138.197.222.21

Basic Info

City: Santa Clara

Region: California

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.197.222.97	attack	2020-10-12T16:00:26.682148morrigan.ad5gb.com sshd[719623]: Failed password for invalid user wangyi from 138.197.222.97 port 54454 ssh2	2020-10-14 04:45:32
138.197.222.97	attackbots	TCP (SYN) 138.197.222.97:50619 -> port 5149, len 44	2020-10-13 20:15:35
138.197.222.141	attackspam	firewall-block, port(s): 8396/tcp	2020-10-13 04:09:48
138.197.222.141	attackbots	$f2bV_matches	2020-10-12 19:46:44
138.197.222.141	attack	Port scan: Attack repeated for 24 hours	2020-10-09 03:53:30
138.197.222.141	attackbotsspam	Oct 8 13:27:32 ns381471 sshd[27018]: Failed password for root from 138.197.222.141 port 50782 ssh2	2020-10-08 20:01:39
138.197.222.141	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-10-06 07:26:49
138.197.222.141	attackbotsspam	1506/tcp 8699/tcp 16625/tcp... [2020-08-05/10-05]114pkt,39pt.(tcp)	2020-10-05 23:42:53
138.197.222.141	attack	firewall-block, port(s): 1506/tcp	2020-10-05 15:41:44
138.197.222.97	attackbotsspam	firewall-block, port(s): 27139/tcp	2020-09-27 03:37:52
138.197.222.97	attack	TCP port : 6273	2020-09-26 19:36:39
138.197.222.141	attackspam	Invalid user tom from 138.197.222.141 port 51220	2020-09-23 23:26:49
138.197.222.141	attackbotsspam	"fail2ban match"	2020-09-23 15:39:44
138.197.222.141	attackbots	Sep 23 01:06:18 host sshd[6691]: Invalid user tom from 138.197.222.141 port 43402 ...	2020-09-23 07:34:02
138.197.222.141	attackbotsspam	Unauthorised connection attempt detected at AUO MAIN. System is sshd. Protected by AUO Stack Web Application Firewall (WAF)	2020-09-13 23:32:27

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.197.222.21
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 18070
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.197.222.21.			IN	A

;; AUTHORITY SECTION:
.			215	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022061000 1800 900 604800 86400

;; Query time: 24 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sat Jun 11 03:30:38 CST 2022
;; MSG SIZE  rcvd: 107

Host info

Host 21.222.197.138.in-addr.arpa. not found: 3(NXDOMAIN)

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

** server can't find 21.222.197.138.in-addr.arpa: NXDOMAIN

Related IP info:

Related comments:

IP	Type	Details	Datetime
219.150.93.157	attackspambots	2020-07-06T23:17:09.970874billing sshd[28077]: Invalid user sammy from 219.150.93.157 port 59220 2020-07-06T23:17:12.267944billing sshd[28077]: Failed password for invalid user sammy from 219.150.93.157 port 59220 ssh2 2020-07-06T23:24:26.187536billing sshd[11235]: Invalid user admin from 219.150.93.157 port 36671 ...	2020-07-07 01:57:54
45.48.162.102	attackspam	20/7/6@12:46:28: FAIL: Alarm-Network address from=45.48.162.102 20/7/6@12:46:28: FAIL: Alarm-Network address from=45.48.162.102 ...	2020-07-07 01:46:53
46.38.145.250	attack	2020-07-06 17:45:15 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=siteid@mail.csmailer.org) 2020-07-06 17:45:56 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=malta@mail.csmailer.org) 2020-07-06 17:46:44 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=stream01@mail.csmailer.org) 2020-07-06 17:47:26 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=smas@mail.csmailer.org) 2020-07-06 17:48:14 auth_plain authenticator failed for (User) [46.38.145.250]: 535 Incorrect authentication data (set_id=pgtId@mail.csmailer.org) ...	2020-07-07 01:46:37
181.49.118.185	attack	Jul 6 12:54:14 vps1 sshd[2257112]: Invalid user redash from 181.49.118.185 port 50392 Jul 6 12:54:16 vps1 sshd[2257112]: Failed password for invalid user redash from 181.49.118.185 port 50392 ssh2 ...	2020-07-07 02:01:20
198.27.80.123	attackbotsspam	198.27.80.123 - - [06/Jul/2020:19:04:08 +0100] "POST /wp-login.php HTTP/1.1" 200 6199 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.80.123 - - [06/Jul/2020:19:06:46 +0100] "POST /wp-login.php HTTP/1.1" 200 6192 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" 198.27.80.123 - - [06/Jul/2020:19:08:55 +0100] "POST /wp-login.php HTTP/1.1" 200 6199 "-" "Mozilla/5.0 (Windows NT 10.0; WOW64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/46.0.2490.80 Safari/537.36" ...	2020-07-07 02:19:51
167.99.75.240	attack	Jul 6 19:53:18 vps639187 sshd\[21571\]: Invalid user mailman from 167.99.75.240 port 47386 Jul 6 19:53:18 vps639187 sshd\[21571\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=167.99.75.240 Jul 6 19:53:20 vps639187 sshd\[21571\]: Failed password for invalid user mailman from 167.99.75.240 port 47386 ssh2 ...	2020-07-07 01:55:33
112.85.42.200	attackbots	Jul 6 19:33:07 santamaria sshd\[21817\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=112.85.42.200 user=root Jul 6 19:33:09 santamaria sshd\[21817\]: Failed password for root from 112.85.42.200 port 36778 ssh2 Jul 6 19:33:19 santamaria sshd\[21817\]: Failed password for root from 112.85.42.200 port 36778 ssh2 ...	2020-07-07 01:51:36
82.64.153.14	attack	Jul 6 17:11:08 abendstille sshd\[32441\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.153.14 user=root Jul 6 17:11:10 abendstille sshd\[32441\]: Failed password for root from 82.64.153.14 port 51176 ssh2 Jul 6 17:14:13 abendstille sshd\[3100\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.153.14 user=root Jul 6 17:14:15 abendstille sshd\[3100\]: Failed password for root from 82.64.153.14 port 47462 ssh2 Jul 6 17:17:24 abendstille sshd\[5974\]: Invalid user openhabian from 82.64.153.14 Jul 6 17:17:24 abendstille sshd\[5974\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=82.64.153.14 ...	2020-07-07 02:24:47
183.87.157.202	attack	leo_www	2020-07-07 01:59:04
114.67.77.159	attackspam	Bruteforce detected by fail2ban	2020-07-07 01:52:21
182.190.4.53	attackbots	182.190.4.53 - - [06/Jul/2020:14:53:39 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 182.190.4.53 - - [06/Jul/2020:14:53:40 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 182.190.4.53 - - [06/Jul/2020:14:53:41 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 182.190.4.53 - - [06/Jul/2020:14:53:42 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 182.190.4.53 - - [06/Jul/2020:14:53:44 +0200] "POST /wp-login.php HTTP/1.1" 200 4522 "http://mib-epas-consortium.com/wp-login.php" "Mozilla/5.0 (Windows NT 6.1; rv:60.0) Gecko/20100101 Firefox/60.0" 182.1 ...	2020-07-07 02:23:55
172.126.36.104	attack	172.126.36.104 - - [06/Jul/2020:17:35:18 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 172.126.36.104 - - [06/Jul/2020:17:35:18 +0100] "POST /wp-login.php HTTP/1.1" 200 5448 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" 172.126.36.104 - - [06/Jul/2020:17:36:19 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/4.0 (compatible; MSIE 6.0; Windows NT 5.0)" ...	2020-07-07 02:00:52
146.185.163.81	attackspambots	C1,WP GET /wp-login.php	2020-07-07 02:02:29
49.234.219.31	attackspambots	Unauthorized connection attempt detected from IP address 49.234.219.31 to port 12501	2020-07-07 01:46:18
87.251.74.18	attack	Port scan on 13 port(s): 2019 3391 3392 5001 8888 10002 13390 23389 33089 33389 33892 50003 50005	2020-07-07 02:20:30

Recently Reported IPs

103.150.36.103	36.72.78.82	143.244.174.247	202.102.144.122
205.185.125.146	46.145.226.64	154.72.148.134	45.65.56.244
59.90.30.174	180.190.160.156	156.52.58.59	88.35.209.82
55.246.38.190	101.10.14.51	148.124.7.105	235.136.190.213
178.138.34.78	185.241.24.58	170.181.211.216	6.236.189.153