168.90.139.20 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: L.C.De Carvalho Carneiro-ME

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Automatic report - Port Scan Attack	2019-08-20 02:50:54

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 168.90.139.20
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48237
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;168.90.139.20.			IN	A

;; AUTHORITY SECTION:
.			1993	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081901 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Tue Aug 20 02:50:41 CST 2019
;; MSG SIZE  rcvd: 117

Host info

20.139.90.168.in-addr.arpa domain name pointer 20.139.90.168.netsystemtelecom.com.br.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
20.139.90.168.in-addr.arpa	name = 20.139.90.168.netsystemtelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
50.207.12.103	attackspam	Dec 2 12:01:38 hanapaa sshd\[21565\]: Invalid user slager from 50.207.12.103 Dec 2 12:01:38 hanapaa sshd\[21565\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50-207-12-103-static.hfc.comcastbusiness.net Dec 2 12:01:39 hanapaa sshd\[21565\]: Failed password for invalid user slager from 50.207.12.103 port 49352 ssh2 Dec 2 12:07:03 hanapaa sshd\[22094\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=50-207-12-103-static.hfc.comcastbusiness.net user=root Dec 2 12:07:05 hanapaa sshd\[22094\]: Failed password for root from 50.207.12.103 port 60640 ssh2	2019-12-03 06:21:44
188.99.166.18	attackbots	Automatic report - Port Scan Attack	2019-12-03 06:28:19
202.5.61.24	attack	Sending SPAM email	2019-12-03 06:10:07
188.173.80.134	attack	2019-12-02T22:09:37.316563abusebot-8.cloudsearch.cf sshd\[10088\]: Invalid user wellsandt from 188.173.80.134 port 45147	2019-12-03 06:11:51
185.216.140.252	attack	Fail2Ban Ban Triggered	2019-12-03 06:18:58
188.12.158.97	attackspam	$f2bV_matches	2019-12-03 06:07:00
45.95.168.105	attack	Dec 2 13:54:32 ihweb003 sshd[17190]: Connection from 45.95.168.105 port 54470 on 139.59.173.177 port 22 Dec 2 13:54:32 ihweb003 sshd[17190]: Did not receive identification string from 45.95.168.105 port 54470 Dec 2 13:57:35 ihweb003 sshd[17742]: Connection from 45.95.168.105 port 54086 on 139.59.173.177 port 22 Dec 2 13:57:36 ihweb003 sshd[17742]: Address 45.95.168.105 maps to maxko-hosting.com, but this does not map back to the address. Dec 2 13:57:36 ihweb003 sshd[17742]: User r.r from 45.95.168.105 not allowed because none of user's groups are listed in AllowGroups Dec 2 13:57:36 ihweb003 sshd[17742]: Received disconnect from 45.95.168.105 port 54086:11: Normal Shutdown, Thank you for playing [preauth] Dec 2 13:57:36 ihweb003 sshd[17742]: Disconnected from 45.95.168.105 port 54086 [preauth] Dec 2 13:58:36 ihweb003 sshd[17907]: Connection from 45.95.168.105 port 42174 on 139.59.173.177 port 22 Dec 2 13:58:36 ihweb003 sshd[17907]: Address 45.95.168.105 maps to........ -------------------------------	2019-12-03 05:59:01
106.52.4.104	attackspambots	Dec 3 00:14:09 server sshd\[5709\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.4.104 user=root Dec 3 00:14:12 server sshd\[5709\]: Failed password for root from 106.52.4.104 port 43736 ssh2 Dec 3 00:27:56 server sshd\[9936\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.4.104 user=root Dec 3 00:27:59 server sshd\[9936\]: Failed password for root from 106.52.4.104 port 37644 ssh2 Dec 3 00:34:48 server sshd\[11850\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.52.4.104 user=root ...	2019-12-03 06:31:55
192.236.160.41	attackbots	Fail2Ban Ban Triggered HTTP SQL Injection Attempt	2019-12-03 06:04:36
193.112.219.176	attackbots	Dec 2 22:28:14 sbg01 sshd[12141]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.219.176 Dec 2 22:28:17 sbg01 sshd[12141]: Failed password for invalid user vining from 193.112.219.176 port 38632 ssh2 Dec 2 22:34:50 sbg01 sshd[12268]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.112.219.176	2019-12-03 06:28:43
151.80.37.18	attackspam	Dec 2 23:19:57 ns381471 sshd[18341]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=151.80.37.18 Dec 2 23:20:00 ns381471 sshd[18341]: Failed password for invalid user taniyah from 151.80.37.18 port 34974 ssh2	2019-12-03 06:33:41
183.107.62.150	attack	Dec 2 17:06:22 linuxvps sshd\[13479\]: Invalid user ntf from 183.107.62.150 Dec 2 17:06:22 linuxvps sshd\[13479\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.107.62.150 Dec 2 17:06:24 linuxvps sshd\[13479\]: Failed password for invalid user ntf from 183.107.62.150 port 39976 ssh2 Dec 2 17:12:44 linuxvps sshd\[17500\]: Invalid user mysql from 183.107.62.150 Dec 2 17:12:44 linuxvps sshd\[17500\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=183.107.62.150	2019-12-03 06:29:10
189.7.17.61	attackbotsspam	Dec 2 17:03:53 linuxvps sshd\[11880\]: Invalid user iptables from 189.7.17.61 Dec 2 17:03:53 linuxvps sshd\[11880\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.17.61 Dec 2 17:03:55 linuxvps sshd\[11880\]: Failed password for invalid user iptables from 189.7.17.61 port 33348 ssh2 Dec 2 17:13:18 linuxvps sshd\[17883\]: Invalid user slevin from 189.7.17.61 Dec 2 17:13:18 linuxvps sshd\[17883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=189.7.17.61	2019-12-03 06:24:34
118.25.27.67	attackbotsspam	Dec 2 11:49:51 web9 sshd\[30236\]: Invalid user darms from 118.25.27.67 Dec 2 11:49:51 web9 sshd\[30236\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.27.67 Dec 2 11:49:53 web9 sshd\[30236\]: Failed password for invalid user darms from 118.25.27.67 port 35688 ssh2 Dec 2 11:56:32 web9 sshd\[31297\]: Invalid user jeanes from 118.25.27.67 Dec 2 11:56:32 web9 sshd\[31297\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.27.67	2019-12-03 05:58:11
218.92.0.182	attackspam	$f2bV_matches	2019-12-03 06:00:28

Recently Reported IPs

57.93.79.230	138.19.166.82	142.93.206.202	142.234.39.38
236.227.119.89	24.52.48.32	43.227.68.71	240.67.228.23
16.138.39.229	101.207.134.63	62.184.62.96	55.62.227.177
149.238.99.196	255.58.24.108	107.99.123.134	124.107.246.250
102.65.158.186	185.247.117.47	118.89.222.245	167.71.203.155