200.93.148.19 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Colombia

Internet Service Provider: Universidad Francisco de Paula Santander

Hostname: unknown

Organization: unknown

Usage Type: University/College/School

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Jan 1 15:54:07 vps647732 sshd[16847]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.93.148.19 Jan 1 15:54:09 vps647732 sshd[16847]: Failed password for invalid user mickey from 200.93.148.19 port 46180 ssh2 ...	2020-01-01 23:20:58
attack	Dec 19 23:26:37 loxhost sshd\[31609\]: Invalid user trinity from 200.93.148.19 port 48332 Dec 19 23:26:37 loxhost sshd\[31609\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.93.148.19 Dec 19 23:26:38 loxhost sshd\[31609\]: Failed password for invalid user trinity from 200.93.148.19 port 48332 ssh2 Dec 19 23:34:51 loxhost sshd\[31961\]: Invalid user vanaken from 200.93.148.19 port 58433 Dec 19 23:34:51 loxhost sshd\[31961\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.93.148.19 ...	2019-12-20 07:46:04
attackspambots	Nov 28 09:58:06 ns382633 sshd\[28764\]: Invalid user info from 200.93.148.19 port 34224 Nov 28 09:58:06 ns382633 sshd\[28764\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.93.148.19 Nov 28 09:58:08 ns382633 sshd\[28764\]: Failed password for invalid user info from 200.93.148.19 port 34224 ssh2 Nov 28 10:26:21 ns382633 sshd\[1746\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.93.148.19 user=root Nov 28 10:26:23 ns382633 sshd\[1746\]: Failed password for root from 200.93.148.19 port 43994 ssh2	2019-11-28 20:08:25
attackspambots	Nov 17 18:11:02 andromeda sshd\[4917\]: Invalid user mengister from 200.93.148.19 port 38785 Nov 17 18:11:02 andromeda sshd\[4917\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.93.148.19 Nov 17 18:11:04 andromeda sshd\[4917\]: Failed password for invalid user mengister from 200.93.148.19 port 38785 ssh2	2019-11-18 01:28:55
attackspambots	2019-11-16T08:45:10.555614tmaserv sshd\[10322\]: Invalid user vcsa from 200.93.148.19 port 46455 2019-11-16T08:45:10.560382tmaserv sshd\[10322\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.93.148.19 2019-11-16T08:45:12.640627tmaserv sshd\[10322\]: Failed password for invalid user vcsa from 200.93.148.19 port 46455 ssh2 2019-11-16T09:17:36.710780tmaserv sshd\[12140\]: Invalid user admin from 200.93.148.19 port 37023 2019-11-16T09:17:36.715080tmaserv sshd\[12140\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.93.148.19 2019-11-16T09:17:38.951514tmaserv sshd\[12140\]: Failed password for invalid user admin from 200.93.148.19 port 37023 ssh2 ...	2019-11-16 15:54:33
attack	Nov 15 07:29:27 vmanager6029 sshd\[13713\]: Invalid user marchi from 200.93.148.19 port 43169 Nov 15 07:29:27 vmanager6029 sshd\[13713\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.93.148.19 Nov 15 07:29:29 vmanager6029 sshd\[13713\]: Failed password for invalid user marchi from 200.93.148.19 port 43169 ssh2	2019-11-15 15:43:47
attackbotsspam	frenzy	2019-11-14 03:06:18
attackbotsspam	2019-11-02T05:19:39.919851abusebot-8.cloudsearch.cf sshd\[5866\]: Invalid user test from 200.93.148.19 port 56254	2019-11-02 13:29:03
attackbots	Aug 18 04:00:24 XXX sshd[1371]: Invalid user bcampion from 200.93.148.19 port 55721	2019-08-18 20:49:35
attackbots	SSH Brute Force, server-1 sshd[31833]: Failed password for invalid user git from 200.93.148.19 port 54077 ssh2	2019-08-14 15:00:39

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 200.93.148.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 30906
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;200.93.148.19.			IN	A

;; AUTHORITY SECTION:
.			1793	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081400 1800 900 604800 86400

;; Query time: 1 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Wed Aug 14 15:00:29 CST 2019
;; MSG SIZE  rcvd: 117

Host info

19.148.93.200.in-addr.arpa domain name pointer corporativo493148-19.ufps.edu.co.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
19.148.93.200.in-addr.arpa	name = corporativo493148-19.ufps.edu.co.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
77.40.2.88	attackspambots	Chat Spam	2019-11-09 22:55:52
218.92.0.191	attackspambots	Nov 9 15:56:57 dcd-gentoo sshd[3427]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Nov 9 15:56:57 dcd-gentoo sshd[3427]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Nov 9 15:56:59 dcd-gentoo sshd[3427]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Nov 9 15:56:57 dcd-gentoo sshd[3427]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Nov 9 15:56:59 dcd-gentoo sshd[3427]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Nov 9 15:56:59 dcd-gentoo sshd[3427]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 22510 ssh2 ...	2019-11-09 23:29:10
78.57.224.143	attackspambots	port 23 attempt blocked	2019-11-09 23:06:37
199.249.230.112	attack	Automatic report - XMLRPC Attack	2019-11-09 23:11:50
112.217.225.59	attackspam	Nov 9 13:59:35 server sshd\[2861\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.225.59 user=root Nov 9 13:59:37 server sshd\[2861\]: Failed password for root from 112.217.225.59 port 55492 ssh2 Nov 9 14:19:53 server sshd\[8056\]: Invalid user akanuma from 112.217.225.59 Nov 9 14:19:53 server sshd\[8056\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.217.225.59 Nov 9 14:19:56 server sshd\[8056\]: Failed password for invalid user akanuma from 112.217.225.59 port 63702 ssh2 ...	2019-11-09 22:54:45
61.223.81.38	attackspam	port 23 attempt blocked	2019-11-09 23:21:49
117.185.62.146	attack	Nov 8 21:44:21 server sshd\[5837\]: Failed password for invalid user tsingh from 117.185.62.146 port 44266 ssh2 Nov 9 17:38:58 server sshd\[28769\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.185.62.146 user=root Nov 9 17:39:00 server sshd\[28769\]: Failed password for root from 117.185.62.146 port 57776 ssh2 Nov 9 17:57:28 server sshd\[1065\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.185.62.146 user=root Nov 9 17:57:30 server sshd\[1065\]: Failed password for root from 117.185.62.146 port 43488 ssh2 ...	2019-11-09 23:10:02
124.42.117.243	attack	2019-11-09T14:52:51.170234shield sshd\[30144\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.42.117.243 user=root 2019-11-09T14:52:53.105836shield sshd\[30144\]: Failed password for root from 124.42.117.243 port 47056 ssh2 2019-11-09T14:57:35.441579shield sshd\[30573\]: Invalid user muriel from 124.42.117.243 port 52858 2019-11-09T14:57:35.445961shield sshd\[30573\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.42.117.243 2019-11-09T14:57:37.371231shield sshd\[30573\]: Failed password for invalid user muriel from 124.42.117.243 port 52858 ssh2	2019-11-09 23:06:02
117.102.105.180	attackspam	SSH-bruteforce attempts	2019-11-09 23:34:45
45.136.110.45	attackbotsspam	Nov 9 16:02:46 mc1 kernel: \[4598055.104623\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.45 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=31009 PROTO=TCP SPT=48949 DPT=3665 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 16:03:42 mc1 kernel: \[4598110.732270\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.45 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=5415 PROTO=TCP SPT=48949 DPT=4113 WINDOW=1024 RES=0x00 SYN URGP=0 Nov 9 16:04:13 mc1 kernel: \[4598141.959527\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=45.136.110.45 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=243 ID=18438 PROTO=TCP SPT=48949 DPT=4557 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-11-09 23:25:30
148.70.23.131	attackbotsspam	2019-11-09T09:31:20.266820homeassistant sshd[9154]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.70.23.131 user=root 2019-11-09T09:31:22.552929homeassistant sshd[9154]: Failed password for root from 148.70.23.131 port 33577 ssh2 ...	2019-11-09 22:53:39
193.70.42.33	attack	Nov 9 14:57:38 venus sshd\[6808\]: Invalid user password from 193.70.42.33 port 41154 Nov 9 14:57:38 venus sshd\[6808\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=193.70.42.33 Nov 9 14:57:40 venus sshd\[6808\]: Failed password for invalid user password from 193.70.42.33 port 41154 ssh2 ...	2019-11-09 23:04:19
164.132.44.25	attackspambots	2019-11-09T14:53:34.262245shield sshd\[30210\]: Invalid user teste from 164.132.44.25 port 51572 2019-11-09T14:53:34.266775shield sshd\[30210\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=25.ip-164-132-44.eu 2019-11-09T14:53:36.113492shield sshd\[30210\]: Failed password for invalid user teste from 164.132.44.25 port 51572 ssh2 2019-11-09T14:57:31.062425shield sshd\[30571\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=25.ip-164-132-44.eu user=root 2019-11-09T14:57:33.862236shield sshd\[30571\]: Failed password for root from 164.132.44.25 port 34190 ssh2	2019-11-09 23:08:25
212.129.140.89	attackbots	Nov 4 08:42:46 new sshd[31714]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.140.89 user=r.r Nov 4 08:42:47 new sshd[31714]: Failed password for r.r from 212.129.140.89 port 45942 ssh2 Nov 4 08:42:47 new sshd[31714]: Received disconnect from 212.129.140.89: 11: Bye Bye [preauth] Nov 4 09:07:18 new sshd[5857]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.140.89 user=r.r Nov 4 09:07:20 new sshd[5857]: Failed password for r.r from 212.129.140.89 port 58356 ssh2 Nov 4 09:07:20 new sshd[5857]: Received disconnect from 212.129.140.89: 11: Bye Bye [preauth] Nov 4 09:12:15 new sshd[7273]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.129.140.89 user=r.r Nov 4 09:12:16 new sshd[7273]: Failed password for r.r from 212.129.140.89 port 50651 ssh2 Nov 4 09:12:17 new sshd[7273]: Received disconnect from 212.129.140.89: 11: Bye........ -------------------------------	2019-11-09 22:54:32
194.183.167.49	attack	Unauthorised access (Nov 9) SRC=194.183.167.49 LEN=52 TTL=122 ID=3534 DF TCP DPT=1433 WINDOW=8192 SYN	2019-11-09 23:27:00

Recently Reported IPs

171.34.114.204	167.71.175.241	151.60.77.179	229.181.53.124
171.241.53.192	156.222.252.180	176.217.80.156	201.188.92.228
179.33.24.126	141.26.205.43	107.170.227.141	125.84.107.131
91.79.100.65	46.191.252.110	154.126.184.132	70.82.54.251
51.83.40.213	149.160.234.110	94.191.40.166	207.73.106.159