138.219.20.123

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.219.201.42	attackspam	Oct 4 17:04:33 mail.srvfarm.net postfix/smtps/smtpd[1047457]: warning: porta42.santana.internettelecom.com.br[138.219.201.42]: SASL PLAIN authentication failed: Oct 4 17:04:33 mail.srvfarm.net postfix/smtps/smtpd[1047457]: lost connection after AUTH from porta42.santana.internettelecom.com.br[138.219.201.42] Oct 4 17:06:51 mail.srvfarm.net postfix/smtpd[1046612]: warning: porta42.santana.internettelecom.com.br[138.219.201.42]: SASL PLAIN authentication failed: Oct 4 17:06:52 mail.srvfarm.net postfix/smtpd[1046612]: lost connection after AUTH from porta42.santana.internettelecom.com.br[138.219.201.42] Oct 4 17:07:55 mail.srvfarm.net postfix/smtpd[1047103]: warning: porta42.santana.internettelecom.com.br[138.219.201.42]: SASL PLAIN authentication failed:	2020-10-05 05:20:57
138.219.201.42	attackspam	Oct 4 05:11:02 mail.srvfarm.net postfix/smtpd[714208]: warning: porta42.santana.internettelecom.com.br[138.219.201.42]: SASL PLAIN authentication failed: Oct 4 05:11:02 mail.srvfarm.net postfix/smtpd[714208]: lost connection after AUTH from porta42.santana.internettelecom.com.br[138.219.201.42] Oct 4 05:15:57 mail.srvfarm.net postfix/smtps/smtpd[727896]: warning: porta42.santana.internettelecom.com.br[138.219.201.42]: SASL PLAIN authentication failed: Oct 4 05:15:57 mail.srvfarm.net postfix/smtps/smtpd[727896]: lost connection after AUTH from porta42.santana.internettelecom.com.br[138.219.201.42] Oct 4 05:16:16 mail.srvfarm.net postfix/smtpd[727586]: warning: porta42.santana.internettelecom.com.br[138.219.201.42]: SASL PLAIN authentication failed:	2020-10-04 21:15:13
138.219.201.42	attack	Oct 4 05:11:02 mail.srvfarm.net postfix/smtpd[714208]: warning: porta42.santana.internettelecom.com.br[138.219.201.42]: SASL PLAIN authentication failed: Oct 4 05:11:02 mail.srvfarm.net postfix/smtpd[714208]: lost connection after AUTH from porta42.santana.internettelecom.com.br[138.219.201.42] Oct 4 05:15:57 mail.srvfarm.net postfix/smtps/smtpd[727896]: warning: porta42.santana.internettelecom.com.br[138.219.201.42]: SASL PLAIN authentication failed: Oct 4 05:15:57 mail.srvfarm.net postfix/smtps/smtpd[727896]: lost connection after AUTH from porta42.santana.internettelecom.com.br[138.219.201.42] Oct 4 05:16:16 mail.srvfarm.net postfix/smtpd[727586]: warning: porta42.santana.internettelecom.com.br[138.219.201.42]: SASL PLAIN authentication failed:	2020-10-04 13:01:03
138.219.201.25	attack	5x Failed Password	2020-09-17 20:03:20
138.219.201.25	attackbotsspam	2020-09-17T01:40:29.276815abusebot-8.cloudsearch.cf sshd[2370]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=porta25.santana.internettelecom.com.br user=root 2020-09-17T01:40:31.219407abusebot-8.cloudsearch.cf sshd[2370]: Failed password for root from 138.219.201.25 port 40586 ssh2 2020-09-17T01:45:16.071630abusebot-8.cloudsearch.cf sshd[2536]: Invalid user klaus from 138.219.201.25 port 52478 2020-09-17T01:45:16.078598abusebot-8.cloudsearch.cf sshd[2536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=porta25.santana.internettelecom.com.br 2020-09-17T01:45:16.071630abusebot-8.cloudsearch.cf sshd[2536]: Invalid user klaus from 138.219.201.25 port 52478 2020-09-17T01:45:17.755292abusebot-8.cloudsearch.cf sshd[2536]: Failed password for invalid user klaus from 138.219.201.25 port 52478 ssh2 2020-09-17T01:50:00.547645abusebot-8.cloudsearch.cf sshd[2592]: pam_unix(sshd:auth): authentication failure; lognam ...	2020-09-17 12:13:52
138.219.201.25	attackspam	Brute-Force,SSH	2020-09-17 03:30:26
138.219.201.25	attack	Aug 25 09:28:00 vps46666688 sshd[12456]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.219.201.25 Aug 25 09:28:02 vps46666688 sshd[12456]: Failed password for invalid user dbadmin from 138.219.201.25 port 57704 ssh2 ...	2020-08-25 23:45:44
138.219.201.25	attack	Invalid user srm from 138.219.201.25 port 38316	2020-08-21 18:46:01
138.219.200.130	attackbots	Unauthorized connection attempt from IP address 138.219.200.130 on Port 445(SMB)	2020-03-08 02:55:22
138.219.201.240	attackspam	Automatic report - Port Scan Attack	2019-12-28 13:14:07
138.219.201.13	attackspam	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 18:56:02

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.219.20.123
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 60642
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.219.20.123.			IN	A

;; AUTHORITY SECTION:
.			29	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2025021601 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Feb 17 04:08:35 CST 2025
;; MSG SIZE  rcvd: 107

Host info

Host 123.20.219.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 123.20.219.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.227.179.138	attackspam	2019-08-18T06:10:11.367334 sshd[4111]: Invalid user user1 from 165.227.179.138 port 60094 2019-08-18T06:10:11.382207 sshd[4111]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.179.138 2019-08-18T06:10:11.367334 sshd[4111]: Invalid user user1 from 165.227.179.138 port 60094 2019-08-18T06:10:13.171980 sshd[4111]: Failed password for invalid user user1 from 165.227.179.138 port 60094 ssh2 2019-08-18T06:14:21.734843 sshd[4152]: Invalid user minecraft2 from 165.227.179.138 port 50418 ...	2019-08-18 12:21:27
27.195.39.144	attackbotsspam	Automatic report - Port Scan Attack	2019-08-18 12:19:18
52.23.235.188	attack	Port scan on 1 port(s): 53	2019-08-18 12:59:14
41.41.14.210	attackspambots	Honeypot attack, port: 445, PTR: host-41.41.14.210.tedata.net.	2019-08-18 12:22:49
83.139.143.69	attackbotsspam	Port scan	2019-08-18 12:42:00
54.39.191.188	attack	Aug 17 18:11:06 kapalua sshd\[26749\]: Invalid user hb from 54.39.191.188 Aug 17 18:11:06 kapalua sshd\[26749\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.191.188 Aug 17 18:11:08 kapalua sshd\[26749\]: Failed password for invalid user hb from 54.39.191.188 port 57056 ssh2 Aug 17 18:15:22 kapalua sshd\[27120\]: Invalid user mktg2 from 54.39.191.188 Aug 17 18:15:22 kapalua sshd\[27120\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=54.39.191.188	2019-08-18 12:28:52
104.248.1.14	attackspam	$f2bV_matches_ltvn	2019-08-18 13:06:07
35.242.194.123	attackbots	Honeypot attack, port: 23, PTR: 123.194.242.35.bc.googleusercontent.com.	2019-08-18 12:44:44
106.52.231.126	attackspam	Web App Attack	2019-08-18 13:02:30
178.62.79.227	attackbots	2019-08-18T04:45:42.637818abusebot-6.cloudsearch.cf sshd\[19313\]: Invalid user can from 178.62.79.227 port 53212	2019-08-18 13:05:41
185.137.233.226	attack	Port scan	2019-08-18 12:43:13
181.54.250.2	attack	Aug 18 06:00:38 www sshd\[22512\]: Invalid user nd from 181.54.250.2Aug 18 06:00:39 www sshd\[22512\]: Failed password for invalid user nd from 181.54.250.2 port 54032 ssh2Aug 18 06:08:12 www sshd\[22569\]: Invalid user tom from 181.54.250.2 ...	2019-08-18 13:03:31
210.212.172.154	attackbotsspam	Honeypot attack, port: 445, PTR: PTR record not found	2019-08-18 12:40:38
104.236.72.182	attackbots	Splunk® : port scan detected: Aug 18 00:32:40 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:c0:42:d0:39:2c:30:08:00 SRC=104.236.72.182 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=252 ID=18454 PROTO=TCP SPT=56468 DPT=3389 WINDOW=1024 RES=0x00 SYN URGP=0	2019-08-18 12:38:03
68.183.88.59	attackbots	Invalid user zj from 68.183.88.59 port 57676	2019-08-18 13:03:07

Recently Reported IPs

238.45.239.26	35.238.74.203	189.155.44.89	50.23.83.104
123.246.196.102	224.124.45.153	27.246.254.235	147.141.168.109
38.191.57.64	175.27.190.103	98.121.164.207	233.148.207.175
129.235.39.123	150.202.23.165	155.95.89.221	202.98.169.195
146.229.12.67	67.193.214.162	86.193.99.213	191.99.17.48