138.97.2.135 - IPInfo

Basic Info

City: unknown

Region: unknown

Country: unknown

Internet Service Provider: unknown

Hostname: unknown

Organization: unknown

Usage Type: unknown

Comments:

Make a comment on this IP

No discussion about this IP yet. Click above link to make one.

Comments on same subnet:

IP	Type	Details	Datetime
138.97.224.88	attack	Automatic report - Port Scan Attack	2020-10-01 08:47:47
138.97.224.88	attackspam	Automatic report - Port Scan Attack	2020-10-01 01:23:20
138.97.224.88	attackbotsspam	Automatic report - Port Scan Attack	2020-09-30 17:35:18
138.97.22.186	attackspambots	SSH/22 MH Probe, BF, Hack -	2020-09-30 02:59:46
138.97.22.186	attack	SSH/22 MH Probe, BF, Hack -	2020-09-29 19:02:11
138.97.241.37	attackbots	Sep 26 16:13:02 server sshd[18441]: Failed password for invalid user openvpn from 138.97.241.37 port 42432 ssh2 Sep 26 16:16:43 server sshd[19383]: Failed password for invalid user dmdba from 138.97.241.37 port 34428 ssh2 Sep 26 16:20:29 server sshd[20264]: Failed password for invalid user transfer from 138.97.241.37 port 54654 ssh2	2020-09-27 00:49:16
138.97.241.37	attackbots	21125/tcp 9563/tcp 15319/tcp... [2020-08-31/09-26]19pkt,18pt.(tcp)	2020-09-26 16:40:09
138.97.23.190	attack	Coordinated SSH brute-force attack from different IPs. pam_unix(sshd:auth):	2020-09-25 05:18:57
138.97.241.37	attack	Connection to SSH Honeypot - Detected by HoneypotDB	2020-09-13 21:56:34
138.97.241.37	attackspam	Sep 13 07:25:21 abendstille sshd\[21590\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.241.37 user=root Sep 13 07:25:23 abendstille sshd\[21590\]: Failed password for root from 138.97.241.37 port 33160 ssh2 Sep 13 07:29:54 abendstille sshd\[25756\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.241.37 user=root Sep 13 07:29:56 abendstille sshd\[25756\]: Failed password for root from 138.97.241.37 port 41632 ssh2 Sep 13 07:34:29 abendstille sshd\[30104\]: Invalid user it from 138.97.241.37 Sep 13 07:34:29 abendstille sshd\[30104\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.241.37 ...	2020-09-13 13:51:43
138.97.241.37	attackbots	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-09-13 05:35:24
138.97.212.245	attackbots	IP 138.97.212.245 attacked honeypot on port: 1433 at 9/9/2020 9:46:48 AM	2020-09-11 03:23:00
138.97.212.245	attackspambots	IP 138.97.212.245 attacked honeypot on port: 1433 at 9/9/2020 9:46:48 AM	2020-09-10 18:52:45
138.97.241.37	attackbotsspam	Sep 8 02:23:41 web9 sshd\[17871\]: Invalid user raudel from 138.97.241.37 Sep 8 02:23:41 web9 sshd\[17871\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.241.37 Sep 8 02:23:42 web9 sshd\[17871\]: Failed password for invalid user raudel from 138.97.241.37 port 34302 ssh2 Sep 8 02:27:31 web9 sshd\[18342\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.241.37 user=root Sep 8 02:27:33 web9 sshd\[18342\]: Failed password for root from 138.97.241.37 port 60396 ssh2	2020-09-08 21:19:02
138.97.241.37	attackspam	Sep 8 04:42:19 ns382633 sshd\[23233\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.241.37 user=root Sep 8 04:42:21 ns382633 sshd\[23233\]: Failed password for root from 138.97.241.37 port 47262 ssh2 Sep 8 04:47:18 ns382633 sshd\[24132\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.241.37 user=root Sep 8 04:47:20 ns382633 sshd\[24132\]: Failed password for root from 138.97.241.37 port 58364 ssh2 Sep 8 04:51:08 ns382633 sshd\[24920\]: pam_unix$sshd:auth$: authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.97.241.37 user=root	2020-09-08 13:11:24

Whois info:

Dig info:

; <<>> DiG 9.10.3-P4-Ubuntu <<>> 138.97.2.135
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 44105
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 0

;; QUESTION SECTION:
;138.97.2.135.			IN	A

;; AUTHORITY SECTION:
.			596	IN	SOA	a.root-servers.net. nstld.verisign-grs.com. 2022030803 1800 900 604800 86400

;; Query time: 69 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Wed Mar 09 07:57:57 CST 2022
;; MSG SIZE  rcvd: 105

Host info

b'135.2.97.138.in-addr.arpa domain name pointer 135-2-97-138.clickturbo.com.br.
'

Nslookup info:

Server:		183.60.83.19
Address:	183.60.83.19#53

Non-authoritative answer:
135.2.97.138.in-addr.arpa	name = 135-2-97-138.clickturbo.com.br.

Authoritative answers can be found from:

Related IP info:

Related comments:

IP	Type	Details	Datetime
103.227.176.27	attackspam	Automatic report - XMLRPC Attack	2020-08-19 14:30:35
124.207.221.66	attack	Aug 19 08:55:25 cosmoit sshd[26806]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=124.207.221.66	2020-08-19 15:10:18
49.233.177.197	attack	Aug 19 07:53:47 marvibiene sshd[23424]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=49.233.177.197 Aug 19 07:53:49 marvibiene sshd[23424]: Failed password for invalid user sk from 49.233.177.197 port 45654 ssh2	2020-08-19 15:08:49
132.255.84.81	attack	1597809217 - 08/19/2020 05:53:37 Host: 132.255.84.81/132.255.84.81 Port: 445 TCP Blocked	2020-08-19 14:36:01
171.25.193.78	attack	Aug 19 09:38:27 lunarastro sshd[5660]: Failed password for sshd from 171.25.193.78 port 29915 ssh2 Aug 19 09:38:27 lunarastro sshd[5660]: Failed password for sshd from 171.25.193.78 port 29915 ssh2 Aug 19 09:38:30 lunarastro sshd[5660]: Failed password for sshd from 171.25.193.78 port 29915 ssh2 Aug 19 09:38:35 lunarastro sshd[5660]: Failed password for sshd from 171.25.193.78 port 29915 ssh2 Aug 19 09:38:39 lunarastro sshd[5660]: Failed password for sshd from 171.25.193.78 port 29915 ssh2 Aug 19 09:38:41 lunarastro sshd[5660]: Failed password for sshd from 171.25.193.78 port 29915 ssh2 Aug 19 09:38:43 lunarastro sshd[5660]: error: maximum authentication attempts exceeded for sshd from 171.25.193.78 port 29915 ssh2 [preauth]	2020-08-19 14:54:15
222.186.61.19	attackbots	ET DROP Dshield Block Listed Source group 1 - port: 8111 proto: tcp cat: Misc Attackbytes: 60	2020-08-19 14:57:44
23.95.97.228	attackbotsspam	(From eric@talkwithwebvisitor.com) Hey there, I just found your site, quick question… My name’s Eric, I found mccansechiropractic.com after doing a quick search – you showed up near the top of the rankings, so whatever you’re doing for SEO, looks like it’s working well. So here’s my question – what happens AFTER someone lands on your site? Anything? Research tells us at least 70% of the people who find your site, after a quick once-over, they disappear… forever. That means that all the work and effort you put into getting them to show up, goes down the tubes. Why would you want all that good work – and the great site you’ve built – go to waste? Because the odds are they’ll just skip over calling or even grabbing their phone, leaving you high and dry. But here’s a thought… what if you could make it super-simple for someone to raise their hand, say, “okay, let’s talk” without requiring them to even pull their cell phone from their pocket? You can – thanks to revolutionary new software	2020-08-19 15:10:39
42.236.10.123	attackspam	Bad web bot already banned	2020-08-19 14:40:15
34.73.106.90	attackbotsspam	34.73.106.90 - - [19/Aug/2020:05:52:29 +0200] "GET /wp-login.php HTTP/1.1" 200 9032 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.73.106.90 - - [19/Aug/2020:05:52:31 +0200] "POST /wp-login.php HTTP/1.1" 200 9283 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0" 34.73.106.90 - - [19/Aug/2020:05:52:32 +0200] "POST /xmlrpc.php HTTP/1.1" 200 427 "-" "Mozilla/5.0 (X11; Ubuntu; Linux x86_64; rv:62.0) Gecko/20100101 Firefox/62.0"	2020-08-19 15:14:03
111.241.174.228	attackspambots	1597809165 - 08/19/2020 05:52:45 Host: 111.241.174.228/111.241.174.228 Port: 445 TCP Blocked	2020-08-19 15:00:37
177.72.4.74	attackspambots	Invalid user gek from 177.72.4.74 port 51014	2020-08-19 14:33:21
107.175.158.13	attackspambots	(From eric@talkwithwebvisitor.com) My name’s Eric and I just came across your website - staytunedchiropractic.com - in the search results. Here’s what that means to me… Your SEO’s working. You’re getting eyeballs – mine at least. Your content’s pretty good, wouldn’t change a thing. BUT… Eyeballs don’t pay the bills. CUSTOMERS do. And studies show that 7 out of 10 visitors to a site like staytunedchiropractic.com will drop by, take a gander, and then head for the hills without doing anything else. It’s like they never were even there. You can fix this. You can make it super-simple for them to raise their hand, say, “okay, let’s talk” without requiring them to even pull their cell phone from their pocket… thanks to Talk With Web Visitor. Talk With Web Visitor is a software widget that sits on your site, ready and waiting to capture any visitor’s Name, Email address and Phone Number. It lets you know immediately – so you can talk to that lead immediately… without delay… BEFOR	2020-08-19 15:06:42
165.22.200.17	attackspambots	Invalid user zk from 165.22.200.17 port 41172	2020-08-19 14:39:45
193.112.109.108	attackbotsspam	$f2bV_matches	2020-08-19 15:09:26
74.82.47.15	attackbotsspam	[N10.H2.VM2] Port Scanner Detected Blocked by UFW	2020-08-19 14:34:39

Recently Reported IPs

138.97.2.138	138.97.2.150	138.97.2.145	138.97.2.140
138.97.2.152	138.97.2.148	118.190.244.220	138.97.2.155
138.97.2.16	138.97.2.160	138.97.2.159	138.97.2.166
138.97.2.171	138.97.2.168	138.97.2.156	138.97.2.177
118.190.244.234	138.97.2.163	138.97.2.173	138.97.2.172