:6180:100:d0::8ac:6001	attackbots	xmlrpc attack	2019-09-22 03:18:21
1.47.229.121	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 11:30:22,023 INFO [amun_request_handler] PortScan Detected on Port: 445 (1.47.229.121)	2019-09-22 03:21:09
112.35.26.43	attackspam	Sep 21 05:52:35 eddieflores sshd\[18818\]: Invalid user testuser from 112.35.26.43 Sep 21 05:52:35 eddieflores sshd\[18818\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.26.43 Sep 21 05:52:37 eddieflores sshd\[18818\]: Failed password for invalid user testuser from 112.35.26.43 port 41630 ssh2 Sep 21 05:59:08 eddieflores sshd\[19372\]: Invalid user wai from 112.35.26.43 Sep 21 05:59:08 eddieflores sshd\[19372\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.35.26.43	2019-09-22 03:19:12
200.186.108.194	attack	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 11:26:35,234 INFO [amun_request_handler] PortScan Detected on Port: 445 (200.186.108.194)	2019-09-22 03:39:21
182.72.55.26	attackspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 11:27:27,790 INFO [amun_request_handler] PortScan Detected on Port: 445 (182.72.55.26)	2019-09-22 03:35:22
171.234.96.208	attackspambots	Chat Spam	2019-09-22 03:28:24
159.203.201.38	attack	" "	2019-09-22 03:48:47
183.83.15.72	attackbotsspam	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 11:30:03,990 INFO [amun_request_handler] PortScan Detected on Port: 445 (183.83.15.72)	2019-09-22 03:28:04
49.88.112.113	attackspambots	Sep 21 09:46:19 web9 sshd\[14580\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Sep 21 09:46:21 web9 sshd\[14580\]: Failed password for root from 49.88.112.113 port 20259 ssh2 Sep 21 09:47:08 web9 sshd\[14747\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root Sep 21 09:47:10 web9 sshd\[14747\]: Failed password for root from 49.88.112.113 port 62061 ssh2 Sep 21 09:47:59 web9 sshd\[14919\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.88.112.113 user=root	2019-09-22 03:55:50
54.37.66.73	attack	Sep 21 20:48:55 vpn01 sshd\[1753\]: Invalid user mice from 54.37.66.73 Sep 21 20:48:55 vpn01 sshd\[1753\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.66.73 Sep 21 20:48:57 vpn01 sshd\[1753\]: Failed password for invalid user mice from 54.37.66.73 port 41558 ssh2	2019-09-22 03:31:02
100.11.131.236	attackbots	Web App Attack	2019-09-22 03:56:07
114.32.218.5	attackspambots	Sep 21 00:06:45 lamijardin sshd[22387]: Invalid user maya from 114.32.218.5 Sep 21 00:06:45 lamijardin sshd[22387]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.32.218.5 Sep 21 00:06:47 lamijardin sshd[22387]: Failed password for invalid user maya from 114.32.218.5 port 38766 ssh2 Sep 21 00:06:48 lamijardin sshd[22387]: Received disconnect from 114.32.218.5 port 38766:11: Bye Bye [preauth] Sep 21 00:06:48 lamijardin sshd[22387]: Disconnected from 114.32.218.5 port 38766 [preauth] Sep 21 00:27:59 lamijardin sshd[22504]: Invalid user svuser from 114.32.218.5 Sep 21 00:27:59 lamijardin sshd[22504]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.32.218.5 Sep 21 00:28:01 lamijardin sshd[22504]: Failed password for invalid user svuser from 114.32.218.5 port 57808 ssh2 Sep 21 00:28:02 lamijardin sshd[22504]: Received disconnect from 114.32.218.5 port 57808:11: Bye Bye [preauth] Sep 21 0........ -------------------------------	2019-09-22 03:37:58
51.77.140.111	attack	Sep 21 16:53:15 web8 sshd\[24892\]: Invalid user test from 51.77.140.111 Sep 21 16:53:15 web8 sshd\[24892\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.111 Sep 21 16:53:18 web8 sshd\[24892\]: Failed password for invalid user test from 51.77.140.111 port 37238 ssh2 Sep 21 16:57:21 web8 sshd\[26800\]: Invalid user csgosrv from 51.77.140.111 Sep 21 16:57:21 web8 sshd\[26800\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.77.140.111	2019-09-22 03:46:22
186.67.182.30	attackbots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-09-21 11:25:36,681 INFO [amun_request_handler] PortScan Detected on Port: 445 (186.67.182.30)	2019-09-22 03:53:44

Recently Reported IPs

65.19.152.249	84.101.72.103	68.213.123.154	196.150.70.77
163.172.48.202	188.109.5.152	159.48.215.109	169.197.176.10
182.232.190.109	121.35.103.81	66.87.11.26	41.219.103.197
134.108.91.12	181.132.206.65	122.122.129.245	59.73.232.242
186.251.21.216	180.217.219.232	179.127.146.140	217.142.205.109