138.204.69.50 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.204.69.117	attackbotsspam	IP 138.204.69.117 attacked honeypot on port: 1433 at 8/23/2020 8:52:21 PM	2020-08-24 16:05:16
138.204.69.148	attackspam	Tried our host z.	2020-06-28 16:57:51
138.204.69.83	attackbotsspam	Unauthorized connection attempt detected from IP address 138.204.69.83 to port 8000	2020-06-22 07:29:27
138.204.69.83	attackspam	IP 138.204.69.83 attacked honeypot on port: 88 at 6/16/2020 1:47:55 PM	2020-06-17 05:33:07

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.204.69.50
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52269
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.204.69.50.			IN	A

;; AUTHORITY SECTION:
.			574	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:40:55 CST 2022
;; MSG SIZE  rcvd: 106

Host info

50.69.204.138.in-addr.arpa domain name pointer 138-204-69-50.wantel.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
50.69.204.138.in-addr.arpa	name = 138-204-69-50.wantel.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
218.92.0.168	attackspambots	Jun 7 08:57:21 NPSTNNYC01T sshd[20300]: Failed password for root from 218.92.0.168 port 4854 ssh2 Jun 7 08:57:25 NPSTNNYC01T sshd[20300]: Failed password for root from 218.92.0.168 port 4854 ssh2 Jun 7 08:57:31 NPSTNNYC01T sshd[20300]: Failed password for root from 218.92.0.168 port 4854 ssh2 Jun 7 08:57:39 NPSTNNYC01T sshd[20300]: error: maximum authentication attempts exceeded for root from 218.92.0.168 port 4854 ssh2 [preauth] ...	2020-06-07 21:06:07
106.13.177.231	attack	SSH bruteforce	2020-06-07 21:40:21
124.127.206.4	attack	Jun 7 16:01:00 ift sshd\[21238\]: Failed password for root from 124.127.206.4 port 55092 ssh2Jun 7 16:01:57 ift sshd\[21311\]: Failed password for root from 124.127.206.4 port 10881 ssh2Jun 7 16:02:55 ift sshd\[21350\]: Failed password for root from 124.127.206.4 port 23155 ssh2Jun 7 16:03:56 ift sshd\[21401\]: Failed password for root from 124.127.206.4 port 35429 ssh2Jun 7 16:04:51 ift sshd\[21499\]: Failed password for root from 124.127.206.4 port 47701 ssh2 ...	2020-06-07 21:23:36
87.246.7.70	attack	Jun 6 05:10:49 websrv1.derweidener.de postfix/smtpd[3433275]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 6 05:11:47 websrv1.derweidener.de postfix/smtpd[3434129]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 6 05:12:20 websrv1.derweidener.de postfix/smtpd[3434129]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 6 05:13:08 websrv1.derweidener.de postfix/smtpd[3434132]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 6 05:13:59 websrv1.derweidener.de postfix/smtpd[3434129]: warning: unknown[87.246.7.70]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-07 21:39:26
200.5.196.218	attack	Jun 7 14:08:38 odroid64 sshd\[9597\]: User root from 200.5.196.218 not allowed because not listed in AllowUsers Jun 7 14:08:38 odroid64 sshd\[9597\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=200.5.196.218 user=root ...	2020-06-07 21:23:13
163.172.127.251	attackspam	Jun 7 10:13:57 firewall sshd[13125]: Failed password for root from 163.172.127.251 port 59166 ssh2 Jun 7 10:17:16 firewall sshd[13221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.127.251 user=root Jun 7 10:17:19 firewall sshd[13221]: Failed password for root from 163.172.127.251 port 33252 ssh2 ...	2020-06-07 21:30:17
104.248.244.119	attackbotsspam	Jun 7 14:58:54 legacy sshd[7483]: Failed password for root from 104.248.244.119 port 39654 ssh2 Jun 7 15:02:14 legacy sshd[7616]: Failed password for root from 104.248.244.119 port 43792 ssh2 ...	2020-06-07 21:17:33
196.36.1.106	attack	Jun 7 14:02:43 amit sshd\[3201\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.36.1.106 user=root Jun 7 14:02:46 amit sshd\[3201\]: Failed password for root from 196.36.1.106 port 43702 ssh2 Jun 7 14:10:23 amit sshd\[14163\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=196.36.1.106 user=root ...	2020-06-07 21:06:20
37.187.74.109	attackbots	37.187.74.109 - - - [07/Jun/2020:15:16:01 +0200] "GET /wp-login.php HTTP/1.1" 404 564 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" "-" "-"	2020-06-07 21:37:04
218.92.0.203	attackspambots	2020-06-07T14:27:46.808879vps751288.ovh.net sshd\[17121\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.203 user=root 2020-06-07T14:27:49.105957vps751288.ovh.net sshd\[17121\]: Failed password for root from 218.92.0.203 port 26454 ssh2 2020-06-07T14:27:52.540976vps751288.ovh.net sshd\[17121\]: Failed password for root from 218.92.0.203 port 26454 ssh2 2020-06-07T14:27:54.949446vps751288.ovh.net sshd\[17121\]: Failed password for root from 218.92.0.203 port 26454 ssh2 2020-06-07T14:29:33.452790vps751288.ovh.net sshd\[17135\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=218.92.0.203 user=root	2020-06-07 21:01:45
85.204.246.240	attack	WordPress XMLRPC scan :: 85.204.246.240 0.028 - [07/Jun/2020:12:13:10 0000] www.[censored_1] "POST /xmlrpc.php HTTP/1.1" 503 18039 "-" "Mozilla/5.0 (Windows NT 6.1; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/56.0.2924.90 Safari/537.36 2345Explorer/9.3.2.17331" "HTTP/1.1"	2020-06-07 21:02:08
167.172.138.53	attack	DATE:2020-06-07 14:08:41, IP:167.172.138.53, PORT:telnet Telnet brute force auth on honeypot server (honey-neo-dc)	2020-06-07 21:22:10
134.175.56.12	attackbotsspam	Jun 7 14:49:10 mail sshd[20298]: Failed password for root from 134.175.56.12 port 35416 ssh2 Jun 7 14:52:59 mail sshd[20736]: Failed password for root from 134.175.56.12 port 45128 ssh2 Jun 7 14:54:34 mail sshd[20946]: Failed password for root from 134.175.56.12 port 59516 ssh2 ...	2020-06-07 20:58:29
170.254.231.114	attack	20/6/7@08:08:58: FAIL: Alarm-Network address from=170.254.231.114 ...	2020-06-07 21:06:55
122.116.201.108	attackspam	Automatic report - Banned IP Access	2020-06-07 21:27:52

Recently Reported IPs

138.204.69.216	138.204.69.244	138.204.69.79	138.204.69.62
138.204.69.82	138.204.69.90	118.175.228.210	138.204.69.57
138.204.69.97	138.204.70.114	138.204.70.117	138.204.70.126
138.204.70.150	138.204.70.158	138.204.70.215	138.204.70.188
118.175.228.213	138.204.70.57	138.204.71.110	138.204.70.72