9.138.1.185 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 9.138.1.185
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18672
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;9.138.1.185.			IN	A

;; AUTHORITY SECTION:
.			318	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061503 1800 900 604800 86400

;; Query time: 25 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jun 16 05:05:13 CST 2022
;; MSG SIZE  rcvd: 104

Host info

Host 185.1.138.9.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 185.1.138.9.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
203.151.214.33	attackspam	2020-09-24T16:05:40.054498www postfix/smtpd[1276]: warning: 33.214.151.203.sta.inet.co.th[203.151.214.33]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-09-24T16:05:49.045699www postfix/smtpd[1276]: warning: 33.214.151.203.sta.inet.co.th[203.151.214.33]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2020-09-24T16:06:01.259791www postfix/smtpd[1276]: warning: 33.214.151.203.sta.inet.co.th[203.151.214.33]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-09-24 22:58:19
142.4.204.122	attackbots	(sshd) Failed SSH login from 142.4.204.122 (CA/Canada/-): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Sep 24 00:50:11 server sshd[27305]: Invalid user telnet from 142.4.204.122 port 60670 Sep 24 00:50:13 server sshd[27305]: Failed password for invalid user telnet from 142.4.204.122 port 60670 ssh2 Sep 24 00:54:27 server sshd[28339]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.4.204.122 user=root Sep 24 00:54:29 server sshd[28339]: Failed password for root from 142.4.204.122 port 47902 ssh2 Sep 24 00:56:48 server sshd[29000]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.4.204.122 user=root	2020-09-24 23:28:10
167.172.196.255	attack	Invalid user plex from 167.172.196.255 port 37022	2020-09-24 23:22:24
170.245.153.53	attackspam	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-24 23:15:25
101.231.146.36	attackbotsspam	Sep 24 13:15:27 Ubuntu-1404-trusty-64-minimal sshd\[28327\]: Invalid user teamspeak from 101.231.146.36 Sep 24 13:15:27 Ubuntu-1404-trusty-64-minimal sshd\[28327\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.146.36 Sep 24 13:15:29 Ubuntu-1404-trusty-64-minimal sshd\[28327\]: Failed password for invalid user teamspeak from 101.231.146.36 port 46769 ssh2 Sep 24 13:28:19 Ubuntu-1404-trusty-64-minimal sshd\[3836\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=101.231.146.36 user=root Sep 24 13:28:21 Ubuntu-1404-trusty-64-minimal sshd\[3836\]: Failed password for root from 101.231.146.36 port 9607 ssh2	2020-09-24 23:16:12
223.155.182.72	attackspam	Listed on zen-spamhaus / proto=6 . srcport=41270 . dstport=81 . (2887)	2020-09-24 23:08:06
40.117.41.114	attackspambots	[f2b] sshd bruteforce, retries: 1	2020-09-24 23:19:52
67.213.82.137	attackbotsspam	Automatic report - Banned IP Access	2020-09-24 23:28:59
203.221.43.11	attackspambots	Icarus honeypot on github	2020-09-24 23:13:56
177.200.219.170	attack	TCP (SYN) 177.200.219.170:16458 -> port 445, len 52	2020-09-24 23:29:47
52.188.169.250	attackspambots	Lines containing failures of 52.188.169.250 Sep 23 14:29:09 shared09 sshd[30725]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.188.169.250 user=r.r Sep 23 14:29:09 shared09 sshd[30727]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=52.188.169.250 user=r.r Sep 23 14:29:11 shared09 sshd[30725]: Failed password for r.r from 52.188.169.250 port 41833 ssh2 Sep 23 14:29:11 shared09 sshd[30725]: Received disconnect from 52.188.169.250 port 41833:11: Client disconnecting normally [preauth] Sep 23 14:29:11 shared09 sshd[30725]: Disconnected from authenticating user r.r 52.188.169.250 port 41833 [preauth] Sep 23 14:29:11 shared09 sshd[30727]: Failed password for r.r from 52.188.169.250 port 41894 ssh2 Sep 23 14:29:11 shared09 sshd[30727]: Received disconnect from 52.188.169.250 port 41894:11: Client disconnecting normally [preauth] Sep 23 14:29:11 shared09 sshd[30727]: Disconnected from authe........ ------------------------------	2020-09-24 23:17:29
122.51.32.91	attackspambots	Sep 24 06:35:14 onepixel sshd[2210778]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.32.91 Sep 24 06:35:14 onepixel sshd[2210778]: Invalid user limpa from 122.51.32.91 port 42230 Sep 24 06:35:16 onepixel sshd[2210778]: Failed password for invalid user limpa from 122.51.32.91 port 42230 ssh2 Sep 24 06:37:42 onepixel sshd[2211220]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=122.51.32.91 user=root Sep 24 06:37:44 onepixel sshd[2211220]: Failed password for root from 122.51.32.91 port 47614 ssh2	2020-09-24 23:35:42
185.147.215.13	attackspam	[2020-09-24 11:11:03] NOTICE[1159] chan_sip.c: Registration from '' failed for '185.147.215.13:54651' - Wrong password [2020-09-24 11:11:03] SECURITY[1198] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-24T11:11:03.809-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="7030",SessionID="0x7fcaa00dd368",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.215.13/54651",Challenge="012ca681",ReceivedChallenge="012ca681",ReceivedHash="1488da65016eaf816011421e29e7719c" [2020-09-24 11:11:30] NOTICE[1159] chan_sip.c: Registration from '' failed for '185.147.215.13:64986' - Wrong password [2020-09-24 11:11:30] SECURITY[1198] res_security_log.c: SecurityEvent="InvalidPassword",EventTV="2020-09-24T11:11:30.404-0400",Severity="Error",Service="SIP",EventVersion="2",AccountID="6274",SessionID="0x7fcaa02d7a38",LocalAddress="IPV4/UDP/192.168.244.6/5060",RemoteAddress="IPV4/UDP/185.147.21 ...	2020-09-24 23:25:30
192.241.235.181	attackspambots	[-]:80 192.241.235.181 - - [24/Sep/2020:11:15:00 +0200] "GET /portal/redlion HTTP/1.1" 301 441 "-" "Mozilla/5.0 zgrab/0.x"	2020-09-24 23:19:09
154.221.18.237	attack	Invalid user edi from 154.221.18.237 port 54810	2020-09-24 22:59:31

Recently Reported IPs

169.229.221.90	9.162.247.237	9.162.215.182	9.182.219.193
169.229.242.0	169.229.245.36	169.229.250.81	169.229.250.40
169.229.250.121	169.229.250.141	169.229.250.199	169.229.250.241
169.229.251.20	169.229.251.155	169.229.252.41	169.229.210.192
169.229.210.198	37.228.106.247	78.85.248.209	169.229.199.155