85.138.118.31 - IPInfo

Basic Info

City: Portimão

Region: Faro

Country: Portugal

Internet Service Provider: NOS

Hostname: unknown

Organization: Nos Comunicacoes, S.A.

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.138.118.31
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 3906
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;85.138.118.31.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071301 1800 900 604800 86400

;; Query time: 4 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 14 02:45:45 CST 2019
;; MSG SIZE  rcvd: 117

Host info

31.118.138.85.in-addr.arpa domain name pointer a85-138-118-31.cpe.netcabo.pt.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
31.118.138.85.in-addr.arpa	name = a85-138-118-31.cpe.netcabo.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
159.89.10.77	attack	Sep 22 16:14:09 sshgateway sshd\[780\]: Invalid user zhouh from 159.89.10.77 Sep 22 16:14:09 sshgateway sshd\[780\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.89.10.77 Sep 22 16:14:12 sshgateway sshd\[780\]: Failed password for invalid user zhouh from 159.89.10.77 port 40118 ssh2	2019-09-23 04:21:39
27.71.224.2	attack	2019-09-23T01:02:59.229093enmeeting.mahidol.ac.th sshd\[22622\]: Invalid user mddemo from 27.71.224.2 port 48004 2019-09-23T01:02:59.249432enmeeting.mahidol.ac.th sshd\[22622\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=27.71.224.2 2019-09-23T01:03:01.642284enmeeting.mahidol.ac.th sshd\[22622\]: Failed password for invalid user mddemo from 27.71.224.2 port 48004 ssh2 ...	2019-09-23 04:22:11
113.200.156.180	attack	k+ssh-bruteforce	2019-09-23 03:55:47
153.228.158.177	attackbotsspam	2019-09-22T19:58:57.323580abusebot-5.cloudsearch.cf sshd\[29493\]: Invalid user betsy from 153.228.158.177 port 56433	2019-09-23 04:11:10
34.222.20.167	attackspambots	phishing spam smtp.mailfrom=estati.icu; hotmail.co.uk; dkim=none (message not signed) header.d=none;hotmail.co.uk; dmarc=none action=none header.from=estati.icu; Received-SPF: Fail (protection.outlook.com: domain of estati.icu does not designate 34.222.20.167 as permitted sender) receiver=protection.outlook.com; client-ip=34.222.20.167; helo=a27.fsjes-tanger.com; Received: from a27.fsjes-tanger.com From: DailySavingsFinder Subject: You've been selected to get an exclusive reward. Reply-To: reply@estati.icu Received: from fsjes-tanger.com (172.31.16.184) by fsjes-tanger.com 34.222.20.167 ISP Amazon Technologies Inc. Usage Type Data Center/Web Hosting/Transit Hostname(s) ec2-34-222-20-167.us-west-2.compute.amazonaws.com Domain Name amazon.com Country United States City Portland, Oregon	2019-09-23 04:03:50
35.195.232.13	attack	/cm/	2019-09-23 04:10:22
185.234.219.81	attackspambots	2019-09-22T18:33:11.944623MailD postfix/smtpd[11706]: warning: unknown[185.234.219.81]: SASL LOGIN authentication failed: authentication failure 2019-09-22T18:47:11.708142MailD postfix/smtpd[12711]: warning: unknown[185.234.219.81]: SASL LOGIN authentication failed: authentication failure 2019-09-22T19:01:09.089283MailD postfix/smtpd[13697]: warning: unknown[185.234.219.81]: SASL LOGIN authentication failed: authentication failure	2019-09-23 04:02:47
212.64.58.154	attackspam	Sep 22 19:11:44 monocul sshd[6318]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.64.58.154 user=root Sep 22 19:11:46 monocul sshd[6318]: Failed password for root from 212.64.58.154 port 42432 ssh2 ...	2019-09-23 04:00:46
114.32.218.156	attackbots	Brute force SMTP login attempted. ...	2019-09-23 03:52:06
106.13.65.18	attackbots	Sep 22 19:11:16 eventyay sshd[28679]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.65.18 Sep 22 19:11:17 eventyay sshd[28679]: Failed password for invalid user ftpuser from 106.13.65.18 port 35504 ssh2 Sep 22 19:15:05 eventyay sshd[28760]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.65.18 ...	2019-09-23 04:24:07
163.172.251.80	attack	Sep 22 09:43:56 hiderm sshd\[8475\]: Invalid user system1 from 163.172.251.80 Sep 22 09:43:56 hiderm sshd\[8475\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.251.80 Sep 22 09:43:58 hiderm sshd\[8475\]: Failed password for invalid user system1 from 163.172.251.80 port 49076 ssh2 Sep 22 09:48:39 hiderm sshd\[8889\]: Invalid user gitblit from 163.172.251.80 Sep 22 09:48:39 hiderm sshd\[8889\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=163.172.251.80	2019-09-23 03:54:04
62.234.65.92	attack	Sep 22 13:49:44 work-partkepr sshd\[29545\]: Invalid user aaa from 62.234.65.92 port 56678 Sep 22 13:49:44 work-partkepr sshd\[29545\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=62.234.65.92 ...	2019-09-23 03:53:01
197.248.16.118	attack	2019-08-18 17:21:25,822 fail2ban.actions [878]: NOTICE [sshd] Ban 197.248.16.118 2019-08-18 20:30:33,750 fail2ban.actions [878]: NOTICE [sshd] Ban 197.248.16.118 2019-08-18 23:41:11,965 fail2ban.actions [878]: NOTICE [sshd] Ban 197.248.16.118 ...	2019-09-23 04:04:27
51.254.220.20	attack	Sep 22 09:07:09 tdfoods sshd\[1901\]: Invalid user qt from 51.254.220.20 Sep 22 09:07:09 tdfoods sshd\[1901\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-51-254-220.eu Sep 22 09:07:11 tdfoods sshd\[1901\]: Failed password for invalid user qt from 51.254.220.20 port 34015 ssh2 Sep 22 09:11:20 tdfoods sshd\[2348\]: Invalid user jounetsu from 51.254.220.20 Sep 22 09:11:20 tdfoods sshd\[2348\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=20.ip-51-254-220.eu	2019-09-23 04:22:51
185.130.44.108	attack	Automatic report - Banned IP Access	2019-09-23 03:56:33

Recently Reported IPs

41.197.71.104	70.48.195.252	141.33.93.176	178.92.35.48
207.194.158.169	196.21.59.196	112.3.223.91	100.45.213.108
87.61.19.65	27.177.195.207	75.100.194.4	8.117.150.37
119.112.2.225	116.102.215.33	198.188.156.21	153.251.33.23
54.240.9.156	117.56.245.206	217.98.147.129	201.67.187.252