138.185.136.145

Basic Info

City: unknown

Region: unknown

Country: Ecuador

Internet Service Provider: Soluciones Avanzadas Informaticas Y Telecomunicaciones Saitel

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	Nov 17 11:44:03 www sshd\[87383\]: Invalid user server from 138.185.136.145 Nov 17 11:44:03 www sshd\[87383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145 Nov 17 11:44:04 www sshd\[87383\]: Failed password for invalid user server from 138.185.136.145 port 57738 ssh2 ...	2019-11-17 17:51:19
attackspam	Nov 16 19:42:04 web1 sshd\[13375\]: Invalid user daniellacunha from 138.185.136.145 Nov 16 19:42:04 web1 sshd\[13375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145 Nov 16 19:42:06 web1 sshd\[13375\]: Failed password for invalid user daniellacunha from 138.185.136.145 port 39724 ssh2 Nov 16 19:46:22 web1 sshd\[13585\]: Invalid user spy from 138.185.136.145 Nov 16 19:46:22 web1 sshd\[13585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145	2019-11-17 06:36:48

Type

Details

Datetime

attackspam

Nov 17 11:44:03 www sshd\[87383\]: Invalid user server from 138.185.136.145
Nov 17 11:44:03 www sshd\[87383\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145
Nov 17 11:44:04 www sshd\[87383\]: Failed password for invalid user server from 138.185.136.145 port 57738 ssh2
...

2019-11-17 17:51:19

attackspam

Nov 16 19:42:04 web1 sshd\[13375\]: Invalid user daniellacunha from 138.185.136.145
Nov 16 19:42:04 web1 sshd\[13375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145
Nov 16 19:42:06 web1 sshd\[13375\]: Failed password for invalid user daniellacunha from 138.185.136.145 port 39724 ssh2
Nov 16 19:46:22 web1 sshd\[13585\]: Invalid user spy from 138.185.136.145
Nov 16 19:46:22 web1 sshd\[13585\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.136.145

2019-11-17 06:36:48

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.185.136.145
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17508
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.185.136.145.		IN	A

;; AUTHORITY SECTION:
.			530	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111601 1800 900 604800 86400

;; Query time: 183 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Nov 17 06:36:45 CST 2019
;; MSG SIZE  rcvd: 119

Host info

Host 145.136.185.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 145.136.185.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
54.37.233.163	attackspambots	$f2bV_matches	2019-09-28 04:44:30
222.186.180.9	attackbotsspam	Sep 27 22:06:17 SilenceServices sshd[30490]: Failed password for root from 222.186.180.9 port 48950 ssh2 Sep 27 22:06:34 SilenceServices sshd[30490]: error: maximum authentication attempts exceeded for root from 222.186.180.9 port 48950 ssh2 [preauth] Sep 27 22:06:44 SilenceServices sshd[30766]: Failed password for root from 222.186.180.9 port 38952 ssh2	2019-09-28 04:24:50
182.61.39.254	attackspambots	detected by Fail2Ban	2019-09-28 04:13:23
61.136.104.131	attackbots	IMAP	2019-09-28 04:11:15
200.220.198.108	attackspam	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:06:04.	2019-09-28 04:08:11
125.163.146.206	attack	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:39.	2019-09-28 04:40:46
123.252.171.134	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:38.	2019-09-28 04:41:11
203.48.246.66	attackbotsspam	Invalid user arijit from 203.48.246.66 port 53422	2019-09-28 04:44:59
200.106.58.194	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:06:03.	2019-09-28 04:08:38
149.202.210.31	attackspambots	Invalid user gelu from 149.202.210.31 port 34700	2019-09-28 04:11:57
178.62.33.138	attackspambots	Invalid user support from 178.62.33.138 port 33946	2019-09-28 04:13:44
3.18.66.5	attackbotsspam	Sep 27 23:00:03 webhost01 sshd[23031]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=3.18.66.5 Sep 27 23:00:05 webhost01 sshd[23031]: Failed password for invalid user sysman from 3.18.66.5 port 55158 ssh2 ...	2019-09-28 04:26:22
14.229.108.89	attackbotsspam	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:43.	2019-09-28 04:36:06
179.180.161.125	attackbots	Attempt to attack host OS, exploiting network vulnerabilities, on 27-09-2019 13:05:52.	2019-09-28 04:25:30
147.135.210.187	attackspam	Sep 27 17:39:09 rotator sshd\[31570\]: Invalid user sonny from 147.135.210.187Sep 27 17:39:11 rotator sshd\[31570\]: Failed password for invalid user sonny from 147.135.210.187 port 48328 ssh2Sep 27 17:43:40 rotator sshd\[32380\]: Invalid user damar from 147.135.210.187Sep 27 17:43:41 rotator sshd\[32380\]: Failed password for invalid user damar from 147.135.210.187 port 60716 ssh2Sep 27 17:48:04 rotator sshd\[706\]: Invalid user jenghan from 147.135.210.187Sep 27 17:48:07 rotator sshd\[706\]: Failed password for invalid user jenghan from 147.135.210.187 port 44876 ssh2 ...	2019-09-28 04:27:12

Recently Reported IPs

114.38.3.153	156.194.83.97	114.40.69.52	115.216.212.229
91.185.236.124	41.211.112.195	173.82.245.106	151.80.129.115
217.61.61.246	124.235.138.239	113.172.0.111	13.229.139.86
203.150.162.126	155.73.51.213	58.192.33.203	79.186.5.230
233.224.92.210	96.89.25.165	39.2.121.187	252.38.95.45