138.185.5.94 - IPInfo

Basic Info

City: Leme

Region: Sao Paulo

Country: Brazil

Internet Service Provider: SP2Telecom Ltda ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	Unauthorized connection attempt detected from IP address 138.185.5.94 to port 8000 [J]	2020-01-13 04:49:55

Comments on same subnet:

IP	Type	Details	Datetime
138.185.56.166	attack	IP was detected trying to Brute-Force SSH, FTP, Web Apps, Port-Scan or Hacking.	2020-02-09 14:01:28
138.185.58.130	attackbotsspam	Honeypot attack, port: 445, PTR: ip-138.185.58.130.provedorlink.net.br.	2020-01-11 05:37:57

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.185.5.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 5364
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.185.5.94.			IN	A

;; AUTHORITY SECTION:
.			482	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020011201 1800 900 604800 86400

;; Query time: 115 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 13 04:49:53 CST 2020
;; MSG SIZE  rcvd: 116

Host info

94.5.185.138.in-addr.arpa domain name pointer 94-5-185-138.sp2max.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
94.5.185.138.in-addr.arpa	name = 94-5-185-138.sp2max.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
213.6.8.33	attackbotsspam	Unauthorized connection attempt from IP address 213.6.8.33 on Port 445(SMB)	2019-07-29 07:16:56
103.36.84.100	attackspambots	Jul 29 00:34:02 ArkNodeAT sshd\[9670\]: Invalid user rodger from 103.36.84.100 Jul 29 00:34:02 ArkNodeAT sshd\[9670\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.36.84.100 Jul 29 00:34:03 ArkNodeAT sshd\[9670\]: Failed password for invalid user rodger from 103.36.84.100 port 55294 ssh2	2019-07-29 06:48:31
165.22.59.82	attack	Jul 28 22:32:46 MK-Soft-VM5 sshd\[7742\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.59.82 user=root Jul 28 22:32:47 MK-Soft-VM5 sshd\[7742\]: Failed password for root from 165.22.59.82 port 51428 ssh2 Jul 28 22:37:53 MK-Soft-VM5 sshd\[7772\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.59.82 user=root ...	2019-07-29 06:54:33
162.144.107.214	attackspam	Bot ignores robot.txt restrictions	2019-07-29 07:24:47
202.120.38.28	attackspambots	Jul 28 23:43:22 eventyay sshd[26742]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.120.38.28 Jul 28 23:43:24 eventyay sshd[26742]: Failed password for invalid user loser from 202.120.38.28 port 49825 ssh2 Jul 28 23:48:54 eventyay sshd[27958]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=202.120.38.28 ...	2019-07-29 06:57:54
74.208.86.89	attackspam	Jul 28 22:55:56 localhost sshd\[130172\]: Invalid user alexandr from 74.208.86.89 port 34070 Jul 28 22:55:56 localhost sshd\[130172\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.86.89 Jul 28 22:55:58 localhost sshd\[130172\]: Failed password for invalid user alexandr from 74.208.86.89 port 34070 ssh2 Jul 28 23:00:18 localhost sshd\[130338\]: Invalid user salable from 74.208.86.89 port 57828 Jul 28 23:00:18 localhost sshd\[130338\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=74.208.86.89 ...	2019-07-29 07:15:17
46.105.30.20	attackbotsspam	SSH Brute Force	2019-07-29 07:23:55
190.3.201.17	attackspambots	firewall-block, port(s): 2323/tcp	2019-07-29 07:04:29
134.209.11.199	attackspambots	2019-07-29T00:36:16.105539 sshd[27136]: Invalid user gaotai(OL>9ol from 134.209.11.199 port 45686 2019-07-29T00:36:16.119673 sshd[27136]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=134.209.11.199 2019-07-29T00:36:16.105539 sshd[27136]: Invalid user gaotai(OL>9ol from 134.209.11.199 port 45686 2019-07-29T00:36:18.485726 sshd[27136]: Failed password for invalid user gaotai(OL>9ol from 134.209.11.199 port 45686 ssh2 2019-07-29T00:40:48.396437 sshd[27160]: Invalid user abcd1234!@#$% from 134.209.11.199 port 41544 ...	2019-07-29 06:44:28
139.59.239.185	attack	2019-07-28T23:08:45.755045abusebot-7.cloudsearch.cf sshd\[18330\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=139.59.239.185 user=root	2019-07-29 07:12:29
185.220.101.56	attackspambots	Automatic report - Banned IP Access	2019-07-29 07:07:24
68.183.184.243	attack	10 attempts against mh_ha-misc-ban on tree.magehost.pro	2019-07-29 06:54:09
220.191.160.42	attackspambots	Jul 28 23:37:44 debian sshd\[32450\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.191.160.42 user=root Jul 28 23:37:47 debian sshd\[32450\]: Failed password for root from 220.191.160.42 port 41570 ssh2 ...	2019-07-29 06:50:21
211.24.155.116	attackspam	Jul 28 22:04:32 *** sshd[18671]: Invalid user user from 211.24.155.116	2019-07-29 06:56:40
89.234.157.254	attack	Jul 29 00:57:48 ns3367391 sshd\[12739\]: Invalid user administrator from 89.234.157.254 port 33459 Jul 29 00:57:50 ns3367391 sshd\[12739\]: Failed password for invalid user administrator from 89.234.157.254 port 33459 ssh2 ...	2019-07-29 07:01:05

Recently Reported IPs

109.226.226.89	151.93.236.19	97.213.199.170	220.14.157.42
86.148.211.246	106.55.66.165	109.175.97.104	216.105.24.226
179.162.223.99	182.62.88.212	91.41.126.139	212.183.237.107
102.152.52.13	93.41.157.9	59.62.196.40	211.208.229.121
116.123.105.102	60.97.29.182	87.248.18.143	108.214.140.147