185.38.142.170 Threat Intelligence and Host Information

Sep 30, 2025 ipinfopage

General

This page contains threat intelligence information for the IPv4 address 185.38.142.170 and was generated either as a result of observed malicious activity or as an information gathering exercise to assist with enrichment of security events and context. All information is gathered passively through aggregation of public sources, or observations through activity upon honeynets. The host score is calculated through a series of statistically weighted values and machine learning which takes into account metadata such as host information, frequency, volume and global distribution of malicious activity, association with other known malicious hosts or networks, proxying or anonymising behaviour such as with tor exit nodes, residential proxies or VPN services, and many other attributes. These values are historical and indicative only - and should not be taken to be an accurate representation of the users, businesses or networks in which they reside.

Potentially Malicious Host 🟡 35/100

Host and Network Information

  • Tags: Bruteforce, Brute-Force, digital ocean, scanners, ssh, SSH, vultr

  • View other sources: Spamhaus VirusTotal

  • Country: Portugal
  • Network:
  • Noticed: 37 times
  • Protocols Attacked: ssh
  • Countries Attacked: Canada, Spain
  • Passive DNS Results: htlp-creneau.com ivtk-creneau.com bnni-creneau.com 5708hd88.com 5708d5.com 5708d1.com 5708hd66.com 5708d2.com 5708d3.com 57085533.com 5708svip6.com ky91hd55.com ky91svip99.com 8888dl6.vip 88880066.vip 85676111.vip 88886622.vip 88880099.vip 8888dl8.vip 85678111.vip 85670033.vip 488lq.vip 959015.vip 7662888.vip 964446.vip 7665888.vip 808hd03.vip ky238666.com 9558svip88.com 9558dl88.com 5555tlw3.vip 98tly3.vip 5579xz5.vip 5555tl3.vip 5579dhy4.vip 666tly02.vip 898tl8.vip 58tl8.vip 5555yxw5.vip 8985588.vip 8985577.vip 89hghd68.com 36666tly2.com 89hg6611.com ky260044.com 36666tly3.com ky26zp8.com 89hgdl17.com ky26app9.com ky26tl8.com ky26hd28.com ky26dl88.com ky35tl8.com ky260022.com ky260033.com 266hd02.vip 666xz02.vip 98xz6.vip 5579xz6.vip 2663366.vip 266hd03.vip 742ac6.xyz 742ac2.xyz 742ac3.xyz 7669956.vip 8888svip9.vip 365566.vip 36apps9.vip 6666app666.vip 8567zp881.vip 8567app888.vip 6666apps9.vip 7667756.vip 362233.vip ky91xz99.com ky91hd222.com ky23hd33.com ky91svip9.com 5579t2.vip 222tly2.vip 98xz7.vip 5579505.vip 55550001.vip 98dly.vip 36666xz7.com 36666dh3.com 36666606.com 188dll2.vip 36dl55.vip 188xz01.vip 828hd10.vip 8888hd96.vip 5708533.com ky35app8.com 9999dh.xyz 766008.vip 8567066.vip 766006.vip 8567022.vip 7000837.com 66662222.vip 1008009.com ky91app18.com ky26345.com 959hd8.vip 959hd9.vip 199hd15.vip 368883.vip 8567zp96.vip 8567zp98.vip ky915511.com ky91dl55.com ky23xz66.com 5555d9.vip 5555xz9.vip 766118.vip 528zb2.xyz 528zb1.xyz 959hd6.vip 199hd11.vip 96hd88.vip 528xz7.xyz 828hd8.vip 360008.vip 361888.vip 690006.vip 828hd7.vip 8688u.xyz 8688j.xyz 8688l.xyz 8688o.xyz 8688c.xyz 8688i.xyz 8688a.xyz 8567apps8.vip 8567apps6.vip 8888apps6.vip 898xz6.vip 488hd2.vip 7669888.vip 7669666.vip 69hd4.vip 692536.vip 266822.vip 368188.vip 96dll1.vip 222tly.vip 199xz2.vip 96dll.vip 222d5.vip 1888tz.xyz 766svip8.vip 898tl.vip 8888svip6.vip 69tl.vip 97hd9.vip 808aq.vip 868aq.vip 97hd10.vip 742ld2.xyz 742dl5.xyz 742ld5.xyz 742ld3.xyz 97hd7.vip 97hd8.vip 368889.vip 696238.vip 977hd7.vip 808xz1.vip 856h.xyz 856c.xyz 856t.xyz 856o.xyz 856f.xyz 856l.xyz 856n.xyz 856w.xyz 3303ap.vip 5579dl2.vip 5555app1.vip 97hd3.vip 959xz1.vip 369888.vip 36hd1.vip 69dl05.vip 69xz1.vip 69hd1.vip 69dl02.vip 69dl01.vip 222xz5.vip 222hd5.vip 588xz6.xyz 868hd1.vip 986se2.xyz 742zb5.xyz 742xz5.xyz 742av5.xyz 742app5.xyz 986av5.xyz 7666dl7.vip 76697hd.vip ky26b.xyz ky26g.xyz ky26y.xyz 742dl9.xyz 1008103.com ky912233.com ky231119.com 95582228.com 95583338.com ky23apps6.com ky91apps6.com ky26app8.com ky239777.com ky239666.com ky91svip88.com 89hgapp8.com 7000817.com 666tly.com 70008tl.com 89hgtl6.com ky26tl.com ky91hd666.com ky916777.com 5708svip1.com 5708hd6.com ky23811.com 1008hb4.com ky23dl55.com ky23nn.com ky23aa.com ky23zz.com ky23ww.com ky23vv.com ky23ee.com 1008dn3.com 1008dn2.com 1008vip2.com ky239677.com ky26xz6.com ky91d6.com 766116.vip 7777zb.xyz 7777se.xyz 7777vip.xyz 1008104.com 1008102.com ky918899.com ky915566.com 199hd12.vip 959hd7.vip 488hd4.vip 96hd99.vip 488hd5.vip 5708755.com 528xz6.xyz 528xz5.xyz 690004.vip 360009.vip 95581118.com 8688h.xyz 8688d.xyz 8688y.xyz 8688g.xyz 8688k.xyz 8688v.xyz 36apps6.vip 808hd1.vip 989xz6.vip 808hd2.vip 766apps8.vip 5188app9.com 1008xz.com ky23apps8.com 488hd1.vip ky23hd99.com ky239888.com ky23hd11.com www.9558apps8.com 898933.vip ky91svip66.com ky9166666.com 97hd02.vip 69hd2.vip 8567hd.vip 5555xz1.vip 959hd2.vip 692537.vip 959hd3.vip 959hd1.vip 7000815.com ky26d2.com 488ld.vip 766888.vip 199hd8.vip 766555.vip ky91hd668.com ky238889.com ky91hd998.com 3699999.vip 36hd888.vip 3666666.vip ky26vip6.com 808dll3.vip 96dll2.vip 808dll.vip 5555tl.vip 199dll2.vip 199dll1.vip 808dll1.vip 9999tz.xyz 742tz1.xyz 97tl.vip 898tl6.vip 959tl.vip 266tl6.vip 989tl6.vip 36svip8.vip ky91svip8.com 1008tl.com ky35tl.com ky23svip6.com 466tl.cc www.36666tl.com ky91hd888.com 8888dx99.vip ky23616.com ky23618.com ky23619.com 974567.vip 974568.vip ky91009.com ky91008.com 7000858.com 96xzl1.vip 89hghd.com ky35hd.com 97hd6.vip ky91882.com 368886.vip ky23dl666.com ky23app88.com ky23app66.com ky23822.com 696237.vip 696236.vip 856q.xyz 856r.xyz 856m.xyz 856s.xyz 856i.xyz 856d.xyz 856b.xyz 856p.xyz 856u.xyz 3303di1.vip 3303xz.vip 3303dt.vip 3303dh1.vip 3303dh.vip 3303di.vip 3303dt2.vip 3303av.vip 58cj6.vip 58cj8.vip 5555app2.vip 5555d22.vip 5579xz.vip 5579ld.vip 5579app.vip 5579dl1.vip 697833.vip 959xz.vip 97di.vip 97hd5.vip 959di.vip 97xz.vip 266xz7.vip 5188332.cc ky26d6.com 5579dh1.vip 766989.vip 766988.vip 5555dh.vip www.5555dh1.vip 828k9.vip 828k8.vip 697822.vip 8888zp8.vip 266xz6.vip 69dl03.vip 69hd.vip 5555ld.vip 222hd6.vip 696656.vip 696636.vip 266xz8.vip ky35zp1.com ky35008.com 36666ld.com ky35006.com ky26zp1.com ky35007.com ky26zp.com 97dl1.vip 1008hd5.com 696jf.com 8988dl3.tv 1008gg.com 1008jj.com 1008nn.com 1008oo.com 1008ll.com 1008ee.com 1008yy.com ky23uu.com ky23cc.com ky23hh.com ky23ff.com ky35xz6.com ky23rr.com ky23qq.com ky23ii.com ky23mm.com ky23oo.com 868hd3.vip 868hd2.vip 898ld.vip 89hgxz1.com ky23hd66.com 528zb8.xyz 742vip8.xyz 742zb8.xyz 742xz8.xyz 742av8.xyz 70008hd5.com 9999dl9.xyz ky91866.com 76698hd.vip 76696hd.vip 1008vip9.com ky23dl66.com ky23dl99.com ky26xz7.com securemailweb.com.ng ky26u.xyz ky26r.xyz ky26e.xyz ky26w.xyz ky26o.xyz ky26c.xyz ky26a.xyz kaiyuan26.com ky35002.com k523567.com k556789.com k512356.com 9555666.cc 2999xz9.com 2999xz6.com www.2999xz6.com 742vip6.xyz 742xz6.xyz 742av6.xyz ky35hd2.com 70008app6.com 70008app1.com 70008dl.com 70008333.com 70008dl3.com 986xz1.xyz 742vip3.xyz k58889992.com k58889993.com k58889991.com ky91hd6.com ky15789.com cancei-prime.site prime-modifier.site prime-cancei.live prime-cancei.info prime-annuier.site phss.live kssr.live jjss.live jhss.live kssp.live jjss.info kssp.info jhss.info hspp.site prrs.live pjss.live jrss.live fpps.live jrss.info fpps.info pssp.site hssp.site jrpp.site

Open Ports Detected

110 143 21 22 25 443 465 53 80 8443 8880 993 995

Map

Whois Information

  • inetnum: 185.38.140.0 - 185.38.143.255
  • netname: PT-DOTSI-20131023
  • country: PT
  • org: ORG-DSdI1-RIPE
  • admin-c: JOSE1-RIPE
  • tech-c: JOSE1-RIPE
  • status: ALLOCATED PA
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: MNT-DOTSI
  • created: 2013-10-23T13:38:47Z
  • last-modified: 2016-06-15T17:51:56Z
  • organisation: ORG-DSdI1-RIPE
  • org-name: DOTSI LDA
  • country: PT
  • org-type: LIR
  • address: Rua 3 da Matinha, Edifício Altejo sala 408
  • address: 1950 - 326
  • address: Lisboa
  • address: PORTUGAL
  • phone: +351210360124
  • fax-no: +351211952270
  • admin-c: JOSE1-RIPE
  • abuse-c: AR16482-RIPE
  • mnt-ref: RIPE-NCC-HM-MNT
  • mnt-ref: MNT-DOTSI
  • mnt-by: RIPE-NCC-HM-MNT
  • mnt-by: MNT-DOTSI
  • created: 2009-05-18T13:53:58Z
  • last-modified: 2024-06-26T09:44:35Z
  • person: Jose Jorge M. C. Santos
  • address: Rua Agostinho Lourenço 341B
  • address: 1000-010 Lisboa
  • address: Portugal
  • phone: +351210360124
  • nic-hdl: JOSE1-RIPE
  • mnt-by: MNT-DOTSI
  • created: 2009-05-18T15:13:21Z
  • last-modified: 2012-07-13T10:32:18Z
  • route: 185.38.142.0/24
  • descr: dotsi - Solucoes Internet
  • origin: AS49349
  • mnt-by: MNT-DOTSI
  • mnt-routes: MNT-DOTSI
  • created: 2015-01-13T17:29:53Z
  • last-modified: 2015-01-13T17:29:53Z

Links to attack logs

****** vultrmadrid-ssh-bruteforce-ip-list-2023-07-14 dotoronto-ssh-bruteforce-ip-list-2023-07-17 ****** bruteforce-ip-list-2023-07-14 ****** dotoronto-ssh-bruteforce-ip-list-2023-07-21

Share on: