138.201.21.196

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.201.21.124	attackbotsspam	suspicious action Tue, 10 Mar 2020 15:10:37 -0300	2020-03-11 08:23:31

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.201.21.196
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 52258
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.201.21.196.			IN	A

;; AUTHORITY SECTION:
.			59	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 53 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:38:07 CST 2022
;; MSG SIZE  rcvd: 107

Host info

196.21.201.138.in-addr.arpa domain name pointer static.196.21.201.138.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
196.21.201.138.in-addr.arpa	name = static.196.21.201.138.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
132.232.79.135	attackspambots	$f2bV_matches	2020-06-09 07:13:53
201.69.248.113	attackbotsspam	Automatic report - Banned IP Access	2020-06-09 07:34:08
68.183.12.80	attackspambots	(sshd) Failed SSH login from 68.183.12.80 (NL/Netherlands/chbluxury.com.ng): 5 in the last 3600 secs; Ports: *; Direction: inout; Trigger: LF_SSHD; Logs: Jun 8 22:19:20 elude sshd[22859]: Invalid user polycom from 68.183.12.80 port 52830 Jun 8 22:19:21 elude sshd[22859]: Failed password for invalid user polycom from 68.183.12.80 port 52830 ssh2 Jun 8 22:28:29 elude sshd[24295]: Invalid user cbiuser from 68.183.12.80 port 58006 Jun 8 22:28:30 elude sshd[24295]: Failed password for invalid user cbiuser from 68.183.12.80 port 58006 ssh2 Jun 8 22:32:23 elude sshd[24944]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=68.183.12.80 user=root	2020-06-09 07:27:51
46.38.145.5	attackbotsspam	Jun 9 01:13:41 srv01 postfix/smtpd\[7294\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 9 01:13:58 srv01 postfix/smtpd\[13114\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 9 01:14:29 srv01 postfix/smtpd\[10397\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 9 01:14:48 srv01 postfix/smtpd\[7294\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 9 01:15:17 srv01 postfix/smtpd\[13114\]: warning: unknown\[46.38.145.5\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-09 07:15:48
188.153.218.82	attackspam	Jun 8 22:49:06 ip-172-31-61-156 sshd[5939]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.153.218.82 user=root Jun 8 22:49:09 ip-172-31-61-156 sshd[5939]: Failed password for root from 188.153.218.82 port 60938 ssh2 Jun 8 22:52:39 ip-172-31-61-156 sshd[6038]: Invalid user awsjava from 188.153.218.82 Jun 8 22:52:39 ip-172-31-61-156 sshd[6038]: Invalid user awsjava from 188.153.218.82 ...	2020-06-09 07:34:59
95.111.237.161	attackspambots	Jun 9 00:22:07 dbanaszewski sshd[32022]: Unable to negotiate with 95.111.237.161 port 39772: no matching host key type found. Their offer: ssh-rsa,ssh-dss [preauth] Jun 9 00:31:04 dbanaszewski sshd[32121]: Unable to negotiate with 95.111.237.161 port 50906: no matching host key type found. Their offer: ssh-rsa,ssh-dss [preauth]	2020-06-09 07:35:38
208.98.49.44	attackspam	Hacking	2020-06-09 07:20:22
51.77.149.232	attack	644. On Jun 8 2020 experienced a Brute Force SSH login attempt -> 11 unique times by 51.77.149.232.	2020-06-09 07:38:59
118.25.215.186	attackspam	2020-06-08T20:21:41.445252shield sshd\[13578\]: Invalid user ubnt from 118.25.215.186 port 56748 2020-06-08T20:21:41.449281shield sshd\[13578\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.215.186 2020-06-08T20:21:43.260100shield sshd\[13578\]: Failed password for invalid user ubnt from 118.25.215.186 port 56748 ssh2 2020-06-08T20:24:02.719503shield sshd\[14378\]: Invalid user aish from 118.25.215.186 port 55352 2020-06-08T20:24:02.727623shield sshd\[14378\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.25.215.186	2020-06-09 07:05:16
49.73.235.149	attackbots	"fail2ban match"	2020-06-09 07:37:13
222.188.94.26	attackbotsspam	IP 222.188.94.26 attacked honeypot on port: 139 at 6/8/2020 9:23:23 PM	2020-06-09 07:22:48
46.38.145.251	attackbots	Jun 9 01:33:44 srv01 postfix/smtpd\[22658\]: warning: unknown\[46.38.145.251\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 9 01:34:16 srv01 postfix/smtpd\[21427\]: warning: unknown\[46.38.145.251\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 9 01:34:36 srv01 postfix/smtpd\[22658\]: warning: unknown\[46.38.145.251\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 9 01:34:36 srv01 postfix/smtpd\[7294\]: warning: unknown\[46.38.145.251\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 9 01:35:19 srv01 postfix/smtpd\[21427\]: warning: unknown\[46.38.145.251\]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 ...	2020-06-09 07:36:18
89.252.196.99	attack	Jun 9 01:57:59 debian kernel: [559636.018251] [UFW BLOCK] IN=eth0 OUT= MAC=52:54:00:be:e4:65:08:e8:4f:6e:48:0c:08:00 SRC=89.252.196.99 DST=89.252.131.35 LEN=40 TOS=0x00 PREC=0x00 TTL=239 ID=39723 DF PROTO=TCP SPT=61468 DPT=7547 WINDOW=14600 RES=0x00 SYN URGP=0	2020-06-09 07:06:09
107.180.120.57	attack	107.180.120.57 - - [08/Jun/2020:22:53:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 58203 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" 107.180.120.57 - - [08/Jun/2020:22:53:59 +0200] "POST /xmlrpc.php HTTP/1.1" 403 58353 "-" "Mozilla/5.0 (Windows NT 10.0; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/60.0.3112.113 Safari/537.36" ...	2020-06-09 07:02:03
195.231.81.216	attackbots	Jun 8 23:40:41 mail.srvfarm.net postfix/smtpd[1072595]: warning: unknown[195.231.81.216]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 23:40:41 mail.srvfarm.net postfix/smtpd[1072595]: lost connection after AUTH from unknown[195.231.81.216] Jun 8 23:40:58 mail.srvfarm.net postfix/smtpd[1068290]: warning: unknown[195.231.81.216]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 Jun 8 23:40:58 mail.srvfarm.net postfix/smtpd[1068290]: lost connection after AUTH from unknown[195.231.81.216] Jun 8 23:41:15 mail.srvfarm.net postfix/smtpd[1072502]: warning: unknown[195.231.81.216]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2020-06-09 07:12:11

Recently Reported IPs

138.201.209.46	138.201.21.230	118.175.207.101	138.201.21.213
138.201.21.215	138.201.21.54	138.201.210.204	138.201.211.249
138.201.210.202	138.201.215.120	138.201.215.79	138.201.217.172
118.175.207.102	138.201.22.10	138.201.220.142	138.201.22.88
138.201.220.151	138.201.22.120	138.201.220.206	138.201.220.246