138.97.21.94 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: Camon Provedor

Hostname: unknown

Organization: unknown

Usage Type: Fixed Line ISP

Comments:

Make a comment on this IP

Type	Details	Datetime
attackbotsspam	Unauthorized connection attempt detected from IP address 138.97.21.94 to port 445	2019-12-13 19:20:13

Comments on same subnet:

IP	Type	Details	Datetime
138.97.212.245	attackbots	IP 138.97.212.245 attacked honeypot on port: 1433 at 9/9/2020 9:46:48 AM	2020-09-11 03:23:00
138.97.212.245	attackspambots	IP 138.97.212.245 attacked honeypot on port: 1433 at 9/9/2020 9:46:48 AM	2020-09-10 18:52:45
138.97.219.92	attackspam	Automatic report - Port Scan Attack	2020-08-11 14:41:35
138.97.216.242	attackspam	20/4/5@23:54:21: FAIL: Alarm-Telnet address from=138.97.216.242 ...	2020-04-06 15:10:03
138.97.217.79	attackspam	Automatic report - Port Scan Attack	2020-03-21 14:26:50
138.97.216.28	attackspam	SSH Brute Force	2020-03-13 18:24:29
138.97.216.28	attackspam	2020-03-11T20:16:25.829186 sshd[3126]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.216.28 user=root 2020-03-11T20:16:27.554575 sshd[3126]: Failed password for root from 138.97.216.28 port 43984 ssh2 2020-03-11T20:20:35.691264 sshd[3221]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.216.28 user=root 2020-03-11T20:20:37.070377 sshd[3221]: Failed password for root from 138.97.216.28 port 47134 ssh2 ...	2020-03-12 05:26:31
138.97.216.28	attackbotsspam	Mar 4 15:55:00 vps647732 sshd[4723]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.216.28 Mar 4 15:55:02 vps647732 sshd[4723]: Failed password for invalid user rafli from 138.97.216.28 port 52200 ssh2 ...	2020-03-04 23:14:55
138.97.216.241	attackbotsspam	3389BruteforceFW21	2019-11-30 02:02:31
138.97.219.241	attackspam	Automatic report - Port Scan Attack	2019-09-15 19:25:06
138.97.218.51	attackbots	DATE:2019-08-31 18:42:04, IP:138.97.218.51, PORT:ssh SSH brute force auth (thor)	2019-09-01 03:02:20
138.97.218.51	attackbotsspam	Aug 30 22:51:04 auw2 sshd\[23763\]: Invalid user max from 138.97.218.51 Aug 30 22:51:04 auw2 sshd\[23763\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=customer-138-97-218-51.viaparque.net.br Aug 30 22:51:06 auw2 sshd\[23763\]: Failed password for invalid user max from 138.97.218.51 port 53315 ssh2 Aug 30 22:56:39 auw2 sshd\[24240\]: Invalid user testftp from 138.97.218.51 Aug 30 22:56:39 auw2 sshd\[24240\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=customer-138-97-218-51.viaparque.net.br	2019-08-31 17:07:15
138.97.218.51	attackspam	Aug 30 09:44:42 wbs sshd\[2550\]: Invalid user ronald from 138.97.218.51 Aug 30 09:44:42 wbs sshd\[2550\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=customer-138-97-218-51.viaparque.net.br Aug 30 09:44:44 wbs sshd\[2550\]: Failed password for invalid user ronald from 138.97.218.51 port 32127 ssh2 Aug 30 09:50:10 wbs sshd\[3109\]: Invalid user kristo from 138.97.218.51 Aug 30 09:50:10 wbs sshd\[3109\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=customer-138-97-218-51.viaparque.net.br	2019-08-31 04:01:09
138.97.218.51	attackspam	2019-07-10T20:57:19.633611cavecanem sshd[26003]: Invalid user zookeeper from 138.97.218.51 port 17323 2019-07-10T20:57:19.636036cavecanem sshd[26003]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.218.51 2019-07-10T20:57:19.633611cavecanem sshd[26003]: Invalid user zookeeper from 138.97.218.51 port 17323 2019-07-10T20:57:21.310971cavecanem sshd[26003]: Failed password for invalid user zookeeper from 138.97.218.51 port 17323 ssh2 2019-07-10T21:01:21.081670cavecanem sshd[27145]: Invalid user helpdesk from 138.97.218.51 port 10898 2019-07-10T21:01:21.084072cavecanem sshd[27145]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.218.51 2019-07-10T21:01:21.081670cavecanem sshd[27145]: Invalid user helpdesk from 138.97.218.51 port 10898 2019-07-10T21:01:23.315843cavecanem sshd[27145]: Failed password for invalid user helpdesk from 138.97.218.51 port 10898 ssh2 2019-07-10T21:01:38.778341cavecanem ssh ...	2019-07-11 09:47:09

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.97.21.94
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49573
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1

;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;138.97.21.94.			IN	A

;; AUTHORITY SECTION:
.			563	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2019121300 1800 900 604800 86400

;; Query time: 113 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Dec 13 19:20:09 CST 2019
;; MSG SIZE  rcvd: 116

Host info

94.21.97.138.in-addr.arpa domain name pointer dynamic-138-97-21-94.camontelecom.net.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
94.21.97.138.in-addr.arpa	name = dynamic-138-97-21-94.camontelecom.net.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
194.63.143.189	attackspambots	" "	2019-07-23 06:10:52
41.33.58.100	attackspambots	Honeypot attack, port: 445, PTR: host-41.33.58.100.tedata.net.	2019-07-23 06:06:36
202.148.20.58	attackspam	[21/Jul/2019:08:51:57 -0400] "GET / HTTP/1.1" Safari 9.1.2 UA	2019-07-23 06:09:46
41.60.235.174	attackbotsspam	[21/Jul/2019:11:50:31 -0400] "GET / HTTP/1.1" Chrome 52.0 UA	2019-07-23 05:49:38
95.216.38.186	attackspambots	20 attempts against mh-misbehave-ban on flare.magehost.pro	2019-07-23 05:48:10
185.176.26.101	attackspam	Splunk® : port scan detected: Jul 22 17:35:29 testbed kernel: Firewall: TCP_IN Blocked IN=eth0 OUT= MAC=82:c6:52:d1:6e:53:64:c3:d6:0b:ef:f0:08:00 SRC=185.176.26.101 DST=104.248.11.191 LEN=40 TOS=0x00 PREC=0x00 TTL=244 ID=56723 PROTO=TCP SPT=41515 DPT=6960 WINDOW=1024 RES=0x00 SYN URGP=0	2019-07-23 05:47:36
212.230.233.226	attackbots	Automatic report - Port Scan Attack	2019-07-23 05:37:21
106.51.66.214	attackspam	Jul 22 21:43:55 localhost sshd\[105219\]: Invalid user ecommerce from 106.51.66.214 port 39341 Jul 22 21:43:55 localhost sshd\[105219\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.66.214 Jul 22 21:43:57 localhost sshd\[105219\]: Failed password for invalid user ecommerce from 106.51.66.214 port 39341 ssh2 Jul 22 21:49:06 localhost sshd\[105400\]: Invalid user fernandazgouridi from 106.51.66.214 port 36848 Jul 22 21:49:06 localhost sshd\[105400\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.51.66.214 ...	2019-07-23 06:14:05
165.227.39.71	attack	Jul 22 16:05:07 OPSO sshd\[11953\]: Invalid user love from 165.227.39.71 port 36724 Jul 22 16:05:07 OPSO sshd\[11953\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.39.71 Jul 22 16:05:09 OPSO sshd\[11953\]: Failed password for invalid user love from 165.227.39.71 port 36724 ssh2 Jul 22 16:12:02 OPSO sshd\[12957\]: Invalid user odoo from 165.227.39.71 port 33188 Jul 22 16:12:02 OPSO sshd\[12957\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.227.39.71	2019-07-23 05:58:45
201.13.192.60	attack	[21/Jul/2019:03:09:52 -0400] "GET / HTTP/1.1" Chrome 51.0 UA [21/Jul/2019:03:09:52 -0400] "GET / HTTP/1.1" Chrome 52.0 UA	2019-07-23 06:14:52
143.208.249.5	attack	$f2bV_matches	2019-07-23 06:07:39
144.121.28.206	attackspambots	2019-07-22T13:45:03.248191abusebot-4.cloudsearch.cf sshd\[28528\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=144.121.28.206 user=root	2019-07-23 05:45:02
103.217.217.146	attackspam	2019-07-22T21:41:42.112794abusebot-8.cloudsearch.cf sshd\[30761\]: Invalid user backup from 103.217.217.146 port 50900	2019-07-23 06:08:00
185.170.210.67	attackspam	Honeypot attack, port: 23, PTR: PTR record not found	2019-07-23 05:58:08
41.226.248.150	attackbots	FTP brute-force attack	2019-07-23 05:56:41

Recently Reported IPs

177.59.68.103	9.211.18.58	119.16.9.114	2.14.165.232
2.186.229.128	239.221.224.161	36.84.187.91	90.93.155.144
90.117.61.55	162.79.252.194	158.16.75.110	44.250.23.147
113.223.74.108	198.119.104.171	199.175.111.178	80.211.177.213
173.96.153.31	5.8.83.230	197.110.64.156	255.60.249.127