138.0.74.40 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.0.74.40
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 14531
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.0.74.40.			IN	A

;; AUTHORITY SECTION:
.			206	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 59 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:17:22 CST 2022
;; MSG SIZE  rcvd: 104

Host info

40.74.0.138.in-addr.arpa domain name pointer 138-0-74-40.ultrafibra.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
40.74.0.138.in-addr.arpa	name = 138-0-74-40.ultrafibra.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
85.209.0.253	attack	Jul 28 14:16:31 host sshd\[24922\]: User user from 85.209.0.253 not allowed because none of user's groups are listed in AllowGroups	2020-07-28 20:17:34
212.83.132.45	attackbots	[2020-07-28 08:29:59] NOTICE[1248] chan_sip.c: Registration from '"752"' failed for '212.83.132.45:9073' - Wrong password [2020-07-28 08:29:59] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-28T08:29:59.251-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="752",SessionID="0x7f2720091a88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132.45/9073",Challenge="7b6ef2ee",ReceivedChallenge="7b6ef2ee",ReceivedHash="854259912c3cda4104a1b5fc05bac261" [2020-07-28 08:31:18] NOTICE[1248] chan_sip.c: Registration from '"750"' failed for '212.83.132.45:8971' - Wrong password [2020-07-28 08:31:18] SECURITY[1275] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-07-28T08:31:18.357-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="750",SessionID="0x7f2720091a88",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/212.83.132 ...	2020-07-28 20:36:00
221.216.205.122	attackspam	Jul 28 14:00:44 srv-ubuntu-dev3 sshd[111564]: Invalid user student3 from 221.216.205.122 Jul 28 14:00:44 srv-ubuntu-dev3 sshd[111564]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.216.205.122 Jul 28 14:00:44 srv-ubuntu-dev3 sshd[111564]: Invalid user student3 from 221.216.205.122 Jul 28 14:00:46 srv-ubuntu-dev3 sshd[111564]: Failed password for invalid user student3 from 221.216.205.122 port 7845 ssh2 Jul 28 14:04:30 srv-ubuntu-dev3 sshd[112001]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.216.205.122 user=root Jul 28 14:04:32 srv-ubuntu-dev3 sshd[112001]: Failed password for root from 221.216.205.122 port 51050 ssh2 Jul 28 14:08:11 srv-ubuntu-dev3 sshd[112445]: Invalid user xiaobin from 221.216.205.122 Jul 28 14:08:11 srv-ubuntu-dev3 sshd[112445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.216.205.122 Jul 28 14:08:11 srv-ubuntu-dev3 sshd[1124 ...	2020-07-28 20:18:46
178.32.27.177	attackspam	178.32.27.177 - - [28/Jul/2020:13:08:00 +0100] "POST /wp-login.php HTTP/1.1" 200 2081 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.32.27.177 - - [28/Jul/2020:13:08:01 +0100] "POST /wp-login.php HTTP/1.1" 200 2059 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 178.32.27.177 - - [28/Jul/2020:13:08:02 +0100] "POST /wp-login.php HTTP/1.1" 200 2061 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-28 20:31:19
167.114.203.73	attackspam	Jul 28 08:25:47 ny01 sshd[21538]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.203.73 Jul 28 08:25:49 ny01 sshd[21538]: Failed password for invalid user qqding from 167.114.203.73 port 47402 ssh2 Jul 28 08:29:42 ny01 sshd[22149]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.203.73	2020-07-28 20:43:55
213.212.132.47	attackspambots	213.212.132.47 - - [28/Jul/2020:13:07:45 +0100] "POST /wp-login.php HTTP/1.1" 200 1968 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 213.212.132.47 - - [28/Jul/2020:13:07:46 +0100] "POST /wp-login.php HTTP/1.1" 200 1952 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 213.212.132.47 - - [28/Jul/2020:13:07:47 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-28 20:46:26
129.204.253.6	attackspam	Jul 28 06:50:33 rudra sshd[18396]: Invalid user maxuefeng from 129.204.253.6 Jul 28 06:50:33 rudra sshd[18396]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.253.6 Jul 28 06:50:35 rudra sshd[18396]: Failed password for invalid user maxuefeng from 129.204.253.6 port 41846 ssh2 Jul 28 06:50:35 rudra sshd[18396]: Received disconnect from 129.204.253.6: 11: Bye Bye [preauth] Jul 28 06:55:15 rudra sshd[19392]: Invalid user lizhipeng from 129.204.253.6 Jul 28 06:55:15 rudra sshd[19392]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.253.6 Jul 28 06:55:17 rudra sshd[19392]: Failed password for invalid user lizhipeng from 129.204.253.6 port 60708 ssh2 Jul 28 06:55:17 rudra sshd[19392]: Received disconnect from 129.204.253.6: 11: Bye Bye [preauth] Jul 28 06:58:07 rudra sshd[19719]: Invalid user zlg from 129.204.253.6 Jul 28 06:58:07 rudra sshd[19719]: pam_unix(sshd:auth): authent........ -------------------------------	2020-07-28 20:13:26
182.253.119.50	attackbots	Jul 28 14:39:23 ip106 sshd[5175]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.253.119.50 Jul 28 14:39:25 ip106 sshd[5175]: Failed password for invalid user wht from 182.253.119.50 port 35630 ssh2 ...	2020-07-28 20:49:23
160.19.114.136	attackbotsspam	Port 22 Scan, PTR: PTR record not found	2020-07-28 20:47:12
87.251.74.181	attackbotsspam	07/28/2020-08:39:19.420795 87.251.74.181 Protocol: 6 ET SCAN NMAP -sS window 1024	2020-07-28 20:49:41
213.227.154.138	attackspambots	213.227.154.138 secureserver@servers.com	2020-07-28 20:40:01
204.42.253.130	attackbotsspam	Honeypot hit.	2020-07-28 20:09:11
87.75.64.106	attackbots	Brute-Force	2020-07-28 20:30:29
161.35.174.144	attack	Port 22 Scan, PTR: None	2020-07-28 20:43:40
203.98.95.116	attack	This IOC was found in a paste: https://pastebin.com/xLKF7Z5x with the title "Emotet_Doc_out_2020-07-28_11_57.txt" by paladin316 For more information, or to report interesting/incorrect findings, contact us - bot@tines.io	2020-07-28 20:27:34

Recently Reported IPs

138.0.74.234	138.0.88.197	118.174.233.3	138.0.88.228
138.0.88.242	138.0.88.251	138.0.88.253	138.0.88.254
138.0.89.110	138.0.88.245	138.0.88.246	138.0.89.132
118.174.233.31	138.0.89.134	138.0.89.136	138.0.89.140
138.0.89.142	118.174.233.33	138.0.89.154	138.0.89.160