131.196.94.34 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
131.196.94.196	attackbotsspam	failed_logins	2020-09-16 19:35:25
131.196.94.226	attack	Brute force attempt	2020-09-01 04:18:32
131.196.94.71	attackspam	failed_logins	2020-08-30 21:09:46
131.196.94.152	attackspam	(smtpauth) Failed SMTP AUTH login from 131.196.94.152 (BR/Brazil/static-131-196-94-152.globaltelecombr.com.br): 1 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_TRIGGER; Logs: 2020-08-29 16:33:51 plain authenticator failed for ([131.196.94.152]) [131.196.94.152]: 535 Incorrect authentication data (set_id=info@fmc-co.com)	2020-08-30 03:31:17
131.196.94.45	attackbotsspam	Jul 24 13:13:48 mail.srvfarm.net postfix/smtps/smtpd[2242306]: warning: unknown[131.196.94.45]: SASL PLAIN authentication failed: Jul 24 13:13:48 mail.srvfarm.net postfix/smtps/smtpd[2242306]: lost connection after AUTH from unknown[131.196.94.45] Jul 24 13:16:02 mail.srvfarm.net postfix/smtps/smtpd[2256931]: warning: unknown[131.196.94.45]: SASL PLAIN authentication failed: Jul 24 13:16:02 mail.srvfarm.net postfix/smtps/smtpd[2256931]: lost connection after AUTH from unknown[131.196.94.45] Jul 24 13:23:41 mail.srvfarm.net postfix/smtpd[2241871]: warning: unknown[131.196.94.45]: SASL PLAIN authentication failed:	2020-07-25 01:25:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 131.196.94.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 58763
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;131.196.94.34.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020701 1800 900 604800 86400

;; Query time: 18 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 02:21:01 CST 2022
;; MSG SIZE  rcvd: 106

Host info

34.94.196.131.in-addr.arpa domain name pointer static-131-196-94-34.globaltelecombr.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
34.94.196.131.in-addr.arpa	name = static-131-196-94-34.globaltelecombr.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
167.172.119.104	attackbotsspam	Invalid user hayden from 167.172.119.104 port 56226	2020-05-03 15:55:26
202.119.81.138	attack	May 2 03:53:33 hgb10502 sshd[18699]: Invalid user dbuser from 202.119.81.138 port 36967 May 2 03:53:34 hgb10502 sshd[18699]: Failed password for invalid user dbuser from 202.119.81.138 port 36967 ssh2 May 2 03:53:34 hgb10502 sshd[18699]: Received disconnect from 202.119.81.138 port 36967:11: Bye Bye [preauth] May 2 03:53:34 hgb10502 sshd[18699]: Disconnected from 202.119.81.138 port 36967 [preauth] May 2 04:12:14 hgb10502 sshd[20625]: Invalid user ddd from 202.119.81.138 port 43293 May 2 04:12:16 hgb10502 sshd[20625]: Failed password for invalid user ddd from 202.119.81.138 port 43293 ssh2 May 2 04:12:16 hgb10502 sshd[20625]: Received disconnect from 202.119.81.138 port 43293:11: Bye Bye [preauth] May 2 04:12:16 hgb10502 sshd[20625]: Disconnected from 202.119.81.138 port 43293 [preauth] May 2 04:16:16 hgb10502 sshd[20966]: Invalid user tomas from 202.119.81.138 port 36028 May 2 04:16:19 hgb10502 sshd[20966]: Failed password for invalid user tomas from 202.119......... -------------------------------	2020-05-03 15:42:47
122.14.195.58	attackspambots	$f2bV_matches	2020-05-03 15:58:52
149.202.206.206	attackbotsspam	May 3 05:39:17 marvibiene sshd[22639]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=149.202.206.206 user=root May 3 05:39:19 marvibiene sshd[22639]: Failed password for root from 149.202.206.206 port 54839 ssh2 May 3 05:47:05 marvibiene sshd[22670]: Invalid user pp from 149.202.206.206 port 38374 ...	2020-05-03 15:53:42
114.234.4.229	attackspambots	May 3 06:51:55 elektron postfix/smtpd\[32101\]: NOQUEUE: reject: RCPT from unknown\[114.234.4.229\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.234.4.229\]\; from=\ to=\ proto=ESMTP helo=\ May 3 06:52:42 elektron postfix/smtpd\[1965\]: NOQUEUE: reject: RCPT from unknown\[114.234.4.229\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.234.4.229\]\; from=\ to=\ proto=ESMTP helo=\ May 3 06:53:29 elektron postfix/smtpd\[32101\]: NOQUEUE: reject: RCPT from unknown\[114.234.4.229\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.234.4.229\]\; from=\ to=\ proto=ESMTP helo=\ May 3 06:54:14 elektron postfix/smtpd\[1965\]: NOQUEUE: reject: RCPT from unknown\[114.234.4.229\]: 450 4.7.1 Client host rejected: cannot find your hostname, \[114.234.4.229\]\; from=\ to=\ proto=ESMTP helo=\	2020-05-03 15:39:28
188.166.5.84	attackbotsspam	May 3 07:19:51 PorscheCustomer sshd[30858]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.5.84 May 3 07:19:53 PorscheCustomer sshd[30858]: Failed password for invalid user test from 188.166.5.84 port 38192 ssh2 May 3 07:28:48 PorscheCustomer sshd[31241]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.166.5.84 ...	2020-05-03 16:06:37
162.243.144.250	attack	SSH login attempts.	2020-05-03 16:11:14
51.83.66.171	attack	" "	2020-05-03 15:48:34
129.226.67.136	attack	2020-05-03T04:27:19.591326shield sshd\[19898\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.67.136 user=root 2020-05-03T04:27:21.911100shield sshd\[19898\]: Failed password for root from 129.226.67.136 port 35712 ssh2 2020-05-03T04:28:47.167496shield sshd\[20086\]: Invalid user sftpuser from 129.226.67.136 port 55610 2020-05-03T04:28:47.171233shield sshd\[20086\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.226.67.136 2020-05-03T04:28:49.239840shield sshd\[20086\]: Failed password for invalid user sftpuser from 129.226.67.136 port 55610 ssh2	2020-05-03 15:55:53
124.165.247.42	attack	Automatic report - Banned IP Access	2020-05-03 16:02:42
51.83.104.120	attackspambots	Invalid user share from 51.83.104.120 port 60826	2020-05-03 16:01:31
217.182.68.93	attackspambots	<6 unauthorized SSH connections	2020-05-03 15:44:42
106.13.54.106	attack	May 3 08:00:56 PorscheCustomer sshd[32528]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.54.106 May 3 08:00:59 PorscheCustomer sshd[32528]: Failed password for invalid user gpr from 106.13.54.106 port 1456 ssh2 May 3 08:10:15 PorscheCustomer sshd[426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.54.106 ...	2020-05-03 15:39:03
78.31.79.71	attack	Unauthorized connection attempt detected from IP address 78.31.79.71 to port 23	2020-05-03 15:54:54
192.144.154.209	attackbots	ssh brute force	2020-05-03 16:01:10

Recently Reported IPs

189.208.61.150	201.219.194.187	202.124.225.248	185.16.137.17
110.77.193.87	122.193.124.82	5.34.215.11	170.254.73.182
117.251.31.133	54.245.52.125	36.90.12.30	202.29.93.209
196.157.6.112	45.11.6.14	78.161.176.201	222.209.26.184
200.5.117.28	138.128.59.206	95.132.60.56	91.224.254.242