138.97.165.209

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Minutos Telecom Informatica Ltda

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackspam	1587038961 - 04/16/2020 14:09:21 Host: 138.97.165.209/138.97.165.209 Port: 445 TCP Blocked	2020-04-17 02:54:14

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.97.165.209
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 33191
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.97.165.209.			IN	A

;; AUTHORITY SECTION:
.			598	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2020041601 1800 900 604800 86400

;; Query time: 167 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Apr 17 02:54:10 CST 2020
;; MSG SIZE  rcvd: 118

Host info

209.165.97.138.in-addr.arpa domain name pointer 138-97-165-209.dynamic.minutostelecom.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
209.165.97.138.in-addr.arpa	name = 138-97-165-209.dynamic.minutostelecom.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
212.70.149.82	attack	2020-06-21 18:38:05 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data 2020-06-21 18:43:02 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=care@no-server.de\) 2020-06-21 18:43:04 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=care@no-server.de\) 2020-06-21 18:43:23 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=winter@no-server.de\) 2020-06-21 18:43:23 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=winter@no-server.de\) 2020-06-21 18:43:31 dovecot_login authenticator failed for \(User\) \[212.70.149.82\]: 535 Incorrect authentication data \(set_id=winter@no-server.de\) ...	2020-06-24 21:28:33
80.241.44.238	attackbots	Jun 24 13:59:40 ns382633 sshd\[29682\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.241.44.238 user=root Jun 24 13:59:42 ns382633 sshd\[29682\]: Failed password for root from 80.241.44.238 port 42702 ssh2 Jun 24 14:08:38 ns382633 sshd\[31399\]: Invalid user tsserver from 80.241.44.238 port 39674 Jun 24 14:08:38 ns382633 sshd\[31399\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.241.44.238 Jun 24 14:08:39 ns382633 sshd\[31399\]: Failed password for invalid user tsserver from 80.241.44.238 port 39674 ssh2	2020-06-24 21:43:50
40.113.236.96	attack	Port 22 Scan, PTR: None	2020-06-24 21:04:29
111.202.100.82	attackbots	Malicious brute force vulnerability hacking attacks	2020-06-24 21:21:19
46.101.179.164	attackspambots	46.101.179.164 - - [24/Jun/2020:13:23:31 +0100] "POST /wp-login.php HTTP/1.1" 200 1968 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.179.164 - - [24/Jun/2020:13:23:33 +0100] "POST /wp-login.php HTTP/1.1" 200 1972 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 46.101.179.164 - - [24/Jun/2020:13:23:33 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-06-24 21:21:32
185.175.93.14	attack	scans 12 times in preceeding hours on the ports (in chronological order) 5577 31890 2292 52000 2012 6547 22884 33888 3402 53389 6464 3392 resulting in total of 37 scans from 185.175.93.0/24 block.	2020-06-24 21:15:54
106.13.119.163	attackbotsspam	Jun 24 15:10:33 ns381471 sshd[28749]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.13.119.163 Jun 24 15:10:35 ns381471 sshd[28749]: Failed password for invalid user vnc from 106.13.119.163 port 54794 ssh2	2020-06-24 21:44:10
41.139.142.170	attackbotsspam	...	2020-06-24 21:11:15
14.187.3.15	attackbotsspam	...	2020-06-24 21:20:39
117.99.160.185	attackspam	1593000529 - 06/24/2020 14:08:49 Host: 117.99.160.185/117.99.160.185 Port: 445 TCP Blocked	2020-06-24 21:37:35
94.25.181.227	attackspam	failed_logins	2020-06-24 21:08:15
222.186.52.39	attack	Jun 24 06:39:51 dignus sshd[16079]: Failed password for root from 222.186.52.39 port 33082 ssh2 Jun 24 06:40:01 dignus sshd[16090]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=222.186.52.39 user=root Jun 24 06:40:03 dignus sshd[16090]: Failed password for root from 222.186.52.39 port 17102 ssh2 Jun 24 06:40:05 dignus sshd[16090]: Failed password for root from 222.186.52.39 port 17102 ssh2 Jun 24 06:40:07 dignus sshd[16090]: Failed password for root from 222.186.52.39 port 17102 ssh2 ...	2020-06-24 21:40:33
222.186.173.183	attackbots	Jun 24 15:16:49 server sshd[12426]: Failed none for root from 222.186.173.183 port 16710 ssh2 Jun 24 15:16:51 server sshd[12426]: Failed password for root from 222.186.173.183 port 16710 ssh2 Jun 24 15:16:56 server sshd[12426]: Failed password for root from 222.186.173.183 port 16710 ssh2	2020-06-24 21:27:39
101.108.120.244	attack	Log in private e-mail	2020-06-24 21:46:22
142.93.246.42	attack	Jun 24 15:04:40 h1745522 sshd[28789]: Invalid user phil from 142.93.246.42 port 58670 Jun 24 15:04:40 h1745522 sshd[28789]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jun 24 15:04:40 h1745522 sshd[28789]: Invalid user phil from 142.93.246.42 port 58670 Jun 24 15:04:42 h1745522 sshd[28789]: Failed password for invalid user phil from 142.93.246.42 port 58670 ssh2 Jun 24 15:07:53 h1745522 sshd[28905]: Invalid user dai from 142.93.246.42 port 59036 Jun 24 15:07:53 h1745522 sshd[28905]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 Jun 24 15:07:53 h1745522 sshd[28905]: Invalid user dai from 142.93.246.42 port 59036 Jun 24 15:07:55 h1745522 sshd[28905]: Failed password for invalid user dai from 142.93.246.42 port 59036 ssh2 Jun 24 15:11:05 h1745522 sshd[29179]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=142.93.246.42 user=root Jun 24 ...	2020-06-24 21:43:30

Recently Reported IPs

91.37.98.90	78.142.194.128	178.141.61.41	176.224.182.14
114.67.203.23	18.229.131.64	27.77.216.96	45.9.47.50
89.187.178.169	82.146.42.66	1.85.56.246	13.93.239.205
188.127.233.99	183.83.137.118	180.250.92.60	1.186.69.155
190.205.54.110	72.150.1.56	133.41.129.66	183.89.229.118