136.244.64.142

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
136.244.64.173	attack	Unauthorized connection attempt detected from IP address 136.244.64.173 to port 3389	2020-05-20 09:19:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 136.244.64.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 19465
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;136.244.64.142.			IN	A

;; AUTHORITY SECTION:
.			237	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 68 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:07:39 CST 2022
;; MSG SIZE  rcvd: 107

Host info

142.64.244.136.in-addr.arpa domain name pointer 136.244.64.142.vultr.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
142.64.244.136.in-addr.arpa	name = 136.244.64.142.vultr.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
222.186.30.218	attackspambots	sshd jail - ssh hack attempt	2020-02-14 08:08:58
125.59.204.131	attackspambots	port scan and connect, tcp 23 (telnet)	2020-02-14 08:12:16
188.217.147.162	attack	Automatic report - Port Scan Attack	2020-02-14 08:23:25
95.218.32.113	attack	Feb 8 08:40:13 localhost postfix/smtpd[632781]: lost connection after DATA from unknown[95.218.32.113] Feb 8 08:40:50 localhost postfix/smtpd[632781]: lost connection after DATA from unknown[95.218.32.113] Feb 8 18:00:38 localhost postfix/smtpd[835924]: lost connection after DATA from unknown[95.218.32.113] Feb 8 18:00:49 localhost postfix/smtpd[835924]: lost connection after DATA from unknown[95.218.32.113] Feb 8 18:01:00 localhost postfix/smtpd[835924]: lost connection after DATA from unknown[95.218.32.113] ........ ----------------------------------------------- https://www.blocklist.de/en/view.html?ip=95.218.32.113	2020-02-14 07:59:28
92.63.194.107	attack	Feb 13 06:31:29 XXX sshd[64331]: Invalid user admin from 92.63.194.107 port 44521	2020-02-14 08:24:17
92.63.194.74	attackbotsspam	2020-02-13T20:13:34Z - RDP login failed multiple times. (92.63.194.74)	2020-02-14 08:01:49
112.85.42.182	attackbots	Feb 14 01:08:56 MK-Soft-Root2 sshd[18028]: Failed password for root from 112.85.42.182 port 15662 ssh2 Feb 14 01:09:01 MK-Soft-Root2 sshd[18028]: Failed password for root from 112.85.42.182 port 15662 ssh2 ...	2020-02-14 08:11:29
71.246.210.34	attackspam	Feb 13 10:38:03 sachi sshd\[8375\]: Invalid user administrator from 71.246.210.34 Feb 13 10:38:03 sachi sshd\[8375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.246.210.34 Feb 13 10:38:06 sachi sshd\[8375\]: Failed password for invalid user administrator from 71.246.210.34 port 46346 ssh2 Feb 13 10:40:31 sachi sshd\[8689\]: Invalid user web1 from 71.246.210.34 Feb 13 10:40:31 sachi sshd\[8689\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.246.210.34	2020-02-14 08:10:26
91.196.222.194	attackspam	trying to access non-authorized port	2020-02-14 08:29:47
118.25.104.48	attackspambots	Invalid user fileftp from 118.25.104.48 port 36902	2020-02-14 07:51:02
199.120.116.175	attack	MultiHost/MultiPort Probe, Scan, Hack -	2020-02-14 08:20:18
94.245.23.138	attackbotsspam	firewall-block, port(s): 23/tcp	2020-02-14 07:56:54
165.227.210.71	attackspam	Invalid user dch from 165.227.210.71 port 47730	2020-02-14 07:50:43
92.63.194.108	attack	Feb 13 06:31:34 XXX sshd[64356]: Invalid user admin from 92.63.194.108 port 37379	2020-02-14 08:23:46
206.189.232.174	attackbotsspam	kernel: [1349891.741063] portscan:IN=eth0 OUT= MAC=9e:11:7f:4a:a0:76:30:7c:5e:91:9c:30:08:00 SRC=206.189.232.174 PORT STATE SERVICE VERSION 135/tcp open msrpc Microsoft Windows RPC 139/tcp open netbios-ssn Microsoft Windows netbios-ssn 3389/tcp open ms-wbt-server Microsoft Terminal Service 4899/tcp open radmin Famatech Radmin 3.X (Radmin Authentication) 5357/tcp open http Microsoft HTTPAPI httpd 2.0 (SSDP/UPnP) 49152/tcp open msrpc Microsoft Windows RPC 49153/tcp open msrpc Microsoft Windows RPC 49154/tcp open msrpc Microsoft Windows RPC 49158/tcp open msrpc Microsoft Windows RPC 49159/tcp open msrpc Microsoft Windows RPC 49160/tcp open msrpc Microsoft Windows RPC Service Info: OS: Windows; CPE: cpe:/o:microsoft:windows	2020-02-14 08:04:30

Recently Reported IPs

136.244.64.134	136.244.64.205	136.244.119.91	136.244.118.77
136.244.64.52	136.244.64.59	136.244.65.192	136.244.64.24
136.244.66.25	136.244.66.199	136.244.66.34	136.244.66.241
118.174.209.248	136.244.65.43	136.244.65.217	136.244.65.59
136.244.65.196	136.244.67.235	136.244.67.218	136.244.68.86