138.201.132.16

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.201.132.29	attackspam	DE - - [19/Jun/2020:19:00:03 +0300] GET /wordpress/wp-login.php HTTP/1.1 200 1275 - Mozilla/5.0 X11; Ubuntu; Linux x86_64; rv:62.0 Gecko/20100101 Firefox/62.0	2020-06-21 00:18:58

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.201.132.16
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 8855
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.201.132.16.			IN	A

;; AUTHORITY SECTION:
.			323	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022013001 1800 900 604800 86400

;; Query time: 17 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Mon Jan 31 08:25:14 CST 2022
;; MSG SIZE  rcvd: 107

Host info

16.132.201.138.in-addr.arpa domain name pointer static.16.132.201.138.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
16.132.201.138.in-addr.arpa	name = static.16.132.201.138.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
104.236.63.99	attackbotsspam	Nov 11 20:10:09 gw1 sshd[27137]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=104.236.63.99 Nov 11 20:10:12 gw1 sshd[27137]: Failed password for invalid user gehder from 104.236.63.99 port 49052 ssh2 ...	2019-11-12 04:38:06
67.205.153.74	attackspam	67.205.153.74 has been banned for [WebApp Attack] ...	2019-11-12 04:19:56
54.37.67.144	attackbots	Nov 11 18:29:45 XXX sshd[58824]: Invalid user smmsp from 54.37.67.144 port 37152	2019-11-12 04:28:55
179.214.20.144	attackspambots	Automatic report - Port Scan	2019-11-12 04:32:11
185.153.196.240	attackspam	11/11/2019-15:31:58.847130 185.153.196.240 Protocol: 6 ET SCAN NMAP -sS window 1024	2019-11-12 04:42:06
129.28.181.209	attackspambots	Nov 11 20:31:15 amit sshd\[28412\]: Invalid user master from 129.28.181.209 Nov 11 20:31:15 amit sshd\[28412\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=129.28.181.209 Nov 11 20:31:17 amit sshd\[28412\]: Failed password for invalid user master from 129.28.181.209 port 45400 ssh2 ...	2019-11-12 04:50:08
139.162.113.204	attack	[Mon Nov 11 21:37:51.254643 2019] [:error] [pid 715:tid 140006307493632] [client 139.162.113.204:59716] [client 139.162.113.204] ModSecurity: Access denied with code 403 (phase 2). Pattern match "^[\\\\d.:]+$" at REQUEST_HEADERS:Host. [file "/etc/modsecurity/owasp-modsecurity-crs-3.2.0/rules/REQUEST-920-PROTOCOL-ENFORCEMENT.conf"] [line "696"] [id "920350"] [msg "Host header is a numeric IP address"] [data "103.27.207.197"] [severity "WARNING"] [ver "OWASP_CRS/3.2.0"] [tag "application-multi"] [tag "language-multi"] [tag "platform-multi"] [tag "attack-protocol"] [tag "OWASP_CRS"] [tag "OWASP_CRS/PROTOCOL_VIOLATION/IP_HOST"] [tag "WASCTC/WASC-21"] [tag "OWASP_TOP_10/A7"] [tag "PCI/6.5.10"] [hostname "103.27.207.197"] [uri "/"] [unique_id "XclyP2H3g7BiAMdC0EfUKQAAAAA"] ...	2019-11-12 04:44:19
149.56.89.123	attackspambots	2019-11-11T15:42:33.427284abusebot.cloudsearch.cf sshd\[11514\]: Invalid user bashton from 149.56.89.123 port 44888	2019-11-12 04:53:38
218.73.39.255	attackbots	Honeypot attack, port: 23, PTR: 255.39.73.218.broad.tz.zj.dynamic.163data.com.cn.	2019-11-12 04:45:01
218.92.0.157	attackspambots	$f2bV_matches	2019-11-12 04:39:37
163.5.55.58	attack	2019-11-11T20:55:30.408415mail01 postfix/smtpd[29194]: warning: srs.epita.fr[163.5.55.58]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-11T21:03:19.377645mail01 postfix/smtpd[21144]: warning: srs.epita.fr[163.5.55.58]: SASL LOGIN authentication failed: UGFzc3dvcmQ6 2019-11-11T21:03:32.048254mail01 postfix/smtpd[21144]: warning: srs.epita.fr[163.5.55.58]: SASL LOGIN authentication failed: UGFzc3dvcmQ6	2019-11-12 04:47:34
95.110.230.48	attackspam	$f2bV_matches	2019-11-12 04:47:13
119.81.132.210	attack	IP Ban Report : https://help-dysk.pl/wordpress-firewall-plugins/ip/119.81.132.210/ NL - 1H : (27) Protection Against DDoS WordPress plugin : "odzyskiwanie danych help-dysk" IP Address Ranges by Country : NL NAME ASN : ASN36351 IP : 119.81.132.210 CIDR : 119.81.128.0/18 PREFIX COUNT : 1060 UNIQUE IP COUNT : 4784128 ATTACKS DETECTED ASN36351 : 1H - 1 3H - 1 6H - 1 12H - 1 24H - 2 DateTime : 2019-11-11 15:38:05 INFO : HACK ! - Looking for resource vulnerabilities Scan Detected and Blocked by ADMIN - data recovery	2019-11-12 04:34:08
173.249.16.234	attackspam	WEB Masscan Scanner Activity	2019-11-12 04:19:25
198.50.197.216	attackspambots	Nov 11 16:00:01 dedicated sshd[4018]: Invalid user 11111111 from 198.50.197.216 port 41364	2019-11-12 04:54:55

Recently Reported IPs

105.78.53.26	98.176.127.77	201.249.231.73	47.91.102.66
204.150.86.62	179.81.173.116	112.235.5.105	213.236.148.61
77.75.235.80	188.243.231.167	241.102.222.200	184.102.172.121
204.45.192.183	89.142.209.209	159.177.170.194	24.121.246.152
192.244.19.134	199.82.230.142	66.76.240.67	162.159.129.46