138.12.4.89 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: United States

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

No discussion about this subnet yet..

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.12.4.89
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 2436
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.12.4.89.			IN	A

;; AUTHORITY SECTION:
.			203	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 64 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:52:44 CST 2022
;; MSG SIZE  rcvd: 104

Host info

89.4.12.138.in-addr.arpa domain name pointer lxnx.com.
89.4.12.138.in-addr.arpa domain name pointer lexis-nexis.com.
89.4.12.138.in-addr.arpa domain name pointer lexstat.com.
89.4.12.138.in-addr.arpa domain name pointer search.lexisnexis.com.
89.4.12.138.in-addr.arpa domain name pointer lexsee.com.
89.4.12.138.in-addr.arpa domain name pointer search.lexis-nexis.com.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
89.4.12.138.in-addr.arpa	name = lexstat.com.
89.4.12.138.in-addr.arpa	name = search.lexisnexis.com.
89.4.12.138.in-addr.arpa	name = lexsee.com.
89.4.12.138.in-addr.arpa	name = search.lexis-nexis.com.
89.4.12.138.in-addr.arpa	name = lxnx.com.
89.4.12.138.in-addr.arpa	name = lexis-nexis.com.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
138.197.166.110	attack	Dec 30 05:56:54 jane sshd[6822]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.197.166.110 Dec 30 05:56:56 jane sshd[6822]: Failed password for invalid user test from 138.197.166.110 port 57402 ssh2 ...	2019-12-30 13:00:50
159.203.36.154	attackspam	Dec 30 11:56:22 webhost01 sshd[10445]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=159.203.36.154 Dec 30 11:56:24 webhost01 sshd[10445]: Failed password for invalid user dovecot from 159.203.36.154 port 46504 ssh2 ...	2019-12-30 13:20:33
207.246.240.109	attackspambots	Automatic report - XMLRPC Attack	2019-12-30 13:19:55
222.186.175.154	attackbotsspam	Dec 30 06:02:47 root sshd[10231]: Failed password for root from 222.186.175.154 port 60294 ssh2 Dec 30 06:02:52 root sshd[10231]: Failed password for root from 222.186.175.154 port 60294 ssh2 Dec 30 06:02:56 root sshd[10231]: Failed password for root from 222.186.175.154 port 60294 ssh2 Dec 30 06:03:00 root sshd[10231]: Failed password for root from 222.186.175.154 port 60294 ssh2 ...	2019-12-30 13:06:52
118.254.98.187	attackbotsspam	Dec 30 05:49:24 mail kernel: [2701106.042691] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=118.254.98.187 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=14311 DF PROTO=TCP SPT=26807 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 30 05:49:27 mail kernel: [2701109.104369] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=118.254.98.187 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=15268 DF PROTO=TCP SPT=26807 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0 Dec 30 05:56:37 mail kernel: [2701539.627559] [UFW BLOCK] IN=eth0 OUT= MAC=00:50:56:3d:86:ee:00:08:e3:ff:fd:90:08:00 SRC=118.254.98.187 DST=91.205.173.180 LEN=52 TOS=0x00 PREC=0x00 TTL=116 ID=29258 DF PROTO=TCP SPT=28778 DPT=1433 WINDOW=8192 RES=0x00 SYN URGP=0	2019-12-30 13:12:37
104.244.72.98	attack	Unauthorized connection attempt detected from IP address 104.244.72.98 to port 22	2019-12-30 13:03:47
122.227.180.165	attackbots	Unauthorized connection attempt detected from IP address 122.227.180.165 to port 1433	2019-12-30 09:32:29
134.175.113.143	attackspambots	Unauthorized connection attempt detected from IP address 134.175.113.143 to port 1433	2019-12-30 09:31:08
222.186.175.220	attackbotsspam	[ssh] SSH attack	2019-12-30 13:02:09
178.62.75.60	attackspambots	Dec 30 05:50:57 silence02 sshd[9298]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.75.60 Dec 30 05:50:59 silence02 sshd[9298]: Failed password for invalid user xs from 178.62.75.60 port 57464 ssh2 Dec 30 05:56:26 silence02 sshd[9607]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=178.62.75.60	2019-12-30 13:17:02
92.220.10.100	attackspambots	Automatic report - Banned IP Access	2019-12-30 13:30:01
103.22.250.194	attackspam	Automatic report - XMLRPC Attack	2019-12-30 13:01:22
112.118.100.200	attack	" "	2019-12-30 13:16:15
36.77.95.121	attack	Unauthorised access (Dec 30) SRC=36.77.95.121 LEN=52 TTL=119 ID=4274 DF TCP DPT=445 WINDOW=8192 SYN	2019-12-30 13:31:08
104.197.75.152	attack	Automatic report - Banned IP Access	2019-12-30 13:13:32

Recently Reported IPs

138.12.4.76	138.118.251.25	138.118.89.188	138.121.131.45
138.121.12.20	138.121.131.238	138.121.182.151	138.121.170.230
138.121.190.163	138.121.105.22	138.122.106.108	138.122.11.24
138.122.112.21	138.122.148.192	138.122.126.32	138.122.36.161
138.122.36.145	138.122.166.159	138.122.36.213	138.122.36.82