138.59.219.47 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: UBA Conect Telecom Ltda - ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attack	Sep 28 15:31:57 ny01 sshd[1354]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.59.219.47 Sep 28 15:31:59 ny01 sshd[1354]: Failed password for invalid user zn from 138.59.219.47 port 44557 ssh2 Sep 28 15:37:01 ny01 sshd[2248]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.59.219.47	2019-09-29 03:38:30
attackspambots	Sep 26 17:45:03 web9 sshd\[6431\]: Invalid user test from 138.59.219.47 Sep 26 17:45:03 web9 sshd\[6431\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.59.219.47 Sep 26 17:45:04 web9 sshd\[6431\]: Failed password for invalid user test from 138.59.219.47 port 43083 ssh2 Sep 26 17:50:08 web9 sshd\[7522\]: Invalid user M from 138.59.219.47 Sep 26 17:50:08 web9 sshd\[7522\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.59.219.47	2019-09-27 16:46:24
attackbots	Sep 26 06:45:43 aiointranet sshd\[7794\]: Invalid user acsay from 138.59.219.47 Sep 26 06:45:43 aiointranet sshd\[7794\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dynamic-138-59-219-47.ubaconecttelecom.net.br Sep 26 06:45:45 aiointranet sshd\[7794\]: Failed password for invalid user acsay from 138.59.219.47 port 40429 ssh2 Sep 26 06:51:02 aiointranet sshd\[8199\]: Invalid user dev from 138.59.219.47 Sep 26 06:51:02 aiointranet sshd\[8199\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dynamic-138-59-219-47.ubaconecttelecom.net.br	2019-09-27 01:05:49
attackbots	Sep 22 22:49:05 Ubuntu-1404-trusty-64-minimal sshd\[1288\]: Invalid user test from 138.59.219.47 Sep 22 22:49:05 Ubuntu-1404-trusty-64-minimal sshd\[1288\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.59.219.47 Sep 22 22:49:07 Ubuntu-1404-trusty-64-minimal sshd\[1288\]: Failed password for invalid user test from 138.59.219.47 port 47454 ssh2 Sep 22 23:03:13 Ubuntu-1404-trusty-64-minimal sshd\[16628\]: Invalid user qp from 138.59.219.47 Sep 22 23:03:13 Ubuntu-1404-trusty-64-minimal sshd\[16628\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.59.219.47	2019-09-23 06:48:15
attackbotsspam	Aug 31 13:15:36 auw2 sshd\[5881\]: Invalid user bot from 138.59.219.47 Aug 31 13:15:36 auw2 sshd\[5881\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dynamic-138-59-219-47.ubaconecttelecom.net.br Aug 31 13:15:38 auw2 sshd\[5881\]: Failed password for invalid user bot from 138.59.219.47 port 39977 ssh2 Aug 31 13:21:31 auw2 sshd\[6407\]: Invalid user oracle from 138.59.219.47 Aug 31 13:21:31 auw2 sshd\[6407\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=dynamic-138-59-219-47.ubaconecttelecom.net.br	2019-09-01 07:43:06

Comments on same subnet:

IP	Type	Details	Datetime
138.59.219.28	attack	firewall-block, port(s): 80/tcp	2019-10-06 15:39:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.59.219.47
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 57489
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.59.219.47.			IN	A

;; AUTHORITY SECTION:
.			1696	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019083102 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Sep 01 07:43:01 CST 2019
;; MSG SIZE  rcvd: 117

Host info

47.219.59.138.in-addr.arpa domain name pointer dynamic-138-59-219-47.ubaconecttelecom.net.br.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
47.219.59.138.in-addr.arpa	name = dynamic-138-59-219-47.ubaconecttelecom.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
24.44.28.51	attack	Aug 17 19:08:53 kapalua sshd\[32146\]: Invalid user fsp from 24.44.28.51 Aug 17 19:08:53 kapalua sshd\[32146\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ool-182c1c33.dyn.optonline.net Aug 17 19:08:54 kapalua sshd\[32146\]: Failed password for invalid user fsp from 24.44.28.51 port 42714 ssh2 Aug 17 19:14:33 kapalua sshd\[32765\]: Invalid user mathematics from 24.44.28.51 Aug 17 19:14:33 kapalua sshd\[32765\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=ool-182c1c33.dyn.optonline.net	2019-08-18 15:04:54
195.43.189.10	attackbotsspam	$f2bV_matches	2019-08-18 14:54:41
159.203.82.104	attack	Invalid user zabbix from 159.203.82.104 port 58800	2019-08-18 15:17:23
54.187.16.222	attack	Aug 18 06:57:18 HOST sshd[27338]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-54-187-16-222.us-west-2.compute.amazonaws.com Aug 18 06:57:19 HOST sshd[27338]: Failed password for invalid user zxin10 from 54.187.16.222 port 38961 ssh2 Aug 18 06:57:19 HOST sshd[27338]: Received disconnect from 54.187.16.222: 11: Bye Bye [preauth] Aug 18 07:11:49 HOST sshd[27680]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-54-187-16-222.us-west-2.compute.amazonaws.com Aug 18 07:11:51 HOST sshd[27680]: Failed password for invalid user william from 54.187.16.222 port 52207 ssh2 Aug 18 07:11:51 HOST sshd[27680]: Received disconnect from 54.187.16.222: 11: Bye Bye [preauth] Aug 18 07:16:55 HOST sshd[27830]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=em3-54-187-16-222.us-west-2.compute.amazonaws.com Aug 18 07:17:01 HOST sshd[27830]: Failed password for inv........ -------------------------------	2019-08-18 15:42:08
122.176.26.96	attackspambots	Aug 18 02:01:05 aat-srv002 sshd[5135]: Failed password for man from 122.176.26.96 port 35426 ssh2 Aug 18 02:06:10 aat-srv002 sshd[5347]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.176.26.96 Aug 18 02:06:11 aat-srv002 sshd[5347]: Failed password for invalid user installer from 122.176.26.96 port 53626 ssh2 ...	2019-08-18 15:36:14
184.175.47.227	attackspambots	$f2bV_matches	2019-08-18 15:25:54
136.232.13.70	attack	Aug 18 02:27:01 aat-srv002 sshd[6244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.232.13.70 Aug 18 02:27:03 aat-srv002 sshd[6244]: Failed password for invalid user pk from 136.232.13.70 port 59949 ssh2 Aug 18 02:31:24 aat-srv002 sshd[6428]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=136.232.13.70 Aug 18 02:31:26 aat-srv002 sshd[6428]: Failed password for invalid user dareen from 136.232.13.70 port 47774 ssh2 ...	2019-08-18 15:37:41
176.9.46.195	attack	Aug 18 02:27:10 Tower sshd[15351]: Connection from 176.9.46.195 port 36304 on 192.168.10.220 port 22 Aug 18 02:27:11 Tower sshd[15351]: Invalid user guest from 176.9.46.195 port 36304 Aug 18 02:27:11 Tower sshd[15351]: error: Could not get shadow information for NOUSER Aug 18 02:27:11 Tower sshd[15351]: Failed password for invalid user guest from 176.9.46.195 port 36304 ssh2 Aug 18 02:27:11 Tower sshd[15351]: Received disconnect from 176.9.46.195 port 36304:11: Bye Bye [preauth] Aug 18 02:27:11 Tower sshd[15351]: Disconnected from invalid user guest 176.9.46.195 port 36304 [preauth]	2019-08-18 15:05:18
46.28.205.67	attack	Aug 18 06:29:59 cp sshd[1543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=46.28.205.67	2019-08-18 15:47:19
103.85.93.118	attackspam	Aug 18 01:27:58 aat-srv002 sshd[3647]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.85.93.118 Aug 18 01:28:00 aat-srv002 sshd[3647]: Failed password for invalid user Qwerty123 from 103.85.93.118 port 49240 ssh2 Aug 18 01:33:35 aat-srv002 sshd[3928]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.85.93.118 Aug 18 01:33:37 aat-srv002 sshd[3928]: Failed password for invalid user elsa from 103.85.93.118 port 40046 ssh2 ...	2019-08-18 14:44:25
54.37.154.254	attack	Aug 18 08:40:38 SilenceServices sshd[25426]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.154.254 Aug 18 08:40:40 SilenceServices sshd[25426]: Failed password for invalid user anabel from 54.37.154.254 port 57246 ssh2 Aug 18 08:44:36 SilenceServices sshd[28678]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.154.254	2019-08-18 14:57:37
62.234.91.173	attackspambots	Aug 17 23:33:37 home sshd[5111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.91.173 user=lp Aug 17 23:33:39 home sshd[5111]: Failed password for lp from 62.234.91.173 port 33984 ssh2 Aug 17 23:47:39 home sshd[5390]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.91.173 user=root Aug 17 23:47:41 home sshd[5390]: Failed password for root from 62.234.91.173 port 59722 ssh2 Aug 17 23:53:16 home sshd[5418]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.91.173 user=root Aug 17 23:53:18 home sshd[5418]: Failed password for root from 62.234.91.173 port 54388 ssh2 Aug 17 23:58:58 home sshd[5458]: Invalid user dimas from 62.234.91.173 port 49057 Aug 17 23:58:58 home sshd[5458]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.91.173 Aug 17 23:58:58 home sshd[5458]: Invalid user dimas from 62.234.91.173 port 49057 Aug 17 23:59	2019-08-18 15:13:44
165.22.246.228	attackbotsspam	Aug 17 20:58:25 lcdev sshd\[25226\]: Invalid user simon from 165.22.246.228 Aug 17 20:58:25 lcdev sshd\[25226\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.246.228 Aug 17 20:58:26 lcdev sshd\[25226\]: Failed password for invalid user simon from 165.22.246.228 port 34222 ssh2 Aug 17 21:03:44 lcdev sshd\[25696\]: Invalid user timmy from 165.22.246.228 Aug 17 21:03:44 lcdev sshd\[25696\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.246.228	2019-08-18 15:06:42
177.99.190.122	attack	Aug 18 07:03:39 XXX sshd[4827]: Invalid user golden from 177.99.190.122 port 41820	2019-08-18 15:40:37
51.38.133.86	attackspambots	xmlrpc attack	2019-08-18 15:16:11

Recently Reported IPs

187.127.243.218	196.27.89.154	248.96.81.72	207.181.40.185
104.9.167.6	103.10.231.27	14.126.52.182	31.180.113.103
131.64.102.173	82.16.204.20	194.80.130.119	241.150.55.140
209.235.102.97	14.232.244.235	193.112.62.85	190.54.43.19
188.172.181.9	106.12.24.170	181.142.254.67	202.76.54.190