138.121.95.145

Basic Info

City: Correia Pinto

Region: Santa Catarina

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.121.95.197	attack	Oct 3 22:03:58 mail.srvfarm.net postfix/smtpd[656172]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed: Oct 3 22:03:59 mail.srvfarm.net postfix/smtpd[656172]: lost connection after AUTH from 197-95-121-138.ebertinformatica.com.br[138.121.95.197] Oct 3 22:06:14 mail.srvfarm.net postfix/smtps/smtpd[658135]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed: Oct 3 22:06:14 mail.srvfarm.net postfix/smtps/smtpd[658135]: lost connection after AUTH from 197-95-121-138.ebertinformatica.com.br[138.121.95.197] Oct 3 22:13:43 mail.srvfarm.net postfix/smtpd[656144]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed:	2020-10-05 05:31:37
138.121.95.197	attack	Oct 3 22:03:58 mail.srvfarm.net postfix/smtpd[656172]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed: Oct 3 22:03:59 mail.srvfarm.net postfix/smtpd[656172]: lost connection after AUTH from 197-95-121-138.ebertinformatica.com.br[138.121.95.197] Oct 3 22:06:14 mail.srvfarm.net postfix/smtps/smtpd[658135]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed: Oct 3 22:06:14 mail.srvfarm.net postfix/smtps/smtpd[658135]: lost connection after AUTH from 197-95-121-138.ebertinformatica.com.br[138.121.95.197] Oct 3 22:13:43 mail.srvfarm.net postfix/smtpd[656144]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed:	2020-10-04 21:26:35
138.121.95.197	attack	Oct 3 22:03:58 mail.srvfarm.net postfix/smtpd[656172]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed: Oct 3 22:03:59 mail.srvfarm.net postfix/smtpd[656172]: lost connection after AUTH from 197-95-121-138.ebertinformatica.com.br[138.121.95.197] Oct 3 22:06:14 mail.srvfarm.net postfix/smtps/smtpd[658135]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed: Oct 3 22:06:14 mail.srvfarm.net postfix/smtps/smtpd[658135]: lost connection after AUTH from 197-95-121-138.ebertinformatica.com.br[138.121.95.197] Oct 3 22:13:43 mail.srvfarm.net postfix/smtpd[656144]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed:	2020-10-04 13:14:07
138.121.95.128	attackbots	Jul 30 05:01:09 mail.srvfarm.net postfix/smtps/smtpd[3683589]: warning: 128-95-121-138.ebertinformatica.com.br[138.121.95.128]: SASL PLAIN authentication failed: Jul 30 05:01:09 mail.srvfarm.net postfix/smtps/smtpd[3683589]: lost connection after AUTH from 128-95-121-138.ebertinformatica.com.br[138.121.95.128] Jul 30 05:05:19 mail.srvfarm.net postfix/smtps/smtpd[3699919]: warning: 128-95-121-138.ebertinformatica.com.br[138.121.95.128]: SASL PLAIN authentication failed: Jul 30 05:05:19 mail.srvfarm.net postfix/smtps/smtpd[3699919]: lost connection after AUTH from 128-95-121-138.ebertinformatica.com.br[138.121.95.128] Jul 30 05:08:44 mail.srvfarm.net postfix/smtpd[3700158]: warning: 128-95-121-138.ebertinformatica.com.br[138.121.95.128]: SASL PLAIN authentication failed:	2020-07-30 18:13:16
138.121.95.197	attack	Jul 18 05:26:59 mail.srvfarm.net postfix/smtpd[2098113]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed: Jul 18 05:26:59 mail.srvfarm.net postfix/smtpd[2098113]: lost connection after AUTH from 197-95-121-138.ebertinformatica.com.br[138.121.95.197] Jul 18 05:32:24 mail.srvfarm.net postfix/smtps/smtpd[2115385]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed: Jul 18 05:32:24 mail.srvfarm.net postfix/smtps/smtpd[2115385]: lost connection after AUTH from 197-95-121-138.ebertinformatica.com.br[138.121.95.197] Jul 18 05:34:49 mail.srvfarm.net postfix/smtps/smtpd[2115363]: warning: 197-95-121-138.ebertinformatica.com.br[138.121.95.197]: SASL PLAIN authentication failed:	2020-07-18 18:02:05

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.121.95.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 43407
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.121.95.145.			IN	A

;; AUTHORITY SECTION:
.			456	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022102800 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Oct 28 15:45:58 CST 2022
;; MSG SIZE  rcvd: 107

Host info

b'Host 145.95.121.138.in-addr.arpa not found: 2(SERVFAIL)
'

Nslookup info:

;; Got SERVFAIL reply from 183.60.83.19, trying next server
Server:		183.60.82.98
Address:	183.60.82.98#53

** server can't find 145.95.121.138.in-addr.arpa: SERVFAIL

Related IP info:

Related comments:

IP	Type	Details	Datetime
211.125.67.4	attackbotsspam	Automatic report - XMLRPC Attack	2019-11-08 07:30:10
103.7.58.17	attackbots	Automatic report - Web App Attack	2019-11-08 07:37:06
178.128.217.81	attackbots	Nov 8 01:05:29 www sshd\[169392\]: Invalid user webpop from 178.128.217.81 Nov 8 01:05:29 www sshd\[169392\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.128.217.81 Nov 8 01:05:32 www sshd\[169392\]: Failed password for invalid user webpop from 178.128.217.81 port 55756 ssh2 ...	2019-11-08 07:14:28
178.128.191.43	attackbots	IP blocked	2019-11-08 07:30:40
139.199.88.93	attack	SSH Brute Force, server-1 sshd[32715]: Failed password for root from 139.199.88.93 port 59956 ssh2	2019-11-08 07:01:58
166.62.123.55	attack	Wordpress bruteforce	2019-11-08 07:35:15
177.93.69.213	attack	SSH Brute Force, server-1 sshd[629]: Failed password for invalid user admin from 177.93.69.213 port 34263 ssh2	2019-11-08 07:00:47
190.43.228.252	attackbotsspam	Nov 7 23:31:23 mxgate1 postfix/postscreen[18195]: CONNECT from [190.43.228.252]:28242 to [176.31.12.44]:25 Nov 7 23:31:23 mxgate1 postfix/dnsblog[18198]: addr 190.43.228.252 listed by domain cbl.abuseat.org as 127.0.0.2 Nov 7 23:31:23 mxgate1 postfix/dnsblog[18196]: addr 190.43.228.252 listed by domain zen.spamhaus.org as 127.0.0.4 Nov 7 23:31:23 mxgate1 postfix/dnsblog[18196]: addr 190.43.228.252 listed by domain zen.spamhaus.org as 127.0.0.3 Nov 7 23:31:23 mxgate1 postfix/dnsblog[18196]: addr 190.43.228.252 listed by domain zen.spamhaus.org as 127.0.0.11 Nov 7 23:31:23 mxgate1 postfix/dnsblog[18197]: addr 190.43.228.252 listed by domain bl.spamcop.net as 127.0.0.2 Nov 7 23:31:23 mxgate1 postfix/dnsblog[18200]: addr 190.43.228.252 listed by domain ix.dnsbl.xxxxxx.net as 127.0.0.2 Nov 7 23:31:24 mxgate1 postfix/dnsblog[18199]: addr 190.43.228.252 listed by domain b.barracudacentral.org as 127.0.0.2 Nov 7 23:31:29 mxgate1 postfix/postscreen[18195]: DNSBL rank 6 ........ -------------------------------	2019-11-08 07:14:14
159.89.48.128	attack	23/tcp [2019-11-07]1pkt	2019-11-08 07:26:27
92.136.197.83	attackspambots	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/92.136.197.83/ FR - 1H : (45) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : FR NAME ASN : ASN3215 IP : 92.136.197.83 CIDR : 92.136.0.0/16 PREFIX COUNT : 1458 UNIQUE IP COUNT : 20128512 ATTACKS DETECTED ASN3215 : 1H - 1 3H - 1 6H - 5 12H - 7 24H - 17 DateTime : 2019-11-07 23:43:16 INFO : Server 403 - Looking for resource vulnerabilities Detected and Blocked by ADMIN - data recovery	2019-11-08 07:37:34
61.227.33.142	attack	port 23 attempt blocked	2019-11-08 07:20:50
61.223.139.181	attackbots	port 23 attempt blocked	2019-11-08 07:31:38
120.92.90.100	attack	Bruteforcing port 3389 (Remote Desktop) - Exceed maximum 10 attempts/hour	2019-11-08 07:36:32
106.51.80.198	attackspambots	Nov 7 12:51:46 wbs sshd\[5799\]: Invalid user anakunyada from 106.51.80.198 Nov 7 12:51:46 wbs sshd\[5799\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.80.198 Nov 7 12:51:48 wbs sshd\[5799\]: Failed password for invalid user anakunyada from 106.51.80.198 port 42162 ssh2 Nov 7 12:55:42 wbs sshd\[6118\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.80.198 user=root Nov 7 12:55:44 wbs sshd\[6118\]: Failed password for root from 106.51.80.198 port 50440 ssh2	2019-11-08 07:04:50
60.191.32.71	attackspam	SSH Brute Force, server-1 sshd[31179]: Failed password for invalid user backup@network from 60.191.32.71 port 7689 ssh2	2019-11-08 07:06:09

Recently Reported IPs

225.134.232.8	226.165.110.225	244.31.4.53	55.0.115.7
114.130.218.236	212.8.44.138	103.206.155.175	143.151.134.108
90.202.38.95	193.164.114.34	117.83.1.100	97.223.4.194
106.212.244.80	223.142.169.175	13.50.241.245	94.76.177.1
6.131.70.20	184.44.93.230	169.116.44.54	61.67.139.41