138.201.1.57 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.201.135.92	attackspambots	Email spam message	2020-10-04 07:09:02
138.201.135.92	attackspambots	Email spam message	2020-10-03 23:22:35
138.201.135.92	attack	Email spam message	2020-10-03 15:06:53
138.201.123.170	attack	WordPress admin/config access attempt: "GET /wp-admin/"	2020-07-14 16:19:11
138.201.128.9	attack	Triggered: repeated knocking on closed ports.	2020-06-26 01:04:29
138.201.132.29	attackspam	DE - - [19/Jun/2020:19:00:03 +0300] GET /wordpress/wp-login.php HTTP/1.1 200 1275 - Mozilla/5.0 X11; Ubuntu; Linux x86_64; rv:62.0 Gecko/20100101 Firefox/62.0	2020-06-21 00:18:58
138.201.16.157	attackspambots	Jun 11 17:59:11 melroy-server sshd[3992]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.201.16.157 Jun 11 17:59:13 melroy-server sshd[3992]: Failed password for invalid user admin from 138.201.16.157 port 40524 ssh2 ...	2020-06-12 02:20:00
138.201.119.223	attackspam	chaangnoifulda.de 138.201.119.223 [07/Jun/2020:15:42:25 +0200] "POST /wp-login.php HTTP/1.1" 200 6006 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" chaangnoifulda.de 138.201.119.223 [07/Jun/2020:15:42:25 +0200] "POST /xmlrpc.php HTTP/1.1" 200 4065 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-06-07 23:50:24
138.201.189.47	attackspambots	Mar 22 21:19:17 silence02 sshd[31893]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.201.189.47 Mar 22 21:19:20 silence02 sshd[31893]: Failed password for invalid user pz from 138.201.189.47 port 50850 ssh2 Mar 22 21:24:57 silence02 sshd[32158]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.201.189.47	2020-03-23 04:50:30
138.201.199.113	attackspambots	Jan 29 16:11:46 mercury smtpd[1170]: edb6daf5c4fbdf12 smtp event=failed-command address=138.201.199.113 host=ts02.dc-haus.com command="RCPT to:" result="550 Invalid recipient" ...	2020-03-04 01:38:50
138.201.191.95	attackbotsspam	Wordpress login scanning	2020-02-25 18:37:14
138.201.14.212	attack	02/04/2020-14:50:53.606186 138.201.14.212 Protocol: 6 SURICATA TLS invalid record/traffic	2020-02-05 00:52:58
138.201.143.4	attackbots	Feb 2 18:30:31 plusreed sshd[13080]: Invalid user aruse from 138.201.143.4 ...	2020-02-03 07:46:35
138.201.14.212	attackspam	01/29/2020-14:30:51.707402 138.201.14.212 Protocol: 6 SURICATA TLS invalid record/traffic	2020-01-30 05:11:30
138.201.129.164	attackbots	Forbidden directory scan :: 2020/01/24 12:36:14 [error] 1008#1008: *738018 access forbidden by rule, client: 138.201.129.164, server: [censored_1], request: "GET /knowledge-base/tech-tips-tricks/... HTTP/1.1", host: "www.[censored_1]"	2020-01-24 23:56:17

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.201.1.57
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 37949
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.201.1.57.			IN	A

;; AUTHORITY SECTION:
.			192	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022021702 1800 900 604800 86400

;; Query time: 60 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Fri Feb 18 11:54:35 CST 2022
;; MSG SIZE  rcvd: 105

Host info

57.1.201.138.in-addr.arpa domain name pointer fo3.toppreise.ch.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
57.1.201.138.in-addr.arpa	name = fo3.toppreise.ch.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
139.155.10.89	attackspam	Repeated brute force against a port	2020-07-27 20:26:39
218.29.102.142	attackbots	E-Mail Spam (RBL) [REJECTED]	2020-07-27 20:04:37
204.44.82.161	attackbots	E-Mail Spam (RBL) [REJECTED]	2020-07-27 20:06:00
122.224.155.227	attackspambots	Mailserver and mailaccount attacks	2020-07-27 19:55:59
185.153.199.132	attack	Unauthorized connection attempt detected from IP address 185.153.199.132 to port 13389	2020-07-27 19:49:10
187.34.253.246	attack	Jul 27 06:47:45 sso sshd[10411]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=187.34.253.246 Jul 27 06:47:47 sso sshd[10411]: Failed password for invalid user oc from 187.34.253.246 port 59564 ssh2 ...	2020-07-27 19:54:11
139.59.17.238	attackspambots	Fail2Ban Ban Triggered	2020-07-27 20:03:09
157.245.231.62	attackbotsspam	Jul 27 13:32:51 * sshd[25588]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=157.245.231.62 Jul 27 13:32:53 * sshd[25588]: Failed password for invalid user rdf from 157.245.231.62 port 45722 ssh2	2020-07-27 19:51:46
141.237.31.168	attack	" "	2020-07-27 19:53:16
180.76.108.66	attack	Jul 27 13:57:40 debian-2gb-nbg1-2 kernel: \[18109566.267172\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=180.76.108.66 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=240 ID=58161 PROTO=TCP SPT=56466 DPT=24134 WINDOW=1024 RES=0x00 SYN URGP=0	2020-07-27 20:23:17
74.208.228.35	attack	74.208.228.35 - - [27/Jul/2020:12:57:35 +0100] "POST /wp-login.php HTTP/1.1" 200 1795 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 74.208.228.35 - - [27/Jul/2020:12:57:41 +0100] "POST /wp-login.php HTTP/1.1" 200 1792 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 74.208.228.35 - - [27/Jul/2020:12:57:42 +0100] "POST /xmlrpc.php HTTP/1.1" 403 219 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ...	2020-07-27 20:24:23
3.91.3.178	attackspambots	3.91.3.178 - - [27/Jul/2020:13:57:35 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;fee9e18e1d6eaf537f6d1fae38816120" 3.91.3.178 - - [27/Jul/2020:13:57:36 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;fee9e18e1d6eaf537f6d1fae38816120" 3.91.3.178 - - [27/Jul/2020:13:57:36 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;fee9e18e1d6eaf537f6d1fae38816120" 3.91.3.178 - - [27/Jul/2020:13:57:36 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;fee9e18e1d6eaf537f6d1fae38816120" 3.91.3.178 - - [27/Jul/2020:13:57:37 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;fee9e18e1d6eaf537f6d1fae38816120" 3.91.3.178 - - [27/Jul/2020:13:57:37 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;fee9e18e1d6eaf537f6d1fae38816120" 3.91.3.178 - - [27/Jul/2020:13:57:37 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;fee9e18e1d6eaf537f6d1fae38816120" 3.91.3.178 - - [27/Jul/2020:13:57:38 +0200] "GET / HTTP/1.1" 301 162 "-" "loader.io;fee9e18e1d6eaf537f6d1fae38816120" 3.91.3.178 - - [27/Jul/2020:13:57:38 +0200] "GET / HTTP/ ...	2020-07-27 20:22:51
156.96.113.235	attack	ssh brute force	2020-07-27 19:59:38
139.199.168.18	attackbotsspam	Invalid user karaz from 139.199.168.18 port 33160	2020-07-27 19:53:35
217.112.142.187	attackspambots	E-Mail Spam (RBL) [REJECTED]	2020-07-27 20:05:38

Recently Reported IPs

138.201.104.133	138.201.108.39	138.201.120.132	138.201.119.169
138.201.118.148	138.201.121.178	138.201.122.57	138.201.122.77
138.201.120.153	138.201.123.139	138.201.123.178	138.201.125.132
138.201.125.15	138.201.123.145	138.201.126.69	138.201.126.101
138.201.125.157	138.201.129.19	138.201.129.232	138.201.129.150