Must be a valid IPv4 or IPv6 ip address, e.g. 127.0.0.1 or 2001:DB8:0:0:8:800:200C:417A
Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:
No discussion about this IP yet. Click above link to make one.
Comments on same subnet:
IP Type Details Datetime
138.97.171.105 attackspambots
SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: CableLink-138-97-171-105.PCs.InterCable.net.
2020-10-08 01:53:27
138.97.171.105 attack
SCAN: Host Sweep CloudCIX Reconnaissance Scan Detected, PTR: CableLink-138-97-171-105.PCs.InterCable.net.
2020-10-07 18:02:10
138.97.181.169 attack
port scan and connect, tcp 23 (telnet)
2020-08-16 08:45:14
138.97.154.142 attackspambots
Attempted connection to port 445.
2020-07-25 03:02:54
138.97.123.176 attack
cctv illegal login
2020-07-06 23:54:52
138.97.123.12 attack
cctv illegal login
2020-07-06 23:53:45
138.97.15.125 attackbots
Invalid user admin from 138.97.15.125 port 35876
2020-06-18 05:47:33
138.97.161.78 attack
"XSS Attack Detected via libinjection - Matched Data: XSS data found within ARGS_NAMES:
2020-06-02 17:30:10
138.97.165.209 attackspam
1587038961 - 04/16/2020 14:09:21 Host: 138.97.165.209/138.97.165.209 Port: 445 TCP Blocked
2020-04-17 02:54:14
138.97.145.148 attack
Automatic report - Port Scan Attack
2020-04-04 23:43:17
138.97.124.13 attackbotsspam
2020-03-07T16:10:54.347097linuxbox-skyline sshd[28933]: Invalid user uno85123 from 138.97.124.13 port 58210
...
2020-03-08 08:53:25
138.97.159.217 attackbots
From: Walgreens Rewards 
Repetitive Walgreens reward spam - likely fraud – primarily Ukraine ISP; targeted Google phishing redirect; repetitive blacklisted phishing redirect spam links.

No entity name; BBB results for "8 The Green, Dover, DE 19901":
… The websites collect personal information and then transfer it to lenders and other service providers and marketing companies. BBB suggests caution in dealing with these websites. …

Unsolicited bulk spam - (EHLO betrothment.clausloan.eu) (138.97.159.217) – repetitive UBE from IP range 138.97.156.*

Spam link clausloan.eu = 138.97.159.10 My Tech BZ – blacklisted – phishing redirect:
-	www.google.com – effective URL; phishing redirect
-	lukkins.com = 139.99.70.208 Ovh Sas
-	link.agnesta.com = 62.113.207.188 23Media GmbH (previous domain link.orcelsor.com)
-	kq6.securessl.company = 104.223.205.137, 104.223.205.138 Global Frag Networks
2020-03-05 23:25:42
138.97.159.10 attackspam
From: Walgreens Rewards 
Repetitive Walgreens reward spam - likely fraud – primarily Ukraine ISP; targeted Google phishing redirect; repetitive blacklisted phishing redirect spam links.

No entity name; BBB results for "8 The Green, Dover, DE 19901":
… The websites collect personal information and then transfer it to lenders and other service providers and marketing companies. BBB suggests caution in dealing with these websites. …

Unsolicited bulk spam - (EHLO betrothment.clausloan.eu) (138.97.159.217) – repetitive UBE from IP range 138.97.156.*

Spam link clausloan.eu = 138.97.159.10 My Tech BZ – blacklisted – phishing redirect:
-	www.google.com – effective URL; phishing redirect
-	lukkins.com = 139.99.70.208 Ovh Sas
-	link.agnesta.com = 62.113.207.188 23Media GmbH (previous domain link.orcelsor.com)
-	kq6.securessl.company = 104.223.205.137, 104.223.205.138 Global Frag Networks
2020-03-05 22:38:17
138.97.124.13 attack
Mar  4 08:46:42 server sshd[1193695]: Failed password for invalid user info from 138.97.124.13 port 52798 ssh2
Mar  4 08:57:53 server sshd[1197063]: Failed password for invalid user wp-user from 138.97.124.13 port 35458 ssh2
Mar  4 09:09:03 server sshd[1200630]: Failed password for invalid user isa from 138.97.124.13 port 46350 ssh2
2020-03-04 16:13:49
138.97.147.3 attackbots
Unauthorized connection attempt detected from IP address 138.97.147.3 to port 8080
2020-03-02 04:03:32
Whois info:
b
Dig info:
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.97.1.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 48163
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.97.1.64.			IN	A

;; AUTHORITY SECTION:
.			330	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 84 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:56:42 CST 2022
;; MSG SIZE  rcvd: 104
Host info
64.1.97.138.in-addr.arpa domain name pointer 64-1-97-138.clickturbo.com.br.
Nslookup info:
Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
64.1.97.138.in-addr.arpa	name = 64-1-97-138.clickturbo.com.br.

Authoritative answers can be found from:
Related IP info:
Related comments:
IP Type Details Datetime
124.167.196.222 attack
scan z
2019-10-23 18:44:14
49.235.137.201 attackspam
Oct 23 08:59:19 h2177944 sshd\[26971\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.137.201  user=dovecot
Oct 23 08:59:20 h2177944 sshd\[26971\]: Failed password for dovecot from 49.235.137.201 port 50420 ssh2
Oct 23 09:03:39 h2177944 sshd\[27701\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.235.137.201  user=root
Oct 23 09:03:41 h2177944 sshd\[27701\]: Failed password for root from 49.235.137.201 port 56272 ssh2
...
2019-10-23 18:37:14
103.78.195.10 attackspam
WordPress (CMS) attack attempts.
Date: 2019 Oct 23. 08:29:31
Source IP: 103.78.195.10

Portion of the log(s):
103.78.195.10 - [23/Oct/2019:08:29:30 +0200] "POST /wp-login.php HTTP/1.1" 200 2389 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
103.78.195.10 - [23/Oct/2019:08:29:28 +0200] "POST /wp-login.php HTTP/1.1" 200 2388 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
103.78.195.10 - [23/Oct/2019:08:29:26 +0200] "POST /wp-login.php HTTP/1.1" 200 2385 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
103.78.195.10 - [23/Oct/2019:08:29:25 +0200] "POST /wp-login.php HTTP/1.1" 200 2394 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"
103.78.195.10 - [23/Oct/2019:08:29:23 +0200] "POST /wp-login.php HTTP/1.1" 200 2385 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" ....
2019-10-23 18:40:45
167.99.81.101 attack
Unauthorized SSH login attempts
2019-10-23 18:48:04
165.227.93.144 attackspambots
Invalid user sasha from 165.227.93.144 port 45940
2019-10-23 18:35:13
177.95.75.114 attackspambots
Oct 22 19:34:38 hanapaa sshd\[19810\]: Invalid user abc123456 from 177.95.75.114
Oct 22 19:34:38 hanapaa sshd\[19810\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.95.75.114
Oct 22 19:34:40 hanapaa sshd\[19810\]: Failed password for invalid user abc123456 from 177.95.75.114 port 45414 ssh2
Oct 22 19:39:43 hanapaa sshd\[20709\]: Invalid user mice123 from 177.95.75.114
Oct 22 19:39:43 hanapaa sshd\[20709\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=177.95.75.114
2019-10-23 18:37:57
187.8.170.35 attackspambots
Phishing scam from 187.8.170.35
2019-10-23 18:21:23
5.196.201.7 attackspam
Oct 23 09:49:52  postfix/smtpd: warning: unknown[5.196.201.7]: SASL LOGIN authentication failed
2019-10-23 18:22:12
2001:41d0:203:357:: attackbotsspam
xmlrpc attack
2019-10-23 18:26:15
46.101.211.121 attackbotsspam
PBX: blocked for too many failed authentications; User-Agent: 3CXPhoneSystem
2019-10-23 18:33:28
185.216.140.252 attack
Port scan: Attack repeated for 24 hours
2019-10-23 18:24:47
106.13.113.161 attackbots
" "
2019-10-23 18:26:39
125.215.207.40 attack
Oct 23 11:46:41 localhost sshd\[19165\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.40  user=root
Oct 23 11:46:42 localhost sshd\[19165\]: Failed password for root from 125.215.207.40 port 52479 ssh2
Oct 23 11:55:39 localhost sshd\[20022\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=125.215.207.40  user=root
2019-10-23 18:17:04
178.62.239.118 attackspam
PBX: blocked for too many failed authentications; User-Agent: 3CXPhoneSystem
2019-10-23 18:54:22
221.228.111.131 attackspambots
2019-10-23T10:42:12.701585abusebot-5.cloudsearch.cf sshd\[2951\]: Invalid user da from 221.228.111.131 port 40736
2019-10-23 18:45:31

Recently Reported IPs

138.97.1.66 138.97.1.60 138.97.1.68 138.97.1.62
138.97.1.71 138.97.1.75 138.97.1.76 138.97.1.6
138.97.1.78 118.190.203.251 138.97.1.80 138.97.1.83
138.97.1.87 138.97.1.88 138.97.10.0 138.97.1.92
138.97.10.146 138.97.1.97 138.97.1.95 138.97.10.12