138.36.3.142 - IPInfo

Basic Info

City: Fortaleza

Region: Ceara

Country: Brazil

Internet Service Provider: Tex Net Servicos de Comunicacao em Informatica Ltd

Hostname: unknown

Organization: TEX NET SERVIÇOS DE COMUNICAÇÃO EM INFORMATICA LTD

Usage Type: Commercial

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	port scan and connect, tcp 23 (telnet)	2020-03-26 14:13:03
attackspam	Automatic report - Port Scan Attack	2019-07-14 03:34:58

Comments on same subnet:

IP	Type	Details	Datetime
138.36.31.34	attackspam	Honeypot attack, port: 445, PTR: 138-36-31-34.ligo.net.br.	2020-04-23 00:13:06

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.36.3.142
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33869
;; flags: qr rd ra ad; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.36.3.142.			IN	A

;; AUTHORITY SECTION:
.			3600	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019071301 1800 900 604800 86400

;; Query time: 3 msec
;; SERVER: 67.207.67.2#53(67.207.67.2)
;; WHEN: Sun Jul 14 03:34:52 CST 2019
;; MSG SIZE  rcvd: 116

Host info

142.3.36.138.in-addr.arpa domain name pointer 138-36-3-142.texnet.net.br.

Nslookup info:

Server:		67.207.67.2
Address:	67.207.67.2#53

Non-authoritative answer:
142.3.36.138.in-addr.arpa	name = 138-36-3-142.texnet.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
51.77.52.160	attackbots	SMTP_hacking	2019-06-26 22:53:41
51.15.109.227	attackbots	Jun 26 15:11:58 Ubuntu-1404-trusty-64-minimal sshd\[4356\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.109.227 user=root Jun 26 15:11:59 Ubuntu-1404-trusty-64-minimal sshd\[4356\]: Failed password for root from 51.15.109.227 port 47208 ssh2 Jun 26 15:16:23 Ubuntu-1404-trusty-64-minimal sshd\[7375\]: Invalid user nue from 51.15.109.227 Jun 26 15:16:23 Ubuntu-1404-trusty-64-minimal sshd\[7375\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.15.109.227 Jun 26 15:16:25 Ubuntu-1404-trusty-64-minimal sshd\[7375\]: Failed password for invalid user nue from 51.15.109.227 port 45678 ssh2	2019-06-26 21:58:12
62.234.219.27	attack	2019-06-26T13:47:20.520971abusebot-4.cloudsearch.cf sshd\[12964\]: Invalid user ashish from 62.234.219.27 port 46177	2019-06-26 22:10:01
185.36.81.182	attackbots	Rude login attack (14 tries in 1d)	2019-06-26 22:36:52
71.56.218.201	attackbotsspam	Jun 26 08:13:22 gcems sshd\[12814\]: Invalid user test from 71.56.218.201 port 55204 Jun 26 08:13:23 gcems sshd\[12814\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.56.218.201 Jun 26 08:13:24 gcems sshd\[12814\]: Failed password for invalid user test from 71.56.218.201 port 55204 ssh2 Jun 26 08:15:29 gcems sshd\[12985\]: Invalid user zhen from 71.56.218.201 port 47726 Jun 26 08:15:29 gcems sshd\[12985\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=71.56.218.201 ...	2019-06-26 22:25:29
119.178.254.144	attackspambots	5500/tcp 5500/tcp 5500/tcp... [2019-06-23/26]4pkt,1pt.(tcp)	2019-06-26 22:34:18
80.250.234.105	attack	Unauthorized connection attempt from IP address 80.250.234.105 on Port 445(SMB)	2019-06-26 21:50:34
217.141.0.214	attackspambots	@LucianNitescu Personal Honeypot Network <<<>>> Donate at paypal.me/LNitescu <<<>>> 2019-06-26 01:22:17,806 INFO [shellcode_manager] (217.141.0.214) no match, writing hexdump (5fd458f17add5b0726fa4a4f5281c6eb :2249352) - MS17010 (EternalBlue)	2019-06-26 22:35:43
182.148.122.3	attack	445/tcp 445/tcp 445/tcp... [2019-05-05/06-26]5pkt,1pt.(tcp)	2019-06-26 22:38:21
68.183.150.54	attackspambots	SSH Brute-Force reported by Fail2Ban	2019-06-26 21:49:16
212.112.108.98	attackspam	Jun 26 15:41:15 ncomp sshd[20217]: Invalid user ik from 212.112.108.98 Jun 26 15:41:15 ncomp sshd[20217]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=212.112.108.98 Jun 26 15:41:15 ncomp sshd[20217]: Invalid user ik from 212.112.108.98 Jun 26 15:41:18 ncomp sshd[20217]: Failed password for invalid user ik from 212.112.108.98 port 39514 ssh2	2019-06-26 22:20:36
35.187.246.124	attackspam	Jun 26 15:39:40 vps691689 sshd[5012]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.187.246.124 Jun 26 15:39:42 vps691689 sshd[5012]: Failed password for invalid user elasticsearch from 35.187.246.124 port 45554 ssh2 Jun 26 15:41:31 vps691689 sshd[5023]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=35.187.246.124 ...	2019-06-26 22:24:55
178.62.33.138	attackbotsspam	2019-06-26T09:13:07.966544WS-Zach sshd[20536]: Invalid user user from 178.62.33.138 port 52404 2019-06-26T09:13:07.970218WS-Zach sshd[20536]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.33.138 2019-06-26T09:13:07.966544WS-Zach sshd[20536]: Invalid user user from 178.62.33.138 port 52404 2019-06-26T09:13:10.473264WS-Zach sshd[20536]: Failed password for invalid user user from 178.62.33.138 port 52404 ssh2 2019-06-26T09:15:54.623897WS-Zach sshd[21869]: Invalid user arne from 178.62.33.138 port 51342 ...	2019-06-26 22:12:29
78.187.239.232	attackspam	Unauthorized connection attempt from IP address 78.187.239.232 on Port 445(SMB)	2019-06-26 22:32:16
45.125.65.91	attackspambots	2019-06-26T14:23:07.367088ns1.unifynetsol.net postfix/smtpd\[14721\]: warning: unknown\[45.125.65.91\]: SASL LOGIN authentication failed: authentication failure 2019-06-26T15:29:29.765118ns1.unifynetsol.net postfix/smtpd\[28115\]: warning: unknown\[45.125.65.91\]: SASL LOGIN authentication failed: authentication failure 2019-06-26T16:35:01.892023ns1.unifynetsol.net postfix/smtpd\[4712\]: warning: unknown\[45.125.65.91\]: SASL LOGIN authentication failed: authentication failure 2019-06-26T17:40:01.213856ns1.unifynetsol.net postfix/smtpd\[12419\]: warning: unknown\[45.125.65.91\]: SASL LOGIN authentication failed: authentication failure 2019-06-26T18:45:40.769427ns1.unifynetsol.net postfix/smtpd\[20011\]: warning: unknown\[45.125.65.91\]: SASL LOGIN authentication failed: authentication failure	2019-06-26 22:22:09

Recently Reported IPs

177.232.234.102	101.158.40.9	120.56.250.4	73.36.59.117
5.112.17.108	185.225.84.104	14.239.209.146	114.123.140.7
154.124.59.0	35.86.75.113	85.12.93.25	39.95.173.87
111.254.70.59	141.136.230.193	72.78.19.0	88.254.192.116
124.190.73.76	182.59.35.146	182.202.165.231	120.246.253.139