138.97.3.66 - IPInfo

Basic Info

City: Morrinhos

Region: Goias

Country: Brazil

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.97.37.225	attackspambots	SMB Server BruteForce Attack	2020-08-11 06:57:04
138.97.3.139	attack	Nov 26 11:31:27 mercury auth[30111]: pam_unix(dovecot:auth): authentication failure; logname= uid=0 euid=0 tty=dovecot ruser=josh@learnargentinianspanish.com rhost=138.97.3.139 ...	2020-03-04 02:09:09
138.97.31.81	attackspambots	Port probing on unauthorized port 23	2020-02-08 05:47:44
138.97.3.35	attack	Unauthorized connection attempt detected from IP address 138.97.3.35 to port 8080 [J]	2020-01-07 08:19:08
138.97.37.53	attackbots	1588/tcp 9200/tcp 8000/tcp [2019-09-22]3pkt	2019-09-25 05:20:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.97.3.66
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 42428
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.97.3.66.			IN	A

;; AUTHORITY SECTION:
.			599	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 117 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 08:00:27 CST 2022
;; MSG SIZE  rcvd: 104

Host info

66.3.97.138.in-addr.arpa domain name pointer 66-3-97-138.clickturbo.com.br.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
66.3.97.138.in-addr.arpa	name = 66-3-97-138.clickturbo.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
112.85.42.151	attackspambots	Oct 4 06:31:41 server sshd[21299]: Failed none for root from 112.85.42.151 port 17104 ssh2 Oct 4 06:31:43 server sshd[21299]: Failed password for root from 112.85.42.151 port 17104 ssh2 Oct 4 06:31:48 server sshd[21299]: Failed password for root from 112.85.42.151 port 17104 ssh2	2020-10-04 12:35:57
165.232.102.187	attackbotsspam	Oct 3 21:35:54 gitlab sshd[2886551]: Invalid user private from 165.232.102.187 port 56092 Oct 3 21:35:54 gitlab sshd[2886551]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=165.232.102.187 Oct 3 21:35:54 gitlab sshd[2886551]: Invalid user private from 165.232.102.187 port 56092 Oct 3 21:35:57 gitlab sshd[2886551]: Failed password for invalid user private from 165.232.102.187 port 56092 ssh2 Oct 3 21:39:46 gitlab sshd[2887114]: Invalid user sig from 165.232.102.187 port 39818 ...	2020-10-04 12:07:43
35.242.214.242	attackbots	35.242.214.242 - - [03/Oct/2020:21:01:43 +0000] "POST /wp-login.php HTTP/1.1" 200 2088 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 35.242.214.242 - - [03/Oct/2020:21:01:45 +0000] "POST /wp-login.php HTTP/1.1" 200 2065 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 35.242.214.242 - - [03/Oct/2020:21:01:46 +0000] "POST /wp-login.php HTTP/1.1" 200 2062 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 35.242.214.242 - - [03/Oct/2020:21:01:48 +0000] "POST /wp-login.php HTTP/1.1" 200 2062 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-" 35.242.214.242 - - [03/Oct/2020:21:01:49 +0000] "POST /xmlrpc.php HTTP/1.1" 200 236 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" "-"	2020-10-04 12:22:36
213.231.11.168	attack	Oct 3 22:29:14 kunden sshd[23242]: Did not receive identification string from 213.231.11.168 Oct 3 22:29:14 kunden sshd[23241]: Did not receive identification string from 213.231.11.168 Oct 3 22:29:14 kunden sshd[23239]: Did not receive identification string from 213.231.11.168 Oct 3 22:29:14 kunden sshd[23240]: Did not receive identification string from 213.231.11.168 Oct 3 22:29:17 kunden sshd[23243]: Did not receive identification string from 213.231.11.168 Oct 3 22:29:31 kunden sshd[23244]: Invalid user admin1 from 213.231.11.168 Oct 3 22:29:31 kunden sshd[23246]: Invalid user admin1 from 213.231.11.168 Oct 3 22:29:32 kunden sshd[23247]: Invalid user admin1 from 213.231.11.168 Oct 3 22:29:32 kunden sshd[23245]: Invalid user admin1 from 213.231.11.168 Oct 3 22:29:32 kunden sshd[23248]: Invalid user admin1 from 213.231.11.168 Oct 3 22:29:32 kunden sshd[23244]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=213.231.11........ -------------------------------	2020-10-04 12:34:52
163.44.197.129	attackspambots	SSH Invalid Login	2020-10-04 12:31:45
115.127.5.210	attack	20/10/3@16:42:01: FAIL: Alarm-Intrusion address from=115.127.5.210 ...	2020-10-04 12:01:39
45.148.122.161	attackspambots	Oct 4 06:42:50 server2 sshd\[16510\]: Invalid user fake from 45.148.122.161 Oct 4 06:42:50 server2 sshd\[16512\]: Invalid user admin from 45.148.122.161 Oct 4 06:42:51 server2 sshd\[16514\]: User root from 45.148.122.161 not allowed because not listed in AllowUsers Oct 4 06:42:51 server2 sshd\[16516\]: Invalid user ubnt from 45.148.122.161 Oct 4 06:42:51 server2 sshd\[16519\]: Invalid user guest from 45.148.122.161 Oct 4 06:42:51 server2 sshd\[16521\]: Invalid user support from 45.148.122.161	2020-10-04 12:31:01
194.165.99.231	attackbots	Unauthorized SSH login attempts	2020-10-04 12:16:35
51.178.51.152	attackbotsspam	Oct 4 00:07:10 localhost sshd\[28306\]: Invalid user arkserver from 51.178.51.152 Oct 4 00:07:10 localhost sshd\[28306\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.51.152 Oct 4 00:07:13 localhost sshd\[28306\]: Failed password for invalid user arkserver from 51.178.51.152 port 40714 ssh2 Oct 4 00:10:52 localhost sshd\[28587\]: Invalid user testuser2 from 51.178.51.152 Oct 4 00:10:53 localhost sshd\[28587\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=51.178.51.152 ...	2020-10-04 09:29:20
103.6.143.110	attackspam	20 attempts against mh-misbehave-ban on leaf	2020-10-04 12:06:17
78.128.113.121	attackbotsspam	Oct 4 06:12:57 galaxy event: galaxy/lswi: smtp: marcus.lindemann@wi.uni-potsdam.de [78.128.113.121] authentication failure using internet password Oct 4 06:12:59 galaxy event: galaxy/lswi: smtp: marcus.lindemann [78.128.113.121] authentication failure using internet password Oct 4 06:13:06 galaxy event: galaxy/lswi: smtp: marcus.lindemann@wi.uni-potsdam.de [78.128.113.121] authentication failure using internet password Oct 4 06:13:08 galaxy event: galaxy/lswi: smtp: marcus.lindemann [78.128.113.121] authentication failure using internet password Oct 4 06:13:51 galaxy event: galaxy/lswi: smtp: lswi@wi.uni-potsdam.de [78.128.113.121] authentication failure using internet password ...	2020-10-04 12:14:55
114.231.82.172	attackbotsspam	20 attempts against mh-ssh on mist	2020-10-04 12:21:27
216.127.168.213	attackspambots	2020-10-03 22:41:49 wonderland sendmail[7900]: 093Kfnew007900: rejecting commands from 213-79-44-72-dedicated.multacom.com [216.127.168.213] due to pre-greeting traffic after 0 seconds	2020-10-04 12:10:38
106.54.253.9	attackbotsspam	Oct 3 22:37:19 v22019038103785759 sshd\[8057\]: Invalid user ubuntu from 106.54.253.9 port 46192 Oct 3 22:37:19 v22019038103785759 sshd\[8057\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.9 Oct 3 22:37:21 v22019038103785759 sshd\[8057\]: Failed password for invalid user ubuntu from 106.54.253.9 port 46192 ssh2 Oct 3 22:41:35 v22019038103785759 sshd\[8546\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=106.54.253.9 user=root Oct 3 22:41:37 v22019038103785759 sshd\[8546\]: Failed password for root from 106.54.253.9 port 44844 ssh2 ...	2020-10-04 12:23:33
159.89.236.71	attackspam	2020-10-03T20:20:31.588351yoshi.linuxbox.ninja sshd[3599189]: Invalid user noc from 159.89.236.71 port 50260 2020-10-03T20:20:33.393717yoshi.linuxbox.ninja sshd[3599189]: Failed password for invalid user noc from 159.89.236.71 port 50260 ssh2 2020-10-03T20:24:29.307842yoshi.linuxbox.ninja sshd[3601862]: Invalid user rose from 159.89.236.71 port 52306 ...	2020-10-04 09:30:01

Recently Reported IPs

138.97.3.65	138.97.3.85	138.97.3.76	138.97.3.6
138.97.3.90	138.97.3.92	118.194.242.42	138.97.3.97
138.97.30.131	138.97.3.95	138.97.30.142	138.97.30.144
138.97.30.177	138.97.30.140	138.97.30.169	138.97.30.187
138.97.30.234	118.194.242.44	138.97.30.241	138.97.30.245