JavaScript is disabled. Some features of this site may not work properly. For a smoother experience, please enable JavaScript in your browser settings.

AbuseIPDB » 138.94.239.27

138.94.239.27 was found in our database!

This IP was reported 18 times. Confidence of Abuse is 36%: ?

36%

ISP	NETTCON PROVEDOR DE INTERNET EIRELI EPP
Usage Type	Fixed Line ISP
ASN	AS264177
Domain Name	nettcon.com.br
Country	🇧🇷 Brazil
City	Guaranta do Norte, Mato Grosso

IP info including ISP, Usage Type, and Location provided by IPInfo. Updated weekly.

Report 138.94.239.27

Whois 138.94.239.27

IP Abuse Reports for 138.94.239.27:

This IP address has been reported a total of 18 times from 12 distinct sources. 138.94.239.27 was first reported on April 28th 2026, and the most recent report was 1 month ago.

Old Reports: The most recent abuse report for this IP address is from 1 month ago . It is possible that this IP is no longer involved in abusive activities.

Reporter	IoA Timestamp (UTC)	Comment	Categories
🇮🇳 evicky2002	2026-05-05 06:00:00 (1 month ago)	Confirmed malicious by STILWaters CTI platform (score=87, sources=1)	Hacking Brute-Force SSH
🇦🇹 urnilxfgbez	2026-05-02 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 Admins@FBN	2026-05-02 01:18:51 (1 month ago)	FW-PortScan: Traffic Blocked srcport=26566 dstport=23	Port Scan
🇧🇾 stroytrest	2026-05-02 00:22:01 (1 month ago)	2026-05-02T03:22:00.645029+03:00 gate kernel: [928157.458039] nftables: JAIL-TELNET IN=wan OUT= MAC= ... show more 2026-05-02T03:22:00.645029+03:00 gate kernel: [928157.458039] nftables: JAIL-TELNET IN=wan OUT= MAC= SRC=138.94.239.27 DST=xxx.xxx.xxx.xxx LEN=44 TOS=0x00 PREC=0x00 TTL=44 ID=34141 PROTO=TCP SPT=25720 DPT=23 WINDOW=21453 RES=0x00 SYN URGP=0 ... show less	Port Scan
🇫🇷 security.rdmc.fr	2026-05-01 23:08:59 (1 month ago)	Port Scan Attack proto:TCP src:26952 dst:23	Port Scan
🇦🇹 urnilxfgbez	2026-05-01 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇺🇸 xmission.com	2026-05-01 22:08:11 (1 month ago)	Blocked by UFW (TCP on 23) Source port: 26836 TTL: 41 Packet length: 44 TOS: 0x08 This report (for ... show more Blocked by UFW (TCP on 23) Source port: 26836 TTL: 41 Packet length: 44 TOS: 0x08 This report (for 138.94.239.27) was generated by: https://github.com/sefinek/UFW-AbuseIPDB-Reporter show less	Port Scan Hacking Brute-Force
🇨🇦 Largnet SOC	2026-05-01 21:18:18 (1 month ago)	138.94.239.27 triggered Icarus honeypot on port 23. Check us out on github.	Port Scan Hacking
🇺🇸 MPL	2026-05-01 19:52:21 (1 month ago)	tcp/23	Port Scan
🇺🇸 RAP	2026-05-01 18:32:18 (1 month ago)	2026-05-01 18:32:18 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
🇦🇹 urnilxfgbez	2026-04-29 22:45:00 (1 month ago)	Last 24 Hours suspicious: (DPT=445\|DPT=3389\|DPT=22\|DPT=3306\|DPT=8080\|DPT=23\|DPT=5900\|DPT=1433)	Port Scan
🇩🇪 KPS	2026-04-28 22:58:18 (1 month ago)	PortscanM	Port Scan
Anonymous	2026-04-28 22:55:12 (1 month ago)	Unauthorized connection to Telnet port 23	Port Scan
🇺🇸 RAP	2026-04-28 22:12:13 (1 month ago)	2026-04-28 22:12:13 UTC Unauthorized activity to TCP port 23. Telnet	Port Scan
Anonymous	2026-04-28 21:59:08 (1 month ago)	Unauthorized connection attempt on Port 23	Port Scan Hacking Exploited Host

Showing 1 to 15 of 18 reports

Think this IP has been falsely reported? You may request to have the associated reports reviewed and removed. Request Takedown 🚩

Recently Reported IPs:

🇮🇳 2402:a00:162:1c24:a58b:980:9dea:995c

🇬🇧 198.178.235.37

🇹🇭 171.7.30.27

🇩🇪 165.227.157.247

🇺🇸 162.216.149.45

🇮🇳 117.192.65.244

🇮🇳 115.96.151.176

🇨🇳 101.126.95.172

🇳🇱 31.14.32.5

🇮🇳 202.142.121.239

🇺🇸 147.185.132.13

🇮🇳 135.235.138.43

🇰🇷 116.123.150.231

🇮🇹 79.8.124.79

🇳🇱 45.148.10.230

🇪🇸 5.134.118.84

🇨🇦 2607:f8b0:4023:1801::124

🇩🇪 213.209.159.241

🇺🇸 162.216.150.16

🇮🇳 150.129.206.105