85.242.253.182

Basic Info

City: Albufeira

Region: Faro

Country: Portugal

Internet Service Provider: MEO

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 85.242.253.182
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37708
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;85.242.253.182.			IN	A

;; AUTHORITY SECTION:
.			593	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2023011002 1800 900 604800 86400

;; Query time: 215 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Jan 11 08:12:26 CST 2023
;; MSG SIZE  rcvd: 107

Host info

182.253.242.85.in-addr.arpa domain name pointer bl9-253-182.dsl.telepac.pt.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
182.253.242.85.in-addr.arpa	name = bl9-253-182.dsl.telepac.pt.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
125.45.90.28	attackbotsspam	Sep 23 07:20:33 ACSRAD auth.info sshd[21951]: Invalid user kc from 125.45.90.28 port 39048 Sep 23 07:20:33 ACSRAD auth.info sshd[21951]: Failed password for invalid user kc from 125.45.90.28 port 39048 ssh2 Sep 23 07:20:34 ACSRAD auth.info sshd[21951]: Received disconnect from 125.45.90.28 port 39048:11: Bye Bye [preauth] Sep 23 07:20:34 ACSRAD auth.info sshd[21951]: Disconnected from 125.45.90.28 port 39048 [preauth] Sep 23 07:20:34 ACSRAD auth.notice sshguard[30767]: Attack from "125.45.90.28" on service 100 whostnameh danger 10. Sep 23 07:20:34 ACSRAD auth.notice sshguard[30767]: Attack from "125.45.90.28" on service 100 whostnameh danger 10. Sep 23 07:20:34 ACSRAD auth.notice sshguard[30767]: Attack from "125.45.90.28" on service 100 whostnameh danger 10. Sep 23 07:20:34 ACSRAD auth.warn sshguard[30767]: Blocking "125.45.90.28/32" for 120 secs (3 attacks in 0 secs, after 1 abuses over 0 secs.) Sep 23 07:25:13 ACSRAD auth.info sshd[24533]: Invalid user loverd from 125........ ------------------------------	2019-09-25 14:49:07
80.211.2.59	attackbots	Automatic report - Banned IP Access	2019-09-25 14:37:13
222.186.175.217	attack	Sep 25 08:17:07 root sshd[16669]: Failed password for root from 222.186.175.217 port 37226 ssh2 Sep 25 08:17:12 root sshd[16669]: Failed password for root from 222.186.175.217 port 37226 ssh2 Sep 25 08:17:17 root sshd[16669]: Failed password for root from 222.186.175.217 port 37226 ssh2 Sep 25 08:17:21 root sshd[16669]: Failed password for root from 222.186.175.217 port 37226 ssh2 ...	2019-09-25 14:44:15
103.102.192.106	attackbotsspam	Sep 25 08:01:11 vmanager6029 sshd\[19872\]: Invalid user azureuser from 103.102.192.106 port 1042 Sep 25 08:01:11 vmanager6029 sshd\[19872\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=103.102.192.106 Sep 25 08:01:13 vmanager6029 sshd\[19872\]: Failed password for invalid user azureuser from 103.102.192.106 port 1042 ssh2	2019-09-25 14:45:51
138.197.166.110	attack	Sep 25 01:39:07 pi01 sshd[4105]: Connection from 138.197.166.110 port 40916 on 192.168.1.10 port 22 Sep 25 01:39:07 pi01 sshd[4105]: Invalid user neighbourhoodbillboard from 138.197.166.110 port 40916 Sep 25 01:39:07 pi01 sshd[4105]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.166.110 Sep 25 01:39:09 pi01 sshd[4105]: Failed password for invalid user neighbourhoodbillboard from 138.197.166.110 port 40916 ssh2 Sep 25 01:39:10 pi01 sshd[4105]: Received disconnect from 138.197.166.110 port 40916:11: Bye Bye [preauth] Sep 25 01:39:10 pi01 sshd[4105]: Disconnected from 138.197.166.110 port 40916 [preauth] Sep 25 01:56:40 pi01 sshd[4346]: Connection from 138.197.166.110 port 33430 on 192.168.1.10 port 22 Sep 25 01:56:40 pi01 sshd[4346]: Invalid user MGR from 138.197.166.110 port 33430 Sep 25 01:56:40 pi01 sshd[4346]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.166.110 Sep 25........ -------------------------------	2019-09-25 14:17:45
51.255.46.83	attack	Sep 25 08:54:01 gw1 sshd[5908]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.255.46.83 Sep 25 08:54:02 gw1 sshd[5908]: Failed password for invalid user ogrish from 51.255.46.83 port 58288 ssh2 ...	2019-09-25 14:16:50
37.59.99.243	attackspambots	Sep 25 00:58:20 ny01 sshd[24636]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.99.243 Sep 25 00:58:22 ny01 sshd[24636]: Failed password for invalid user harvey from 37.59.99.243 port 13305 ssh2 Sep 25 01:02:42 ny01 sshd[25336]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.59.99.243	2019-09-25 14:29:18
202.142.173.58	attackspam	Scanning and Vuln Attempts	2019-09-25 14:52:04
108.179.219.114	attackspambots	www.lust-auf-land.com 108.179.219.114 \[25/Sep/2019:05:53:19 +0200\] "POST /wp-login.php HTTP/1.1" 200 5828 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0" www.lust-auf-land.com 108.179.219.114 \[25/Sep/2019:05:53:21 +0200\] "POST /wp-login.php HTTP/1.1" 200 5787 "-" "Mozilla/5.0 $X11\; Ubuntu\; Linux x86_64\; rv:62.0$ Gecko/20100101 Firefox/62.0"	2019-09-25 14:45:33
221.150.17.93	attackbots	Sep 25 06:06:56 sshgateway sshd\[12040\]: Invalid user openfire from 221.150.17.93 Sep 25 06:06:56 sshgateway sshd\[12040\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=221.150.17.93 Sep 25 06:06:59 sshgateway sshd\[12040\]: Failed password for invalid user openfire from 221.150.17.93 port 41434 ssh2	2019-09-25 14:53:37
185.40.4.67	attackspam	\[2019-09-25 02:44:48\] NOTICE\[1970\] chan_sip.c: Registration from '\' failed for '185.40.4.67:61193' - Wrong password \[2019-09-25 02:44:48\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-25T02:44:48.275-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4081",SessionID="0x7f9b345a1f18",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.40.4.67/61193",Challenge="5e5647be",ReceivedChallenge="5e5647be",ReceivedHash="49c8b9e5ffdf6473c1083ecd13260a10" \[2019-09-25 02:45:25\] NOTICE\[1970\] chan_sip.c: Registration from '\' failed for '185.40.4.67:50663' - Wrong password \[2019-09-25 02:45:25\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-25T02:45:25.308-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="4090",SessionID="0x7f9b34054748",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.40.4.67/506	2019-09-25 14:55:39
202.74.242.216	attackbots	Chat Spam	2019-09-25 14:42:17
164.160.34.111	attackspambots	Sep 24 20:41:57 lcdev sshd\[18953\]: Invalid user user from 164.160.34.111 Sep 24 20:41:57 lcdev sshd\[18953\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.160.34.111 Sep 24 20:41:58 lcdev sshd\[18953\]: Failed password for invalid user user from 164.160.34.111 port 51226 ssh2 Sep 24 20:46:49 lcdev sshd\[19384\]: Invalid user weblogic from 164.160.34.111 Sep 24 20:46:49 lcdev sshd\[19384\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=164.160.34.111	2019-09-25 14:52:17
176.31.191.61	attack	$f2bV_matches	2019-09-25 14:32:10
192.3.140.202	attack	\[2019-09-25 02:38:54\] NOTICE\[1970\] chan_sip.c: Registration from '\' failed for '192.3.140.202:54710' - Wrong password \[2019-09-25 02:38:54\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-25T02:38:54.078-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7643",SessionID="0x7f9b34358e08",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.3.140.202/54710",Challenge="0432d999",ReceivedChallenge="0432d999",ReceivedHash="0bd1925313f035959cc3215192150685" \[2019-09-25 02:40:48\] NOTICE\[1970\] chan_sip.c: Registration from '\' failed for '192.3.140.202:59941' - Wrong password \[2019-09-25 02:40:48\] SECURITY\[1978\] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2019-09-25T02:40:48.396-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="2934",SessionID="0x7f9b34044128",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/192.3.140	2019-09-25 14:52:57

Recently Reported IPs

169.248.217.161	75.93.53.26	155.141.52.175	205.219.2.194
168.40.213.242	192.164.2.229	177.84.62.15	28.136.222.138
239.39.165.166	207.130.178.220	77.220.207.70	223.224.182.171
61.78.226.200	3.138.69.206	192.92.118.121	85.203.3.89
139.52.131.229	191.168.200.140	222.255.138.212	154.61.149.27