187.85.152.34 - IPInfo

Basic Info

City: Caçador

Region: Santa Catarina

Country: Brazil

Internet Service Provider: GGNet Telecomunicacoes Ltda

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspambots	Automatic report - Port Scan Attack	2019-11-11 20:15:21

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 187.85.152.34
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 45208
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;187.85.152.34.			IN	A

;; AUTHORITY SECTION:
.			330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019111100 1800 900 604800 86400

;; Query time: 137 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Nov 11 20:15:16 CST 2019
;; MSG SIZE  rcvd: 117

Host info

34.152.85.187.in-addr.arpa domain name pointer 187-85-152-34.gegnet.com.br.

Nslookup info:

Server:		100.100.2.136
Address:	100.100.2.136#53

Non-authoritative answer:
34.152.85.187.in-addr.arpa	name = 187-85-152-34.gegnet.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
58.219.213.3	attack	Host Scan	2019-12-31 17:17:40
111.67.197.14	attackspam	Dec 31 01:25:52 plusreed sshd[7618]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.67.197.14 user=root Dec 31 01:25:54 plusreed sshd[7618]: Failed password for root from 111.67.197.14 port 46400 ssh2 ...	2019-12-31 17:10:35
79.51.100.199	attackspambots	2019-12-31T07:25:22.634900vps751288.ovh.net sshd\[5037\]: Invalid user pi from 79.51.100.199 port 46320 2019-12-31T07:25:22.701162vps751288.ovh.net sshd\[5037\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host199-100-dynamic.51-79-r.retail.telecomitalia.it 2019-12-31T07:25:22.836297vps751288.ovh.net sshd\[5039\]: Invalid user pi from 79.51.100.199 port 46322 2019-12-31T07:25:22.915680vps751288.ovh.net sshd\[5039\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=host199-100-dynamic.51-79-r.retail.telecomitalia.it 2019-12-31T07:25:24.718682vps751288.ovh.net sshd\[5037\]: Failed password for invalid user pi from 79.51.100.199 port 46320 ssh2	2019-12-31 17:29:56
198.108.67.103	attackbots	12418/tcp 5907/tcp 5022/tcp... [2019-11-01/12-30]98pkt,95pt.(tcp)	2019-12-31 17:13:11
45.14.148.95	attack	Dec 31 05:42:25 vps46666688 sshd[2184]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.14.148.95 Dec 31 05:42:27 vps46666688 sshd[2184]: Failed password for invalid user iko from 45.14.148.95 port 41860 ssh2 ...	2019-12-31 17:23:11
148.66.135.178	attackbotsspam	2019-12-31T10:21:36.969015vps751288.ovh.net sshd\[5752\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.135.178 user=sync 2019-12-31T10:21:38.938433vps751288.ovh.net sshd\[5752\]: Failed password for sync from 148.66.135.178 port 55776 ssh2 2019-12-31T10:23:47.118936vps751288.ovh.net sshd\[5755\]: Invalid user iselin from 148.66.135.178 port 48526 2019-12-31T10:23:47.128198vps751288.ovh.net sshd\[5755\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=148.66.135.178 2019-12-31T10:23:49.082414vps751288.ovh.net sshd\[5755\]: Failed password for invalid user iselin from 148.66.135.178 port 48526 ssh2	2019-12-31 17:25:35
134.209.70.255	attackspam	Invalid user http from 134.209.70.255 port 56304	2019-12-31 17:32:49
185.232.67.6	attack	--- report --- Dec 31 06:10:44 -0300 sshd: Connection from 185.232.67.6 port 33240 Dec 31 06:11:02 -0300 sshd: Did not receive identification string from 185.232.67.6	2019-12-31 17:32:27
40.89.180.185	attackspam	Dec 31 09:31:47 lnxweb61 sshd[15322]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=40.89.180.185	2019-12-31 17:20:30
77.247.109.82	attackbotsspam	Dec 31 09:20:17 debian-2gb-nbg1-2 kernel: \[39752.673982\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=77.247.109.82 DST=195.201.40.59 LEN=438 TOS=0x00 PREC=0x00 TTL=54 ID=0 DF PROTO=UDP SPT=5089 DPT=5060 LEN=418	2019-12-31 17:12:45
103.9.159.66	attack	Lines containing failures of 103.9.159.66 (max 1000) Dec 30 01:40:56 mm sshd[18127]: Invalid user magdi from 103.9.159.66 po= rt 37254 Dec 30 01:40:56 mm sshd[18127]: pam_unix(sshd:auth): authentication fai= lure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D103.9.159.= 66 Dec 30 01:40:58 mm sshd[18127]: Failed password for invalid user magdi = from 103.9.159.66 port 37254 ssh2 Dec 30 01:40:59 mm sshd[18127]: Received disconnect from 103.9.159.66 p= ort 37254:11: Bye Bye [preauth] Dec 30 01:40:59 mm sshd[18127]: Disconnected from invalid user magdi 10= 3.9.159.66 port 37254 [preauth] Dec 30 02:02:03 mm sshd[18704]: Invalid user muenstermann from 103.9.15= 9.66 port 41402 Dec 30 02:02:03 mm sshd[18704]: pam_unix(sshd:auth): authentication fai= lure; logname=3D uid=3D0 euid=3D0 tty=3Dssh ruser=3D rhost=3D103.9.159.= 66 Dec 30 02:02:05 mm sshd[18704]: Failed password for invalid user muenst= ermann from 103.9.159.66 port 41402 ssh2 Dec 30 02:02:08 mm sshd[18704]: ........ ------------------------------	2019-12-31 17:23:56
122.51.86.120	attackspam	Dec 31 08:30:33 ArkNodeAT sshd\[19406\]: Invalid user admin from 122.51.86.120 Dec 31 08:30:33 ArkNodeAT sshd\[19406\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.86.120 Dec 31 08:30:35 ArkNodeAT sshd\[19406\]: Failed password for invalid user admin from 122.51.86.120 port 33600 ssh2	2019-12-31 17:28:58
222.186.175.182	attack	Dec 31 10:30:13 localhost sshd\[15854\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.175.182 user=root Dec 31 10:30:15 localhost sshd\[15854\]: Failed password for root from 222.186.175.182 port 38354 ssh2 Dec 31 10:30:18 localhost sshd\[15854\]: Failed password for root from 222.186.175.182 port 38354 ssh2	2019-12-31 17:40:03
165.22.112.87	attack	Dec 31 07:13:41 zeus sshd[31978]: Failed password for root from 165.22.112.87 port 49048 ssh2 Dec 31 07:14:57 zeus sshd[31996]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.22.112.87 Dec 31 07:14:58 zeus sshd[31996]: Failed password for invalid user kerchenfaut from 165.22.112.87 port 33760 ssh2	2019-12-31 17:28:43
129.204.83.118	attackspambots	$f2bV_matches	2019-12-31 17:09:05

Recently Reported IPs

142.44.178.4	179.165.137.243	101.89.112.10	78.11.1.189
193.169.252.217	95.70.216.46	89.21.52.26	90.92.19.195
185.141.24.14	1.20.98.66	185.49.64.182	81.83.3.6
210.13.106.84	113.172.145.19	120.39.142.4	116.104.123.135
58.34.202.245	110.137.250.101	106.198.20.57	217.21.193.74