212.164.219.160

Basic Info

City: unknown

Region: unknown

Country: Russian Federation

Internet Service Provider: OJSC Sibirtelecom

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Oct 15 08:25:15 vmanager6029 sshd\[887\]: Invalid user qq from 212.164.219.160 port 50048 Oct 15 08:25:15 vmanager6029 sshd\[887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.219.160 Oct 15 08:25:16 vmanager6029 sshd\[887\]: Failed password for invalid user qq from 212.164.219.160 port 50048 ssh2	2019-10-15 16:36:28
attack	2019-10-07T04:51:30.091802abusebot-8.cloudsearch.cf sshd\[12397\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.219.160 user=root	2019-10-07 19:47:20
attackspambots	2019-10-06T19:53:16.817212abusebot-8.cloudsearch.cf sshd\[10302\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.219.160 user=root	2019-10-07 04:27:12
attackspam	Sep 25 12:05:39 xtremcommunity sshd\[463618\]: Invalid user ubnt from 212.164.219.160 port 59640 Sep 25 12:05:39 xtremcommunity sshd\[463618\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.219.160 Sep 25 12:05:41 xtremcommunity sshd\[463618\]: Failed password for invalid user ubnt from 212.164.219.160 port 59640 ssh2 Sep 25 12:12:20 xtremcommunity sshd\[463747\]: Invalid user ux from 212.164.219.160 port 35046 Sep 25 12:12:20 xtremcommunity sshd\[463747\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.219.160 ...	2019-09-26 00:20:48
attack	Automatic report - Banned IP Access	2019-09-16 04:29:32
attackspambots	$f2bV_matches	2019-09-15 13:45:05
attack	Sep 13 23:23:12 rpi sshd[14754]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.219.160 Sep 13 23:23:14 rpi sshd[14754]: Failed password for invalid user redmine from 212.164.219.160 port 56866 ssh2	2019-09-14 05:39:35
attackbots	Sep 8 10:47:53 hiderm sshd\[25676\]: Invalid user tomcat from 212.164.219.160 Sep 8 10:47:53 hiderm sshd\[25676\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.219.160 Sep 8 10:47:55 hiderm sshd\[25676\]: Failed password for invalid user tomcat from 212.164.219.160 port 43300 ssh2 Sep 8 10:56:05 hiderm sshd\[26337\]: Invalid user minecraft from 212.164.219.160 Sep 8 10:56:05 hiderm sshd\[26337\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.219.160	2019-09-09 05:33:12
attack	Aug 11 21:22:10 www sshd\[26101\]: Invalid user forest from 212.164.219.160 Aug 11 21:22:10 www sshd\[26101\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.219.160 Aug 11 21:22:12 www sshd\[26101\]: Failed password for invalid user forest from 212.164.219.160 port 52508 ssh2 ...	2019-08-12 09:52:53
attackbots	Aug 10 10:44:20 debian sshd\[31390\]: Invalid user oracle from 212.164.219.160 port 39058 Aug 10 10:44:20 debian sshd\[31390\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.164.219.160 ...	2019-08-10 17:51:19

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 212.164.219.160
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52101
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;212.164.219.160.		IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019081000 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sat Aug 10 17:51:10 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 160.219.164.212.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

** server can't find 160.219.164.212.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
171.90.230.75	attackspambots	FTP/21 MH Probe, BF, Hack -	2019-12-26 22:12:12
124.228.156.0	attackspambots	Scanning	2019-12-26 21:46:31
124.228.29.141	attack	Telnet/23 MH Probe, BF, Hack -	2019-12-26 22:17:43
43.242.245.82	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 26-12-2019 06:20:10.	2019-12-26 21:49:32
196.218.124.58	attackspam	Telnet/23 MH Probe, BF, Hack -	2019-12-26 22:05:42
112.85.42.237	attackspambots	SSH Brute Force, server-1 sshd[21867]: message repeated 2 times: [ Failed password for root from 112.85.42.237 port 57267 ssh2]	2019-12-26 21:44:41
142.93.208.92	attackbotsspam	Dec 26 07:18:41 mail sshd\[2145\]: Invalid user ftpuser from 142.93.208.92 Dec 26 07:18:53 mail sshd\[2149\]: Invalid user git from 142.93.208.92 Dec 26 07:19:06 mail sshd\[2166\]: Invalid user oracle from 142.93.208.92 Dec 26 07:19:33 mail sshd\[2172\]: Invalid user ftpuser from 142.93.208.92 Dec 26 07:19:47 mail sshd\[2175\]: Invalid user oracle from 142.93.208.92 ...	2019-12-26 22:06:43
128.199.247.115	attackbotsspam	Dec 26 09:29:06 minden010 sshd[4991]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.247.115 Dec 26 09:29:08 minden010 sshd[4991]: Failed password for invalid user yumi from 128.199.247.115 port 40154 ssh2 Dec 26 09:32:12 minden010 sshd[6035]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=128.199.247.115 ...	2019-12-26 21:53:32
144.217.193.111	attack	Dec 26 07:19:33 h2177944 kernel: \[539904.272093\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=144.217.193.111 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=114 ID=2229 DF PROTO=TCP SPT=53087 DPT=8888 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 26 07:19:33 h2177944 kernel: \[539904.272107\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=144.217.193.111 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=114 ID=2229 DF PROTO=TCP SPT=53087 DPT=8888 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 26 07:19:33 h2177944 kernel: \[539904.272552\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=144.217.193.111 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=113 ID=2228 DF PROTO=TCP SPT=53086 DPT=81 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 26 07:19:33 h2177944 kernel: \[539904.272565\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=144.217.193.111 DST=85.214.117.9 LEN=52 TOS=0x00 PREC=0x00 TTL=113 ID=2228 DF PROTO=TCP SPT=53086 DPT=81 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 26 07:19:33 h2177944 kernel: \[539904.273287\] \[UFW BLOCK\] IN=venet0 OUT= MAC= SRC=144.217.193.111 DST=85.	2019-12-26 22:20:47
139.59.92.2	attackspam	fail2ban honeypot	2019-12-26 22:07:40
185.209.0.51	attackbots	12/26/2019-08:27:01.337420 185.209.0.51 Protocol: 6 ET DROP Dshield Block Listed Source group 1	2019-12-26 21:39:25
123.20.81.122	attackbotsspam	This IP Address sent many spam to marketing@bit.co.id mhamdanrifai@gmail.com is administrator	2019-12-26 22:01:12
49.212.150.199	attackbots	5x Failed Password	2019-12-26 22:08:45
122.228.19.79	attackspam	122.228.19.79 was recorded 21 times by 5 hosts attempting to connect to the following ports: 1025,41794,9981,20476,81,8649,8006,79,7443,9295,8123,9876,64738,5560,444,5632,1026,27017,18245,10001,9151. Incident counter (4h, 24h, all-time): 21, 102, 7364	2019-12-26 22:01:41
118.24.143.233	attackspam	Dec 26 07:16:57 legacy sshd[4620]: Failed password for daemon from 118.24.143.233 port 53503 ssh2 Dec 26 07:20:20 legacy sshd[4745]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.143.233 Dec 26 07:20:22 legacy sshd[4745]: Failed password for invalid user informix from 118.24.143.233 port 34814 ssh2 ...	2019-12-26 21:42:53

Recently Reported IPs

36.236.140.137	177.8.255.162	106.32.220.5	81.211.18.114
61.34.77.155	194.28.115.251	45.195.202.204	74.44.75.19
191.53.198.66	107.25.6.146	244.195.224.127	187.134.253.233
66.59.217.39	187.87.4.61	39.255.113.215	237.207.115.50
126.244.25.23	78.64.10.132	120.173.193.115	9.191.240.37