138.36.109.244

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Elite Telecomunicacoes Ltda ME

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbots	port scan and connect, tcp 23 (telnet)	2020-03-13 01:29:22

Comments on same subnet:

IP	Type	Details	Datetime
138.36.109.52	attack	SMTP/25/465/587-993/995 Probe, Reject, BadAuth, Hack, SPAM -	2019-07-08 18:53:41

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.36.109.244
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42784
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.36.109.244.			IN	A

;; AUTHORITY SECTION:
.			478	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020031200 1800 900 604800 86400

;; Query time: 125 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Mar 13 01:29:16 CST 2020
;; MSG SIZE  rcvd: 118

Host info

244.109.36.138.in-addr.arpa has no PTR record

Nslookup info:

Server:		100.100.2.138
Address:	100.100.2.138#53

Non-authoritative answer:
244.109.36.138.in-addr.arpa	name = ip-138-36-109-244.itamogi.elitebandalarga.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
185.7.85.40	attack	1597437839 - 08/14/2020 22:43:59 Host: 185.7.85.40/185.7.85.40 Port: 23 TCP Blocked ...	2020-08-15 05:42:20
107.173.137.195	attackspam	Aug 13 08:34:57 josie sshd[24174]: Invalid user ubnt from 107.173.137.195 Aug 13 08:34:57 josie sshd[24174]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.137.195 Aug 13 08:34:59 josie sshd[24174]: Failed password for invalid user ubnt from 107.173.137.195 port 48182 ssh2 Aug 13 08:34:59 josie sshd[24175]: Received disconnect from 107.173.137.195: 11: Bye Bye Aug 13 08:35:06 josie sshd[24264]: Invalid user admin from 107.173.137.195 Aug 13 08:35:06 josie sshd[24264]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=107.173.137.195 Aug 13 08:35:08 josie sshd[24264]: Failed password for invalid user admin from 107.173.137.195 port 49777 ssh2 Aug 13 08:35:08 josie sshd[24265]: Received disconnect from 107.173.137.195: 11: Bye Bye Aug 13 08:35:25 josie sshd[24373]: Invalid user ubnt from 107.173.137.195 Aug 13 08:35:25 josie sshd[24373]: pam_unix(sshd:auth): authentication failure; lo........ -------------------------------	2020-08-15 05:21:01
185.176.27.18	attack	Excessive Port-Scanning	2020-08-15 05:48:38
61.177.172.102	attackbots	Aug 14 21:23:58 scw-6657dc sshd[738]: Failed password for root from 61.177.172.102 port 35066 ssh2 Aug 14 21:23:58 scw-6657dc sshd[738]: Failed password for root from 61.177.172.102 port 35066 ssh2 Aug 14 21:24:01 scw-6657dc sshd[738]: Failed password for root from 61.177.172.102 port 35066 ssh2 ...	2020-08-15 05:25:37
112.85.42.180	attack	Aug 14 23:10:43 santamaria sshd\[10225\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.180 user=root Aug 14 23:10:46 santamaria sshd\[10225\]: Failed password for root from 112.85.42.180 port 42538 ssh2 Aug 14 23:11:10 santamaria sshd\[10234\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.180 user=root ...	2020-08-15 05:21:27
115.77.31.113	attack	Automatic report - Port Scan Attack	2020-08-15 05:17:47
106.245.228.122	attackbotsspam	Aug 14 22:42:20 ip40 sshd[1004]: Failed password for root from 106.245.228.122 port 28899 ssh2 ...	2020-08-15 05:17:24
60.167.180.177	attackbots	reported through recidive - multiple failed attempts(SSH)	2020-08-15 05:41:10
187.74.75.221	attackbots	Aug 14 22:44:12 mout sshd[17501]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.74.75.221 user=root Aug 14 22:44:14 mout sshd[17501]: Failed password for root from 187.74.75.221 port 39178 ssh2	2020-08-15 05:28:59
111.161.74.117	attack	2020-08-14T22:45:06.811492n23.at sshd[1907286]: Failed password for root from 111.161.74.117 port 43506 ssh2 2020-08-14T22:49:15.103233n23.at sshd[1909962]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=111.161.74.117 user=root 2020-08-14T22:49:16.731627n23.at sshd[1909962]: Failed password for root from 111.161.74.117 port 48279 ssh2 ...	2020-08-15 05:52:38
37.152.178.44	attackbots	Aug 14 22:25:15 roki sshd[17926]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.152.178.44 user=root Aug 14 22:25:17 roki sshd[17926]: Failed password for root from 37.152.178.44 port 44642 ssh2 Aug 14 22:38:32 roki sshd[18895]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.152.178.44 user=root Aug 14 22:38:34 roki sshd[18895]: Failed password for root from 37.152.178.44 port 51924 ssh2 Aug 14 22:44:01 roki sshd[19329]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=37.152.178.44 user=root ...	2020-08-15 05:38:09
221.214.74.10	attackspambots	Aug 14 18:25:22 ws22vmsma01 sshd[82874]: Failed password for root from 221.214.74.10 port 3084 ssh2 ...	2020-08-15 05:46:54
150.109.147.46	attackbotsspam	Aug 13 22:27:53 v26 sshd[25415]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.147.46 user=r.r Aug 13 22:27:55 v26 sshd[25415]: Failed password for r.r from 150.109.147.46 port 41496 ssh2 Aug 13 22:27:55 v26 sshd[25415]: Received disconnect from 150.109.147.46 port 41496:11: Bye Bye [preauth] Aug 13 22:27:55 v26 sshd[25415]: Disconnected from 150.109.147.46 port 41496 [preauth] Aug 13 22:42:06 v26 sshd[27101]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=150.109.147.46 user=r.r Aug 13 22:42:08 v26 sshd[27101]: Failed password for r.r from 150.109.147.46 port 50102 ssh2 Aug 13 22:42:08 v26 sshd[27101]: Received disconnect from 150.109.147.46 port 50102:11: Bye Bye [preauth] Aug 13 22:42:08 v26 sshd[27101]: Disconnected from 150.109.147.46 port 50102 [preauth] Aug 13 22:46:05 v26 sshd[27553]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost........ -------------------------------	2020-08-15 05:33:51
45.145.185.187	attack	Telnet Server BruteForce Attack	2020-08-15 05:56:42
81.183.182.37	attackbotsspam	Aug 14 22:05:43 ajax sshd[22172]: Failed password for root from 81.183.182.37 port 51208 ssh2	2020-08-15 05:33:28

Recently Reported IPs

77.89.248.222	77.244.211.174	61.164.115.242	2a03:b0c0:2:f0::13a:d001
188.234.134.42	77.183.116.233	77.181.185.71	34.221.201.104
218.158.203.129	185.21.41.71	153.34.64.195	77.141.116.140
77.133.38.42	5.13.101.28	77.109.112.83	77.107.10.76
74.81.88.18	78.253.113.6	74.208.173.91	113.173.199.169