138.94.163.0 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.94.163.115	attackspambots	DATE:2020-02-11 05:51:55, IP:138.94.163.115, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-02-11 16:55:32

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.94.163.0
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 38325
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.94.163.0.			IN	A

;; AUTHORITY SECTION:
.			407	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021202 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 13 10:02:43 CST 2022
;; MSG SIZE  rcvd: 105

Host info

Host 0.163.94.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 0.163.94.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
2.139.248.169	attackbots	SSH Brute-Forcing (server1)	2020-07-07 01:43:07
128.199.162.2	attackspam	SSH Brute-Force reported by Fail2Ban	2020-07-07 01:50:43
167.114.113.141	attack	Jul 6 16:45:18 home sshd[22312]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.113.141 Jul 6 16:45:20 home sshd[22312]: Failed password for invalid user denis from 167.114.113.141 port 50074 ssh2 Jul 6 16:48:33 home sshd[22595]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.114.113.141 ...	2020-07-07 01:18:05
186.3.83.42	attack	Jul 6 17:12:41 pkdns2 sshd\[16977\]: Invalid user ljh from 186.3.83.42Jul 6 17:12:42 pkdns2 sshd\[16977\]: Failed password for invalid user ljh from 186.3.83.42 port 39585 ssh2Jul 6 17:16:50 pkdns2 sshd\[17232\]: Invalid user renato from 186.3.83.42Jul 6 17:16:52 pkdns2 sshd\[17232\]: Failed password for invalid user renato from 186.3.83.42 port 38470 ssh2Jul 6 17:21:02 pkdns2 sshd\[17457\]: Invalid user ftpdata from 186.3.83.42Jul 6 17:21:04 pkdns2 sshd\[17457\]: Failed password for invalid user ftpdata from 186.3.83.42 port 37574 ssh2 ...	2020-07-07 01:45:19
210.56.23.100	attackspambots	5x Failed Password	2020-07-07 01:18:47
106.12.117.62	attackbotsspam	Bruteforce detected by fail2ban	2020-07-07 01:49:25
27.128.162.183	attackspam	Jul 6 15:55:10 h1745522 sshd[18244]: Invalid user discovery from 27.128.162.183 port 45737 Jul 6 15:55:10 h1745522 sshd[18244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.162.183 Jul 6 15:55:10 h1745522 sshd[18244]: Invalid user discovery from 27.128.162.183 port 45737 Jul 6 15:55:12 h1745522 sshd[18244]: Failed password for invalid user discovery from 27.128.162.183 port 45737 ssh2 Jul 6 15:58:24 h1745522 sshd[18499]: Invalid user sysadmin from 27.128.162.183 port 36303 Jul 6 15:58:24 h1745522 sshd[18499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.128.162.183 Jul 6 15:58:24 h1745522 sshd[18499]: Invalid user sysadmin from 27.128.162.183 port 36303 Jul 6 15:58:26 h1745522 sshd[18499]: Failed password for invalid user sysadmin from 27.128.162.183 port 36303 ssh2 Jul 6 16:01:56 h1745522 sshd[19909]: Invalid user admin from 27.128.162.183 port 55102 ...	2020-07-07 01:37:27
54.37.86.192	attack	Jul 6 16:53:22 ns392434 sshd[12605]: Invalid user admin from 54.37.86.192 port 47734 Jul 6 16:53:22 ns392434 sshd[12605]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.86.192 Jul 6 16:53:22 ns392434 sshd[12605]: Invalid user admin from 54.37.86.192 port 47734 Jul 6 16:53:24 ns392434 sshd[12605]: Failed password for invalid user admin from 54.37.86.192 port 47734 ssh2 Jul 6 16:57:31 ns392434 sshd[12673]: Invalid user postgres from 54.37.86.192 port 54824 Jul 6 16:57:31 ns392434 sshd[12673]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.37.86.192 Jul 6 16:57:31 ns392434 sshd[12673]: Invalid user postgres from 54.37.86.192 port 54824 Jul 6 16:57:33 ns392434 sshd[12673]: Failed password for invalid user postgres from 54.37.86.192 port 54824 ssh2 Jul 6 17:00:25 ns392434 sshd[12772]: Invalid user hhu from 54.37.86.192 port 51900	2020-07-07 01:14:28
185.176.221.221	attack	Unauthorized connection attempt detected from IP address 185.176.221.221 to port 5900	2020-07-07 01:20:10
46.38.145.6	attack	2020-07-06 17:01:49 auth_plain authenticator failed for (User) [46.38.145.6]: 535 Incorrect authentication data (set_id=comprehensive@mail.csmailer.org) 2020-07-06 17:02:35 auth_plain authenticator failed for (User) [46.38.145.6]: 535 Incorrect authentication data (set_id=tyler@mail.csmailer.org) 2020-07-06 17:03:23 auth_plain authenticator failed for (User) [46.38.145.6]: 535 Incorrect authentication data (set_id=kps@mail.csmailer.org) 2020-07-06 17:04:09 auth_plain authenticator failed for (User) [46.38.145.6]: 535 Incorrect authentication data (set_id=bluebird@mail.csmailer.org) 2020-07-06 17:04:52 auth_plain authenticator failed for (User) [46.38.145.6]: 535 Incorrect authentication data (set_id=portugal@mail.csmailer.org) ...	2020-07-07 01:26:53
122.51.222.42	attackspam	Jul 6 14:55:15 rancher-0 sshd[158508]: Invalid user oprofile from 122.51.222.42 port 45424 ...	2020-07-07 01:12:36
150.129.8.34	attackbots	SSH brute-force attempt	2020-07-07 01:33:21
185.22.142.197	attack	Jul 6 19:08:18 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=185.22.142.197, lip=176.9.177.164, session=\ Jul 6 19:08:20 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=185.22.142.197, lip=176.9.177.164, session=\ Jul 6 19:08:42 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=185.22.142.197, lip=176.9.177.164, session=\ Jul 6 19:13:52 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 secs\): user=\, method=PLAIN, rip=185.22.142.197, lip=176.9.177.164, session=\ Jul 6 19:13:54 relay dovecot: imap-login: Disconnected: Inactivity \(auth failed, 1 attempts in 180 ...	2020-07-07 01:30:00
165.227.39.176	attackspambots	Automatic report - XMLRPC Attack	2020-07-07 01:44:19
106.13.48.122	attackbots	Jul 6 16:56:18 ift sshd\[32718\]: Invalid user zxc from 106.13.48.122Jul 6 16:56:19 ift sshd\[32718\]: Failed password for invalid user zxc from 106.13.48.122 port 29093 ssh2Jul 6 16:59:16 ift sshd\[33111\]: Failed password for invalid user admin from 106.13.48.122 port 50249 ssh2Jul 6 17:02:02 ift sshd\[34103\]: Invalid user zhangfeng from 106.13.48.122Jul 6 17:02:04 ift sshd\[34103\]: Failed password for invalid user zhangfeng from 106.13.48.122 port 14912 ssh2 ...	2020-07-07 01:17:17

Recently Reported IPs

138.97.136.124	138.97.31.74	138.97.31.91	138.99.251.228
138.97.31.87	139.0.25.42	138.99.70.120	139.0.81.171
139.0.33.125	138.97.31.113	139.129.116.156	139.129.99.227
138.99.69.134	139.138.153.194	139.155.85.95	139.162.121.80
139.162.203.13	139.162.217.93	139.162.61.94	139.162.35.170