191.55.75.64 - IPInfo

Basic Info

City: Uberlândia

Region: Minas Gerais

Country: Brazil

Internet Service Provider: Algar Telecom S/A

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Dec 3 16:48:11 master sshd[32525]: Failed password for invalid user admin from 191.55.75.64 port 47851 ssh2	2019-12-04 04:17:20

Comments on same subnet:

IP	Type	Details	Datetime
191.55.75.158	attackbotsspam	Port probing on unauthorized port 5555	2020-05-26 06:21:21

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 191.55.75.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 55570
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;191.55.75.64.			IN	A

;; AUTHORITY SECTION:
.			575	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019120303 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Dec 04 04:17:17 CST 2019
;; MSG SIZE  rcvd: 116

Host info

64.75.55.191.in-addr.arpa domain name pointer 191-055-075-064.xd-dynamic.algartelecom.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.75.55.191.in-addr.arpa	name = 191-055-075-064.xd-dynamic.algartelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
155.4.252.250	attack	Jun 23 02:40:44 server sshd\[10764\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.4.252.250 user=root Jun 23 02:40:47 server sshd\[10764\]: Failed password for root from 155.4.252.250 port 41004 ssh2 Jun 23 02:41:03 server sshd\[10764\]: Failed password for root from 155.4.252.250 port 41004 ssh2 ...	2019-10-09 19:37:15
156.216.79.21	attack	Jul 10 21:10:43 server sshd\[64892\]: Invalid user admin from 156.216.79.21 Jul 10 21:10:43 server sshd\[64892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.216.79.21 Jul 10 21:10:45 server sshd\[64892\]: Failed password for invalid user admin from 156.216.79.21 port 44153 ssh2 ...	2019-10-09 19:25:07
77.243.191.26	attackbotsspam	$f2bV_matches	2019-10-09 19:18:56
45.136.109.251	attackbots	firewall-block, port(s): 7854/tcp, 8090/tcp, 8099/tcp, 8559/tcp, 8571/tcp	2019-10-09 19:06:50
67.60.137.219	attack	2019-10-08 22:50:52 H=67-60-137-219.cpe.cableone.net [67.60.137.219]:49559 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/67.60.137.219) 2019-10-08 22:50:53 H=67-60-137-219.cpe.cableone.net [67.60.137.219]:49559 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.4, 127.0.0.3) (https://www.spamhaus.org/query/ip/67.60.137.219) 2019-10-08 22:50:56 H=67-60-137-219.cpe.cableone.net [67.60.137.219]:49559 I=[192.147.25.65]:25 F= rejected RCPT : RBL: found in thrukfz5b56tq6xao6odgdyjrq.zen.dq.spamhaus.net (127.0.0.3, 127.0.0.4) (https://www.spamhaus.org/query/ip/67.60.137.219) ...	2019-10-09 19:29:38
218.92.0.163	attackbots	Oct 9 05:35:07 123flo sshd[17342]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.163 user=root Oct 9 05:35:10 123flo sshd[17342]: Failed password for root from 218.92.0.163 port 11023 ssh2	2019-10-09 19:11:34
51.68.82.218	attack	Oct 9 12:53:08 SilenceServices sshd[11824]: Failed password for root from 51.68.82.218 port 41002 ssh2 Oct 9 12:57:18 SilenceServices sshd[12931]: Failed password for root from 51.68.82.218 port 52100 ssh2	2019-10-09 19:20:26
157.230.157.99	attack	Jul 1 01:06:54 server sshd\[101318\]: Invalid user sales from 157.230.157.99 Jul 1 01:06:54 server sshd\[101318\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.157.99 Jul 1 01:06:56 server sshd\[101318\]: Failed password for invalid user sales from 157.230.157.99 port 50014 ssh2 ...	2019-10-09 19:07:35
176.101.205.55	attack	Oct 9 05:50:39 sso sshd[27680]: Failed password for root from 176.101.205.55 port 40050 ssh2 Oct 9 05:50:46 sso sshd[27680]: Failed password for root from 176.101.205.55 port 40050 ssh2 ...	2019-10-09 19:38:02
222.186.42.4	attack	2019-10-09T18:06:14.423001enmeeting.mahidol.ac.th sshd\[14380\]: User root from 222.186.42.4 not allowed because not listed in AllowUsers 2019-10-09T18:06:15.699538enmeeting.mahidol.ac.th sshd\[14380\]: Failed none for invalid user root from 222.186.42.4 port 6788 ssh2 2019-10-09T18:06:17.074562enmeeting.mahidol.ac.th sshd\[14380\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.42.4 user=root ...	2019-10-09 19:08:31
156.212.76.198	attackbotsspam	Jul 21 14:04:17 server sshd\[176514\]: Invalid user admin from 156.212.76.198 Jul 21 14:04:17 server sshd\[176514\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=156.212.76.198 Jul 21 14:04:20 server sshd\[176514\]: Failed password for invalid user admin from 156.212.76.198 port 53415 ssh2 ...	2019-10-09 19:26:35
209.105.243.145	attack	2019-10-09T04:02:54.698543shield sshd\[19398\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.105.243.145 user=root 2019-10-09T04:02:57.022249shield sshd\[19398\]: Failed password for root from 209.105.243.145 port 51987 ssh2 2019-10-09T04:06:51.089394shield sshd\[20058\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.105.243.145 user=root 2019-10-09T04:06:52.946623shield sshd\[20058\]: Failed password for root from 209.105.243.145 port 43317 ssh2 2019-10-09T04:10:46.253112shield sshd\[20625\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=209.105.243.145 user=root	2019-10-09 19:31:42
157.230.168.4	attackbots	Aug 15 07:47:09 server sshd\[50211\]: Invalid user ubuntu from 157.230.168.4 Aug 15 07:47:09 server sshd\[50211\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.168.4 Aug 15 07:47:11 server sshd\[50211\]: Failed password for invalid user ubuntu from 157.230.168.4 port 36002 ssh2 ...	2019-10-09 19:06:34
155.230.14.92	attackspambots	May 23 08:47:30 server sshd\[124979\]: Invalid user houx from 155.230.14.92 May 23 08:47:30 server sshd\[124979\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=155.230.14.92 May 23 08:47:32 server sshd\[124979\]: Failed password for invalid user houx from 155.230.14.92 port 53194 ssh2 ...	2019-10-09 19:38:24
157.230.117.168	attack	Apr 9 16:17:19 server sshd\[35276\]: Invalid user zabbix from 157.230.117.168 Apr 9 16:17:19 server sshd\[35276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.117.168 Apr 9 16:17:20 server sshd\[35276\]: Failed password for invalid user zabbix from 157.230.117.168 port 53148 ssh2 Apr 9 16:17:19 server sshd\[35276\]: Invalid user zabbix from 157.230.117.168 Apr 9 16:17:19 server sshd\[35276\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.117.168 Apr 9 16:17:20 server sshd\[35276\]: Failed password for invalid user zabbix from 157.230.117.168 port 53148 ssh2 ...	2019-10-09 19:12:19

Recently Reported IPs

211.230.225.118	190.199.77.135	126.197.240.196	178.65.101.221
119.135.247.46	212.119.235.20	109.11.44.12	82.84.93.11
174.211.237.56	106.23.117.60	153.226.200.122	165.112.167.118
84.137.255.220	82.77.203.162	42.178.20.41	39.32.212.242
74.171.201.52	122.115.71.220	209.25.203.35	107.28.204.115