138.94.205.93 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Sol Net Telecomunicacoes Ltda

Hostname: unknown

Organization: unknown

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Honeypot attack, port: 23, PTR: 138-94-205-93.rev.solnetprovedor.com.br.	2019-11-12 21:13:21

Comments on same subnet:

IP	Type	Details	Datetime
138.94.205.124	attackbotsspam	Automatic report - Port Scan Attack	2020-02-15 05:47:14

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.94.205.93
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 17899
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.94.205.93.			IN	A

;; AUTHORITY SECTION:
.			205	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111200 1800 900 604800 86400

;; Query time: 111 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Nov 12 21:13:17 CST 2019
;; MSG SIZE  rcvd: 117

Host info

93.205.94.138.in-addr.arpa domain name pointer 138-94-205-93.rev.solnetprovedor.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
93.205.94.138.in-addr.arpa	name = 138-94-205-93.rev.solnetprovedor.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
140.143.142.190	attackbots	Dec 10 01:58:03 OPSO sshd\[24962\]: Invalid user marvette from 140.143.142.190 port 34560 Dec 10 01:58:03 OPSO sshd\[24962\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.142.190 Dec 10 01:58:04 OPSO sshd\[24962\]: Failed password for invalid user marvette from 140.143.142.190 port 34560 ssh2 Dec 10 02:05:52 OPSO sshd\[27390\]: Invalid user gaby from 140.143.142.190 port 39644 Dec 10 02:05:52 OPSO sshd\[27390\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=140.143.142.190	2019-12-10 09:18:12
70.65.174.69	attackspambots	$f2bV_matches	2019-12-10 08:59:32
49.233.155.23	attackspambots	Dec 10 01:19:56 minden010 sshd[14487]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.155.23 Dec 10 01:19:58 minden010 sshd[14487]: Failed password for invalid user nueck from 49.233.155.23 port 43494 ssh2 Dec 10 01:27:30 minden010 sshd[18797]: Failed password for root from 49.233.155.23 port 40410 ssh2 ...	2019-12-10 09:05:28
129.204.38.136	attackspambots	Dec 10 01:51:09 meumeu sshd[20965]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.38.136 Dec 10 01:51:11 meumeu sshd[20965]: Failed password for invalid user corzani from 129.204.38.136 port 34258 ssh2 Dec 10 01:58:04 meumeu sshd[22214]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.204.38.136 ...	2019-12-10 09:04:54
138.36.204.234	attackspambots	Dec 9 23:46:57 web8 sshd\[8040\]: Invalid user server from 138.36.204.234 Dec 9 23:46:57 web8 sshd\[8040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.36.204.234 Dec 9 23:46:59 web8 sshd\[8040\]: Failed password for invalid user server from 138.36.204.234 port 51046 ssh2 Dec 9 23:53:38 web8 sshd\[11255\]: Invalid user rekkedal from 138.36.204.234 Dec 9 23:53:38 web8 sshd\[11255\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.36.204.234	2019-12-10 09:27:22
51.254.102.212	attack	Dec 8 16:39:56 mail sshd[4994]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.254.102.212 Dec 8 16:39:58 mail sshd[4994]: Failed password for invalid user cleere from 51.254.102.212 port 34662 ssh2 Dec 8 16:45:36 mail sshd[6149]: Failed password for root from 51.254.102.212 port 44396 ssh2	2019-12-10 09:01:25
220.120.106.254	attackbots	Dec 10 02:10:43 vps691689 sshd[9641]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=220.120.106.254 Dec 10 02:10:46 vps691689 sshd[9641]: Failed password for invalid user philp from 220.120.106.254 port 52396 ssh2 ...	2019-12-10 09:34:10
40.117.235.16	attack	SSH-BruteForce	2019-12-10 09:27:09
118.24.40.130	attack	Dec 10 01:07:29 pkdns2 sshd\[28348\]: Invalid user le from 118.24.40.130Dec 10 01:07:31 pkdns2 sshd\[28348\]: Failed password for invalid user le from 118.24.40.130 port 47842 ssh2Dec 10 01:11:14 pkdns2 sshd\[28567\]: Invalid user luat from 118.24.40.130Dec 10 01:11:17 pkdns2 sshd\[28567\]: Failed password for invalid user luat from 118.24.40.130 port 54478 ssh2Dec 10 01:14:44 pkdns2 sshd\[28718\]: Invalid user postgres from 118.24.40.130Dec 10 01:14:46 pkdns2 sshd\[28718\]: Failed password for invalid user postgres from 118.24.40.130 port 32858 ssh2 ...	2019-12-10 09:09:33
177.206.205.137	attackspambots	Automatic report - Port Scan Attack	2019-12-10 09:33:41
69.94.131.73	attackbots	Postfix DNSBL listed. Trying to send SPAM.	2019-12-10 09:24:27
171.240.202.228	attackspambots	SSH brute-force: detected 10 distinct usernames within a 24-hour window.	2019-12-10 09:08:38
192.144.204.101	attackspam	Dec 10 03:16:57 sauna sshd[99856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=192.144.204.101 Dec 10 03:17:00 sauna sshd[99856]: Failed password for invalid user admin from 192.144.204.101 port 44398 ssh2 ...	2019-12-10 09:30:36
201.122.85.238	attackspambots	Lines containing failures of 201.122.85.238 Dec 9 23:44:38 shared05 sshd[31533]: Invalid user support from 201.122.85.238 port 61062 Dec 9 23:44:38 shared05 sshd[31533]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=201.122.85.238 Dec 9 23:44:40 shared05 sshd[31533]: Failed password for invalid user support from 201.122.85.238 port 61062 ssh2 Dec 9 23:44:40 shared05 sshd[31533]: Connection closed by invalid user support 201.122.85.238 port 61062 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=201.122.85.238	2019-12-10 09:10:18
196.179.234.98	attackspambots	Failed password for invalid user nfs from 196.179.234.98 port 43872 ssh2	2019-12-10 09:04:22

Recently Reported IPs

200.229.90.17	103.231.73.231	36.79.249.57	2001:41d0:8:9924::1
103.67.12.202	201.47.153.167	185.224.176.70	149.56.103.116
132.101.115.114	48.38.4.7	111.138.7.241	98.16.15.138
112.242.62.244	103.231.73.228	37.143.218.171	187.121.205.199
103.231.73.226	212.154.88.42	177.55.57.206	45.174.234.44