1.2.138.97 - IPInfo

Basic Info

City: Ban Phan Don

Region: Udon Thani

Country: Thailand

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
1.2.138.164	attackspambots	Invalid user admin from 1.2.138.164 port 54440	2020-05-23 15:52:33
1.2.138.31	attack	unauthorized connection attempt	2020-02-29 21:57:46

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 1.2.138.97
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 25181
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;1.2.138.97.			IN	A

;; AUTHORITY SECTION:
.			112	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022401 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 25 08:40:49 CST 2022
;; MSG SIZE  rcvd: 103

Host info

97.138.2.1.in-addr.arpa domain name pointer node-21t.pool-1-2.dynamic.totinternet.net.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
97.138.2.1.in-addr.arpa	name = node-21t.pool-1-2.dynamic.totinternet.net.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
110.137.72.230	attackspambots	20/7/29@08:08:57: FAIL: Alarm-Network address from=110.137.72.230 20/7/29@08:08:58: FAIL: Alarm-Network address from=110.137.72.230 ...	2020-07-30 01:32:35
106.13.123.29	attackbotsspam	Jul 26 11:01:24 Invalid user alex from 106.13.123.29 port 46988	2020-07-30 01:31:14
5.8.119.101	attack	xmlrpc attack	2020-07-30 01:27:37
200.194.32.135	attackbotsspam	Automatic report - Port Scan Attack	2020-07-30 01:52:22
80.211.89.9	attackbots	Invalid user dpjk from 80.211.89.9 port 47540	2020-07-30 01:33:57
121.238.76.89	attack	07/29/2020-08:08:44.280716 121.238.76.89 Protocol: 6 ET SCAN Suspicious inbound to MSSQL port 1433	2020-07-30 01:46:03
117.99.90.4	attack	2020-07-29T12:23:25.126701vps2034 sshd[29400]: Invalid user pfyuan from 117.99.90.4 port 46862 2020-07-29T12:23:25.131202vps2034 sshd[29400]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=117.99.90.4 2020-07-29T12:23:25.126701vps2034 sshd[29400]: Invalid user pfyuan from 117.99.90.4 port 46862 2020-07-29T12:23:26.991017vps2034 sshd[29400]: Failed password for invalid user pfyuan from 117.99.90.4 port 46862 ssh2 2020-07-29T12:27:23.202218vps2034 sshd[6803]: Invalid user hanruixing from 117.99.90.4 port 47612 ...	2020-07-30 01:34:41
119.42.121.25	attackbots	belitungshipwreck.org 119.42.121.25 [29/Jul/2020:14:09:01 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4304 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36" belitungshipwreck.org 119.42.121.25 [29/Jul/2020:14:09:04 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4304 "-" "Mozilla/5.0 (Windows NT 6.1; Win64; x64) AppleWebKit/537.36 (KHTML, like Gecko) Chrome/59.0.3071.109 Safari/537.36"	2020-07-30 01:25:31
139.99.156.158	attack	Automatic report - Brute Force attack using this IP address	2020-07-30 01:28:11
61.177.172.142	attack	Jul 29 19:31:40 santamaria sshd\[7971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.142 user=root Jul 29 19:31:42 santamaria sshd\[7971\]: Failed password for root from 61.177.172.142 port 44502 ssh2 Jul 29 19:32:05 santamaria sshd\[7973\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=61.177.172.142 user=root ...	2020-07-30 01:40:50
80.82.77.240	attackbots	probes 10 times on the port 18080 5000 5004 5800 5900 8443 8880 9000 9050 9200 resulting in total of 125 scans from 80.82.64.0/20 block.	2020-07-30 01:21:43
117.222.83.244	attackspambots	Unauthorised access (Jul 29) SRC=117.222.83.244 LEN=52 TTL=108 ID=20885 DF TCP DPT=445 WINDOW=8192 SYN	2020-07-30 01:08:54
47.176.104.74	attackbots	2020-07-29T18:34:46.733850amanda2.illicoweb.com sshd\[18676\]: Invalid user sunyifan_stu from 47.176.104.74 port 21536 2020-07-29T18:34:46.739014amanda2.illicoweb.com sshd\[18676\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.176.104.74 2020-07-29T18:34:48.754399amanda2.illicoweb.com sshd\[18676\]: Failed password for invalid user sunyifan_stu from 47.176.104.74 port 21536 ssh2 2020-07-29T18:40:06.182035amanda2.illicoweb.com sshd\[19173\]: Invalid user liangzheming from 47.176.104.74 port 39437 2020-07-29T18:40:06.188117amanda2.illicoweb.com sshd\[19173\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=47.176.104.74 ...	2020-07-30 01:11:55
49.144.102.207	attackbots	Automatic report - Port Scan	2020-07-30 01:32:55
122.155.17.174	attack	Invalid user RCadmin from 122.155.17.174 port 16474	2020-07-30 01:45:02

Recently Reported IPs

1.2.138.7	1.2.139.119	195.206.8.142	1.2.139.140
1.2.139.159	1.2.139.16	1.2.139.178	1.2.139.203
1.2.139.204	196.169.139.119	1.2.139.233	1.2.139.51
247.181.212.221	1.2.139.54	1.2.139.69	1.2.140.104
1.2.140.109	12.196.142.123	1.2.140.126	1.2.140.136