138.99.7.27 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Argentina

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.99.79.192	attackspam	DATE:2020-09-30 22:38:59, IP:138.99.79.192, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-02 04:31:18
138.99.79.192	attackspambots	DATE:2020-09-30 22:38:59, IP:138.99.79.192, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-01 20:47:39
138.99.79.192	attackspambots	DATE:2020-09-30 22:38:59, IP:138.99.79.192, PORT:telnet Telnet brute force auth on honeypot server (epe-honey1-hq)	2020-10-01 12:59:50
138.99.7.29	attack	Sep 21 14:28:02 localhost sshd\[4429\]: Invalid user testmail1 from 138.99.7.29 Sep 21 14:28:02 localhost sshd\[4429\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.29 Sep 21 14:28:04 localhost sshd\[4429\]: Failed password for invalid user testmail1 from 138.99.7.29 port 56880 ssh2 Sep 21 14:37:33 localhost sshd\[5102\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.29 user=root Sep 21 14:37:36 localhost sshd\[5102\]: Failed password for root from 138.99.7.29 port 39850 ssh2 ...	2020-09-22 01:46:54
138.99.7.29	attack	2020-09-21 03:31:28,046 fail2ban.actions [937]: NOTICE [sshd] Ban 138.99.7.29 2020-09-21 04:13:22,125 fail2ban.actions [937]: NOTICE [sshd] Ban 138.99.7.29 2020-09-21 05:01:54,220 fail2ban.actions [937]: NOTICE [sshd] Ban 138.99.7.29 2020-09-21 05:42:45,401 fail2ban.actions [937]: NOTICE [sshd] Ban 138.99.7.29 2020-09-21 10:30:53,148 fail2ban.actions [937]: NOTICE [sshd] Ban 138.99.7.29 ...	2020-09-21 17:30:54
138.99.7.29	attack	Automatic report - Banned IP Access	2020-08-24 04:40:45
138.99.7.29	attack	2020-08-11T15:59:35.098926ks3355764 sshd[23602]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.29 user=root 2020-08-11T15:59:37.675376ks3355764 sshd[23602]: Failed password for root from 138.99.7.29 port 58834 ssh2 ...	2020-08-11 23:21:48
138.99.7.29	attackbots	Port Scan detected from 138.99.7.29 (AR/Argentina/Buenos Aires F.D./Buenos Aires/host29.138-99-7.telmex.net.ar). 4 hits in the last 255 seconds	2020-08-07 06:27:04
138.99.7.29	attack	Jul 23 06:01:23 h2427292 sshd\[14200\]: Invalid user administrador from 138.99.7.29 Jul 23 06:01:23 h2427292 sshd\[14200\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.29 Jul 23 06:01:25 h2427292 sshd\[14200\]: Failed password for invalid user administrador from 138.99.7.29 port 36738 ssh2 ...	2020-07-23 12:05:03
138.99.76.14	attackspambots	Automatic report - Port Scan Attack	2020-05-08 20:55:22
138.99.7.54	attackspambots	Apr 9 15:38:06 santamaria sshd\[12892\]: Invalid user data from 138.99.7.54 Apr 9 15:38:06 santamaria sshd\[12892\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 Apr 9 15:38:08 santamaria sshd\[12892\]: Failed password for invalid user data from 138.99.7.54 port 55902 ssh2 ...	2020-04-10 03:15:04
138.99.7.54	attackspam	Apr 7 19:32:31 cloud sshd[1753]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 Apr 7 19:32:32 cloud sshd[1753]: Failed password for invalid user ubuntu from 138.99.7.54 port 54398 ssh2	2020-04-08 04:43:54
138.99.7.54	attackbots	Apr 2 07:05:32 server1 sshd\[27542\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 user=root Apr 2 07:05:34 server1 sshd\[27542\]: Failed password for root from 138.99.7.54 port 46016 ssh2 Apr 2 07:07:41 server1 sshd\[28230\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 user=root Apr 2 07:07:43 server1 sshd\[28230\]: Failed password for root from 138.99.7.54 port 45624 ssh2 Apr 2 07:09:53 server1 sshd\[28906\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.99.7.54 user=root ...	2020-04-02 23:29:47
138.99.7.137	attack	Feb 23 11:39:56 *** sshd[19994]: Invalid user debian-spamd from 138.99.7.137	2020-02-23 20:55:06
138.99.79.231	attackspam	Automatic report - Port Scan Attack	2020-02-18 03:17:45

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.99.7.27
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 61775
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.99.7.27.			IN	A

;; AUTHORITY SECTION:
.			408	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 14 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:32:17 CST 2022
;; MSG SIZE  rcvd: 104

Host info

27.7.99.138.in-addr.arpa domain name pointer host27.138-99-7.telmex.net.ar.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
27.7.99.138.in-addr.arpa	name = host27.138-99-7.telmex.net.ar.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
195.154.38.177	attack	$f2bV_matches	2019-12-27 05:19:51
190.115.179.13	attackbotsspam	Invalid user supervisor from 190.115.179.13 port 28025	2019-12-27 05:15:32
80.88.90.86	attackbotsspam	Dec 26 16:22:41 zeus sshd[3388]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=80.88.90.86 Dec 26 16:22:43 zeus sshd[3388]: Failed password for invalid user denine from 80.88.90.86 port 39850 ssh2 Dec 26 16:24:58 zeus sshd[3466]: Failed password for root from 80.88.90.86 port 34544 ssh2	2019-12-27 04:42:41
198.108.66.89	attackbots	MultiHost/MultiPort Probe, Scan, Hack -	2019-12-27 05:12:19
74.82.47.56	attackspambots	" "	2019-12-27 05:11:02
176.31.110.213	attack	Automatic report - SSH Brute-Force Attack	2019-12-27 05:06:47
117.27.154.44	attack	Unauthorised access (Dec 26) SRC=117.27.154.44 LEN=40 TTL=241 ID=43559 TCP DPT=1433 WINDOW=1024 SYN Unauthorised access (Dec 25) SRC=117.27.154.44 LEN=40 TTL=240 ID=45560 TCP DPT=1433 WINDOW=1024 SYN	2019-12-27 04:42:01
198.108.67.86	attackspambots	firewall-block, port(s): 6008/tcp	2019-12-27 05:19:01
182.61.1.64	attackspam	Unauthorized connection attempt detected from IP address 182.61.1.64 to port 22	2019-12-27 05:17:56
177.92.16.186	attackbotsspam	Dec 26 16:08:58 firewall sshd[17519]: Failed password for invalid user ching from 177.92.16.186 port 37482 ssh2 Dec 26 16:11:12 firewall sshd[17549]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.92.16.186 user=root Dec 26 16:11:14 firewall sshd[17549]: Failed password for root from 177.92.16.186 port 35164 ssh2 ...	2019-12-27 05:15:46
119.29.170.120	attack	Dec 26 17:10:50 sd-53420 sshd\[4010\]: User root from 119.29.170.120 not allowed because none of user's groups are listed in AllowGroups Dec 26 17:10:50 sd-53420 sshd\[4010\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.120 user=root Dec 26 17:10:53 sd-53420 sshd\[4010\]: Failed password for invalid user root from 119.29.170.120 port 38820 ssh2 Dec 26 17:13:23 sd-53420 sshd\[4921\]: Invalid user user from 119.29.170.120 Dec 26 17:13:23 sd-53420 sshd\[4921\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=119.29.170.120 ...	2019-12-27 04:43:46
125.215.207.40	attackspam	Dec 26 20:14:40 vpn01 sshd[1168]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.40 Dec 26 20:14:42 vpn01 sshd[1168]: Failed password for invalid user gigi from 125.215.207.40 port 46014 ssh2 ...	2019-12-27 05:05:05
103.235.170.195	attack	Automatic report - Banned IP Access	2019-12-27 04:53:30
187.174.237.26	attack	Unauthorized connection attempt detected from IP address 187.174.237.26 to port 445	2019-12-27 04:44:32
69.94.143.17	attackspambots	Dec 26 16:48:11 grey postfix/smtpd\[2043\]: NOQUEUE: reject: RCPT from tatter.nabhaa.com\[69.94.143.17\]: 554 5.7.1 Service unavailable\; Client host \[69.94.143.17\] blocked using truncate.gbudb.net\; http://www.gbudb.com/truncate/ \[69.94.143.17\]\; from=\ to=\ proto=ESMTP helo=\ ...	2019-12-27 05:21:44

Recently Reported IPs

139.0.55.46	139.0.6.34	139.0.6.84	139.104.192.37
139.0.84.45	139.104.36.53	139.112.168.16	139.0.85.24
139.0.72.48	139.101.166.25	139.104.72.33	139.129.140.243
139.129.12.166	139.129.140.5	139.129.140.4	139.129.140.246
139.129.141.54	139.129.142.211	139.129.141.250	139.129.143.184