138.99.194.19 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Nova Fibra Telecom S.A.

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Lines containing failures of 138.99.194.19 Jun 22 13:43:43 keyhelp sshd[12049]: Invalid user admin from 138.99.194.19 port 54273 Jun 22 13:43:43 keyhelp sshd[12049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.194.19 Jun 22 13:43:45 keyhelp sshd[12049]: Failed password for invalid user admin from 138.99.194.19 port 54273 ssh2 Jun 22 13:43:45 keyhelp sshd[12049]: Connection closed by invalid user admin 138.99.194.19 port 54273 [preauth] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=138.99.194.19	2020-06-22 22:47:12

Type

Details

Datetime

attackspambots

Lines containing failures of 138.99.194.19
Jun 22 13:43:43 keyhelp sshd[12049]: Invalid user admin from 138.99.194.19 port 54273
Jun 22 13:43:43 keyhelp sshd[12049]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.194.19
Jun 22 13:43:45 keyhelp sshd[12049]: Failed password for invalid user admin from 138.99.194.19 port 54273 ssh2
Jun 22 13:43:45 keyhelp sshd[12049]: Connection closed by invalid user admin 138.99.194.19 port 54273 [preauth]


........
-----------------------------------------------
https://www.blocklist.de/en/view.html?ip=138.99.194.19

2020-06-22 22:47:12

Comments on same subnet:

IP	Type	Details	Datetime
138.99.194.171	attackspam	Unauthorized IMAP connection attempt	2020-08-16 17:59:45
138.99.194.219	attackspambots	Unauthorized IMAP connection attempt	2020-08-08 14:28:24
138.99.194.230	attackspam	Unauthorized IMAP connection attempt	2020-06-18 19:48:26
138.99.194.69	attackspam	Invalid user admin from 138.99.194.69 port 56621	2020-06-18 06:45:04
138.99.194.82	attackspambots	Jun 10 21:51:18 Host-KLAX-C postfix/submission/smtpd[6055]: lost connection after CONNECT from unknown[138.99.194.82] ...	2020-06-11 17:53:52
138.99.194.49	attack	Invalid user admin from 138.99.194.49 port 40866	2020-05-29 02:06:48

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.99.194.19
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 28707
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.99.194.19.			IN	A

;; AUTHORITY SECTION:
.			388	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020062200 1800 900 604800 86400

;; Query time: 89 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jun 22 22:47:02 CST 2020
;; MSG SIZE  rcvd: 117

Host info

19.194.99.138.in-addr.arpa domain name pointer ip-138-99-194-19.novafibratelecom.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
19.194.99.138.in-addr.arpa	name = ip-138-99-194-19.novafibratelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
62.173.147.70	attackspambots	emailspam / phishing	2020-10-05 19:19:17
189.207.242.90	attackspam	SSH invalid-user multiple login try	2020-10-05 18:56:20
62.234.124.104	attack	Oct 4 23:38:23 sip sshd[1817467]: Failed password for root from 62.234.124.104 port 22586 ssh2 Oct 4 23:41:40 sip sshd[1817506]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.124.104 user=root Oct 4 23:41:43 sip sshd[1817506]: Failed password for root from 62.234.124.104 port 8453 ssh2 ...	2020-10-05 19:08:08
222.186.175.148	attack	Brute force 50 attempts	2020-10-05 19:05:46
152.136.34.52	attackspam	$f2bV_matches	2020-10-05 19:24:47
92.184.98.237	attackbots	ece-12 : Blocage des caractères return, carriage return, ...=>/%3C?php%20echo%20$item-%3Ethumb;%20?%3E(>)	2020-10-05 19:33:23
49.88.112.73	attack	Oct 5 10:53:27 game-panel sshd[5150]: Failed password for root from 49.88.112.73 port 21342 ssh2 Oct 5 10:53:29 game-panel sshd[5150]: Failed password for root from 49.88.112.73 port 21342 ssh2 Oct 5 10:53:31 game-panel sshd[5150]: Failed password for root from 49.88.112.73 port 21342 ssh2	2020-10-05 19:00:56
187.176.185.65	attackspambots	2020-10-05T12:43:10.746691vps773228.ovh.net sshd[586]: Failed password for root from 187.176.185.65 port 36430 ssh2 2020-10-05T12:44:44.260452vps773228.ovh.net sshd[602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187-176-185-65.dynamic.axtel.net user=root 2020-10-05T12:44:46.044039vps773228.ovh.net sshd[602]: Failed password for root from 187.176.185.65 port 60000 ssh2 2020-10-05T12:46:14.278655vps773228.ovh.net sshd[611]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187-176-185-65.dynamic.axtel.net user=root 2020-10-05T12:46:16.082754vps773228.ovh.net sshd[611]: Failed password for root from 187.176.185.65 port 55340 ssh2 ...	2020-10-05 19:10:51
112.85.42.120	attackbots	Oct 5 11:04:03 scw-6657dc sshd[22231]: Failed password for root from 112.85.42.120 port 20678 ssh2 Oct 5 11:04:03 scw-6657dc sshd[22231]: Failed password for root from 112.85.42.120 port 20678 ssh2 Oct 5 11:04:07 scw-6657dc sshd[22231]: Failed password for root from 112.85.42.120 port 20678 ssh2 ...	2020-10-05 19:04:59
176.111.173.23	attackspambots	$f2bV_matches	2020-10-05 19:27:13
94.191.14.213	attackspam	fail2ban -- 94.191.14.213 ...	2020-10-05 19:24:19
106.12.56.41	attackbots	(sshd) Failed SSH login from 106.12.56.41 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 5 01:20:47 optimus sshd[1119]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.41 user=root Oct 5 01:20:48 optimus sshd[1119]: Failed password for root from 106.12.56.41 port 35886 ssh2 Oct 5 01:25:01 optimus sshd[2543]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.41 user=root Oct 5 01:25:03 optimus sshd[2543]: Failed password for root from 106.12.56.41 port 32852 ssh2 Oct 5 01:29:13 optimus sshd[3919]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.12.56.41 user=root	2020-10-05 19:27:47
202.124.204.7	attackspambots	202.124.204.7 - - [05/Oct/2020:05:41:55 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 202.124.204.7 - - [05/Oct/2020:05:43:51 +0200] "POST /xmlrpc.php HTTP/1.1" 403 146 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-10-05 19:13:08
59.56.99.130	attackbotsspam	(sshd) Failed SSH login from 59.56.99.130 (CN/China/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Oct 4 23:16:01 elude sshd[20603]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.56.99.130 user=root Oct 4 23:16:03 elude sshd[20603]: Failed password for root from 59.56.99.130 port 47196 ssh2 Oct 4 23:24:48 elude sshd[21899]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.56.99.130 user=root Oct 4 23:24:50 elude sshd[21899]: Failed password for root from 59.56.99.130 port 35007 ssh2 Oct 4 23:28:51 elude sshd[22496]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=59.56.99.130 user=root	2020-10-05 19:28:43
203.148.87.154	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-10-05 19:23:55

Recently Reported IPs

45.119.85.132	45.77.46.173	103.93.221.88	39.109.223.10
46.38.148.14	45.95.168.174	78.201.129.76	190.153.150.189
213.25.84.157	2.149.32.205	157.246.29.61	150.159.176.219
130.226.38.48	72.89.68.8	254.104.26.38	125.1.176.248
202.149.94.144	157.199.137.10	119.45.125.168	109.86.250.194