138.201.34.72 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: Germany

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.201.34.38	attack	Probing for vulnerable services	2019-12-30 16:11:18

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.201.34.72
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 11118
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.201.34.72.			IN	A

;; AUTHORITY SECTION:
.			589	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022022601 1800 900 604800 86400

;; Query time: 61 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Sun Feb 27 12:29:12 CST 2022
;; MSG SIZE  rcvd: 106

Host info

72.34.201.138.in-addr.arpa domain name pointer static.72.34.201.138.clients.your-server.de.

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
72.34.201.138.in-addr.arpa	name = static.72.34.201.138.clients.your-server.de.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
165.22.52.141	attack	165.22.52.141 - - [17/Apr/2020:06:28:43 +0200] "GET /wp-login.php HTTP/1.1" 200 5702 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.52.141 - - [17/Apr/2020:06:28:46 +0200] "POST /wp-login.php HTTP/1.1" 200 6601 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 165.22.52.141 - - [17/Apr/2020:06:28:47 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-04-17 16:55:27
129.144.145.33	attackspam	20/4/16@23:54:42: FAIL: Alarm-SSH address from=129.144.145.33 ...	2020-04-17 16:30:25
36.46.142.80	attackbots	Invalid user flw from 36.46.142.80 port 56204	2020-04-17 16:42:19
106.12.209.196	attackspambots	distributed sshd attacks	2020-04-17 16:29:18
122.51.41.109	attackbotsspam	Tried sshing with brute force.	2020-04-17 16:37:00
182.77.58.56	attackspam	Apr 16 22:33:45 php1 sshd\[24814\]: Invalid user git from 182.77.58.56 Apr 16 22:33:45 php1 sshd\[24814\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.77.58.56 Apr 16 22:33:47 php1 sshd\[24814\]: Failed password for invalid user git from 182.77.58.56 port 5874 ssh2 Apr 16 22:39:30 php1 sshd\[25512\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=182.77.58.56 user=root Apr 16 22:39:32 php1 sshd\[25512\]: Failed password for root from 182.77.58.56 port 62415 ssh2	2020-04-17 16:56:22
51.158.31.194	attackbotsspam	GB_ONLINESAS-MNT_<177>1587106290 [1:2403369:56752] ET CINS Active Threat Intelligence Poor Reputation IP UDP group 35 [Classification: Misc Attack] [Priority: 2]: {UDP} 51.158.31.194:59537	2020-04-17 16:41:44
108.203.202.75	attackbotsspam	Apr 17 10:50:16 hosting sshd[12120]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=108-203-202-75.lightspeed.mmphtn.sbcglobal.net user=root Apr 17 10:50:18 hosting sshd[12120]: Failed password for root from 108.203.202.75 port 60868 ssh2 ...	2020-04-17 16:46:37
223.25.99.37	attackbotsspam	CMS (WordPress or Joomla) login attempt.	2020-04-17 16:24:14
14.190.96.144	attackbotsspam	Unauthorized connection attempt detected from IP address 14.190.96.144 to port 445	2020-04-17 16:21:20
106.51.113.15	attack	$f2bV_matches	2020-04-17 16:41:03
61.177.172.128	attackspambots	Apr 17 05:24:21 firewall sshd[24401]: Failed password for root from 61.177.172.128 port 35533 ssh2 Apr 17 05:24:24 firewall sshd[24401]: Failed password for root from 61.177.172.128 port 35533 ssh2 Apr 17 05:24:28 firewall sshd[24401]: Failed password for root from 61.177.172.128 port 35533 ssh2 ...	2020-04-17 16:35:25
51.178.49.219	attackbots	Invalid user www from 51.178.49.219 port 60084	2020-04-17 16:22:54
178.128.21.38	attackspambots	odoo8 ...	2020-04-17 16:57:22
218.82.137.80	attackspam	DATE:2020-04-17 09:51:12, IP:218.82.137.80, PORT:ssh SSH brute force auth (docker-dc)	2020-04-17 16:40:29

Recently Reported IPs

138.201.36.87	138.201.34.68	138.201.32.81	138.201.48.251
138.201.38.9	138.201.50.141	138.201.49.134	138.201.47.52
138.201.36.92	138.201.38.57	138.201.37.162	138.201.50.187
138.201.47.49	138.201.48.198	138.201.50.169	138.201.51.10
138.201.51.185	138.201.54.107	138.201.51.162	138.201.53.90