138.122.152.219

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Webgenesys Informatica Ltda

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	2020-01-01T14:39:47.411919abusebot-3.cloudsearch.cf sshd[20707]: Invalid user app-admin from 138.122.152.219 port 38904 2020-01-01T14:39:47.418697abusebot-3.cloudsearch.cf sshd[20707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=customer-138-122-152-219.newoeste.com.br 2020-01-01T14:39:47.411919abusebot-3.cloudsearch.cf sshd[20707]: Invalid user app-admin from 138.122.152.219 port 38904 2020-01-01T14:39:49.132191abusebot-3.cloudsearch.cf sshd[20707]: Failed password for invalid user app-admin from 138.122.152.219 port 38904 ssh2 2020-01-01T14:41:43.464488abusebot-3.cloudsearch.cf sshd[20804]: Invalid user appadmin from 138.122.152.219 port 48732 2020-01-01T14:41:43.469942abusebot-3.cloudsearch.cf sshd[20804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=customer-138-122-152-219.newoeste.com.br 2020-01-01T14:41:43.464488abusebot-3.cloudsearch.cf sshd[20804]: Invalid user appadmin from 138.122.152.219 ...	2020-01-02 05:58:44

Type

Details

Datetime

attack

2020-01-01T14:39:47.411919abusebot-3.cloudsearch.cf sshd[20707]: Invalid user app-admin from 138.122.152.219 port 38904
2020-01-01T14:39:47.418697abusebot-3.cloudsearch.cf sshd[20707]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=customer-138-122-152-219.newoeste.com.br
2020-01-01T14:39:47.411919abusebot-3.cloudsearch.cf sshd[20707]: Invalid user app-admin from 138.122.152.219 port 38904
2020-01-01T14:39:49.132191abusebot-3.cloudsearch.cf sshd[20707]: Failed password for invalid user app-admin from 138.122.152.219 port 38904 ssh2
2020-01-01T14:41:43.464488abusebot-3.cloudsearch.cf sshd[20804]: Invalid user appadmin from 138.122.152.219 port 48732
2020-01-01T14:41:43.469942abusebot-3.cloudsearch.cf sshd[20804]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=customer-138-122-152-219.newoeste.com.br
2020-01-01T14:41:43.464488abusebot-3.cloudsearch.cf sshd[20804]: Invalid user appadmin from 138.122.152.219 
...

2020-01-02 05:58:44

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.122.152.219
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37814
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.122.152.219.		IN	A

;; AUTHORITY SECTION:
.			590	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020010102 1800 900 604800 86400

;; Query time: 506 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jan 02 05:58:42 CST 2020
;; MSG SIZE  rcvd: 119

Host info

219.152.122.138.in-addr.arpa domain name pointer customer-138-122-152-219.newoeste.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
219.152.122.138.in-addr.arpa	name = customer-138-122-152-219.newoeste.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
35.201.171.166	attackspambots	Nov 5 15:07:49 unicornsoft sshd\[18226\]: Invalid user test6 from 35.201.171.166 Nov 5 15:07:49 unicornsoft sshd\[18226\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.201.171.166 Nov 5 15:07:51 unicornsoft sshd\[18226\]: Failed password for invalid user test6 from 35.201.171.166 port 46108 ssh2	2019-11-05 23:22:52
192.188.2.235	attackbotsspam	1433	2019-11-06 00:01:02
190.85.234.215	attack	Nov 5 20:37:38 gw1 sshd[30629]: Failed password for root from 190.85.234.215 port 33738 ssh2 Nov 5 20:41:58 gw1 sshd[30810]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=190.85.234.215 ...	2019-11-05 23:56:46
157.245.166.183	attack	WordPress login Brute force / Web App Attack on client site.	2019-11-05 23:47:22
146.185.25.183	attackbotsspam	DNS Enumeration	2019-11-05 23:32:11
200.222.110.36	attack	2019-11-05T15:33:26.852628shield sshd\[4605\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.222.110.36 user=root 2019-11-05T15:33:28.875707shield sshd\[4605\]: Failed password for root from 200.222.110.36 port 45422 ssh2 2019-11-05T15:38:29.164666shield sshd\[5003\]: Invalid user loring from 200.222.110.36 port 55854 2019-11-05T15:38:29.168824shield sshd\[5003\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.222.110.36 2019-11-05T15:38:30.790083shield sshd\[5003\]: Failed password for invalid user loring from 200.222.110.36 port 55854 ssh2	2019-11-05 23:51:29
106.54.113.118	attackspambots	SSH Brute Force, server-1 sshd[12569]: Failed password for invalid user wangxiufang from 106.54.113.118 port 46970 ssh2	2019-11-05 23:26:29
51.15.190.180	attack	2019-11-05T15:12:11.892920shield sshd\[1531\]: Invalid user monkey from 51.15.190.180 port 52506 2019-11-05T15:12:11.898799shield sshd\[1531\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.190.180 2019-11-05T15:12:13.555338shield sshd\[1531\]: Failed password for invalid user monkey from 51.15.190.180 port 52506 ssh2 2019-11-05T15:18:17.030453shield sshd\[2429\]: Invalid user hellhole from 51.15.190.180 port 34288 2019-11-05T15:18:17.037499shield sshd\[2429\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.190.180	2019-11-05 23:31:52
213.32.18.189	attack	Nov 5 16:08:29 localhost sshd\[16760\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.32.18.189 user=root Nov 5 16:08:31 localhost sshd\[16760\]: Failed password for root from 213.32.18.189 port 50136 ssh2 Nov 5 16:12:09 localhost sshd\[17147\]: Invalid user az from 213.32.18.189 port 59256	2019-11-05 23:30:34
118.126.64.217	attackbots	2019-11-05T15:18:36.725457abusebot-2.cloudsearch.cf sshd\[26513\]: Invalid user ecc from 118.126.64.217 port 60172	2019-11-05 23:24:42
198.108.67.134	attack	firewall-block, port(s): 11211/tcp	2019-11-06 00:02:52
185.140.248.55	attack	Portscan or hack attempt detected by psad/fwsnort	2019-11-05 23:50:24
37.57.103.177	attackspam	2019-11-05T15:46:37.731247shield sshd\[5693\]: Invalid user wubao from 37.57.103.177 port 53572 2019-11-05T15:46:37.739481shield sshd\[5693\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.57.103.177 2019-11-05T15:46:40.022941shield sshd\[5693\]: Failed password for invalid user wubao from 37.57.103.177 port 53572 ssh2 2019-11-05T15:51:03.799544shield sshd\[6125\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.57.103.177 user=root 2019-11-05T15:51:05.265188shield sshd\[6125\]: Failed password for root from 37.57.103.177 port 37194 ssh2	2019-11-05 23:57:31
112.85.42.237	attack	SSH Brute Force, server-1 sshd[12565]: Failed password for root from 112.85.42.237 port 55432 ssh2	2019-11-05 23:26:01
176.84.194.169	attackbots	ENG,WP GET /wp-login.php	2019-11-05 23:58:25

Recently Reported IPs

60.138.242.193	191.216.202.10	188.225.127.153	79.96.74.252
2.183.81.138	196.205.15.169	94.174.104.78	17.195.50.126
136.5.152.107	155.253.14.38	99.29.146.59	188.214.219.64
220.195.234.68	97.119.1.219	197.210.85.141	46.173.6.46
45.32.118.90	18.208.228.198	94.79.55.78	45.43.50.196