138.185.125.57

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.185.125.76	attackspambots	Unauthorized connection attempt detected from IP address 138.185.125.76 to port 8080	2020-07-08 18:47:19
138.185.125.251	attackspambots	Unauthorised access (May 2) SRC=138.185.125.251 LEN=52 TTL=112 ID=18389 DF TCP DPT=445 WINDOW=8192 SYN	2020-05-03 01:16:30

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.185.125.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 50074
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.185.125.57.			IN	A

;; AUTHORITY SECTION:
.			552	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 10:47:01 CST 2022
;; MSG SIZE  rcvd: 107

Host info

57.125.185.138.in-addr.arpa domain name pointer 57.125.185.138.jsouzanet.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
57.125.185.138.in-addr.arpa	name = 57.125.185.138.jsouzanet.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
41.45.237.128	attackbots	Telnet Honeypot -> Telnet Bruteforce / Login	2020-09-04 13:08:36
87.190.16.229	attack	Time: Fri Sep 4 04:24:59 2020 +0000 IP: 87.190.16.229 (DE/Germany/-) Failures: 5 (sshd) Interval: 3600 seconds Blocked: Permanent Block [LF_SSHD] Log entries: Sep 4 04:16:29 ca-1-ams1 sshd[12516]: Invalid user user from 87.190.16.229 port 44734 Sep 4 04:16:31 ca-1-ams1 sshd[12516]: Failed password for invalid user user from 87.190.16.229 port 44734 ssh2 Sep 4 04:21:46 ca-1-ams1 sshd[12735]: Invalid user tangyong from 87.190.16.229 port 42024 Sep 4 04:21:48 ca-1-ams1 sshd[12735]: Failed password for invalid user tangyong from 87.190.16.229 port 42024 ssh2 Sep 4 04:24:56 ca-1-ams1 sshd[12921]: Invalid user norma from 87.190.16.229 port 47254	2020-09-04 12:54:27
89.248.169.143	attack	" "	2020-09-04 12:56:24
113.72.16.195	attackspambots	Sep 4 04:03:54 vps639187 sshd\[19320\]: Invalid user git from 113.72.16.195 port 33121 Sep 4 04:03:54 vps639187 sshd\[19320\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=113.72.16.195 Sep 4 04:03:55 vps639187 sshd\[19320\]: Failed password for invalid user git from 113.72.16.195 port 33121 ssh2 ...	2020-09-04 13:13:04
161.52.178.130	attack	20/9/3@13:16:20: FAIL: Alarm-Network address from=161.52.178.130 ...	2020-09-04 13:14:52
45.142.120.137	attackbotsspam	2020-09-04 06:06:59 dovecot_login authenticator failed for \(User\) \[45.142.120.137\]: 535 Incorrect authentication data \(set_id=maude@no-server.de\) 2020-09-04 06:07:17 dovecot_login authenticator failed for \(User\) \[45.142.120.137\]: 535 Incorrect authentication data \(set_id=cms1@no-server.de\) 2020-09-04 06:07:34 dovecot_login authenticator failed for \(User\) \[45.142.120.137\]: 535 Incorrect authentication data \(set_id=cms1@no-server.de\) 2020-09-04 06:07:35 dovecot_login authenticator failed for \(User\) \[45.142.120.137\]: 535 Incorrect authentication data \(set_id=cms1@no-server.de\) 2020-09-04 06:07:37 dovecot_login authenticator failed for \(User\) \[45.142.120.137\]: 535 Incorrect authentication data \(set_id=cms1@no-server.de\) ...	2020-09-04 13:22:21
171.25.193.25	attack	Sep 4 04:26:43 h2779839 sshd[28850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.25.193.25 user=root Sep 4 04:26:44 h2779839 sshd[28850]: Failed password for root from 171.25.193.25 port 11520 ssh2 Sep 4 04:26:51 h2779839 sshd[28850]: Failed password for root from 171.25.193.25 port 11520 ssh2 Sep 4 04:26:43 h2779839 sshd[28850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.25.193.25 user=root Sep 4 04:26:44 h2779839 sshd[28850]: Failed password for root from 171.25.193.25 port 11520 ssh2 Sep 4 04:26:51 h2779839 sshd[28850]: Failed password for root from 171.25.193.25 port 11520 ssh2 Sep 4 04:26:43 h2779839 sshd[28850]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=171.25.193.25 user=root Sep 4 04:26:44 h2779839 sshd[28850]: Failed password for root from 171.25.193.25 port 11520 ssh2 Sep 4 04:26:51 h2779839 sshd[28850]: Failed password for ...	2020-09-04 13:01:39
218.92.0.191	attackbotsspam	Sep 4 07:01:26 dcd-gentoo sshd[24723]: User root from 218.92.0.191 not allowed because none of user's groups are listed in AllowGroups Sep 4 07:01:29 dcd-gentoo sshd[24723]: error: PAM: Authentication failure for illegal user root from 218.92.0.191 Sep 4 07:01:29 dcd-gentoo sshd[24723]: Failed keyboard-interactive/pam for invalid user root from 218.92.0.191 port 45361 ssh2 ...	2020-09-04 13:16:27
118.24.2.141	attackbotsspam	Sep 4 01:13:10 ws26vmsma01 sshd[76298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.24.2.141 Sep 4 01:13:11 ws26vmsma01 sshd[76298]: Failed password for invalid user ubuntu from 118.24.2.141 port 44794 ssh2 ...	2020-09-04 13:05:31
190.75.243.153	attack	Port Scan ...	2020-09-04 13:14:28
49.235.147.233	attackspam	Sep 3 23:48:57 rancher-0 sshd[1429337]: Invalid user avinash from 49.235.147.233 port 45244 Sep 3 23:49:00 rancher-0 sshd[1429337]: Failed password for invalid user avinash from 49.235.147.233 port 45244 ssh2 ...	2020-09-04 13:02:56
193.57.40.13	attack	RDP Brute-Force (honeypot 5)	2020-09-04 13:16:47
177.102.239.107	attackbotsspam	Sep 3 18:49:39 mellenthin postfix/smtpd[20369]: NOQUEUE: reject: RCPT from unknown[177.102.239.107]: 554 5.7.1 Service unavailable; Client host [177.102.239.107] blocked using zen.spamhaus.org; https://www.spamhaus.org/query/ip/177.102.239.107; from= to= proto=ESMTP helo=<177-102-239-107.dsl.telesp.net.br>	2020-09-04 13:25:41
112.85.42.174	attackbots	Sep 4 07:08:18 jane sshd[15946]: Failed password for root from 112.85.42.174 port 4537 ssh2 Sep 4 07:08:23 jane sshd[15946]: Failed password for root from 112.85.42.174 port 4537 ssh2 ...	2020-09-04 13:19:20
112.85.42.185	attack	2020-09-04T07:42:43.172376lavrinenko.info sshd[1856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.185 user=root 2020-09-04T07:42:45.026963lavrinenko.info sshd[1856]: Failed password for root from 112.85.42.185 port 23161 ssh2 2020-09-04T07:42:43.172376lavrinenko.info sshd[1856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.185 user=root 2020-09-04T07:42:45.026963lavrinenko.info sshd[1856]: Failed password for root from 112.85.42.185 port 23161 ssh2 2020-09-04T07:42:47.260289lavrinenko.info sshd[1856]: Failed password for root from 112.85.42.185 port 23161 ssh2 ...	2020-09-04 12:49:15

Recently Reported IPs

27.47.38.61	116.162.55.186	118.120.110.157	163.179.174.161
103.150.136.192	62.109.30.57	47.100.65.7	183.82.99.35
185.231.247.162	69.247.230.63	223.16.227.223	185.136.195.193
107.175.94.138	59.94.200.206	112.27.160.252	94.23.72.30
170.239.49.51	74.58.242.57	165.227.169.159	179.109.116.222