201.68.219.214

Basic Info

City: São Paulo

Region: Sao Paulo

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
201.68.219.112	attack	Invalid user testuser from 201.68.219.112 port 8513	2020-09-23 01:20:00
201.68.219.112	attack	Invalid user webadmin from 201.68.219.112 port 57121	2020-09-22 17:22:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 201.68.219.214
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 16451
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;201.68.219.214.			IN	A

;; AUTHORITY SECTION:
.			557	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022042800 1800 900 604800 86400

;; Query time: 80 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Apr 28 13:23:50 CST 2022
;; MSG SIZE  rcvd: 107

Host info

214.219.68.201.in-addr.arpa domain name pointer 201-68-219-214.dsl.telesp.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
214.219.68.201.in-addr.arpa	name = 201-68-219-214.dsl.telesp.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
188.219.251.4	attack	May 14 14:27:30 163-172-32-151 sshd[22546]: Invalid user user from 188.219.251.4 port 41906 ...	2020-05-14 22:04:29
176.123.7.147	attackbotsspam	2020-05-14 07:39:42.021237-0500 localhost smtpd[22192]: NOQUEUE: reject: RCPT from unknown[176.123.7.147]: 554 5.7.1 Service unavailable; Client host [176.123.7.147] blocked using zen.spamhaus.org; https://www.spamhaus.org/sbl/query/SBLCSS / https://www.spamhaus.org/query/ip/176.123.7.147; from= to= proto=ESMTP helo=	2020-05-14 22:00:15
218.204.17.44	attackbotsspam	May 14 23:23:57 localhost sshd[364178]: Invalid user kou from 218.204.17.44 port 54176 ...	2020-05-14 22:28:43
195.136.172.22	attackbots	Automatic report - Port Scan Attack	2020-05-14 22:08:43
111.229.232.87	attack	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-05-14 21:58:29
119.29.16.190	attackbots	SSH brute force attempt	2020-05-14 22:28:24
197.156.66.178	attack	May 14 15:02:54 ns382633 sshd\[26039\]: Invalid user wp from 197.156.66.178 port 56716 May 14 15:02:54 ns382633 sshd\[26039\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.66.178 May 14 15:02:56 ns382633 sshd\[26039\]: Failed password for invalid user wp from 197.156.66.178 port 56716 ssh2 May 14 15:16:47 ns382633 sshd\[28814\]: Invalid user vagrant from 197.156.66.178 port 49748 May 14 15:16:47 ns382633 sshd\[28814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=197.156.66.178	2020-05-14 21:59:29
144.76.29.149	attackbotsspam	20 attempts against mh-misbehave-ban on storm	2020-05-14 22:07:40
116.196.82.45	attackbots	failed_logins	2020-05-14 22:14:03
45.71.100.67	attackspambots	2020-05-14T13:57:29.276469shield sshd\[30993\]: Invalid user elasticsearch from 45.71.100.67 port 53712 2020-05-14T13:57:29.374805shield sshd\[30993\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.71.100.67 2020-05-14T13:57:31.841898shield sshd\[30993\]: Failed password for invalid user elasticsearch from 45.71.100.67 port 53712 ssh2 2020-05-14T14:02:12.868111shield sshd\[32360\]: Invalid user sheila from 45.71.100.67 port 59790 2020-05-14T14:02:12.877191shield sshd\[32360\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.71.100.67	2020-05-14 22:11:53
5.9.168.114	attack	May 12 14:07:33 our-server-hostname postfix/smtpd[5840]: connect from unknown[5.9.168.114] May 12 14:07:35 our-server-hostname postfix/smtpd[5840]: NOQUEUE: reject: RCPT from unknown[5.9.168.114]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= May 12 14:07:36 our-server-hostname postfix/smtpd[5840]: lost connection after RCPT from unknown[5.9.168.114] May 12 14:07:36 our-server-hostname postfix/smtpd[5840]: disconnect from unknown[5.9.168.114] May 12 14:07:57 our-server-hostname postfix/smtpd[5634]: connect from unknown[5.9.168.114] May 12 14:07:59 our-server-hostname postfix/smtpd[5634]: NOQUEUE: reject: RCPT from unknown[5.9.168.114]: 504 5.5.2 : Helo command rejected: need fully-qualified hostname; from=x@x helo= May 12 14:08:00 our-server-hostname postfix/smtpd[5634]: lost connection after RCPT from unknown[5.9.168.114] May 12 14:08:00 our-server-hostname postfix/smtpd[5634]: disconnect from unknown[5.9.168.1........ -------------------------------	2020-05-14 22:28:00
178.17.170.100	attackbotsspam	(mod_security) mod_security (id:210492) triggered by 178.17.170.100 (MD/Republic of Moldova/178-17-170-100.static.as43289.net): 5 in the last 3600 secs	2020-05-14 22:20:27
94.23.101.187	attackspambots	2020-05-14T13:45:38.755648shield sshd\[27470\]: Invalid user deborah from 94.23.101.187 port 50242 2020-05-14T13:45:38.759917shield sshd\[27470\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip187.ip-94-23-101.eu 2020-05-14T13:45:40.951207shield sshd\[27470\]: Failed password for invalid user deborah from 94.23.101.187 port 50242 ssh2 2020-05-14T13:52:55.574000shield sshd\[29548\]: Invalid user znc from 94.23.101.187 port 37614 2020-05-14T13:52:55.583061shield sshd\[29548\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ip187.ip-94-23-101.eu	2020-05-14 22:04:44
139.59.66.101	attack	May 14 15:32:58 mout sshd[27118]: Invalid user shop from 139.59.66.101 port 47602	2020-05-14 22:15:07
168.61.176.121	attackspam	Found by fail2ban	2020-05-14 21:54:57

Recently Reported IPs

246.215.192.236	209.84.16.255	238.157.27.224	251.200.202.164
244.128.104.89	183.204.209.148	7.133.138.77	119.16.110.168
93.127.10.58	233.220.99.33	13.47.112.118	247.153.10.24
143.110.186.147	154.248.232.29	140.205.208.134	196.216.58.173
61.3.55.93	244.230.38.90	125.220.16.15	211.150.80.22