138.94.11.245 - IPInfo

Basic Info

City: unknown

Region: Para

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: WKVE Asses. em Serviços de Inform. e Telecom. Ltda

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.94.117.118	attackspam	Attempted Brute Force (dovecot)	2020-09-08 00:23:29
138.94.117.118	attackbotsspam	Attempted Brute Force (dovecot)	2020-09-07 15:53:32
138.94.117.118	attack	Attempted Brute Force (dovecot)	2020-09-07 08:16:13
138.94.115.198	attackbots	Unauthorized connection attempt from IP address 138.94.115.198 on Port 445(SMB)	2020-05-26 18:28:56
138.94.113.90	attackspam	Mar 4 11:20:36 gw1 sshd[28615]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.113.90 Mar 4 11:20:38 gw1 sshd[28615]: Failed password for invalid user suporte from 138.94.113.90 port 36838 ssh2 ...	2020-03-04 14:57:58
138.94.115.198	attackbotsspam	Unauthorized connection attempt from IP address 138.94.115.198 on Port 445(SMB)	2020-02-16 06:24:30
138.94.113.90	attackspam	Feb 14 15:38:10 srv-ubuntu-dev3 sshd[115955]: Invalid user student from 138.94.113.90 Feb 14 15:38:10 srv-ubuntu-dev3 sshd[115955]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.113.90 Feb 14 15:38:10 srv-ubuntu-dev3 sshd[115955]: Invalid user student from 138.94.113.90 Feb 14 15:38:11 srv-ubuntu-dev3 sshd[115955]: Failed password for invalid user student from 138.94.113.90 port 40820 ssh2 Feb 14 15:42:06 srv-ubuntu-dev3 sshd[116461]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.113.90 user=root Feb 14 15:42:08 srv-ubuntu-dev3 sshd[116461]: Failed password for root from 138.94.113.90 port 42634 ssh2 Feb 14 15:45:50 srv-ubuntu-dev3 sshd[116763]: Invalid user avendoria from 138.94.113.90 Feb 14 15:45:50 srv-ubuntu-dev3 sshd[116763]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.113.90 Feb 14 15:45:50 srv-ubuntu-dev3 sshd[116763]: Invalid use ...	2020-02-15 01:26:46
138.94.114.238	attackbotsspam	$f2bV_matches	2020-01-12 00:30:12
138.94.114.238	attackbotsspam	Jan 2 07:30:37 ArkNodeAT sshd\[25439\]: Invalid user wi from 138.94.114.238 Jan 2 07:30:37 ArkNodeAT sshd\[25439\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.114.238 Jan 2 07:30:39 ArkNodeAT sshd\[25439\]: Failed password for invalid user wi from 138.94.114.238 port 44318 ssh2	2020-01-02 14:46:54
138.94.115.198	attack	Unauthorized connection attempt from IP address 138.94.115.198 on Port 445(SMB)	2020-01-02 04:14:43
138.94.114.238	attackbotsspam	Dec 23 13:24:07 areeb-Workstation sshd[4106]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.114.238 Dec 23 13:24:10 areeb-Workstation sshd[4106]: Failed password for invalid user ruiter from 138.94.114.238 port 47734 ssh2 ...	2019-12-23 16:53:31
138.94.114.238	attack	Dec 12 19:25:16 plusreed sshd[8694]: Invalid user aril from 138.94.114.238 ...	2019-12-13 08:37:35
138.94.114.238	attackspambots	Dec 8 10:46:48 microserver sshd[50587]: Invalid user pico from 138.94.114.238 port 46878 Dec 8 10:46:48 microserver sshd[50587]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.114.238 Dec 8 10:46:50 microserver sshd[50587]: Failed password for invalid user pico from 138.94.114.238 port 46878 ssh2 Dec 8 10:53:05 microserver sshd[51502]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.114.238 user=uucp Dec 8 10:53:07 microserver sshd[51502]: Failed password for uucp from 138.94.114.238 port 45000 ssh2 Dec 8 11:05:42 microserver sshd[53695]: Invalid user hay from 138.94.114.238 port 41250 Dec 8 11:05:42 microserver sshd[53695]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.114.238 Dec 8 11:05:44 microserver sshd[53695]: Failed password for invalid user hay from 138.94.114.238 port 41250 ssh2 Dec 8 11:11:58 microserver sshd[54518]: pam_unix(sshd:auth): authentic	2019-12-08 17:58:20
138.94.114.238	attackspambots	Dec 5 13:33:38 MK-Soft-VM4 sshd[18434]: Failed password for root from 138.94.114.238 port 34128 ssh2 ...	2019-12-05 22:58:15
138.94.114.238	attack	Dec 3 06:40:41 web9 sshd\[7045\]: Invalid user asterisk from 138.94.114.238 Dec 3 06:40:41 web9 sshd\[7045\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.114.238 Dec 3 06:40:43 web9 sshd\[7045\]: Failed password for invalid user asterisk from 138.94.114.238 port 50128 ssh2 Dec 3 06:47:39 web9 sshd\[8072\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.94.114.238 user=backup Dec 3 06:47:41 web9 sshd\[8072\]: Failed password for backup from 138.94.114.238 port 52794 ssh2	2019-12-04 00:48:38

Whois info:

Dig info:


; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.94.11.245
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 22741
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.94.11.245.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019041800 1800 900 604800 86400

;; Query time: 2 msec
;; SERVER: 67.207.67.3#53(67.207.67.3)
;; WHEN: Fri Apr 19 00:51:17 +08 2019
;; MSG SIZE  rcvd: 117

Host info

245.11.94.138.in-addr.arpa domain name pointer 245-11-94-138.wkve.net.br.

Nslookup info:

Server:		67.207.67.3
Address:	67.207.67.3#53

Non-authoritative answer:
245.11.94.138.in-addr.arpa	name = 245-11-94-138.wkve.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
157.230.156.51	attack	2019-10-23T17:02:10.4386341495-001 sshd\[32666\]: Invalid user RPM from 157.230.156.51 port 54110 2019-10-23T17:02:10.4433491495-001 sshd\[32666\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.156.51 2019-10-23T17:02:12.0995701495-001 sshd\[32666\]: Failed password for invalid user RPM from 157.230.156.51 port 54110 ssh2 2019-10-23T17:05:54.0497701495-001 sshd\[32806\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.156.51 user=root 2019-10-23T17:05:55.9855821495-001 sshd\[32806\]: Failed password for root from 157.230.156.51 port 37588 ssh2 2019-10-23T17:09:42.3300131495-001 sshd\[32978\]: Invalid user teamspeak from 157.230.156.51 port 49294 2019-10-23T17:09:42.3355361495-001 sshd\[32978\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.230.156.51 ...	2019-10-24 05:33:56
80.82.77.33	attackbotsspam	Trying ports that it shouldn't be.	2019-10-24 05:53:59
54.68.90.7	attack	Src. IP 54.68.90.7 Src. Port 443 Possible TCP Flood on IF X2 - src: 54.68.90.7:443 dst: x.x.x.x:7454 - rate: 447/sec continues	2019-10-24 05:54:26
106.13.190.144	attack	Oct 23 05:10:27 odroid64 sshd\[22539\]: Invalid user smtpuser from 106.13.190.144 Oct 23 05:10:27 odroid64 sshd\[22539\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.190.144 Oct 23 05:10:29 odroid64 sshd\[22539\]: Failed password for invalid user smtpuser from 106.13.190.144 port 48248 ssh2 ...	2019-10-24 05:48:46
58.210.6.53	attackspambots	Oct 23 23:16:01 taivassalofi sshd[234228]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=58.210.6.53 Oct 23 23:16:03 taivassalofi sshd[234228]: Failed password for invalid user ts3 from 58.210.6.53 port 59982 ssh2 ...	2019-10-24 05:34:35
5.189.16.37	attackspambots	Oct 23 23:18:03 mc1 kernel: \[3151828.941088\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=5.189.16.37 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=34474 PROTO=TCP SPT=54940 DPT=1952 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 23 23:20:05 mc1 kernel: \[3151951.176216\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=5.189.16.37 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=53135 PROTO=TCP SPT=54940 DPT=75 WINDOW=1024 RES=0x00 SYN URGP=0 Oct 23 23:24:39 mc1 kernel: \[3152224.973576\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:11:a9:7b:d2:74:7f:6e:37:e3:08:00 SRC=5.189.16.37 DST=159.69.205.51 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=25004 PROTO=TCP SPT=54940 DPT=761 WINDOW=1024 RES=0x00 SYN URGP=0 ...	2019-10-24 05:47:34
45.161.28.210	attack	Automatic report - Port Scan Attack	2019-10-24 05:39:27
181.30.27.11	attackbotsspam	$f2bV_matches	2019-10-24 05:52:10
106.38.76.156	attackspam	Oct 22 10:26:51 odroid64 sshd\[6973\]: Invalid user terrariaserver from 106.38.76.156 Oct 22 10:26:51 odroid64 sshd\[6973\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.38.76.156 Oct 22 10:26:54 odroid64 sshd\[6973\]: Failed password for invalid user terrariaserver from 106.38.76.156 port 35785 ssh2 ...	2019-10-24 06:04:14
89.252.132.100	attack	WordPress login Brute force / Web App Attack on client site.	2019-10-24 05:48:26
41.83.48.133	attack	WordPress login Brute force / Web App Attack on client site.	2019-10-24 06:07:17
51.77.137.211	attackbotsspam	2019-10-23T21:18:01.151150abusebot-5.cloudsearch.cf sshd\[9883\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=211.ip-51-77-137.eu user=root	2019-10-24 05:41:13
176.31.101.37	attack	WordPress wp-login brute force :: 176.31.101.37 0.116 BYPASS [24/Oct/2019:07:45:41 1100] [censored_1] "POST /wp-login.php HTTP/1.1" 200 3972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2019-10-24 05:50:34
112.6.75.37	attackbotsspam	Oct 23 05:20:06 odroid64 sshd\[22926\]: User root from 112.6.75.37 not allowed because not listed in AllowUsers Oct 23 05:20:07 odroid64 sshd\[22926\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.6.75.37 user=root Oct 23 05:20:09 odroid64 sshd\[22926\]: Failed password for invalid user root from 112.6.75.37 port 63231 ssh2 ...	2019-10-24 05:55:26
113.171.23.119	attack	Invalid user oracle from 113.171.23.119 port 58924	2019-10-24 05:37:00

Recently Reported IPs

200.100.96.148	185.111.183.114	180.117.99.108	142.93.101.13
88.125.234.71	185.109.61.223	103.119.54.164	82.102.24.167
185.108.197.143	185.107.173.17	65.193.121.246	3.4.5.6
185.100.217.240	193.70.115.178	95.125.34.32	183.80.46.168
190.233.72.200	89.120.226.182	117.5.115.82	183.42.42.22