JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.185.4.12

138.185.4.12 was found in our database!

This IP was reported 66 times. Confidence of Abuse is 0%: ?

ISP	Super On Telecom
Usage Type	Fixed Line ISP
ASN	AS266433
Hostname(s)	as266433.sp.netaki.com.br
Domain Name	hospede.me
Country	🇧🇷 Brazil
City	Leme, Sao Paulo

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.185.4.12

Whois 138.185.4.12

IP Abuse Reports for 138.185.4.12:

This IP address has been reported a total of 66 times from 54 distinct sources. 138.185.4.12 was first reported on October 18th 2023, and the most recent report was 1 year ago.

Old Reports: The most recent abuse report for this IP address is from 1 year ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇫🇮 np3	2024-08-05 11:07:38 (1 year ago)	Aug 5 14:07:30 raspberrypi sshd[3535709]: Failed password for invalid user root from 138.185.4.12 p ... show more Aug 5 14:07:30 raspberrypi sshd[3535709]: Failed password for invalid user root from 138.185.4.12 port 52800 ssh2 Aug 5 14:07:33 raspberrypi sshd[3535734]: User root from 138.185.4.12 not allowed because not listed in AllowUsers Aug 5 14:07:33 raspberrypi sshd[3535734]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Aug 5 14:07:35 raspberrypi sshd[3535734]: Failed password for invalid user root from 138.185.4.12 port 52808 ssh2 Aug 5 14:07:38 raspberrypi sshd[3535758]: User root from 138.185.4.12 not allowed because not listed in AllowUsers show less	Brute-Force SSH
🇨🇦 nickto	2024-08-05 11:04:23 (1 year ago)	Aug 5 07:04:22 Tower sshd[21642]: Connection from 138.185.4.12 port 49638 on 192.168.10.220 port 2 ... show more Aug 5 07:04:22 Tower sshd[21642]: Connection from 138.185.4.12 port 49638 on 192.168.10.220 port 22 rdomain "" show less	Brute-Force SSH
🇩🇪 mouafiq	2024-08-03 10:17:53 (1 year ago)	OCCO-Holding Aug 3 12:17:47 vmi702584 sshd[3842755]: pam_unix(sshd:auth): authentication failure; l ... show more OCCO-Holding Aug 3 12:17:47 vmi702584 sshd[3842755]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Aug 3 12:17:49 vmi702584 sshd[3842755]: Failed password for root from 138.185.4.12 port 59000 ssh2 Aug 3 12:17:50 vmi702584 sshd[3842755]: Connection closed by authenticating user root 138.185.4.12 port 59000 [preauth] Aug 3 12:17:51 vmi702584 sshd[3842758]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Aug 3 12:17:53 vmi702584 sshd[3842758]: Failed password for root from 138.185.4.12 port 59012 ssh2 ... show less	Brute-Force SSH
🇩🇪 cybergecko.de	2024-08-02 19:03:47 (1 year ago)	Aug 2 21:03:40 CyberGecko sshd[2708404]: pam_unix(sshd:auth): authentication failure; logname= uid= ... show more Aug 2 21:03:40 CyberGecko sshd[2708404]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Aug 2 21:03:42 CyberGecko sshd[2708404]: Failed password for root from 138.185.4.12 port 41836 ssh2 Aug 2 21:03:44 CyberGecko sshd[2708412]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Aug 2 21:03:46 CyberGecko sshd[2708412]: Failed password for root from 138.185.4.12 port 41842 ssh2 ... show less	Brute-Force SSH
🇺🇸 cxnky	2024-08-02 12:52:37 (1 year ago)	Aug 2 12:52:32 prod sshd[1929397]: Failed password for root from 138.185.4.12 port 56780 ssh2 Aug ... show more Aug 2 12:52:32 prod sshd[1929397]: Failed password for root from 138.185.4.12 port 56780 ssh2 Aug 2 12:52:34 prod sshd[1929406]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Aug 2 12:52:35 prod sshd[1929406]: Failed password for root from 138.185.4.12 port 56790 ssh2 ... show less	Brute-Force SSH
🇦🇪 abusiveIntelligence	2024-08-02 10:30:00 (1 year ago)	SSH Authentication Brute Force Attempt	Brute-Force
🇺🇸 chronos	2024-08-01 17:02:39 (1 year ago)	[AUTORAVALT][[01/08/2024 - 14:02:31 -03:00 UTC] Attack from [Latin American and Caribbean IP address ... show more [AUTORAVALT][[01/08/2024 - 14:02:31 -03:00 UTC] Attack from [Latin American and Caribbean IP address Regional Registry] [138.185.4.12]-[RANGE:138.185.4.0/22] [;; communications error to 127.0.0.53#53: timed out ;; communications error to 127.0.0.53#53: timed out ;; no servers could be reached] Action: BLocKed FTP Brute-Force -> Running brute force credentials] ... show less	FTP Brute-Force Brute-Force
🇨🇦 Largnet SOC	2024-08-01 12:49:57 (1 year ago)	138.185.4.12 triggered Icarus honeypot on port 22. Check us out on github.	Port Scan Hacking
🇩🇪 JavaStart	2024-08-01 11:46:18 (1 year ago)	Aug 1 13:46:09 vmi174663 sshd[28694]: Failed password for root from 138.185.4.12 port 47774 ssh2 Au ... show more Aug 1 13:46:09 vmi174663 sshd[28694]: Failed password for root from 138.185.4.12 port 47774 ssh2 Aug 1 13:46:11 vmi174663 sshd[28724]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Aug 1 13:46:13 vmi174663 sshd[28724]: Failed password for root from 138.185.4.12 port 47782 ssh2 Aug 1 13:46:16 vmi174663 sshd[28759]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Aug 1 13:46:17 vmi174663 sshd[28759]: Failed password for root from 138.185.4.12 port 47792 ssh2 ... show less	Brute-Force SSH
🇺🇸 drewf.ink	2024-08-01 04:01:53 (1 year ago)	[04:01] Tried to connect to SSH on port 22 but didn't have a valid header (port scanner?)	Brute-Force SSH
🇨🇭 blinx	2024-07-31 17:49:51 (1 year ago)	2024-07-31T19:49:50.363740+02:00 blinx-rpi4 endlessh[361]: 2024-07-31T17:49:50.363Z CLOSE host=::fff ... show more 2024-07-31T19:49:50.363740+02:00 blinx-rpi4 endlessh[361]: 2024-07-31T17:49:50.363Z CLOSE host=::ffff:138.185.4.12 port=36760 fd=4 time=20.020 bytes=32 ... show less	Brute-Force SSH
🇭🇺 HoneyPotEu	2024-07-31 17:20:31 (1 year ago)	Jul 31 19:20:29 [redacted] sshd[2304311]: pam_unix(sshd:auth): authentication failure; logname= uid= ... show more Jul 31 19:20:29 [redacted] sshd[2304311]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Jul 31 19:20:31 [redacted] sshd[2304311]: Failed password fo ... show less	Brute-Force SSH
🇩🇪 SurfinBirdie	2024-07-31 16:51:37 (1 year ago)	Jul 31 16:51:26 c2 sshd[4103]: Failed password for root from 138.185.4.12 port 42432 ssh2 Jul 31 16: ... show more Jul 31 16:51:26 c2 sshd[4103]: Failed password for root from 138.185.4.12 port 42432 ssh2 Jul 31 16:51:29 c2 sshd[4107]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Jul 31 16:51:32 c2 sshd[4107]: Failed password for root from 138.185.4.12 port 48196 ssh2 Jul 31 16:51:34 c2 sshd[4111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Jul 31 16:51:36 c2 sshd[4111]: Failed password for root from 138.185.4.12 port 48198 ssh2 ... show less	Brute-Force SSH
🇺🇸 chronos	2024-07-31 09:18:09 (1 year ago)	[AUTORAVALT][[31/07/2024 - 06:18:08 -03:00 UTC] Attack from [Latin American and Caribbean IP address ... show more [AUTORAVALT][[31/07/2024 - 06:18:08 -03:00 UTC] Attack from [Latin American and Caribbean IP address Regional Registry] [138.185.4.12]-[RANGE:138.185.4.0/22] [12-4-185-138.customer.netaki.com.br] Action: BLocKed FTP Brute-Force -> Running brute force credentials on the FTP server. Brute-Force -> Credential brute-force attacks on webpage logins and services li] ... show less	FTP Brute-Force Brute-Force
🇪🇸 bret.dk	2024-07-30 21:26:58 (1 year ago)	Jul 30 21:26:56 es-mirror sshd[739370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 ... show more Jul 30 21:26:56 es-mirror sshd[739370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.185.4.12 user=root Jul 30 21:26:57 es-mirror sshd[739370]: Failed password for root from 138.185.4.12 port 57532 ssh2 ... show less	Brute-Force SSH

Showing 1 to 15 of 66 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 217.217.248.93

🇲🇽 187.189.58.99

🇺🇸 162.216.150.65

🇵🇰 119.155.179.41

🇺🇸 107.174.58.216

🇫🇷 92.132.84.250

🇳🇱 91.92.42.19

🇧🇬 78.128.114.102

🇸🇬 47.128.53.65

🇻🇪 201.242.186.59

🇹🇳 196.176.208.35

🇺🇸 193.19.109.214

🇩🇪 178.105.144.231

🇩🇪 176.65.132.18

🇨🇳 171.105.76.94

🇺🇸 138.197.200.106

🇨🇳 124.66.77.187

🇨🇳 122.96.28.237

🇺🇸 20.64.104.177

🇫🇷 13.36.244.218