City: Goiânia
Region: Goias
Country: Brazil
Internet Service Provider: unknown
Hostname: unknown
Organization: unknown
Usage Type: unknown
b; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.163.68.68
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 51947
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0
;; QUESTION SECTION:
;200.163.68.68. IN A
;; AUTHORITY SECTION:
. 29 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2025021301 1800 900 604800 86400
;; Query time: 165 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 14 12:12:26 CST 2025
;; MSG SIZE rcvd: 10668.68.163.200.in-addr.arpa domain name pointer 200-163-68-68.gnace300.ipd.brasiltelecom.net.br.Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
68.68.163.200.in-addr.arpa name = 200-163-68-68.gnace300.ipd.brasiltelecom.net.br.
Authoritative answers can be found from:| IP | Type | Details | Datetime |
|---|---|---|---|
| 77.55.236.104 | attack | Dec 10 03:53:37 plusreed sshd[6972]: Invalid user jet from 77.55.236.104 ... |
2019-12-10 20:59:57 |
| 165.227.69.39 | attack | Dec 10 12:48:40 tux-35-217 sshd\[8040\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.69.39 user=root Dec 10 12:48:43 tux-35-217 sshd\[8040\]: Failed password for root from 165.227.69.39 port 56297 ssh2 Dec 10 12:54:15 tux-35-217 sshd\[8105\]: Invalid user kocsis from 165.227.69.39 port 59893 Dec 10 12:54:15 tux-35-217 sshd\[8105\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.69.39 ... |
2019-12-10 20:46:00 |
| 112.85.42.189 | attack | 10.12.2019 12:46:29 SSH access blocked by firewall |
2019-12-10 20:54:09 |
| 193.70.36.161 | attackbots | $f2bV_matches |
2019-12-10 20:27:46 |
| 141.98.80.128 | attack | Dec 10 12:02:27 mc1 kernel: \[134588.902548\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=141.98.80.128 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=35728 DF PROTO=TCP SPT=36392 DPT=1723 WINDOW=29200 RES=0x00 SYN URGP=0 Dec 10 12:02:28 mc1 kernel: \[134589.911099\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=141.98.80.128 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=35729 DF PROTO=TCP SPT=36392 DPT=1723 WINDOW=29200 RES=0x00 SYN URGP=0 Dec 10 12:02:31 mc1 kernel: \[134592.438819\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=141.98.80.128 DST=159.69.205.51 LEN=60 TOS=0x00 PREC=0x00 TTL=55 ID=35731 DF PROTO=TCP SPT=36392 DPT=1723 WINDOW=29200 RES=0x00 SYN URGP=0 ... |
2019-12-10 20:19:12 |
| 189.169.133.55 | attack | Dec 10 04:45:48 reporting sshd[22767]: reveeclipse mapping checking getaddrinfo for dsl-189-169-133-55-dyn.prod-infinhostnameum.com.mx [189.169.133.55] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 10 04:45:48 reporting sshd[22767]: Invalid user pi from 189.169.133.55 Dec 10 04:45:48 reporting sshd[22767]: Failed none for invalid user pi from 189.169.133.55 port 37330 ssh2 Dec 10 04:45:48 reporting sshd[22767]: Failed password for invalid user pi from 189.169.133.55 port 37330 ssh2 Dec 10 04:45:50 reporting sshd[22769]: reveeclipse mapping checking getaddrinfo for dsl-189-169-133-55-dyn.prod-infinhostnameum.com.mx [189.169.133.55] failed - POSSIBLE BREAK-IN ATTEMPT! Dec 10 04:45:50 reporting sshd[22769]: Invalid user pi from 189.169.133.55 Dec 10 04:45:50 reporting sshd[22769]: Failed none for invalid user pi from 189.169.133.55 port 37332 ssh2 Dec 10 04:45:50 reporting sshd[22769]: Failed password for invalid user pi from 189.169.133.55 port 37332 ssh2 ........ ----------------------------------------------- htt |
2019-12-10 20:29:51 |
| 187.44.106.12 | attack | Dec 10 13:29:35 MK-Soft-VM5 sshd[2354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.44.106.12 Dec 10 13:29:37 MK-Soft-VM5 sshd[2354]: Failed password for invalid user amouzgar from 187.44.106.12 port 48148 ssh2 ... |
2019-12-10 20:36:01 |
| 178.128.72.80 | attackspambots | Dec 9 23:21:02 hanapaa sshd\[686\]: Invalid user vighneswar from 178.128.72.80 Dec 9 23:21:02 hanapaa sshd\[686\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.72.80 Dec 9 23:21:05 hanapaa sshd\[686\]: Failed password for invalid user vighneswar from 178.128.72.80 port 56818 ssh2 Dec 9 23:26:45 hanapaa sshd\[1344\]: Invalid user kimmerle from 178.128.72.80 Dec 9 23:26:45 hanapaa sshd\[1344\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.72.80 |
2019-12-10 20:19:43 |
| 132.232.182.190 | attackspam | Dec 10 12:52:41 server sshd\[27933\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.182.190 user=root Dec 10 12:52:43 server sshd\[27933\]: Failed password for root from 132.232.182.190 port 40638 ssh2 Dec 10 13:03:08 server sshd\[30975\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.182.190 user=root Dec 10 13:03:10 server sshd\[30975\]: Failed password for root from 132.232.182.190 port 35686 ssh2 Dec 10 13:09:46 server sshd\[349\]: Invalid user plant from 132.232.182.190 Dec 10 13:09:46 server sshd\[349\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=132.232.182.190 ... |
2019-12-10 20:31:09 |
| 37.49.227.109 | attackbots | 12/10/2019-07:34:07.736814 37.49.227.109 Protocol: 17 ET CINS Active Threat Intelligence Poor Reputation IP group 33 |
2019-12-10 20:37:27 |
| 139.5.147.78 | attackbotsspam | Dec 10 11:29:48 hosting sshd[18757]: Invalid user jooran from 139.5.147.78 port 58572 ... |
2019-12-10 20:52:50 |
| 202.173.121.187 | attackspambots | firewall-block, port(s): 1433/tcp |
2019-12-10 20:50:51 |
| 188.113.174.55 | attackspam | Dec 10 15:17:48 server sshd\[4879\]: Invalid user salano from 188.113.174.55 Dec 10 15:17:48 server sshd\[4879\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.113.174.55 Dec 10 15:17:50 server sshd\[4879\]: Failed password for invalid user salano from 188.113.174.55 port 48098 ssh2 Dec 10 15:27:15 server sshd\[7481\]: Invalid user minoru from 188.113.174.55 Dec 10 15:27:15 server sshd\[7481\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.113.174.55 ... |
2019-12-10 20:30:22 |
| 95.81.78.171 | attackbotsspam | Dec 10 06:05:19 XXX sshd[7965]: User r.r from 95.81.78.171 not allowed because none of user's groups are listed in AllowGroups Dec 10 06:05:22 XXX sshd[7967]: User r.r from 95.81.78.171 not allowed because none of user's groups are listed in AllowGroups Dec 10 06:05:26 XXX sshd[7969]: User r.r from 95.81.78.171 not allowed because none of user's groups are listed in AllowGroups Dec 10 06:05:27 XXX sshd[7969]: Received disconnect from 95.81.78.171: 11: disconnected by user [preauth] Dec 10 06:05:31 XXX sshd[7973]: Invalid user admin from 95.81.78.171 Dec 10 06:05:35 XXX sshd[8137]: Invalid user admin from 95.81.78.171 Dec 10 06:05:39 XXX sshd[8139]: Invalid user admin from 95.81.78.171 Dec 10 06:05:39 XXX sshd[8139]: Received disconnect from 95.81.78.171: 11: disconnected by user [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=95.81.78.171 |
2019-12-10 20:58:43 |
| 106.12.120.155 | attackspam | 2019-12-10T12:51:08.615311scmdmz1 sshd\[8068\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.120.155 user=root 2019-12-10T12:51:10.429674scmdmz1 sshd\[8068\]: Failed password for root from 106.12.120.155 port 33034 ssh2 2019-12-10T12:58:11.533272scmdmz1 sshd\[8353\]: Invalid user renette from 106.12.120.155 port 38484 ... |
2019-12-10 20:34:25 |