138.97.221.128

Basic Info

City: unknown

Region: unknown

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.97.221.20	attackspam	Honeypot attack, port: 445, PTR: 20.221.97.138.linkfort.com.br.	2020-03-09 02:01:07
138.97.221.45	attack	Jul 29 09:08:25 mail postfix/postscreen[5917]: PREGREET 36 after 0.65 from [138.97.221.45]:45907: EHLO 45.221.97.138.linkfort.com.br ...	2019-07-29 23:37:35

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.97.221.128
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 49360
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.97.221.128.			IN	A

;; AUTHORITY SECTION:
.			287	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022020702 1800 900 604800 86400

;; Query time: 77 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Tue Feb 08 11:18:40 CST 2022
;; MSG SIZE  rcvd: 107

Host info

128.221.97.138.in-addr.arpa domain name pointer 138.97.221.128.linkfort.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
128.221.97.138.in-addr.arpa	name = 138.97.221.128.linkfort.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.83.5.41	attackbotsspam	TCP (SYN) 103.83.5.41:61000 -> port 10000, len 44	2020-06-09 01:29:45
62.148.142.202	attackspam	$f2bV_matches	2020-06-09 01:36:17
181.40.122.2	attackspambots	Jun 8 16:09:21 sso sshd[15561]: Failed password for root from 181.40.122.2 port 58365 ssh2 ...	2020-06-09 01:25:14
77.92.252.30	attackbots	1591617817 - 06/08/2020 14:03:37 Host: 77.92.252.30/77.92.252.30 Port: 445 TCP Blocked	2020-06-09 01:38:33
45.55.128.109	attack	2020-06-08T11:55:39.396523dmca.cloudsearch.cf sshd[9856]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.128.109 user=root 2020-06-08T11:55:41.366714dmca.cloudsearch.cf sshd[9856]: Failed password for root from 45.55.128.109 port 32920 ssh2 2020-06-08T11:58:20.196891dmca.cloudsearch.cf sshd[10112]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.128.109 user=root 2020-06-08T11:58:21.936219dmca.cloudsearch.cf sshd[10112]: Failed password for root from 45.55.128.109 port 53542 ssh2 2020-06-08T12:00:56.869393dmca.cloudsearch.cf sshd[10305]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=45.55.128.109 user=root 2020-06-08T12:00:58.357821dmca.cloudsearch.cf sshd[10305]: Failed password for root from 45.55.128.109 port 45918 ssh2 2020-06-08T12:03:33.481093dmca.cloudsearch.cf sshd[10499]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty ...	2020-06-09 01:41:49
14.98.4.82	attack	2020-06-08T17:09:04.952108shield sshd\[22159\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.98.4.82 user=root 2020-06-08T17:09:07.522014shield sshd\[22159\]: Failed password for root from 14.98.4.82 port 9100 ssh2 2020-06-08T17:12:59.292208shield sshd\[23586\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.98.4.82 user=root 2020-06-08T17:13:00.788455shield sshd\[23586\]: Failed password for root from 14.98.4.82 port 2131 ssh2 2020-06-08T17:16:53.937018shield sshd\[25132\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=14.98.4.82 user=root	2020-06-09 01:30:21
220.134.15.236	attackbotsspam	Automatic report - Banned IP Access	2020-06-09 01:08:16
66.249.65.210	attackbots	[Mon Jun 08 19:03:40.563547 2020] [:error] [pid 25994:tid 140451873027840] [client 66.249.65.210:58817] [client 66.249.65.210] ModSecurity: Access denied with code 403 (phase 2). Pattern match "((?:[~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>][^~!@#\\\\$%\\\\^&\\\\\\\$\\\$\\\\-\\\\+=\\\\{\\\\}\\\\[\\\\]\\\\\|:;\"'\\xc2\\xb4\\xe2\\x80\\x99\\xe2\\x80\\x98`<>]*?){6})" at ARGS:id. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-942-APPLICATION-ATTACK-SQLI.conf"] [line "1526"] [id "942431"] [msg "Restricted SQL Character Anomaly Detection (args): # of special characters exceeded (6)"] [data "Matched Data: :kalender-tanam-katam-terpadu-kecamatan- found within ARGS:id: 1416:kalender-tanam-katam-terpadu-kecamatan-ngrambe-kabupaten-ngawi-tahun-2016-2017"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-sqli"] [tag "OWASP_ ...	2020-06-09 01:36:59
51.158.124.238	attackbots	Jun 8 16:46:24 Ubuntu-1404-trusty-64-minimal sshd\[23911\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.124.238 user=root Jun 8 16:46:26 Ubuntu-1404-trusty-64-minimal sshd\[23911\]: Failed password for root from 51.158.124.238 port 33380 ssh2 Jun 8 16:59:07 Ubuntu-1404-trusty-64-minimal sshd\[30887\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.124.238 user=root Jun 8 16:59:08 Ubuntu-1404-trusty-64-minimal sshd\[30887\]: Failed password for root from 51.158.124.238 port 50736 ssh2 Jun 8 17:02:28 Ubuntu-1404-trusty-64-minimal sshd\[3934\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.158.124.238 user=root	2020-06-09 01:06:53
138.197.129.38	attackspam	Jun 8 05:44:51 mockhub sshd[405]: Failed password for root from 138.197.129.38 port 41726 ssh2 ...	2020-06-09 01:23:22
114.67.65.66	attack	DATE:2020-06-08 14:04:13, IP:114.67.65.66, PORT:ssh SSH brute force auth (docker-dc)	2020-06-09 01:11:56
142.93.101.148	attackbots	Jun 8 19:18:49 server sshd[31246]: Failed password for root from 142.93.101.148 port 49380 ssh2 Jun 8 19:22:04 server sshd[31543]: Failed password for root from 142.93.101.148 port 51376 ssh2 ...	2020-06-09 01:33:27
114.67.241.174	attack	Jun 8 13:52:56 ns382633 sshd\[6761\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.241.174 user=root Jun 8 13:52:58 ns382633 sshd\[6761\]: Failed password for root from 114.67.241.174 port 45382 ssh2 Jun 8 14:02:09 ns382633 sshd\[8638\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.241.174 user=root Jun 8 14:02:11 ns382633 sshd\[8638\]: Failed password for root from 114.67.241.174 port 4196 ssh2 Jun 8 14:04:21 ns382633 sshd\[8969\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=114.67.241.174 user=root	2020-06-09 01:02:28
104.248.205.67	attackbotsspam	2020-06-08T17:00:49.834242+02:00 sshd[8776]: Failed password for root from 104.248.205.67 port 52990 ssh2	2020-06-09 01:06:29
188.127.247.60	attack	Jun 9 00:56:40 localhost sshd[2147168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=188.127.247.60 user=root Jun 9 00:56:42 localhost sshd[2147168]: Failed password for root from 188.127.247.60 port 46968 ssh2 ...	2020-06-09 01:42:18

Recently Reported IPs

189.207.110.102	36.95.57.186	94.74.148.102	185.40.81.85
206.47.41.175	41.32.116.166	189.237.71.21	177.249.169.143
103.130.113.249	187.163.71.21	101.51.58.177	62.138.18.87
189.213.143.208	103.87.30.149	46.161.61.214	122.54.157.25
109.94.172.156	175.153.162.224	42.233.148.83	201.130.159.232