138.99.205.52 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.99.205.219	attackbotsspam	May 4 14:14:53 cloud sshd[14002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.205.219 May 4 14:14:55 cloud sshd[14002]: Failed password for invalid user kk from 138.99.205.219 port 51310 ssh2	2020-05-04 21:27:46
138.99.205.170	attackbots	Automatic report - Port Scan Attack	2020-03-05 06:15:55
138.99.205.68	attack	Automatic report - Port Scan Attack	2019-10-17 19:40:08

Type

Details

Datetime

138.99.205.219

attackbotsspam

May  4 14:14:53 cloud sshd[14002]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.205.219 
May  4 14:14:55 cloud sshd[14002]: Failed password for invalid user kk from 138.99.205.219 port 51310 ssh2

2020-05-04 21:27:46

138.99.205.170

attackbots

Automatic report - Port Scan Attack

2020-03-05 06:15:55

138.99.205.68

attack

Automatic report - Port Scan Attack

2019-10-17 19:40:08

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.99.205.52
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11819
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.99.205.52.			IN	A

;; AUTHORITY SECTION:
.			600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023052400 1800 900 604800 86400

;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed May 24 14:39:04 CST 2023
;; MSG SIZE  rcvd: 106

Host info

52.205.99.138.in-addr.arpa domain name pointer 138.99.205.52.clientes.teleson.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
52.205.99.138.in-addr.arpa	name = 138.99.205.52.clientes.teleson.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
193.168.231.169	attackbots	Automatic report - Port Scan Attack	2020-04-27 13:28:49
118.26.128.202	attackspambots	2020-04-27T05:55:38.751404vps751288.ovh.net sshd\[4940\]: Invalid user graylog from 118.26.128.202 port 51258 2020-04-27T05:55:38.759862vps751288.ovh.net sshd\[4940\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.26.128.202 2020-04-27T05:55:40.481102vps751288.ovh.net sshd\[4940\]: Failed password for invalid user graylog from 118.26.128.202 port 51258 ssh2 2020-04-27T05:58:22.366902vps751288.ovh.net sshd\[4953\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.26.128.202 user=root 2020-04-27T05:58:24.268993vps751288.ovh.net sshd\[4953\]: Failed password for root from 118.26.128.202 port 51000 ssh2	2020-04-27 13:24:48
91.121.221.195	attackbots	Apr 27 07:13:13 OPSO sshd\[12531\]: Invalid user julie from 91.121.221.195 port 57184 Apr 27 07:13:13 OPSO sshd\[12531\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.221.195 Apr 27 07:13:15 OPSO sshd\[12531\]: Failed password for invalid user julie from 91.121.221.195 port 57184 ssh2 Apr 27 07:17:19 OPSO sshd\[13280\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=91.121.221.195 user=root Apr 27 07:17:21 OPSO sshd\[13280\]: Failed password for root from 91.121.221.195 port 44484 ssh2	2020-04-27 13:28:12
107.173.118.152	attackspambots	Apr 24 03:37:24 cloud sshd[23785]: Failed password for root from 107.173.118.152 port 50844 ssh2 Apr 27 05:58:33 cloud sshd[24242]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.118.152	2020-04-27 13:16:01
222.186.180.8	attack	DATE:2020-04-27 06:52:36, IP:222.186.180.8, PORT:ssh SSH brute force auth on honeypot server (epe-honey1-hq)	2020-04-27 13:09:20
185.50.149.2	attackspam	Repeated attempts to hack into email account.	2020-04-27 13:31:30
118.25.103.132	attack	Apr 27 07:00:22 vpn01 sshd[30373]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.103.132 Apr 27 07:00:24 vpn01 sshd[30373]: Failed password for invalid user tom from 118.25.103.132 port 36972 ssh2 ...	2020-04-27 13:01:56
186.226.0.230	attack	Apr 27 05:58:49 host postfix/smtps/smtpd\[18223\]: warning: unknown\[186.226.0.230\]: SASL PLAIN authentication failed:	2020-04-27 13:05:46
142.93.101.30	attackbots	2020-04-27T03:53:49.345168Z 217e8dfbc8cf New connection: 142.93.101.30:43832 (172.17.0.5:2222) [session: 217e8dfbc8cf] 2020-04-27T03:59:05.455436Z 4c1bdc5cdd03 New connection: 142.93.101.30:47880 (172.17.0.5:2222) [session: 4c1bdc5cdd03]	2020-04-27 12:52:07
222.186.175.169	attack	Apr 26 18:56:18 hanapaa sshd\[16931\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Apr 26 18:56:20 hanapaa sshd\[16931\]: Failed password for root from 222.186.175.169 port 3510 ssh2 Apr 26 18:56:37 hanapaa sshd\[16944\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.169 user=root Apr 26 18:56:39 hanapaa sshd\[16944\]: Failed password for root from 222.186.175.169 port 63118 ssh2 Apr 26 18:56:42 hanapaa sshd\[16944\]: Failed password for root from 222.186.175.169 port 63118 ssh2	2020-04-27 12:57:08
80.82.78.100	attackspambots	80.82.78.100 was recorded 12 times by 8 hosts attempting to connect to the following ports: 1027,1023. Incident counter (4h, 24h, all-time): 12, 51, 25585	2020-04-27 13:04:39
203.135.20.36	attack	2020-04-27T00:49:15.8971611495-001 sshd[37659]: Invalid user customer from 203.135.20.36 port 35559 2020-04-27T00:49:17.6010821495-001 sshd[37659]: Failed password for invalid user customer from 203.135.20.36 port 35559 ssh2 2020-04-27T00:53:42.1869241495-001 sshd[37917]: Invalid user Administrator from 203.135.20.36 port 38248 2020-04-27T00:53:42.1945031495-001 sshd[37917]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.135.20.36 2020-04-27T00:53:42.1869241495-001 sshd[37917]: Invalid user Administrator from 203.135.20.36 port 38248 2020-04-27T00:53:44.2112581495-001 sshd[37917]: Failed password for invalid user Administrator from 203.135.20.36 port 38248 ssh2 ...	2020-04-27 13:11:50
46.38.144.179	attackspambots	Apr 27 06:39:47 mail.srvfarm.net postfix/smtpd[244198]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 06:41:10 mail.srvfarm.net postfix/smtpd[258249]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 06:42:33 mail.srvfarm.net postfix/smtpd[262463]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 06:43:55 mail.srvfarm.net postfix/smtpd[262555]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Apr 27 06:45:17 mail.srvfarm.net postfix/smtpd[262544]: warning: unknown[46.38.144.179]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-04-27 13:04:53
61.42.20.128	attack	Apr 27 03:59:13 work-partkepr sshd\[13117\]: Invalid user admin from 61.42.20.128 port 13296 Apr 27 03:59:13 work-partkepr sshd\[13117\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.42.20.128 ...	2020-04-27 12:50:59
31.167.133.137	attack	$f2bV_matches	2020-04-27 13:34:52

Recently Reported IPs

8.178.193.84	78.31.45.172	221.110.42.39	150.37.125.224
149.183.19.83	167.138.237.246	74.0.210.84	56.171.50.120
220.252.252.77	114.149.167.93	198.2.2.75	201.26.19.78
47.138.62.58	25.22.18.163	247.200.237.239	103.60.201.77
115.22.99.34	170.52.107.229	21.57.34.78	216.73.26.181